MCP Dev Summit Seoul 2026

Model Context Protocol (MCP) is quickly becoming a core interface layer for AI agents, yet many teams still secure MCP servers as if they were ordinary APIs. This session provides a practical guide for building and operating secure MCP servers in production.

I will translate key security principles into concrete engineering decisions: secure local vs. remote MCP architectures, trusted tool onboarding, signed manifests, schema-based input and output validation, prompt injection controls, OAuth 2.1 / OIDC-based authentication, centralized policy enforcement, hardened deployment, audit logging, and continuous validation.

The goal is not theory, but an actionable security baseline that developers, architects, and platform teams can apply immediately. Attendees will leave with a pragmatic minimum bar and review checklist for MCP server development that helps reduce avoidable security failures, improve trust between clients and servers, and strengthen the security posture of the growing MCP ecosystem.