|
| 1 | +# Personas |
| 2 | + |
| 3 | +**AI Engineer**: A hands-on builder focused on the end-to-end development, deployment, and optimization of AI agents. They are distinct from ML Researchers and ML Engineers; AI Engineers are product-first, operating on the other side of the LLM Inference Serving API, and are not responsible for training, tuning, or deploying the models themselves. |
| 4 | + |
| 5 | +**Platform Engineer**: A builder and operator of the foundational platform (e.g. the provider of ingress/egress Gateways for the cluster). |
| 6 | + |
| 7 | +**AI Platform Engineer**: A builder and operator that leverages the foundational platform and builds layers on top that enable AI engineers to develop and deploy agents at scale. |
| 8 | + |
| 9 | +**AI Security Engineer**: A specialist focused on designing safeguards to ensure AI agents operate safely and securely. |
| 10 | + |
| 11 | +**Application Developer**: A builder that is primarily focused on traditional APIs / applications but also surfaces functionality to agents using MCP. |
| 12 | + |
| 13 | +**Tool Developer**: A builder focused on developing MCP tools that can be leveraged by agents. |
| 14 | + |
| 15 | +# CUJs |
| 16 | + |
| 17 | +## Agent Identity |
| 18 | + |
| 19 | +As an AI Engineer, I want to assign a unique, verifiable identity to my agent running in Kubernetes, so that gateways or external systems can securely authenticate it and make authorization decisions. |
| 20 | + |
| 21 | +## Protocol-Aware Authorization |
| 22 | + |
| 23 | +As an AI Platform Engineer, I want to: |
| 24 | + |
| 25 | +* Deny any traffic coming from Agents to MCP servers & other Agents by default |
| 26 | + |
| 27 | +* Allow agents to connect to specific, defined sets of MCP servers (e.g. "toolsets", "virtual service") |
| 28 | + |
| 29 | +* Allow agents to use specific tools |
| 30 | + |
| 31 | +* Allow agents to use specific tools from specific MCP servers |
| 32 | + |
| 33 | +* Control whether access to tools is read, write or both |
| 34 | + |
| 35 | +## Observability |
| 36 | + |
| 37 | +As an AI Engineer I want to: |
| 38 | + |
| 39 | +* Understand why my agent is getting denied when calling a certain tool |
| 40 | + |
| 41 | +As an AI Platform Engineer I want to: |
| 42 | + |
| 43 | +* Have an aggregated way of seeing failures/denials across the platform |
| 44 | + |
| 45 | +## Security |
| 46 | + |
| 47 | +As an AI Security Engineer I want to: |
| 48 | + |
| 49 | +* Develop MCP guardrails for pre-request filtering to prevent attacks such as prompt injection. |
| 50 | + |
| 51 | +* Develop MCP guardrails for post-response filtering to prevent data breaches. |
0 commit comments