PROTOCOL STACK · LIVE IN PRODUCTION

Three protocols. One wallet.
Every payment signed.

AgentWallet is the only wallet that ships AP2, x402, and ACP in production. Your agent gets a verified human principal binding, a programmable stablecoin rail, and a merchant-scoped card token — from one endpoint, in one API call.

THE PROBLEM

The agent economy needs three things at once.

An autonomous agent doesn't pay one way. It pays APIs, merchants, and other agents — each with different infrastructure, different trust assumptions, different settlement rails. Three protocols have emerged to handle the three flows. Most platforms ship one. We ship all three.

THE PROTOCOLS

One implementation per spec. All three in production.

AP2 — Google's Agent Payments Protocol
Verifiable proof that a human authorized the agent.
Best for: Procurement agents, B2B payouts, anything that needs human-traceable authorization for a non-human transaction.

AP2 was announced by Google Cloud and Coinbase in September 2025. It defines three cryptographically signed mandates — IntentMandate, CartMandate, and PaymentMandate — that bind every transaction back to a verified human principal. The merchant gets proof the agent had authority. The user gets a tamper-evident audit trail. The regulator gets accountability.

What AgentWallet ships
  • ECDSA keypair provisioned per agent at signup
  • Public key endpoint for verifier resolution
  • MCP signing tools: agent_sign_intent_mandate, agent_sign_cart_mandate, agent_get_payment_mandate
  • Inbound payment endpoint with full mandate-chain verification
  • Beneficiary resolver, audit trail, key revocation, idempotency hardening
  • AP2 v0.1 spec — fully delivered
x402 — Coinbase's HTTP-native payment protocol
Pay-per-request APIs, with stablecoins, in one round trip.
Best for: API-to-API payments, inference token billing, micro-settlements down to fractions of a cent.

x402 is the protocol where an API returns HTTP 402 Payment Required with a price, and the client attaches a stablecoin payment to its retry. No subscription. No invoice. No human in the loop. Built by Coinbase, already battle-tested across 50M+ transactions.

What AgentWallet ships
  • Native x402 client and server support
  • USDC settlement on Base via Coinbase CDP
  • Gas sponsored — agents never need to hold ETH
  • Per-agent caps enforced at the wallet layer, not the application layer
  • Works with any LLM or framework that can speak HTTP
ACP — Stripe's Agentic Commerce Protocol
A one-time-use card token, scoped to one merchant, one cart.
Best for: E-commerce checkouts, SaaS subscriptions, anywhere the merchant only accepts cards.

ACP uses Shared Payment Tokens (SPTs) — single-use card credentials bound to a specific merchant and cart. The agent never sees the raw PAN. The merchant gets a familiar card transaction. The token can't be reused, leaked, or replayed.

What AgentWallet ships
  • SPT issuance service in production
  • VGS forward-proxy architecture — real PANs never enter the model context
  • MCC allowlists, geofencing, anomaly auto-freeze enforced per agent
  • Direct ACP PSP registration with OpenAI in progress; Stripe acts as the intermediate PSP today
  • Works at every merchant that accepts Visa or Mastercard

THE STACK

Three protocols, side by side.

AP2x402ACP
Built byGoogle + CoinbaseCoinbaseStripe + OpenAI
SettlementAny railUSDC on BaseVisa / Mastercard
Best forAuthorization & auditAPI micropaymentsWeb checkout
Trust modelSigned mandatesHTTP-nativeTokenized card
Live on AgentWallet✓ v0.1✓ Production✓ Production

WHY THE COMBINATION MATTERS

No single protocol covers the agent economy.

01

Authorization without rails is theatre.

AP2 proves the agent had permission. But AP2 doesn't move money — it signs intent. You still need a settlement layer underneath.

02

Rails without authorization are liability.

x402 moves money in one HTTP round trip. But if the agent goes rogue, you have no cryptographic record of what the human actually approved. You need AP2 on top.

03

Crypto rails don't reach every merchant.

Most real merchants take cards, not USDC. ACP gives your agent a tokenized card credential it can use at any Visa or Mastercard endpoint — with the same per-agent caps, audit trail, and human binding as the other two.

One wallet shipping all three is the only way an agent can transact across the full economy — protocol-agnostic, rail-agnostic, merchant-agnostic.

WHO ELSE IMPLEMENTS THESE?

What other platforms ship.

PlatformAP2x402ACP
AgentWallet
Coinbase Agentic Wallets
Stripe Link for agents
Crossmintpartial
Cobo Agentic Walletpartial (custody only)
Ramp Agent Cards

Last updated May 2026. We update this table as competitors ship. See the full breakdown on the comparison page.

THE TECHNICAL FLOW

What a single transaction looks like.

Scenario: Your procurement agent buys $4,200 of cloud compute from a vendor.

  1. Step 01
    Intent (AP2)

    The human principal signs an IntentMandate via WebAuthn: "This agent may spend up to $5,000/month on cloud infrastructure, from these three vendors, until Dec 31."

  2. Step 02
    Cart (AP2)

    The agent finds the offer, builds a cart, and signs a CartMandate referencing the parent IntentMandate.

  3. Step 03
    Settlement (x402 or ACP)

    If the vendor accepts USDC → x402 handshake, settlement on Base, gas sponsored. If the vendor accepts only cards → ACP SPT issued, scoped to this merchant + this cart, used once, auto-destructs.

  4. Step 04
    Receipt

    PaymentMandate signed and anchored. Full chain — IntentMandate → CartMandate → PaymentMandate → settlement proof — written to the audit log. Every step verifiable by the user, the merchant, or a regulator.

End-to-end: ~3 seconds. Zero human clicks after the initial mandate.

FAQ

Common questions.

Is AP2 production-ready?+

The AP2 v0.1 specification is published and stable. AgentWallet has shipped a full v0.1 implementation including keypair infrastructure, mandate signing, public key endpoints, mandate-chain verification, and key revocation. We track the spec roadmap and ship updates as Google publishes them.

Do I have to use all three?+

No. Most agents start with one. The point is that you don't have to switch platforms when your use case grows. A procurement agent might start on AP2 + ACP and add x402 when it begins paying for APIs. Same wallet, same principal, same audit log.

What's the difference between ACP and Stripe Issuing?+

Stripe Issuing is the underlying card-issuance primitive. ACP (Agentic Commerce Protocol) is the standard for using those cards in agent-to-merchant flows — specifically, the Shared Payment Token format. AgentWallet uses Stripe as the intermediate PSP today while our direct ACP PSP registration with OpenAI is in progress.

Why USDC on Base for x402?+

Base has the lowest fees for stablecoin settlement at the volume agents generate, Coinbase's CDP gives us gas sponsorship out of the box, and USDC is the asset every x402 merchant accepts. We can add other chains as the protocol expands.

How are spending limits enforced across protocols?+

At the wallet layer, not the application layer. Per-call, daily, and monthly caps apply identically whether the agent is signing an AP2 mandate, completing an x402 handshake, or spending against an ACP token. One policy surface, three protocols.

Get a wallet that speaks every protocol.

One API call provisions a per-agent fiat wallet, a USDC wallet on Base, a virtual Mastercard, an MCP endpoint, an AP2 keypair, and a signed principal binding. Median provisioning time: 412 ms.