INSIGHTS
Insights.
Essays on the technical and procurement realities of selling AI products into regulated industries. No thought-leadership filler. Each piece is built around a primitive or a decision.
The MCP Connectivity Problem
Why connecting AI providers to customer data is the bottleneck for AI in regulated industries — and why none of the existing options solve it cleanly.
MAY 7, 2026Why outbound-only beats site-to-site VPN
The architectural case for removing inbound exposure as the dominant design decision in operator-to-customer connectivity. A defense of the outbound-only stance.
MAY 6, 2026Workload identity vs. network identity
Why "the IP I'm on" is not an identity, and what an identity bound to a workload looks like in practice. A defense of SPIFFE-style workload identity for operator-to-customer connectivity.
MAY 5, 2026What a procurement-friendly architecture review looks like
Practical guide for AI vendors entering regulated procurement processes — the artifacts, the mappings, and the answers customer-side security reviewers expect.