Riptides is a workload identity and access control platform designed to eliminate credential-based attacks in cloud-native and AI-native environments. The platform replaces static secrets and API keys with short-lived, cryptographic non-human identities issued to workloads, containers, and AI agents, enabling secure workload-to-workload communication without manual credential management. Core capabilities include: - Kernel-level identity enforcement that ties access control to running processes rather than network locations or application logic - Automatic issuance and rotation of short-lived identities using the SPIFFE/SVID standard - Mutual TLS automation without requiring application code changes - Runtime detection and blocking of credential replay, privilege escalation, and lateral movement - Secret detection by monitoring network traffic for secrets in transit - Real-time credential inventory for non-human identities - Federated trust establishment across systems via SPIFFE trust domains - Just-in-time credential exchange for third-party API access (e.g., AWS, Google Cloud, OpenAI, Grok) Riptides also provides dedicated identity management for AI agents, issuing verifiable identities to each agent, enforcing agent-to-agent trust, controlling agent permissions dynamically, and logging all agent actions for forensics and compliance. The platform integrates with Kubernetes, supports open standards (SPIFFE, TLS), and can be deployed fully on-premises or in a hybrid model where enforcement and identity issuance remain within the customer's environment. It targets security engineers and platform/infrastructure teams operating dynamic, cloud-native environments. The company plans to open source its core kernel module.