Scaling MCP adoption: Our reference architecture for simpler, safer and cheaper enterprise deployments of MCP

Cloudflare has integrated the Model Context Protocol (MCP) as a fundamental part of its AI strategy, extending its use across various departments to enhance workflow efficiency while ensuring security through a suite of controls from its platforms. They have developed a unified security architecture to mitigate risks such as authorization sprawl and supply chain vulnerabilities. By deploying centralized MCP servers and using Cloudflare Access for authentication, Cloudflare maintains control over AI resource access while enabling efficient workflows. They have introduced Code Mode in MCP server portals to significantly reduce token usage, optimizing the deployment of AI applications. Additionally, Cloudflare employs AI Gateway to manage costs and vendor flexibility and utilizes Cloudflare Gateway to detect unauthorized MCP server usage. Public-facing MCP servers are protected with AI security features to prevent prompt injection and data leaks. Through these measures, Cloudflare has established a robust framework for deploying MCP in the enterprise, providing a model for other organizations to follow.