MCPS: Per-Message Cryptographic Signing for the Model Context Protocol

Sharif, Raza

doi:10.5281/zenodo.19409366

Published April 3, 2026 | Version v1

Preprint Open

MCPS: Per-Message Cryptographic Signing for the Model Context Protocol

Sharif, Raza (Contact person)

he Model Context Protocol (MCP), introduced by Anthropic in 2024, has become the dominant interface for connecting AI agents to external tools and data sources, with
ecosystem-wide adoption exceeding 57 million weekly package downloads. Despite this rapid adoption, MCP lacks native cryptographic security at the message level. This paper
presents MCPS (MCP Secure), a backward-compatible cryptographic signing layer that provides per-message ECDSA P-256 signatures, replay protection, tool integrity verification, and
a portable agent identity mechanism. We describe the protocol design, analyse the threat model, and demonstrate sub-2ms overhead per message. An open-source reference
implementation is available as a zero-dependency npm package.

Files

arxiv-mcps-paper.pdf

Files (61.2 kB)

Name	Size	Download all
arxiv-mcps-paper.pdf md5:ed3e7eabe1a17b93bbe6fc97998972c4	61.2 kB	Preview Download

Additional details

Alternative title: FBCS

Views

Downloads

Show more details

	All versions	This version
Views	14	14
Downloads	8	8
Data volume	489.2 kB	489.2 kB

More info on how stats are collected....

DOI

Resource type

Preprint

Publisher

Zenodo

License: Creative Commons Attribution 4.0 International

The Creative Commons Attribution license allows re-distribution and re-use of a licensed work on the condition that the creator is appropriately credited. Read more

Technical metadata

Created: April 3, 2026
Modified: April 3, 2026

MCPS: Per-Message Cryptographic Signing for the Model Context Protocol

Authors/Creators

Description

Files

arxiv-mcps-paper.pdf

Files (61.2 kB)

Additional details

Additional titles