Building the Trust Layer for Agentic Payments with AP2 and Verifiable Intent

Agentic payments—transactions executed autonomously by AI agents—are poised to reshape commerce, with projections of trillions in value by 2030. Yet the shift from human‑present checkouts to continuous, policy‑driven flows exposes gaps in identity verification, consent capture, and accountability. Without a common framework, each platform risks building proprietary solutions that fragment security standards and increase integration costs for merchants, wallets, and issuers.

The Agent Payments Protocol (AP2) tackles the coordination problem by introducing digitally signed mandates. A "checkout mandate" records what a user wants to buy, while a "payment mandate" defines how and when payment should occur. Both start in an open state—capturing budget limits and allowed instruments—and transition to closed once a specific transaction is authorized. This mandate lifecycle provides a tamper‑evident record that AI agents can reference, ensuring they act within predefined constraints even when the user is offline.

Verifiable Intent complements AP2 by supplying the evidence layer. It binds user identity to cryptographic keys, encodes intent statements, and enables selective disclosure, allowing merchants, networks, and regulators to independently verify that a transaction aligns with the original consent. Integrated into the FIDO Alliance, these standards leverage existing hardware‑backed credentials, offering a unified security substrate across the payments ecosystem. The result is a scalable trust model that reduces fraud, simplifies dispute resolution, and aligns with emerging regulatory expectations, paving the way for broader adoption of AI‑driven commerce.