MCP Security in the Enterprise
The Model Context Protocol (MCP) has become a foundational building block for agentic applications, enabling agents to securely discover and invoke tools.
In this workshop, you'll learn how to deploy and secure MCP servers in enterprise environments. We'll cover:
- MCP fundamentals and how agents connect to MCP servers
- Why MCP services should run as standalone processes using Streamable HTTP rather than stdio
- Securing MCP servers with OAuth and the MCP specification
- Decoupling authentication and authorization from tool implementations using a proxy architecture
- How agentgateway secures and proxies MCP servers, agents, and LLM workloads
- Enterprise SSO integration using JWTs issued by corporate Identity Providers (IdPs)
- Why enterprise JWT-based authorization is often a better fit than the specification's OAuth/OIDC model for internal services
- Emerging identity challenges, including capturing both the end-user identity and the identity of the agent acting on their behalf
- An end-to-end "On Behalf Of" scenario using agentgateway Enterprise and its Secure Token Service (STS)
By the end of the session, you'll understand how to build MCP deployments that meet enterprise requirements for security, identity, and governance.
The Model Context Protocol (MCP) has become a foundational building block for agentic applications, enabling agents to securely discover and invoke tools.
In this workshop, you'll learn how to deploy and secure MCP servers in enterprise environments. We'll cover:
- MCP fundamentals and how agents connect to MCP servers
- Why MCP services should run as standalone processes using Streamable HTTP rather than stdio
- Securing MCP servers with OAuth and the MCP specification
- Decoupling authentication and authorization from tool implementations using a proxy architecture
- How agentgateway secures and proxies MCP servers, agents, and LLM workloads
- Enterprise SSO integration using JWTs issued by corporate Identity Providers (IdPs)
- Why enterprise JWT-based authorization is often a better fit than the specification's OAuth/OIDC model for internal services
- Emerging identity challenges, including capturing both the end-user identity and the identity of the agent acting on their behalf
- An end-to-end "On Behalf Of" scenario using agentgateway Enterprise and its Secure Token Service (STS)
By the end of the session, you'll understand how to build MCP deployments that meet enterprise requirements for security, identity, and governance.
Speakers
Lin Sun
Lin is the Head of Open Source at Solo.io, contributing full-time to the open-source community. She serves on the CNCF Technical Oversight Committee (TOC), is a CNCF Ambassador, and is a maintainer for Istio, kgateway, and kagent. An international speaker at tech conferences, Lin frequently blogs about gateways, service meshes, cloud-native connectivity, AI agents, and MCP. She is the author of "Sidecar-less Istio Explained", is currently writing "AI Agents in Kubernetes", and holds more than 200 patents.
Christian Posta
Christian Posta (@christianposta) is Global Field CTO at Solo.io supporting customers and end users in their adoption of cloud-native technologies. He is an author for Manning and O’Reilly publications, open source contributor, blogger and sought after speaker on Envoy Proxy and Kubernetes technologies. Prior to Solo.io, Chrisitian was a Chief Architect at Red Hat, FuseSource and held engineering positions at organizations like Wells Fargo, Apollo Group, Intel.
