CheatSheetSeries icon indicating copy to clipboard operation
CheatSheetSeries copied to clipboard
verified publisher icon OWASP

Update: Logging Vocab - Add MCP abuse events

Open thatsjet opened this issue 5 months ago • 2 comments

<

What is missing or needs to be updated?

Add detection events for MCP server threats (ideas inspired by Enterprise-Grade Security for the Model Context Protocol (MCP): Frameworks and Mitigation Strategies - Narajala and Habler, 2025).

  • Unauthoized access attempt
  • Exploitation of functions
  • DoS
  • Client Interference Attempt (Like IDOR but but between client interactions)
  • Server

How should this be resolved?

Update to add events, required logging data, etc.

thatsjet avatar Jun 30 '25 21:06 thatsjet

Awesome Jet. Can't wait for your PR!

jmanico avatar Jul 03 '25 13:07 jmanico

Hi @thatsjet, I see you’re working on the PR—that’s awesome! If you’d like any help drafting the logging sections for the MCP abuse events, I’d be happy to collaborate.

Prasad-JB avatar Aug 12 '25 06:08 Prasad-JB