Making OAuth Scale Securely for MCPs - Aaron Parecki - ASW #360
Failed to add items
Sorry, we are unable to add the item because your shopping basket is already at capacity.
Add to cart failed.
Please try again later
Add to wishlist failed.
Please try again later
Remove from wishlist failed.
Please try again later
Follow podcast failed
Unfollow podcast failed
Making OAuth Scale Securely for MCPs - Aaron Parecki - ASW #360
-
Narrated by:
-
Written by:
About this listen
The MCP standard gave rise to dreams of interconnected agents and nightmares of what those interconnected agents would do with unfettered access to APIs, data, and local systems. Aaron Parecki explains how OAuth's new Client ID Metadata Documents spec provides more security for MCPs and the reasons why the behavior and design of MCPs required a new spec like this.
Segment resources:
- https://aaronparecki.com/2025/11/25/1/mcp-authorization-spec-update
- https://www.ietf.org/archive/id/draft-ietf-oauth-client-id-metadata-document-00.html
- https://oauth.net/cross-app-access/
- https://oauth.net/2/oauth-best-practice/
Visit https://www.securityweekly.com/asw for all the latest episodes!
Show Notes: https://securityweekly.com/asw-360
No reviews yet