API security pros Salt Security have announced the launch of the Salt Model Context Protocol (MCP) Server at RSAC 2025, giving enterprise teams a novel access point of interaction with their API infrastructure, leveraging natural language and artificial intelligence (AI). Built on the open MCP standard, Salt’s MCP Server enables AI agents to discover, understand, and analyse API behaviour with contextual awareness and enterprise-grade precision.
Today’s AI-driven applications demand faster, smarter, and more secure ways to access and interact with organizational data. Enter the MCP Server – a breakthrough that allows AI agents to query internal systems safely and contextually, without blindly scraping data or exposing backend architectures. An MCP server acts as an intelligent gateway, translating natural language prompts into authorized, structured queries while enforcing strict security, governance, and usage policies.
For API security, the rise of MCP servers is critical. They create a controlled interface between AI agents and enterprise APIs – ensuring that API endpoints are not blindly exposed, over-permissioned, or misused by autonomous systems. Without an MCP server, APIs risk becoming a hidden attack surface for AI-driven reconnaissance, data leaks, or abuse.
The impact on API ecosystems will be massive. Industry analysts estimate that AI agent-driven requests could increase API traffic by 3x to 10x over the next few years, as every prompt, conversation, and automated task generates new API calls behind the scenes. Organizations must prepare not just for more API traffic—but for a new kind of automated, continuous API consumption that traditional security tools weren’t built to handle.
Salt’s MCP server creates a personal ChatGPT experience for our customers with powerful new capabilities such as:
- Contextual API Search: Contextual search across their entire API inventory rather than a limited keyword based search.
- API Explainer: Explain the use and functionality of each API in your environment so security teams can be more independent.
- Posture Gap Contextual Search and Analysis: Allow security teams to identify API posture gaps and misconfigurations in a free form search.
- Remediation Guidance: Offers AI-driven, actionable recommendations to mitigate high risk vulnerabilities.
And many more powerful capabilities to interact with the Salt API security platform in a natural language.
How It Works
Imagine asking an AI agent, “Are there any critical risks in my environment I need to address?” and receiving a detailed, plain-language explanation: “Yes, you have a critical gap in the API of /api/v2/checkout/ which involves credit card information”
Follow up with: “What does this API do?” and the AI agent immediately replies with “This API handles checkout and payment for a list of items, processing sensitive data including credit card information and user personal information such as home address, phone number and email address.”
And proceed with “What is the critical risk and how should it be mitigated?” and Salt MCP provides actionable, AI-driven remediation guidance.
By combining Salt’s patented API intelligence with the new MCP standard, Salt’s platform offers a seamless, secure way to bridge human, AI, and API interactions—setting a new bar for proactive security and operational efficiency.
The Salt MCP Server is available now through the Salt Early Access Program.
The post Salt Security Launches the First MCP Server to Revolutionise API Security in the Age of AI appeared first on IT Security Guru.
The original article found on IT Security Guru Read More
