The NSA likes to say, we don’t break standards, we break implementations. In that spirit let’s look at how OAuth may perform, as implemented in current practice, for MCP.Anthropic announced Model Context Protocol (MCP) last November and it has attracted tons of attention as a simple way to plug in models, tools, and APIs. This means security teams need to pivot quickly to provide solutions for this new integration layer. On a first pass, OAuth seems a logical starting point for an identity layer...