Google and Mastercard Contribute Agentic Commerce Standards to FIDO Alliance

The FIDO Alliance, long known for its password‑less authentication standards, is expanding its remit to address the rapid rise of artificial‑intelligence agents that act on users’ behalf. By forming an Agentic Authentication Technical Working Group, FIDO seeks to codify how AI can securely receive delegated authority, ensuring that each action is backed by strong, phishing‑resistant credentials. This move reflects a broader industry shift toward eliminating passwords and embracing cryptographic passkeys, a trend that has already reshaped consumer login experiences.

Central to the new Payments Working Group are two contributions: Google’s Agent Payments Protocol (AP2) and Mastercard’s Verifiable Intent framework. AP2, introduced in September, provides a platform‑agnostic method for AI agents to initiate and settle payments across ecosystems, while Verifiable Intent offers an open‑source model that captures a user’s explicit consent before an agent acts. By bringing these protocols under a single, community‑driven umbrella, FIDO aims to harmonize disparate implementations, reduce integration costs, and foster interoperability among wallets, merchants, and AI platforms.

The implications for fintech and e‑commerce are significant. With trusted, standardized agentic commerce, businesses can launch AI‑driven services—such as automated purchasing, subscription management, or real‑time financial advice—without exposing users to fraud or privacy breaches. Regulators will also benefit from clearer compliance pathways, as open standards embed auditability and consent mechanisms by design. As AI agents become ubiquitous, the FIDO‑backed specifications could become the de‑facto baseline for secure, scalable, and user‑centric digital transactions, unlocking new revenue streams and accelerating the broader AI economy.