Press & Media

FOR IMMEDIATE RELEASE — December 2025

OpenA2A Launches AIM: Open-Source Identity Management for AI Agents

DENVER, CO — OpenA2A today announced the public launch of AIM (Agent Identity Management), an open-source platform that brings cryptographic identity and zero-trust security to AI agents. With a single line of code, developers can secure their AI agents against prompt injection attacks, agent impersonation, and unauthorized actions.

"AI agents are the new attack surface," said Abdel Sy Fane, Founder and CEO of OpenA2A. "The EchoLeak vulnerability demonstrated that AI agents in production face real security threats. AIM provides the security foundation that every AI agent needs—cryptographic identity, capability-based access control, and complete audit trails."

Key Features

• One-Line Integration: agent = secure("my-agent") — cryptographic identity, audit logging, and trust scoring with zero configuration
• MCP Server Attestation: Cryptographic verification of MCP server authenticity before connection, with continuous drift detection to catch unauthorized changes
• Supply Chain Security: Complete visibility into agent-to-MCP server dependencies with attestation status, preventing compromised or malicious servers from entering your environment
• MCP Asset Management: Know every MCP server in your organization—who registered it, which agents use it, and what it can access (database read/write, file system, APIs)
• 8-Factor Trust Scoring: Real-time behavioral analysis with automatic trust adjustment
• Compliance Ready: Complete audit trails for SOC 2, HIPAA, and GDPR requirements

Framework Support

AIM integrates with LangChain, CrewAI, AutoGen, and any MCP-compatible agent framework. The Python SDK auto-detects the framework in use and applies appropriate security controls.

Enterprise Supply Chain Security

As AI agents proliferate across enterprises, they create complex dependency chains with MCP servers, external APIs, and other agents. AIM addresses this supply chain risk with cryptographic attestation—every MCP server is verified before agents connect, with continuous monitoring for configuration drift. Organizations gain complete visibility into their agent-to-server dependency graph, ensuring that compromised or malicious servers cannot infiltrate their AI infrastructure. This is critical for regulated industries where third-party risk management and software supply chain security are compliance requirements.

MCP Asset Management

Today, most organizations have no visibility into what MCP servers their engineers are deploying—it's shadow IT for the AI era. AIM brings order to this chaos with comprehensive MCP asset management: which MCP servers are in use, who registered them, which agents connect to them, and what capabilities each server exposes. A Postgres MCP server? AIM tracks that it has read/write database access. A filesystem MCP? AIM knows it can access local files. This visibility is essential for security teams to understand their AI attack surface and for compliance teams to audit agent capabilities.

Availability

AIM is available today under the AGPL-3.0 open-source license. Organizations can self-host for free or use AIM Cloud for managed infrastructure. Enterprise licensing will be available in 2026 for organizations requiring alternative licensing terms.