Model Context Protocol (MCP): Landscape, Security Threats, and Future Research Directions

Hou, Xinyi; Zhao, Yanjie; Wang, Shenao; Wang, Haoyu

doi:10.1145/3796519

articleACM Transactions on Software Engineering and MethodologyFeb 16, 2026Closed access

Model Context Protocol (MCP): Landscape, Security Threats, and Future Research Directions

XHXinyi HouYZYanjie ZhaoSWShenao WangHWHaoyu Wang

Huazhong University of Science and Technology

Indexed incrossref

Abstract

The Model Context Protocol (MCP) is an emerging open standard that defines a unified, bi-directional communication and dynamic discovery protocol between AI models and external tools or resources, aiming to enhance interoperability and reduce fragmentation across diverse systems. This paper conducts a systematic study of MCP from both architectural and security perspectives. We first define the full lifecycle of an MCP server, comprising four phases (creation, deployment, operation, and maintenance), further decomposed into 16 key activities that capture its functional evolution. Building on this lifecycle analysis, we construct a comprehensive threat taxonomy that categorizes security and privacy risks across…

Citation impact

54

total citations

FWCI: 1038.07
Percentile: 100%
References: 27

Citations per year

Authors

4

XH
Xinyi HouCorresponding
Huazhong University of Science and Technology
YZ
Yanjie Zhao
Huazhong University of Science and Technology
SW
Shenao Wang
Huazhong University of Science and Technology
HW
Haoyu Wang
Huazhong University of Science and Technology

Topics & keywords

Topics

Keywords

Interoperability
Vulnerability (computing)
Context (archaeology)
Protocol (science)
Fragmentation (computing)
Vulnerability assessment
System lifecycle
Threat model

No related works found for this paper.