Generative AI

Indima ye-Model Contection Protection (MCP) ekuvikeleni kwe-AI ruderative kanye nokuhlanganiswa okubomvu

Photo of nimda nimda Send an email October 1, 2025
0 3 5 minutes read
Indima ye-Model Contection Protection (MCP) ekuvikeleni kwe-AI ruderative kanye nokuhlanganiswa okubomvu

Ukucubungula

I-Model Contector Protocol (MCP) iyindinganiso evulekile, esuselwa ku-JSON-RPC ehlelekile ngayo ukuthi amaklayenti we-AI (abasizi, owukuthola, ama-web, izinhlelo zokusebenza zewebhu) xhuma amaseva kudalula ama-primitives amathathu-amathuluzi, izinsizakusebenzafuthi kushukumisa–Ngokuchazwa okuchaziwe (ngokuyinhloko isisebenzi esikhulu Kwasendaweni futhi I-HTTP ephelele okukude). Inani le-MCP lomsebenzi wokuphepha ukuthi linikezela ngokusebenzisana kwe-ejenti / ithuluzi le-Agents Expressional futhi avikelekile, ngezidingo ezijwayelekile ezizungeze ukugunyazwa ukuthi amaqembu angaqinisekisa kwikhodi nasezihlolweni. Ekusebenzeni, lokhu kunika amandla aqine Ukulawulwa kwe-Blast-radius Ukusetshenziswa kwamathuluzi, okuphindaphindekayo Izimo zeqembu elibomvu Emingceleni ecacile yokuthemba, futhi inqubomgomo enokulinganiswa--Sebenzisa Izinhlangano ziphathisa amaseva we-MCP njengezixhumi ezifanelekile ngokuya ngokuhlolwa kwe-Supply-chain.

Yini i-MCP emile?

Iseva ye-MCP ishicilela: (1) amathuluzi (Izenzo ze-Schema-Typered ezithandana yimodeli), (2) izinsizakusebenza (Izinto ezifundekayo zedatha Iklayenti lingalanda futhi lifake njengesimo somongo), kanye (3) kushukumisa (Reusable, izifanekiso zemiyalezo emaphaketheni, ngokujwayelekile umsebenzisi). Ukwehlukanisa lezi zindawo ezihlukaniswayo kucacisa ukuthi ngubani “olawula” onqenqemeni ngalunye Lezo zindima zibalulekile ekusongeleni umonga, isib

Zithutha. I-Spec ichaza izithuthi ezimbili ezijwayelekile-isisebenzi esikhulu (Okokufaka okujwayelekile / okukhipha) futhi I-HTTP ephelele-Aseqabuel egumbini lezinye izindlela eziphithizelayo. I-STDIO yendawo inciphisa ukuvezwa kwenethiwekhi; I-HTTP elondoloziwe ifanelana neklayenti lamakhasimende amaningi noma wewebhu futhi isekela ukusakazwa okusebenzayo. Phatha ukukhetha kwezokuthutha njengokulawulwa kwezokuphepha: cindezela inethiwekhi egress yamaseva endawo, futhi usebenzise i-Web Authorn / Z kanye nokungena ngemvume okukude.

🚨 [Recommended Read] I-Vipe (i-Video Pose Pose): Ithuluzi elinamandla futhi elinamandla le-video 3D levidiyo ye-AI

Iklayenti / i-Server Lifecycle kanye nokutholwa. I-MCP ngokusemthethweni ukuthi amaklayenti athola kanjani amakhono weseva (amathuluzi / izinsiza / ama-Prompts), amaseshini axoxisanayo, nemiyalezo yokushintshana. Lokho kufana yikho okuvumela amaqembu ezokuphepha ukuba angenise ukugeleza, athwebule izingodo ezihlelekile, futhi agodle pre / postconditions ngaphandle kwe-bespoke adaple ngokuhlanganiswa ngakunye.

Izilawuli Zokugunyazwa Okujwayelekile

Le khasi Ukugunyaza Indlela inemininingwane ehlelwe ngendlela engafani ne-protocol yokuhlanganisa futhi kufanele iphoqelelwe kanjena:

  • AKUKHO PASTREN. “Iseva ye-MCP Akumele Dlulisela ithokheni etholwe kwiklayenti le-MCP. ” Amaseva yi-OAuth 2.1 Amaseva Ezinsizakusebenza; Amakhasimende athola amathokheni avela kuseva yokugunyazwa esebenzisa Izinkomba zensiza ye-RFC 8707 ngakho-ke amathokheni athembekile kwiseva ehlosiwe. Lokhu kuvimbela izindlela ezididekile ezididekile futhi zigcina izilawuli zokucwaninga / zokukhawulelwa kwe-Upstream.
  • Izithameli ezibophayo kanye nokuqinisekiswa. Amaseva Kumele iqinisekise Ukuthi izilaleli zethokheni zokufinyelela zihambelana ngokwazo (izinsiza ezibophayo) ngaphambi kokusebenzela isicelo. Ngokusebenza, lokhu kuvimba ithokheni efakwe amaklayenti nge “Service A” ukuthi iphinde ihlelwe ku- “Service B.” Amaqembu abomvu kufanele afake izinketho ezicacile zale modi yokwehluleka.

Lona umnyombo wesakhiwo sezokuphepha se-MCP: Amandla asemodeli anamandla, kepha uProtocol ugcizelela ukuthi amaseva abe ekilasini lokuqala othishanhloko Ngobufakazi babo, izingophu, kanye namalogi-kunokuba kudlule i-Opaque Pass-passs yethokheni yomhlaba jikelele.

Lapho i-MCP isekela ubunjiniyela bezokuphepha ekusebenzeni?

Sula Imingcele Yethemba. Unqenqemeni lwekhasimende lwekhasimende lungumngcele ocacile, ohlolayo. Unganamathisela imvume ye-UIS, ukukhushulwa kwesilinganiso, nokungena ngemvume okuhlelekile kulowo onqenqemeni. Ukusetshenziswa okuningi kwamakhasimende okuvumelekile okuvusa amathuluzi / izinsizakusebenza zeseva ngaphambi kokuzenza zikwazi ukusebenziseka ngelungelo lokuthola futhi elicwaningwayo – noma ngabe i-UX ayicaciswanga ngeZinga.

Okuqukethwe kanye nelungelo elincane. Ngoba iseva ithishanhloko ehlukile, ungaphoqelela imishini emincane ye-Upstream. Isibonelo, iseva yemfihlo-broker ingafakazela ubuqiniso obufushane futhi iveze amathuluzi aphoqelekile kuphela (isib. Amaseva e-MCP ase-Public avela kwabathengisi bezokuphepha abonisa le modeli.

Izindawo zokuhlasela ezinqumayo zokuhlangana okubomvu. Ngama-schemas wamathuluzi athayiphekile nezinto zokuhamba eziphindwe kabili, amaqembu abomvu angakha ukuhlela Lokho kulingisa okokufaka okuphikisana nabemingcele yamathuluzi futhi kuqinisekise imibandela yokuthumela kuwo wonke amamodeli / amaklayenti. Lokhu kuvuselela izivivinyo ezenziwe kabusha zamakilasi okuhluleka okufana nomjovo osheshayo, ukuphatha okuphumayo, nokuhlukunyezwa okuthe xaxa. Hlanganisa lezo zivivinyo ngamatekisi aqashelwayo.

Isifundo secala: iseva yokuqala ye-MCP enonya

Ngasekupheleni kukaSepthemba 2025, abacwaningi badalula a ITrojanized postmark-mcp Iphakheji ye-NPM Lokho kwazenzela i-imeyili ye-imeyili ye-imeyili ye-MCP. Ukuqala nge v1.0.16kwakha buthule buthule BCC-exfiltrated Yonke i-imeyili ithunyelwe ngayo ekhelini elilawulwa umhlaseli / isizinda. Iphakheji ngemuva kwalokho yasuswa, kepha ukuholwa kunxuse ukukhipha inguqulo ethintekile kanye neziqinisekiso ezijikelezayo. Lokhu kubonakala kungokokuqala okubhalwe phansi obala Iseva ye-MCP enonya endlefuthi kugcizelela ukuthi amaseva e-MCP avame ukugijima ngokuthembela okuphezulu futhi kufanele afakwe nenguqulo efana nanoma yisiphi isixhumi esihle.

Ukudla okusebenzayo:

  • Gcina i vumela yamaseva agunyaziwe kanye nezinhlobo ze-PIN / Hashes.
  • Ntula Ikhodi (Ukukhishwa okusayiniwe, ama-SBOMS) amaseva okukhiqiza.
  • Gada amaphethini we-aromalous egress ehambisana ne-BCC Exfiltration.
  • Jwayeza Ukujikeleza okuqinisekisiwe Futhi “inqwaba inqamula” ukushayela “ukuhlanganiswa kwe-MCP.

Lokhu akuyona izilawuli zethiyori; Umthelela wesigameko wageleza ngokuqondile kwikhodi yeseva ethembekile ekusebenzeni komqeqeshi ojwayelekile.

Usebenzisa i-MCP ukuhlela izivivinyo zeqembu elibomvu

1) I-Prot-umjovo kanye nokukhipha okungaphephile komngcele wamathuluzi. Yakha iCorporacrial Corpora efaka nge-via izinsizakusebenza (umongo olawulwa ngohlelo lokusebenza) futhi uzame ukuphoqa izingcingo kumathuluzi ayingozi. Sinisela ukuthi iklayenti le-sanitizes lifaka okuphumayo kanye nalezo zimo zokuthumela zeseva (isb., Amagama avunyelwe, izindlela zefayela) abamba. Ukutholwa kwemephu ku- I-LLM01 (Umjovo osheshayo) futhi I-LLM02 (Ukuphatha okuphumayo).

2) Iphini elididekile-amathuba okusebenzisa kabi ithokheni. Imisebenzi yezandla ezama ukunxenxa iseva ukuthi isebenzise a Kukhishwe amakhasimende ithokheni noma ukubiza izithameli ezingahlosiwe ezingahlosiwe. Iseva ethobekayo kufanele yenqabe amathokheni ezithameli zakwamanye amazwe ngokugunyazwa okucacisiwe. amaklayenti kumele acele amathokhemeli alungile nge Isisetshenziswa se-RFC 8707. Phatha noma iyiphi impumelelo lapha njenge-P1.

3) Iseshini / ukusakazwa kabusha. Ukuze uthole izinto zokuhamba ezikude / ukuqalisa kabusha / ukuqalisa kabusha kugeleza kanye ne-concurrency ye-multi-Client yokulungiswa kweseshini / ubungozi bokuduna. Qinisekisa i-ID yesikhathi esingeyona eyemishini kanye nokuphelelwa yisikhathi okusheshayo / ukujikeleza ekuthumelweni okulinganiselwe komthwalo. (I-HTTP evuselelwayo isekela ukuxhumeka okusebenzayo; yisebenzise ukugcizelela imodeli yakho yeseshini.)

4) Ukushayela kwe-Supply-chain-chain drill. Kwelebhu, faka iseva ye-Trojane (nge-Benign Markers) bese uqinisekisa ukuthi ngabe amasheya akho, amasheke okusayina, kanye nokutholwa kwe-egress kutholakale kutholakale izigameko ze-Paltmarmark TTPs. Kala isikhathi sokuthola nokujikeleza okuqinisekisiwe mntr.

5) Isisekelo esinamaseva athembekile omphakathi. Sebenzisa amaseva afundwayo ukwakha imisebenzi enqumayo. Izibonelo ezimbili ezisebenzayo: Idatha yedatha ye-Google MCP kudalula imininingwane yomphakathi ngaphansi kwe-schema ezinzile (okuhle kwemisebenzi esekwe eqinisweni / yokuphindaphinda), futhi I-DELINEA's MCP Ibonisa izimfihlo ezinamalungelo okungenani ukuthengiswa kwezindawo zokusebenza kwama-ejenti. Lezi yizinto ezinhle kakhulu zokuphindaphinda kwe-jailbreak okuphindaphindekayo kanye nokuhlolwa kwenqubomgomo.

Uhlu lokuhlola olugxile ekusetshenzisweni okuqinile kokuphepha

Uhlangothi lwekhasimende

  • Khombisa i Umyalo Oqondile noma ukucushwa okusetshenziselwa ukuqala amaseva wendawo; Ukuqalisa kwesango ngemuva kwemvume yomsebenzisi ocacile futhi unikeze amandla amathuluzi / izinsiza zinikwe amandla. Phakathi nokuvunyelwa nge-scope grasurarity. (Lokhu kungukusebenza okujwayelekile kumakhasimende afana ne-Claude Desktop.)
  • Gcina i vumela yamaseva anezinguqulo nezinhloli eziphikiwe; Donsa amaseva angaziwa ngokuzenzakalelayo.
  • Ugodo Onke amathuluzi abiza (igama, ama-regarmaltal Metadata, uthishanhloko, isinqumo) kanye Isisetshenziswa sokulanda Ngezikhombi ukuze ukwazi ukwakha kabusha izindlela zokuhlasela ngemuva kwe-Hoc.

Side

  • Sebenzisa i-OAuth 2.1 iseva ye-Resource isimilo; ukuqinisekisa amathokheni nezithameli; naphakade phambili amathokheni akhishwe amaklayenti akhishwe phezulu.
  • Nciphisa izici; qoka iziqinisekiso ezihlala zifushane kanye namakhono afaka inqubomgomo (isib. Ukulanda “Imfihlo ngelebula” esikhundleni sokufundwa kwamafomu mahhala).
  • Okokuphakelwa kwasendaweni, ukukhetha isisebenzi esikhulu ngaphakathi kwesitsha / i-sandbox kanye nokukhawulela amakhono we-videsystem / wenethiwekhi; Ukuze uthole kude, sebenzisa I-HTTP ephelele Nge-TLS, imikhawulo yokulinganisa, nezingodo ezihlelekile zokucwaningwa kwamabhuku.

Ukutholwa nokuphendula

  • Isaziso nge-anomalous server egress (izindawo ezingalindelekile, amaphethini we-imeyili BCC) kanye namandla angazelelwe ashintsha phakathi kwezinguqulo.
  • Lungiselela ikhefu-ingilazi I-automation yokuvuselela ukuvunyelwa kwamakhasimende futhi ujikeleze izimfihlo ezikhuphukayo ngokushesha lapho iseva ibukwe (i- “dissNonnect” yakho & ukujikeleza “i-runbook). Isigameko sebhadimark sikhombisile ukuthi kungani isikhathi sibalulekile.

Ukuqondanisa kokubusa

Ukuhlukaniswa kukaMcP kokukhathazeka – amaklayenti njenge-Orchestrators, amaseva njengothishanhloko abahleliwe abanamakhono athayishiwe-aqondanisa ngqo I-AI RMF ye-NIst Isiqondiso Sokulawula Ukufinyelela, Ukungena ngemvume, kanye nokuhlola kweqembu elibomvu kwezinhlelo zokwakha, kanye I-OWASP's LLM ephezulu-10 Ukugcizelela ekunciphiseni umjovo osheshayo, ukuphathwa kokuphuma okungaphephile, kanye nobungozi bokuhlinzekwa kwezidingo. Sebenzisa lezo zinhlaka ukuze uqinisekise izilawuli ekubuyekezweni kwezokuphepha nasezindleleni zokwamukelwa kwe-anchor zokuhlanganiswa kwe-MCP.

Ukwemukelwa kwamanje Ungavivinya ngokumelene

  • I-Anthropic / Claude: Amadokhumenti Womkhiqizo kanye ne-Ecosystem Material State MCP njengoba indlela iClaude ixhumeka kumathuluzi angaphandle nedatha; Ama-tutorials amaningi omphakathi alandela eduze imodeli ka-Specritive Primitive. Lokhu kuhlinzeka ngezindawo zeklayenti ezenziwe ngomumo zokuthola imvume nokungena ngemvume.
  • Idatha yedatha ye-Google MCP: Kukhishwe Septhemba 24, 2025ifanekisela ukufinyelela kuma-datasets omphakathi; Isimemezelo saso nokulandela kwayo okuthunyelwe kufaka phakathi amanothi wokusebenzisa wokukhiqiza (isib., i-ejenti yedatha eyodwa). Iwusizo njengoMthombo Weqiniso “oqinile” emisebenzini ebomvu yeqembu.
  • Delinea MCP: Iseva yomthombo ovulekile ihlanganisa neseva eyimfihlo kanye neplatifomu ye-Delinea, ukugcizelela ukufinyelela okuyimfihlo kwenqubomgomo kanye nokuhlangana kwe-OAuth action nge-MCP Authorization spec. Isibonelo esisebenzayo sokuvezwa kwamathuluzi okulula.

Ukubeka kafushane

I-MCP -I Umkhiqizo wokuphepha we-Silver-Bullet “.” Kungukuthi umthetho olandelisayo lokho kunikeza ochwepheshe bezokuphepha nababomvu-weqembu izinkambo ezizinzile, ezisebenzayo: Amathokheni aboshwe abezilaleli, imingcele yeklayenti ecacile, ama-Schem athayishiwe, nezinto zokuhamba ongazisebenzisa. Sebenzisa lawo ma-levers ku- (1) ukuphoqa Yini ama-ejenti angenza, (2) phawula empeleni abakwenzile, futhi (3) buphazamisa Izimo eziphikisanayo ngokuthembekile. Phatha amaseva we-MCP njengezixhumi ezinamalungelo – i-vet, i-PIN, futhi uyiqaphe – ngoba izitha zezeluleko sezivele zenza. Ngaleyo ndlela esendaweni, i-MCP iba ​​yisisekelo esisebenzayo sosizo lwe-agentic kanye ne-substrate ethembekile yokuhlola iqembu elibomvu.

Izinsiza ezisetshenziswe ku-athikili

Ukucaciswa kwe-MCP nemiqondo

I-MCP Ecosystem (esemthethweni)

Izindlela Zokuphepha

Isigameko: Enonya postmark-mcp iseva

Isibonelo amaseva we-MCP abhekiselwe


UMichal Sutter ungumsebenzi wesayensi yedatha ene-Master of Science ku-Data Science evela e-University of PADOVA. Ngesisekelo esiqinile ekuhlaziyeni kwezibalo, ukufunda ngomshini, kanye nobunjiniyela bedatha, ama-Mikhali ama-Excels ekuguquleni imininingwane eyinkimbinkimbi ekutholeni okusebenzayo.

🔥[Recommended Read] I-NVIDIA AI Open-Spoces Vipe (Injini Yevidiyo Yevidiyo): Ithuluzi elinamandla futhi elinamandla lokufaka isichasiselo se-3D se-Spatial Ai

Source link

Photo of nimda nimda Send an email October 1, 2025
0 3 5 minutes read
Photo of nimda

nimda

Related Articles

Meta FAIR Releases NeuralSet: A Python Package for Neuro-AI Supporting fMRI, M/EEG, Spikes, and HuggingFace Embeddings

Meta FAIR Releases NeuralSet: A Python Package for Neuro-AI Supporting fMRI, M/EEG, Spikes, and HuggingFace Embeddings

6 hours ago
Implementation of Coding in Document Parse Benchmarking with LlamaIndex ParseBench Using Python, Face Hugs, and Test Benchmarks

Implementation of Coding in Document Parse Benchmarking with LlamaIndex ParseBench Using Python, Face Hugs, and Test Benchmarks

6 hours ago
Poolside AI Introduces Laguna XS.2 and M.1: Agentic Code Models Up to 68.2% and 72.5% in SWE-bench Verified

Poolside AI Introduces Laguna XS.2 and M.1: Agentic Code Models Up to 68.2% and 72.5% in SWE-bench Verified

8 hours ago
Amamodeli we-AI aphezulu ayi-10 Anika Amandla Amarobhothi Omhlaba Wangempela ngo-2026

Amamodeli we-AI aphezulu ayi-10 Anika Amandla Amarobhothi Omhlaba Wangempela ngo-2026

1 day ago

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button