Google has donated its Agent Payments Protocol to the FIDO Alliance and released an updated version, including autonomous payment capabilities.

The move is intended to ensure AP2 remains platform-agnostic and open to broader industry participation. Through the process of placing the protocol under the FIDO Alliance’s stewardship, Google aims to accelerate adoption across the payments ecosystem and support interoperability between different platforms and providers.

Protocol update and autonomous transaction support

Alongside the transfer, Google has published AP2 v0.2 on GitHub, introducing new capabilities for autonomous transactions. A key addition is support for ‘Human Not Present’ payments, which enables AI agents to execute purchases independently, based on instructions pre-authorised by the user. The update is designed to address scenarios in which speed or timing is critical, such as purchasing limited-availability items as soon as they become available, without requiring real-time user interaction.

In addition, the release reflects the broader challenge of enabling AI agents to transact reliably and securely across commerce environments, particularly as autonomous systems take on a more active role in consumer and business workflows.


More

ARS Technica: Thousands of sensitive emails stolen in intrusion of Republican campaign arm

In response to the email hack on the National Republican congressional Committee, this article by…

Read More →

Help Net Security: The fundamentals of network security and cybersecurity hygiene

This article by Help Net Security reports that FIDO Security Keys can greatly help organizations…

Read More →

Information Management: Three steps toward stronger data protection

The FIDO Alliance has worked to create one of the strongest authentication protocols in the…

Read More →


Subscribe to the FIDO newsletter

Stay Connected, Stay Engaged

Receive the latest news, events, research and implementation guidance from the FIDO Alliance. Learn about digital identity and fast, phishing-resistant authentication with passkeys.