MCP Releases Authorization Spec 1.1: Enabling Enterprise-Grade Secure Agent Deployment

The MCP Working Group has officially released Authorization Spec 1.1, introducing OAuth 2.0 integration, fine-grained permission control (per-tool scopes), audit logging, and token revocation mechanisms. This update addresses the biggest concern enterprises have when deploying agents—'AI permission runaway.' Now administrators can precisely control which tools each agent can invoke and which data it can access, with complete operation records. Salesforce, Atlassian, and GitHub have announced that their MCP Servers will upgrade to the new specification, and analysts predict a surge in enterprise agent procurement in Q3 2025.