Gateways are All You Need — Karan Sampath, Anthropic

AI Engineer · Beginner ·🔧 Backend Engineering ·1w ago

Skills: Security Basics80%API Design70%

MCPs are often flaky, face multiple security vulnerabilities, and are generally hard to scale. Most enterprises struggle to use more than single digit numbers of MCPs due to issues with security, observability, and access control. In this talk, we'll explore the approaches and learnings we at Anthropic have been taking to solve this, and make MCPs more enterprise ready. Speaker info: - https://x.com/karan_sampath - https://www.linkedin.com/in/karansampath/ - https://github.com/karansampath Timestamps: 00:00:14 - Introduction: Enterprise MCP challenges. 00:01:13 - Enterprise Hurdles: Observability, access control, and security (the "three-headed hydra"). 00:03:35 - Deployment Bottlenecks: Scalability limits of current decentralized models. 00:05:35 - The Case for Gateways: Establishing a unified "root of trust." 00:07:00 - Gateway Definition: A middleware layer for auth, proxying, and routing. 00:08:28 - Core Components: Implementing OAuth, tunnels, and developer CLIs. 00:10:03 - Strategic Benefits: Improved authentication and standardized access control. 00:11:30 - Operational Gains: Multi-surface integration, security, and faster iteration. 00:15:13 - Future Vision: Decoupling agent architecture from data layers. 00:16:58 - Summary: Invest in common infrastructure to scale enterprise agents.

Watch on YouTube ↗ (saves to browser)

Sign in to unlock AI tutor explanation · ⚡30

More on: Security Basics

View skill →

HackTheBox - Analytics

HackTheBox - Analytics

AWS Security Agent (Preview) Overview - Frontier Agent for Proactive AppSec | Amazon Web Services

AWS Security Agent (Preview) Overview - Frontier Agent for Proactive AppSec | Amazon Web Services

Amazon Web Services

HOW FRCKN' HARD IS IT TO UNDERSTAND A URL?! - uXSS CVE-2018-6128

HOW FRCKN' HARD IS IT TO UNDERSTAND A URL?! - uXSS CVE-2018-6128

Secure Hash Algorithms Using Python- SHA256,SHA384,SHA224,SHA512,SHA1- Hashing In BlockChain

Secure Hash Algorithms Using Python- SHA256,SHA384,SHA224,SHA512,SHA1- Hashing In BlockChain

Bruteforce 32bit Stack Cookie. stack0: part 3 - bin 0x23

Bruteforce 32bit Stack Cookie. stack0: part 3 - bin 0x23

Configure and Deploy AWS Client VPN

Configure and Deploy AWS Client VPN

Related AI Lessons

`setTimeout()` Is NOT Part of JavaScript

Learn why setTimeout() is not a part of JavaScript and how it's actually a part of the Web APIs, with implications for coding and understanding browser behavior

Dev.to · CodeWithIshwar

Installing Node.js and npm on Ubuntu 26.04

Learn to install the latest Node.js and npm on Ubuntu 26.04, bypassing the outdated default version

Dev.to · Sanskriti Harmukh

How to Modernize a Node.js Backend Without Rewriting It (Using Zuplo)

Learn how to modernize a Node.js backend without rewriting it using Zuplo, improving performance and scalability

Dev.to · Chidera Humphrey

Firebase for Startups: When to Switch to Enterprise Solutions

Learn when to switch from Firebase to enterprise solutions for your startup, and how to navigate the 300-500% yearly cost increase

Dev.to · Horizon Dev

Chapters (10)

0:14 Introduction: Enterprise MCP challenges.

1:13 Enterprise Hurdles: Observability, access control, and security (the "three-he

3:35 Deployment Bottlenecks: Scalability limits of current decentralized models.

5:35 The Case for Gateways: Establishing a unified "root of trust."

7:00 Gateway Definition: A middleware layer for auth, proxying, and routing.

8:28 Core Components: Implementing OAuth, tunnels, and developer CLIs.

10:03 Strategic Benefits: Improved authentication and standardized access control.

11:30 Operational Gains: Multi-surface integration, security, and faster iteration.

15:13 Future Vision: Decoupling agent architecture from data layers.

16:58 Summary: Invest in common infrastructure to scale enterprise agents.

Lovable AI + Kling 3.0 + Cookiebot = INSANE AI 3D Websites in Minutes (GDPR Ready)