{"podcast":{"title":"Application Security Weekly (Audio)","slug":"application-security-weekly-audio-436682","podcast_index_feed_id":436682,"rss_url":"https://aswaudio.libsyn.com/rss","website_url":"https://securityweekly.com/asw","image_url":"https://static.libsyn.com/p/assets/0/a/1/5/0a15d1d27c1a4bbc27a2322813b393ee/ASW_Cover_1920x1920-20240930-x3a3ohx73b.png","author":"Security Weekly Productions","episode_count":398,"summary":"About all things AppSec, DevOps, and DevSecOps. Hosted by Mike Shema and John Kinsella, the podcast focuses on helping its audience find and fix software flaws effectively.","last_synced_at":null,"page_url":"https://stenobird.com/podcast/application-security-weekly-audio-436682"},"episode":{"title":"Bringing Strong Authentication and Granular Authorization for GenAI - Dan Moore - ASW #369","slug":"bringing-strong-authentication-and-granular-authorization-for-genai-dan-moore-asw-369","published_at":"2026-02-10T10:00:00+00:00","page_url":"https://stenobird.com/podcast/application-security-weekly-audio-436682/bringing-strong-authentication-and-granular-authorization-for-genai-dan-moore-asw-369","show_page_url":"https://stenobird.com/podcast/application-security-weekly-audio-436682","url":"https://aswaudio.libsyn.com/bringing-strong-authentication-and-granular-authorization-for-genai-dan-moore-asw-369","audio_url":"https://dts.podtrac.com/redirect.mp3/traffic.libsyn.com/secure/aswaudio/ASW_369_1--3f3add95-6740-4076-94ac-4e704e6b4cc5--audio-converted--a2a40f04-b885-4b23-af7c-7f591c19a0e7.mp3?dest-id=626765","summary":"When it comes to agents and MCPs, the interesting security discussion isn't that they need strong authentication and authorization, but what that authn/z story should look like, where does it get implemented, and who implements it. Dan Moore shares the useful parallels in securing APIs that should be brought into the world of MCPs -- especially because so many are still interacting with APIs. Resources https://stackoverflow.blog/2026/01/21/is-that-allowed-authentication-and-authorization-in-model-context-protocol/ https://fusionauth.io/articles/identity-basics/authorization-models Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw-369","meta_description":"When it comes to agents and MCPs, the interesting security discussion isn't that they need strong authentication and authorization, but what that authn/z…","key_points":[],"chapters":[],"topics":[],"duration_seconds":4164,"processing_state":"not_requested","actions":[{"name":"request_transcript","method":"POST","url":"https://stenobird.com/v1/public/podcasts/application-security-weekly-audio-436682/episodes/bringing-strong-authentication-and-granular-authorization-for-genai-dan-moore-asw-369/transcription-requests","description":"Idempotently request low-priority transcript generation for this episode."},{"name":"read_markdown","method":"GET","url":"https://stenobird.com/podcast/application-security-weekly-audio-436682/bringing-strong-authentication-and-granular-authorization-for-genai-dan-moore-asw-369.md","description":"Read the agent-friendly Markdown representation of this episode resource."}]}}