eWEEK content material and product suggestions are editorially unbiased. We could become profitable if you click on on hyperlinks to our companions. Learn More.
Microsoft is transferring full steam into the AI future, formally embracing the Model Context Protocol (MCP) as a foundational a part of Windows 11.
At its Build 2025 developer convention, Microsoft introduced that Windows 11 will now natively assist MCP. This transfer goals to show the working system into what it calls an “agentic” platform, one the place AI brokers will help customers perform duties throughout apps, information, and providers while not having handbook inputs.
How MCP works
MCP is a light-weight, open-source protocol launched by Anthropic. It’s based mostly on JSON-RPC over HTTP and permits AI brokers, apps, and providers to share info, entry instruments, and carry out duties constantly and securely.
Often described by some because the “USB-C port of AI apps” for its skill to standardize communication between apps, brokers, and instruments. Just like how USB-C makes it simple to attach gadgets, MCP permits builders to let AI brokers and functions invariably discuss to 1 one other, whether or not they’re native instruments or on-line providers.
There are three key gamers on this ecosystem:
- MCP Clients: The AI brokers that ship requests.
- MCP Servers: Services that present entry to information, system settings, or apps.
- MCP Hosts: Applications that expose or invoke these capabilities.
For occasion, this framework permits an app like Perplexity AI to go looking your file system with out you manually choosing folders. In a reside demo, Microsoft confirmed how a person might merely ask, “Find all the files related to my vacation in my documents folder.” The AI would take it from there.
Security is entrance and heart
As thrilling as MCP is, Microsoft isn’t ignoring the dangers. MCP opens the door for highly effective AI integrations, however creates new methods for malicious actors to assault. Microsoft says it’s constructing robust partitions round this new agentic future, from immediate injections to instrument poisoning.
“Without strong controls, an MCP server… could expose sensitive functionality, be misconfigured to allow remote access, or be exploited through many means of attacks, including new forms such as prompt injection or tool poisoning,” Microsoft wrote in a weblog submit.
To deal with this, Windows 11 will implement a number of safety layers, together with:
- Proxy-mediated communication permits all MCP visitors to undergo a safe Windows proxy.
- Tool-level authorization permits customers to approve which AI brokers can entry which instruments.
- Runtime isolation ensures brokers get solely the mandatory entry, decreasing injury from any assault.
- Central MCP registry restricts visibility to solely MCP servers that meet Microsoft’s safety requirements.
A preview model for builders
A non-public developer preview of MCP capabilities will roll out shortly after Build 2025. Microsoft says this preview is just for suggestions functions, and gadgets have to be in developer mode to take part.
Some security measures might not be totally enforced in the course of the preview, however Microsoft says enforcement will likely be turned on earlier than basic launch.
