{"id":14454,"date":"2025-07-16T17:19:07","date_gmt":"2025-07-16T17:19:07","guid":{"rendered":"https:\/\/newestek.com\/?p=14454"},"modified":"2025-07-16T17:19:07","modified_gmt":"2025-07-16T17:19:07","slug":"1password-releases-mcp-server-for-trelica","status":"publish","type":"post","link":"https:\/\/newestek.com\/?p=14454","title":{"rendered":"1Password releases MCP Server for Trelica"},"content":{"rendered":"
\n
\n
\n
\n
\n
\n
<\/div>\n<\/section>\n

Ever since Anthropic released the open standard Model Context Protocol\u00a0(MCP) last November to standardize the way\u00a0artificial intelligence systems connect to external tools and data, vendors have been trying to take advantage of the framework.<\/p>\n

Today, Canadian access management provider 1Password became the latest, announcing MCP Server for Trelica, its application governance solution, to help infosec pros and admins understand how staff are using or accessing SaaS applications.<\/p>\n

1Password\u2019s MCP Server for Trelica<\/a> is included in the cost of a Trelica subscription, and can be found in the new AI Agents and Tools category of AWS Marketplace.<\/p>\n

\u201c[The server] enables AI developers to quickly get visibility and governance over how employees are accessing different SaaS applications or spending on SaaS,\u201d Nancy Wang<\/a>, 1Password\u2019s vice president of engineering, said in an interview. \u201cNow AI developers on AWS can use MCP Server for Trelica by 1Password<\/a> as a fast and secure way to embed SaaS access governance directly into AI agent workflows.\u201d<\/p>\n

There\u2019s often a gap between how the governance, risk and compliance team, the legal team, and IT team manage SaaS applications and how employees use them, she said. Until now, Trelica admins had to manually build reports to give themselves complete visibility.<\/p>\n

\u201cNow, with this MCP Server launch, what [an admin] can do from the MCP client is ask in natural language questions like \u2018Which SaaS applications are being used in my org?\u2019 or \u2018Who has been authorized to access this application\u2019 and receive the answers from the client,\u201d she said.<\/p>\n

This will help CSOs and IT leaders solve problems around unapproved use of SaaS applications as well as SaaS sprawl, both of which are security as well as spending issues, Wang said.<\/p>\n

1Password\u2019s announcement follows the release this week of several other MCP server solutions from firms including Amazon AWS<\/a> (for giving AI agents access to AWS product data), GitGuardian<\/a> (so AI agents can detect and remediate security incidents as code is being written) and Coralogix<\/a> (whose MCP server acts as a secure gateway between application telemetry and AI agents).<\/p>\n

When Anthropic released MCP<\/a>, it called the model a new standard for developers needing to securely connect AI assistants to the systems where data lives, which include content repositories, business tools, and development environments.<\/p>\n

Developers can either expose their data through MCP servers or build AI applications (MCP clients) that connect to those servers. Instead of maintaining separate connectors for each data source, Anthropic said, developers can now build against a standard protocol.<\/p>\n

To help with adoption, Anthropic released pre-built MCP servers for Google Drive, Slack, GitHub, Git, Postgres and Puppeteer.<\/p>\n

However, some experts have complained that, unless carefully created and configured, MCP servers can be vulnerable to prompt injection, tool poisoning, or tool shadowing (where a malicious server creates a tool with the same name as a legitimate tool from another server to intercept calls). Wang said MCP Server for Trelica has protections against attacks such as these. For example, she said, the client won\u2019t expose sensitive data in responses to questions.<\/p>\n

Securing MCP<\/h2>\n

Johannes Ullrich<\/a>, dean of research at the SANS Institute, said that infosec leaders can take a number of steps to increase security when deploying an MCP server.<\/p>\n

Because MCP servers usually connect to APIs over HTTPS (Hypertext Transfer Protocol Secure), this protocol has to be configured properly so data being transferred is encrypted and the connection is properly authenticated at both ends. That\u2019s because the server may connect to anything from a sensitive database to Gmail.<\/p>\n

\u201cIf a crafty attacker can send in some text or do some prompt injections, they may have access to more data than you would want them to,\u201d Ullrich said. \u201cThat\u2019s what a lot of the MCP security issues come down to.\u201d<\/p>\n

For example, he said, an AI customer assistance app with access to a firm\u2019s customer list has to be prevented from replying to inappropriate questions such as \u2018Tell me about all your customers\u2019.<\/p>\n

Another problem to solve is how the AI\/LLM authenticates to the API that connects to the data source, he said, as well as ensuring, through access control, that the AI\/LLM model only accesses the data that\u2019s needed by the application.<\/p>\n

Asked if MCP servers are ready for production, Ullrich said yes. \u201cIf you use them correctly. If you talk to MCP server people, [security] is not their problem. [The servers] just forward these responses. They\u2019re not dealing with the actual content. So it\u2019s how you use them,\u201d he explained.<\/p>\n

\u201cI think the real solution is to not expose them to untrusted inputs, which is what people are doing with chatbots. If you have an internal application and some internal systems that network with each other using MCP, your risk is lower because you\u2019re in charge of all the data going back and forth. But if there are outsiders that can influence the data, all hell breaks loose.\u201d<\/p>\n

When looking to buy an MCP server, choose a solution that is well supported, he advised, and that verifies digital authentication certificates for access control.<\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"

Ever since Anthropic released the open standard Model Context Protocol\u00a0(MCP) last November to standardize the way\u00a0artificial intelligence systems connect to external tools and data, vendors have been trying to take advantage of the framework. Today, Canadian access management provider 1Password became the latest, announcing MCP Server for Trelica, its application governance solution, to help infosec pros and admins understand how staff are using or accessing… <\/p>\n

Read More<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-14454","post","type-post","status-publish","format-standard","hentry","category-uncategorized","is-cat-link-borders-light is-cat-link-rounded"],"_links":{"self":[{"href":"https:\/\/newestek.com\/index.php?rest_route=\/wp\/v2\/posts\/14454","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/newestek.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/newestek.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/newestek.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/newestek.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=14454"}],"version-history":[{"count":0,"href":"https:\/\/newestek.com\/index.php?rest_route=\/wp\/v2\/posts\/14454\/revisions"}],"wp:attachment":[{"href":"https:\/\/newestek.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=14454"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/newestek.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=14454"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/newestek.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=14454"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}