Keyfactor Tech Days 2027, The Trust Security Conference, is heading to San Diego!   Discover what’s coming up

  • Home
  • Blog
  • Crypto-Agility
  • AgileSec 3.6 Gives Security Teams More Visibility, More Control, and a Faster Path to Cryptographic-Agility

AgileSec 3.6 Gives Security Teams More Visibility, More Control, and a Faster Path to Cryptographic-Agility

Crypto-Agility

AgileSec 3.6 delivers some of our most impactful enhancements to date, helping organizations strengthen security, expand cryptographic visibility, and accelerate crypto-agility initiatives. 

This release focuses on three key areas: 

  • Stronger security and access controls with RSA JWT token signing, remote token revocation, and SAML enhancements 
  • Broader cryptographic visibility through Tanium Connect, GCP KMS enhancements, and expanded source coverage 
  • Greater scale and operational efficiency with cross-cluster search, CBOM export, PQC detection improvements, and user experience improvements 

Whether you’re looking to reduce cryptographic risk, simplify compliance efforts, or prepare for a post-quantum future, AgileSec 3.6 delivers new capabilities that help security teams gain more visibility, more control, and more confidence in their cryptographic environment. 

Here’s what’s new and why it matters. 

Turn Tanium Visibility into Action 

For organizations using Tanium, AgileSec 3.6 closes an important visibility gap. 

Tanium Connect is now generally available, allowing teams to ingest findings directly from Tanium and view them alongside cryptographic findings from across their environment. 

Instead of working across disconnected tools, security teams gain a more complete picture of cryptographic risk from a single location. 

The result is faster investigation, improved prioritization, and greater confidence that critical risks aren’t being overlooked. 

Search Across Environments Without Losing Context 

Large enterprises rarely operate from a single environment. 

They manage multiple OpenSearch clusters across regions, business units, cloud providers, and on-premises infrastructure. That complexity can make cryptographic risk difficult to understand at an enterprise level. 

With Cross-Cluster Search for OpenSearch, AgileSec can now query multiple clusters through a unified search experience. 

Security teams spend less time hunting for information and more time reducing risk. 

For organizations operating at global scale, that means better visibility, faster investigations, and a more complete understanding of their cryptographic posture. 

Strengthen Security with Better Credential Management 

Machine-to-machine authentication is a foundational component of modern security architectures. 

AgileSec 3.6 introduces RSA key support for JWT token signing and adds remote token revocation awareness across the platform. 

Together, these enhancements help organizations: 

  • Strengthen service authentication 
  • Reduce exposure from compromised credentials 
  • Support zero-trust security initiatives 
  • Improve control over machine access 

Good security isn’t just about discovering cryptographic risk. It’s also about ensuring the systems responsible for managing that risk follow the same security principles. 

Remove Friction from Enterprise Identity Management 

Identity and access management should simplify operations, not create obstacles. 

AgileSec 3.6 delivers two important SAML improvements that make deployments easier and access controls more effective. 

Document Level Security now supports SAML claim substitution for OpenSearch environments that require identity-based data segmentation. 

Multi-group role mapping now properly handles array-based group claims commonly used by enterprise identity providers. 

For customers that rely on SAML for authentication and role-based access control, these updates improve usability while reducing administrative complexity. 

Expand Visibility Across Cloud and Development Environments 

Cryptographic risk spans cloud platforms, repositories, pipelines, applications, and infrastructure. 

With AgileSec 3.6, we’re expanding discovery coverage across both cloud and development environments with: 

  • New GCP KMS sensor support, completing coverage across AWS, Microsoft Azure, and Google Cloud 
  • Expanded GitHub discovery capabilities 
  • Bitbucket Data Center API 1.0 support 

Together, these enhancements help organizations build a more complete inventory of cryptographic assets across their cloud, application, and development ecosystems. The result is broader visibility, stronger cryptographic governance, and a more effective path to cryptographic agility. 

Improving Discovery Accuracy and Deployment Flexibility 

AgileSec 3.6 also includes several improvements that make the platform easier to operate and improve the quality of cryptographic discovery. 

Teams deploying AgileSec in Kubernetes environments can now benefit from unified Helm charts for both Amazon EKS and Microsoft AKS deployments. By simplifying deployment and configuration across cloud environments, organizations can reduce operational overhead and standardize how AgileSec is deployed at scale. 

We’ve also improved TLS 1.3 key exchange detection accuracy. Reliable cryptographic inventory starts with accurate discovery, and this enhancement helps security teams gain a clearer understanding of the cryptographic protocols and algorithms in use across their environments. 

While these updates may not be the most visible features in the release, they help ensure AgileSec remains easier to deploy, easier to manage, and more effective at uncovering cryptographic risk. 

Continue Preparing for the Post-Quantum Future 

The challenge with post-quantum cryptography isn’t simply migrating algorithms. It’s knowing where vulnerable cryptography exists today. 

AgileSec 3.6 PQC detection and reporting improves the accuracy and quality of identifying cryptographic assets that may require future remediation. 

Organizations can’t create a migration strategy until they understand their current state. AgileSec helps provide that visibility. 

Improve Compliance and Audit Readiness 

Regulators, auditors, and security leaders increasingly expect organizations to understand and document their cryptographic environments. 

CBOM Export delivers improved coverage and fidelity for cryptographic inventory reporting, helping teams build stronger compliance processes and maintain better records of their cryptographic assets. 

For many organizations, understanding cryptographic risk is no longer optional. It’s becoming a business requirement. 

Make Daily Operations Easier 

Not every improvement needs to be transformational to deliver value. 

AgileSec 3.6 continues the migration to the Keyfactor design system and introduces configurable Process and Policy Schedule Settings directly within the user interface. 

These changes reduce administrative overhead and make common operational tasks easier to manage. 

Visibility Is the Foundation of Cryptographic-Agility 

Security teams can’t reduce cryptographic risk, prepare for post-quantum migration, or improve compliance without first understanding what exists across their environment. 

AgileSec 3.6 helps organizations take another step toward that goal. 

With stronger security controls, broader discovery coverage, improved enterprise scalability, and continued investment in cryptographic-agility, AgileSec gives teams the visibility and control they need to move forward with confidence. 

Because before you can secure your cryptographic assets, you have to find them.