Loading…
June 14-15, 2026
Mumbai, India
View More Details & Registration

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for MCP Dev Summit Mumbai to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration..

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.
← Back to schedule
OAuth Isn't Enough: Confused Deputy in Multi-Agent MCP Pipeline - Sankalp Sandeep Paranjpe, Big4 Consulting Firm; Vishal Alhat, AWS
Sunday June 14, 2026 4:10pm - 4:35pm IST
Lotus 1
OAuth-based authentication is becoming the default foundation for MCP-enabled systems. However, while authentication is standardized, authorization across agent boundaries remains unresolved.

In multi-agent MCP pipelines, orchestrators delegate tasks to sub-agents that act using the user’s authority. This creates a classic confused deputy problem: a sub-agent executes with valid credentials, but under the influence of untrusted inputs such as prompt injections or malicious tool manifests. As a result, it can access or exfiltrate data beyond the user’s original intent.

This talk demonstrates how privilege propagation, not authentication failure, is the core risk.

I will present a three-layer enforcement model:

1) Token attenuation using RFC 8693 to restrict sub-agent privileges at delegation time
2) Policy enforcement using Open Policy Agent to treat every tool call as untrusted input
3) Structured audit trails to ensure post-incident analysis

Live demo: the same MCP pipeline executed twice, first with default delegation (resulting in silent data exfiltration via prompt injection), and then with all three controls applied, where the attack is blocked, logged, and auditable.
Speakers
avatar for Vishal Alhat

Vishal Alhat

Developer Advocate, AWS

Vishal Alhat is a Developer Advocate at Amazon Web Services (AWS) and a former AWS Hero, recognized for his significant contributions to the AWS community. With 11+ years of experience in cloud technologies, Vishal specializes in DevOps, cloud security, and AI/ML.As an active community... Read More →
avatar for Sankalp Sandeep Paranjpe

Sankalp Sandeep Paranjpe

Cloud Security Consultant, '-
Sankalp Sandeep Paranjpe is a DevSecOps Engineer and cloud security practitioner. He speaks at community and security events on practical DevSecOps and Kubernetes security topics. He volunteers with AWS User Group Pune and contributes to the cloud-native community through talks, workshops... Read More →
Sunday June 14, 2026 4:10pm - 4:35pm IST
Lotus 1
  Security, Identity + Trust

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share

Get help with the event

Contact event planner Event login
View support guides Find upcoming events
Create an event you'd love to attend!
Explore why organizers choose Sched Success stories
Event App Event scheduling Event registration Event ticketing Sched forms Call for papers Badges Conferences
© 2026. SCHED LLC - All rights reserved - Helping events since 2008
Conference Scheduling App Privacy Terms
Share Modal

Share this link via

Or copy link