Zero Trust for Multi-Agent Systems // Surendra Narang | Venkata Gopi Kolla

Abstract // Don’t trust AI agents. Just because an agent is in your system doesn’t mean it should have overly permissive privileges. Restrict access. Defining a clear role for each agent from the beginning. Give each agent only the tools and information access it really needs. Monitoring of the agent's activity. Keep an eye out for odd behavior or agents that step out of line. The sooner you catch it, the easier it is to fix. Keep things safe without making them slow. Good security shouldn’t get in the way of your agents doing their job. You can have both speed and safety. Bio // Surendra Narang // I am a seasoned cybersecurity and cloud infrastructure leader with over 20 years of experience in cybersecurity, driving innovation at the intersection of AI Security, Zero Trust, and enterprise security. I currently lead advanced security initiatives at Palo Alto Networks, where I oversee the deployment of secure architectures for large-scale systems, including AI-powered infrastructure and Zero Trust models. I am the author of an upcoming book on AI Security and a regular reviewer for IEEE cybersecurity conferences for AI papers from a security perspective. My current focus includes evaluating the security and scalability of multi-agent systems (MAS), where I explore risks such as prompt injection, rogue agent behavior, data leakage, and adversarial manipulation. I am also focusing on integrating trust mechanisms, enforcing secure communication channels between agents, and deploying strict access controls to secure interactions within decentralized agent environments. Venkata Gopi Kolla // Venkata Gopi Kolla is an Edge Computing & Network Security Specialist with over a decade of experience designing and scaling distributed systems. At Salesforce, he has led major initiatives at the intersection of edge architecture, cybersecurity, and high-availability content delivery — including secure multi-CDN failover, bot protection, and authenticated caching using platforms