AWS and Cisco: AI Registry scans MCP and A2A agents via YARA, LLM semantic analysis and Cisco proprietary scanners
AWS + Cisco AI Defense integration is a new enterprise security stack for AI agents published on May 13, 2026. The open AI Registry control plane scans MCP servers and A2A agents at registration using YARA pattern analysis, LLM semantic scanning via Amazon Bedrock and Cisco proprietary scanners. Vulnerable servers receive a security-pending tag and remain disabled until an administrator approves a review.
This article was generated using artificial intelligence from primary sources.
AWS and Cisco AI Defense announced on May 13, 2026 an integration that addresses enterprise AI security gaps through AI Registry — an open control plane for unified governance of MCP servers, Agent-to-Agent agents and AI Agent Skills components. The partnership delivers three scanner technologies and a centralized audit trail for regulatory obligations.
How does AI Registry scan new MCP servers?
AI Registry automatically scans MCP servers at registration, analyzing tool descriptions and schemas before a component becomes operational. Vulnerable servers receive a security-pending tag and remain disabled until an administrator approves a review. The approach is preventive — it stops insecure agent components from being deployed, rather than reacting only after an incident.
What does the A2A Scanner specifically look for?
The A2A Scanner analyzes agent capability declarations and communication patterns through defined checklists. Detected threats include identity spoofing, prompt injection in metadata, hardcoded credentials, data exfiltration endpoints and SSRF patterns. The scanner also validates A2A specification compliance — an agent that does not follow the protocol is flagged before deployment.
What three scanner technologies run simultaneously?
The system uses three complementary approaches for full coverage:
- YARA Analyzer — pattern-based detection of SQL injection, command injection and hardcoded credentials through classic signature analysis
- LLM Semantic Scanning — AI-powered analysis via Amazon Bedrock detects sophisticated threats in tool logic and agent behavior (something signature tools cannot capture)
- Cisco Proprietary Scanners — advanced threat detection combining threat intelligence and deep code analysis
What does the audit trail ensure?
AI Registry maintains a complete security audit history for regulatory compliance requirements (SOX, GDPR), stores scan results in a central datastore and integrates with enterprise workflows — ServiceNow, Slack, SIEM systems and compliance dashboards. The goal is that every enterprise audit query can trace every agent from registration to production.
Target customers are AWS and Cisco AI Defense subscribers managing tens to hundreds of AI agents in enterprise scenarios — banks, the public sector and healthcare, where supply-chain risk from agentic architectures is becoming a regulatory concern.
Frequently Asked Questions
- What is AI Registry?
- AI Registry is an open control plane for unified governance of Model Context Protocol servers, Agent-to-Agent agents and AI Agent Skills components; it automatically scans MCP servers at registration and maintains an audit trail for regulatory obligations (SOX, GDPR).
- What threats does the A2A Scanner specifically detect?
- The A2A Scanner analyzes agent capability declarations and communication patterns and detects supply-chain threats including identity spoofing, prompt injection in metadata, hardcoded credentials, data exfiltration endpoints and SSRF patterns — alongside A2A spec compliance validation.
Related news
Anthropic: Project Glasswing found 10,000 high-risk vulnerabilities in its first month using Claude Mythos Preview
arXiv:2605.22786: LCGuard protects shared KV cache between agents in multi-agent systems from data leakage
GitHub: npm 11.15.0 introduces staged publishing and three new install-time --allow flags for supply chain hardening