Bringing Strong Authentication and Granular Authorization for GenAI - Dan Moore - ASW #369
10 February - 1 hour 9 minsWhen it comes to agents and MCPs, the interesting security discussion isn't that they need strong authentication and authorization, but what that authn/z story should look like, where does it get implemented, and who implements it. Dan Moore shares the useful parallels in securing APIs that should be brought into the world of MCPs -- especially because so many are still interacting with APIs.
Resources
https://stackoverflow.blog/2026/01/21/is-that-allowed-authentication-and-authorization-in-model-context-protocol/ https://fusionauth.io/articles/identity-basics/authorization-models Visit https://www.securityweekly.com/asw for all the latest episodes!
Show Notes: https://securityweek...
Series Episodes
Iran vs Everyone: 2FA-Bypass Phish, APT41 Drive, iOS 0days, Josh Marpet, and More - SWN #561
36 mins
6 March Finished
Building Trusted Automation as Leaders Struggle with AI Adoption and CISOs Hire - Tim Morris - BSW #437
1 hour 7 mins
4 March Finished
North Korea, DOJ, APT 28, Anthropic, OpenClaw, Supply Chain, Josh Marpet, and More - SWN #560
32 mins
3 March Finished
Modern AppSec that keeps pace with AI development - James Wickett - ASW #372
47 mins
3 March Finished
OT Security/business resilience, lack of incentives for securing software & the news - Ben Worthy - ESW #448
1 hour 54 mins
2 March Finished
