AP2

AP2 is a framework for autonomous agent commerce designed to facilitate financial transactions between AI agents and merchants. It provides a standardized communication protocol and data models for coordinating catalogs and checkout requests, enabling agents to execute payments independently using digital credentials or traditional payment instruments.

The project distinguishes itself through a cryptographic authorization framework that uses signed mandates to delegate limited financial authority to agents. These mandates include strict spending limits, payee restrictions, and temporal boundaries to ensure agents operate within safe parameters. The system further secures transactions by binding payment authorizations to specific checkout sessions and agent keys to prevent double-spending and unauthorized reuse.

The framework covers a broad surface of financial operations, including the generation of signed checkout and transaction receipts for non-repudiable evidence and dispute resolution. It also incorporates a privacy layer using selective disclosure to share only the minimum necessary transaction data with verifiers.

The project is implemented in Python.

Features

Financial Agent Frameworks - Provides a specialized framework for building AI agents that can autonomously conduct commerce and execute financial transactions.

AI Agent Payment Frameworks - Provides a comprehensive framework for automating the discovery, negotiation, and settlement of financial transactions for AI agents.

Agent Communication Protocols - Provides a standardized communication protocol for coordinating financial transactions and checkout requests between agents and merchants.

Payment Protocols - Implements a standardized communication protocol and data models for autonomous financial transactions between AI agents.

Financial Authority Delegation - Grants agents the permission to execute financial transactions by signing mandates on a trusted interface.

Agentic Commerce Coordination - Coordinates the exchange of catalogs and checkout requests between shopping agents and merchants.

Agent Payment Facilitators - Facilitates financial transactions where agents act independently using digital credentials or traditional payment instruments.

Spending Constraints - Implements strict spending limits and merchant constraints to ensure agents operate within safe financial boundaries.

Autonomous - Implements a system to manage and execute financial transactions via digitally signed mandates and cryptographic proofs.

Payment Mandate Validations - Validates the authenticity and terms of payment mandates to authorize the release of tokens or funds.

Spending Limits - Enforces strict spending limits and payee restrictions to bound the financial risk of autonomous agent transactions.

Autonomous Action Constraints - Defines open mandates with limits on merchants and line items to keep agent actions within pre-approved boundaries.

Cryptographic Authorization - Checks the integrity of digital mandates to confirm an agent possesses the required cryptographic keys and permissions.

Agent Purchase Authorizations - Uses cryptographically signed mandates to prove an agent's authority to execute checkouts and process payments.

Cryptographic Signature Verification - Validates the cryptographic binding between checkout objects, mandates, and signatures to prevent unauthorized charges.

Cryptographic Transaction Verifications - Uses signed mandates and receipts to provide verifiable proof of authorization and prevent unauthorized charges.

Cryptographic Transaction Verifiers - Validates payment mandate integrity and binds checkouts to specific agent keys to prevent double-spending.

Agent Action Policies - Requires agents to provide cryptographic proof of authorization from a user before performing restricted financial actions.

Mandate-to-Transaction Bindings - Converts open mandates into closed mandates by linking them to specific transactions using proof-of-possession keys.

Payment-to-Checkout Bindings - Links payment mandates to specific checkout sessions using cryptographic hashes to prevent authorization reuse.

Signature Verification Tools - Validates digital signatures on payment mandates to ensure financial instructions were not manipulated during transit.

Transaction Authorization - Creates mandates that authorize financial transactions by defining acceptable merchants, items, and spending limits.

Agentic Commerce Mandates - Creates open mandates with defined constraints allowing agents to complete shopping tasks and execute payments.

User-Signed Mandates - Coordinates payment flows where users authenticate and sign checkout mandates via trusted surfaces to authorize purchases.

Transaction-to-Agent Key Bindings - Links mandates to specific agent keys to prevent the reuse of authorizations and stop double-spending.

Transaction Validation - Validates closed mandates against user-defined spending and payee constraints to allow independent payment execution.

Transaction Binding - Constrains a payment authorization to a specific checkout session by referencing a unique transaction identifier.

Signed Status Confirmations - Generates signed confirmations of checkout status that link results to specific mandates and order references.

Conditional Trade Execution - Completes purchases autonomously once predefined conditions, such as price drops or availability, are met.

Non-Repudiable Dispute Evidence - Combines mandates and receipts into non-repudiable records to provide factual evidence for transaction disputes.

Mandate Lifecycle Management - Tracks active payment authorizations and enforces duration limits to maintain user control during autonomous execution.

Payment Receipt Management - Produces signed checkout and payment records to provide verifiable proof that a transaction was completed.

Budgetary Limits - Defines minimum and maximum currency ranges for single transactions or total budgets for recurring payments.

Signed Action Receipts - Produces signed confirmations from verifiers indicating whether an action authorization was accepted or rejected.

Privacy-Preserving Transactions - Implements selective disclosure of transaction data to protect user identity and payment details.

Consent-Based Access Controls - Displays mandate content on a trusted interface to capture explicit user consent and generate signed authorizations.

Payee and Temporal Constraints - Sets constraints for transactions, including allowed payees, authorized payment instruments, and valid date windows.

User Privacy Protection - Implements a privacy layer using selective disclosure to share only minimum necessary transaction data with verifiers.

Transaction Constraint Schemas - Specifies custom types, schemas, and evaluation algorithms to restrict agent behavior during financial transactions.

google-agentic-commerceAP2

Features

Star history