Sorry, you need to enable JavaScript to visit this website.

When Agents Become Users: Control-Plane and Data-Plane Security Gaps in Agentic AI for Distributed Storage Ecosystems

Lafayette

Mon Sep 28 | 9:30am

Abstract

Autonomous AI agents are rapidly evolving into primary consumers of enterprise data, operating across distributed computing environments where they plan tasks, invoke tools, and coordinate across clustered runtimes, network fabrics, and storage back ends at machine speed. As agents increasingly act as users of infrastructure rather than passive workloads, they introduce a new class of security challenges that remain poorly understood and insufficiently addressed. In this work, we analyze the emerging security implications of agent interoperability protocols, including Model Context Protocol (MCP), Agent-to-Agent (A2A), and agent commerce interfaces. We show that the combination of natural-language-driven control and machine-speed execution creates novel control-plane risks that existing runtime and infrastructure defenses are not designed to mitigate. 


We identify a set of critical vulnerability classes spanning both control and data planes, including protocol-level weaknesses in MCP and A2A, cross-protocol trust boundary failures, identity ambiguity at the data layer, privilege overreach at scale, audit and lineage gaps, and control-plane blindness under high-speed autonomous operation. Some of these risks are inherited from traditional distributed systems, while others are fundamentally amplified, or newly introduced, by agentic behavior. As agentic workloads become dominant consumers of enterprise storage and data, their security can no longer be addressed solely within AI model or application layers. Instead, it demands coordinated attention from storage and networking architects who define how data is accessed, governed, and secured at the infrastructure level. 


This session frames these challenges as an open problem space for SNIA developers and infrastructure architects, highlighting the need for new abstractions, controls, and standardization efforts at the storage and fabric layers.  Join us for an interactive discussion on these emerging threats with agentic data access and the requirements to protect enterprise systems as agents become first-class actors in distributed environments.