Renewz

Google Launches Agent Payments Protocol (AP2) for Secure AI-Driven Purchases

Google Launches Agent Payments Protocol (AP2) for Secure AI-Driven Purchases
source: gettyimages
September 19, 2025

Google has unveiled its new Agent Payments Protocol (AP2), a framework allowing AI agents to make purchases on users' behalf while incorporating safeguards to prevent fraud and unauthorized transactions. Announced on Tuesday, AP2 aims to facilitate seamless, secure digital commerce powered by artificial intelligence.

How AP2 Works

The system enables AI agents to generate shopping lists, communicate with merchants, and execute payments without requiring final human approval each time. For instance, a user could instruct an AI to buy concert tickets that go on sale at midnight, and the agent would handle the purchase, adhering to specified price limits and other constraints.

Verified Authority and Audit Trails

Vendors and payment processors benefit from the protocol’s verifiable documentation, or mandates, that track the authorization process. Users can establish an Intent Mandate detailing their purchase intent and budget. If a purchase is conducted in real-time—like finding specific shoes—the human user can approve it via a Cart Mandate. Conversely, for offline tasks such as midnight ticket buying, the Intent Mandate can grant the AI permission to generate a Cart Mandate independently.

> “This chain of evidence culminates in securely linking your payment method to the verified contents of the Cart Mandate,” Google explained in a blog post. > “This complete sequence—from intent, to cart, to payment—creates a non-repudiable audit trail that confirms authorization and authenticity, providing a clear foundation for accountability.”

Security and Trust

Google is actively exploring security measures that could bolster system integrity and plans to update the public as more details become available. The AP2 framework is compatible with existing Google data-sharing systems, such as Agent2Agent (A2A) and Anthropic’s Model Context Protocol (MCP), promoting secure interactions between AI agents.

Industry Adoption and Cryptocurrency Support

At launch, over 60 companies have adopted AP2, including tech giants and financial institutions like Mastercard, PayPal, American Express, and Worldpay. Major software firms like Salesforce, Red Hat, Adobe, Intuit, and Cloudflare have also joined the ecosystem.

Furthermore, AP2 supports cryptocurrency payments through the x402 protocol, facilitating digital cash transactions securely. Coinbase, Metamask, and the Ethereum Foundation are among the participants integrating crypto payments into the system.

> “x402 and AP2 demonstrate that agent-to-agent payments are not just experimental—they’re becoming an integral part of how developers build,” stated Erik Reppel, head of engineering at Coinbase.

Security Concerns and Future Outlook

While the technology’s potential is significant, the importance of robust security measures cannot be overstated. Given the risk of online theft, Google’s success will depend on implementing protections to prevent misuse and fraud. The future of AI-driven commerce hinges on striking a balance between innovation and security to avoid headlines about AI-fueled theft.

Please note that this article will be updated as more details about security protocols become available.

Related links

By submitting, I confirm I have the right to share this link and I agree to link back to this article from the submitted page. Duplicate URLs are rejected. Up to 5 links per page.

GraphQL · 147 ms 
query Q($id: Int!, $domain: Int!, $srcId: Int!, $hasSrc: Boolean!, $hasSelf: Boolean!) {
  self: qa_ai(where: {id: {_eq: $id}}, limit: 1) @include(if: $hasSelf) {
    id
    title
    text
    date
  }
  linksarticle: qa_ai(where: {domain: {_eq: $domain}, id: {_neq: $id}}, order_by: {id: desc}, limit: 8) {
    id
    title
  }
  linksbottom: qa_ai(where: {domain: {_neq: $domain}, id: {_lt: $id}}, order_by: {id: desc}, limit: 3) {
    id
    title
    domain
  }
  source: qa_ai(where: {id: {_eq: $srcId}}, limit: 1) @include(if: $hasSrc) {
    id
    title
  }
}
{
  "id": 6644077,
  "domain": 6,
  "srcId": 0,
  "hasSrc": false,
  "hasSelf": true
}