MCP and Protocols

MCP Security

The Model Context Protocol (MCP) creates a standardized channel through which language models can invoke external actions, making it both a useful integration layer and a potential attack surface that requires deliberate hardening. Key security concerns include transport security (encrypting and authenticating messages between clients and servers), input validation (preventing prompt injection attacks that could trick the model into invoking dangerous tools), and capability scoping (ensuring servers expose only the minimum capabilities each use case requires). The protocol's trust model places critical responsibility on the client application, which must evaluate tool call requests from the model and decide whether to execute them, often requiring human approval for destructive operations.

subtopics

MCP Auth Patterns

MCP Threat Model

connected to

Prompt Injection Permission Models

resources

MCP: Securitymodelcontextprotocol.ioSecurity considerations in the MCP transport layer (modelcontextprotocol.io)MCP Specification: Securitymodelcontextprotocol.ioFormal security requirements in the MCP specification (modelcontextprotocol.io)Anthropic: MCP Best Practicesdocs.anthropic.comSecurity guidance for MCP implementations from Anthropic (docs.anthropic.com)OWASP LLM Top 10genai.owasp.orgSecurity risks relevant to LLM applications including MCP-enabled systems (genai.owasp.org)

view in track