Start with Identity
AI Identity

Token Security

Founded 2023Tel Aviv, IsraelPrivate (VC-backed)Score 3.7/5Evaluated 2026-06-19Website ↗

Capability scores

Methodology →
Authentication
3.0
SSO & Federation
3.0
Authorization
3.5
Lifecycle & Provisioning
3.5
MFA & Passwordless
2.5
Governance & Audit
4.0
Developer Experience
3.5
Deployment Flexibility
3.0
Pricing Transparency
2.5
Support & Ecosystem
3.0

Scored 0–5 against a published rubric. Independent analysis, no vendor sponsorship.

Overview

Machine and service identities outnumber humans in most environments, and they are frequently the path attackers actually use. Token Security focuses on this non-human identity (NHI) problem, building a unified inventory of service accounts, secrets, workloads, and AI agents, then mapping their access and risk. Founded in 2023 in Tel Aviv, it frames itself around a machine-first identity security model. It is an early-stage entrant in a forming category.

What it is good at

Token Security's value is in consolidating fragmented NHI data into one inventory with ownership, usage, and risk context, which makes cleanup and least-privilege work tractable. Governance and audit are the strongest areas, with growing coverage for AI agents. For teams that want a single machine-first view across cloud, SaaS, and on-prem rather than separate tools per environment, the unified inventory is the appeal.

Where it falls short

Weaknesses follow from being young: it is not an IdP, so authentication and MFA sit outside the core, runtime issuance and rotation are limited compared with secrets-management tools, and the reference base is small. The NHI space is still forming, so expect rapid roadmap changes and treat the product as a discovery and governance overlay rather than an enforcement control plane.

Pricing

No public pricing. Enterprise subscription scoped by environment and connectors, sold through a sales-led motion with a proof of concept. Model identity counts with the TCO calculator.

Best for, and who should look elsewhere

A fit for teams wanting a machine-identity-centric view across cloud, SaaS, and on-prem, and organizations preparing early for AI agent identity governance. Look elsewhere if you need a mature product with a long reference base, or want runtime credential issuance and rotation as the primary feature (see Aembit). Compare with Astrix Security, Oasis Security, and the AI identity category.

Bottom line

A credible early entrant for organizations that want machine and AI agent identity visibility now. Verify maturity against your specific environments before standardizing on it.

By SWI Community Team · Last evaluated 2026-06-19

Independent, community-driven analysis. No vendor sponsorship. Compiled from public research and community input and verified on a best-effort basis, so details may be incomplete or out of date. Scores are opinions, not advice. Trademarks belong to their owners; mention does not imply affiliation or endorsement. See the full disclaimer, or send corrections to community@startwithidentity.com.