@article{ART003348222},
author={Jea-Suk Song and SUNYOUNG BAE},
title={Architecture Design and Implementation of MCP-Based Modular AI Work Agent},
journal={ Journal of Software Forensics},
issn={3092-541X},
year={2026},
volume={22},
number={2},
pages={115-127},
doi={10.29056/jsf.2026.06.11}
TY - JOUR
AU - Jea-Suk Song
AU - SUNYOUNG BAE
TI - Architecture Design and Implementation of MCP-Based Modular AI Work Agent
JO - Journal of Software Forensics
PY - 2026
VL - 22
IS - 2
PB - Korea Software Assessment and Valuation Society
SP - 115
EP - 127
SN - 3092-541X
AB - Recently, the Large Language Model (LLM)-based AI agent ecosystem is rapidly transitioning toward autonomous task automation systems, supported by the standardization of the Model Context Protocol (MCP). However, conventional agent framework studies have focused primarily on static single- or multi-agent pipeline designs. Consequently, they exhibit critical limitations in dynamically composing modules at runtime to meet changing business requirements, and they remain highly vulnerable to security breaches caused by excessive tool privileges. To address these limitations, this study proposes a secure and modular AI work agent architecture that adopts MCP as a standardized inter-module interface, allowing users to compose only the necessary functionalities dynamically. The proposed system is established on four software engineering design principles—Minimal Core, Declarative Module Registry, Least Privilege, and Human-in-the-Loop—each explicitly mapped to ISO/IEC 25010 software quality characteristics. The architectural validity and security compliance of the proposed system are demonstrated through comparative analysis with existing tools, mapping against prior security guidelines (OWASP, Databricks, AWS), and scenario-based walkthroughs. This study provides a practical, open-standard design foundation crucial for building secure, scalable, and compliant AI agents in modern industrial environments.
KW - AI Agent;Modular Architecture;Model Context Protocol(MCP);Least Privilege;Human-in-the-Loop;ISO/IEC25010
DO - 10.29056/jsf.2026.06.11
ER -
Jea-Suk Song and SUNYOUNG BAE. (2026). Architecture Design and Implementation of MCP-Based Modular AI Work Agent. Journal of Software Forensics, 22(2), 115-127.
Jea-Suk Song and SUNYOUNG BAE. 2026, "Architecture Design and Implementation of MCP-Based Modular AI Work Agent", Journal of Software Forensics, vol.22, no.2 pp.115-127. Available from: doi:10.29056/jsf.2026.06.11
Jea-Suk Song, SUNYOUNG BAE "Architecture Design and Implementation of MCP-Based Modular AI Work Agent" Journal of Software Forensics 22.2 pp.115-127 (2026) : 115.
Jea-Suk Song, SUNYOUNG BAE. Architecture Design and Implementation of MCP-Based Modular AI Work Agent. 2026; 22(2), 115-127. Available from: doi:10.29056/jsf.2026.06.11
Jea-Suk Song and SUNYOUNG BAE. "Architecture Design and Implementation of MCP-Based Modular AI Work Agent" Journal of Software Forensics 22, no.2 (2026) : 115-127.doi: 10.29056/jsf.2026.06.11
Jea-Suk Song; SUNYOUNG BAE. Architecture Design and Implementation of MCP-Based Modular AI Work Agent. Journal of Software Forensics, 22(2), 115-127. doi: 10.29056/jsf.2026.06.11
Jea-Suk Song; SUNYOUNG BAE. Architecture Design and Implementation of MCP-Based Modular AI Work Agent. Journal of Software Forensics. 2026; 22(2) 115-127. doi: 10.29056/jsf.2026.06.11
Jea-Suk Song, SUNYOUNG BAE. Architecture Design and Implementation of MCP-Based Modular AI Work Agent. 2026; 22(2), 115-127. Available from: doi:10.29056/jsf.2026.06.11
Jea-Suk Song and SUNYOUNG BAE. "Architecture Design and Implementation of MCP-Based Modular AI Work Agent" Journal of Software Forensics 22, no.2 (2026) : 115-127.doi: 10.29056/jsf.2026.06.11