Experts discuss the rise of LLMjacking, where stolen AI API keys lead to massive financial losses. They explore how AI is reshaping adversary simulations, the enduring need for human expertise in the loop, and the debate over accelerating security patch timelines in the face of AI-powered threats.
Lenses.io experts Tun Shwe and Jeremy Frenay discuss the significant security and design hurdles in transitioning Model Context Protocol (MCP) servers from local development to enterprise production. They introduce five core principles for secure agentic design, including shrinking the attack surface and constraining inputs, and detail the necessity of remote MCP servers with robust authentication. The talk provides an in-depth comparison of OAuth 2.1's Dynamic Client Registration (DCR) and the more secure Client ID Metadata Document (CIMD) approaches for managing agent identities, offering a roadmap for building enterprise-grade agentic AI systems with MCP.