If you're a developer building for agentic commerce right now, you're staring at an alphabet soup of protocols: ACP, UCP, MCP, A2A, AP2, TAP, x402. Each solves a different layer of the stack. None of them work alone. And the documentation assumes you already know which ones you need.
This post maps all seven protocols, explains how they compose into a working stack, and tells you which ones to implement first based on your use case.
The Protocol Stack (Big Picture)
Before diving into each protocol, here's how they layer together:
┌───────────────────────────────────────────────────────────┐ │ TRUST LAYER │ │ Visa TAP (agent identity) · Mastercard Agentic Tokens │ ├───────────────────────────────────────────────────────────┤ │ PAYMENT LAYER │ │ AP2 (fiat mandates) · x402 (crypto) · Stripe SPT │ ├───────────────────────────────────────────────────────────┤ │ COMMERCE LAYER │ │ ACP (checkout) · UCP (full lifecycle) │ ├───────────────────────────────────────────────────────────┤ │ AGENT INFRASTRUCTURE LAYER │ │ MCP (data & tools) · A2A (agent coordination) │ └───────────────────────────────────────────────────────────┘
A typical agentic purchase flows bottom-up: MCP gives the agent product data, A2A coordinates between specialist agents, ACP or UCP handles checkout, AP2 or Stripe authorizes payment, and Visa TAP verifies agent identity for the merchant.
You don't need all seven. But you need to understand where each fits.
1. MCP — Model Context Protocol
The foundation. Everything else builds on this.
| Built by | Anthropic (2024), now community-governed via Agentic AI Foundation |
| What it does | Standardizes how AI agents access external data, tools, and systems |
| Transport | JSON-RPC 2.0 over stdio, HTTP, SSE, WebSocket |
| License | Open standard |
| Adoption | 97M+ monthly SDK downloads, 10,000+ active servers, supported by ChatGPT, Cursor, Gemini, VS Code, Copilot |
| Spec | modelcontextprotocol.io |
| GitHub | github.com/modelcontextprotocol |
What Developers Should Know
MCP provides three primitives: Tools (functions agents can call), Resources (structured data agents can read), and Prompts (templates for interactions). In commerce, this means your product catalog becomes a Resource, your checkout flow becomes Tools (create_checkout, get_checkout, update_checkout, complete_checkout), and your shopping assistant prompt becomes a Prompt.
MCP is the de facto standard for tool-calling in agentic systems. If you build one protocol integration, start here. Both UCP and ACP have MCP bindings — meaning agents can discover and invoke your commerce capabilities through MCP without knowing they're talking to an ACP or UCP endpoint.
The critical design decision: MCP maintains stateful connections with capability negotiation. This means agents discover what your server offers at runtime, not at compile time. Your server declares tools, the agent decides which to use. This decoupling is why MCP scales to 10,000+ servers without breaking.
Commerce-Specific Example
A Shopify MCP server exposes tools like:
{
"tools": [
{ "name": "search_products", "description": "Search product catalog by query" },
{ "name": "get_product_details", "description": "Get full details for a product SKU" },
{ "name": "check_inventory", "description": "Real-time inventory check" },
{ "name": "create_checkout", "description": "Start a checkout session" },
{ "name": "complete_checkout", "description": "Finalize purchase with payment" }
]
} The agent calls tools/list, discovers what's available, and invokes the right tools based on the user's intent. No hardcoding.
2. A2A — Agent-to-Agent Protocol
How agents talk to each other without sharing their secrets.
| Built by | Google (April 2025), now under Linux Foundation governance |
| What it does | Enables independent agents to communicate, delegate tasks, and negotiate — without exposing internal logic or memory |
| Transport | gRPC (primary in v0.3+), JSON-RPC 2.0, REST |
| License | Apache 2.0 |
| Adoption | 150+ organizations, all major hyperscalers |
| Spec | a2a-protocol.org |
| GitHub | github.com/a2aproject/A2A |
What Developers Should Know
A2A matters when a single agent can't handle the entire commerce flow alone. Example: a shopping agent discovers products, but needs a logistics agent to check shipping availability and a payment agent to handle authorization. A2A lets these agents coordinate without any of them seeing the others' internal state.
The key concept is the Agent Card — a capability manifest that each agent publishes, declaring what it can do, how to authenticate, and what protocols it supports. Think of it like a business card for AI agents.
Security warning: v0.3 supports but doesn't enforce Agent Card signing. There's no central registry. This means agent spoofing is possible — a malicious agent could claim to be a payment processor. For production, implement certificate pinning and validate agent identity through out-of-band channels.
When You Need It
You need A2A if you're building a multi-agent system — for example, a shopping assistant that coordinates with a separate price comparison agent, inventory checker, and payment handler. If you're building a single-purpose merchant endpoint, you probably don't need A2A yet.
3. ACP — Agentic Commerce Protocol
The checkout protocol. OpenAI and Stripe's standard for the last mile of agentic commerce.
| Built by | OpenAI + Stripe (announced October 2024, launched September 2025) |
| What it does | Defines how agents create, update, and complete checkout sessions with merchants |
| Transport | REST (HTTPS + JSON), also MCP server binding |
| License | Apache 2.0 |
| Adoption | Etsy (live), 1M+ Shopify merchants in pipeline, URBN, Coach, Kate Spade |
| Spec | agenticcommerce.dev |
| GitHub | github.com/agentic-commerce-protocol |
What Developers Should Know
ACP is deliberately simple: five REST endpoints that walk through a checkout lifecycle. If you've built any REST API, you can implement ACP in a week.
The five endpoints:
POST /checkout_sessions— Create a session with items + buyer infoGET /checkout_sessions/{id}— Poll current statePOST /checkout_sessions/{id}— Update items, address, fulfillment selectionPOST /checkout_sessions/{id}/complete— Submit payment via SharedPaymentTokenPOST /checkout_sessions/{id}/cancel— Abort
The state machine: not_ready_for_payment → ready_for_payment → completed (or canceled).
Critical detail: ACP requires HMAC-SHA256 request signing and Bearer token authentication on every call. The Idempotency-Key header is recommended for POST requests — and if you don't implement it, you'll create duplicate sessions when agents retry (this is exactly what killed OpenAI's Instant Checkout).
Payment is via Stripe's SharedPaymentToken — a single-use, time-bound, amount-scoped credential. The agent provisions it, sends it in the CompleteCheckoutRequest, and the merchant redeems it with Stripe. This prevents overcharging and replay attacks.
When You Need It
Implement ACP if your agent traffic comes from ChatGPT or other conversational AI assistants. It's the path of least resistance if you're already on Stripe.
4. UCP — Universal Commerce Protocol
The full-lifecycle protocol. Google and Shopify's standard for discovery through post-purchase.
| Built by | Google + Shopify (announced January 2026 at NRF) |
| What it does | Covers the entire commerce journey: discovery, checkout, order management, returns, loyalty |
| Transport | REST, MCP (JSON-RPC), A2A, Embedded Protocol (iframe) |
| License | Open standard |
| Adoption | Google, Shopify, Walmart, Target, Best Buy, Home Depot, Visa, Mastercard, 20+ others |
| Spec | ucp.dev |
| GitHub | github.com/Universal-Commerce-Protocol/ucp |
What Developers Should Know
UCP is more ambitious than ACP. Where ACP handles checkout, UCP defines the entire commerce lifecycle as composable Capabilities (Checkout, Identity Linking, Order Management) with optional Extensions (Discounts, Fulfillment, AP2 Mandates).
The critical differentiator is dynamic discovery. Merchants publish a manifest at /.well-known/ucp that declares their capabilities, supported protocols, and payment handlers. Agents discover these at runtime — no hardcoded integration required.
UCP's checkout flow is similar to ACP's but with important differences:
- Full resource replacement — updates use PUT (replace entire checkout), not partial POST
- Escalation state — the
requires_escalationstate withcontinue_urlhandles cases where the agent must hand off to a human (age verification, complex configuration) - Error severity — errors come with
recoverable,requires_buyer_input, orterminalseverity, giving agents explicit guidance on what to do next - Post-purchase — UCP includes an Order capability with fulfillment events (shipped, delivered, returned), which ACP doesn't cover
UCP uses reverse-domain namespacing for extensions (dev.ucp.shopping.checkout, com.example.payments.installments). This means anyone can define custom extensions without central approval — enabling rapid innovation while maintaining interoperability.
When You Need It
Implement UCP if your agent traffic comes from Google surfaces (Search AI Mode, Gemini, Google Shopping) or if you need full lifecycle support (order tracking, returns, loyalty). If you're a Shopify merchant, UCP activation is essentially push-button.
5. AP2 — Agent Payments Protocol
The payment authorization layer. Cryptographic proof that the human approved the purchase.
| Built by | Google (announced September 2025) |
| What it does | Enables agents to securely initiate, authorize, and complete payments with cryptographic user approval |
| Transport | HTTP/REST, JSON |
| License | Apache 2.0 |
| Adoption | 60+ partners: Mastercard, PayPal, American Express, Coinbase, Adyen, Revolut |
| Spec | ap2-protocol.org |
What Developers Should Know
AP2 solves a fundamental question: when an agent says "charge this card," how does the merchant know the human actually approved it?
AP2 uses a three-tier mandate system:
- Intent mandate — User pre-authorizes purchase rules: "Buy running shoes under $100 when they go on sale." Specifies price limits, timing, product constraints.
- Cart mandate — The actual items, prices, and merchant. Signed by the user when they review and approve the specific purchase.
- Fulfillment mandate — Tracks what was delivered. Creates an auditable record for dispute resolution.
Each mandate is cryptographically signed, preventing replay attacks where payment credentials from Merchant A are intercepted and reused at Merchant B.
When You Need It
AP2 is the payment layer for UCP. If you're implementing UCP, you'll interact with AP2 mandates during the complete_checkout step. If you're using ACP, Stripe's SharedPaymentToken handles payment authorization instead.
6. Visa TAP — Trusted Agent Protocol
"Is this really a legitimate AI agent, or a bot trying to steal credit cards?"
| Built by | Visa + Akamai (October 2025) |
| What it does | Verifies agent identity and distinguishes legitimate AI agents from malicious bots |
| Transport | HTTP, edge CDN integration |
| Adoption | 100+ partners globally, 30+ active in sandbox, pilots in APAC and Europe |
| Spec | developer.visa.com |
What Developers Should Know
TAP operates at the edge — before agent requests even hit your application. Akamai's behavioral intelligence analyzes request patterns, and Visa's agent registry verifies agent credentials. Merchants get a trust signal: "This is a verified agent acting on behalf of a verified customer."
The key value: you don't need to rebuild your fraud detection for agent traffic. TAP provides the verification layer so your existing fraud stack can make informed decisions. Without it, your fraud tools will flag 30%+ of legitimate agent transactions because they don't look like human browsing behavior.
TAP is designed for Visa's network of 175 million merchant locations worldwide. For most merchants, integration happens at the payment gateway level (Stripe, Adyen) rather than requiring direct implementation.
When You Need It
You need TAP (or a similar trust layer) the moment you accept real payments from agent-initiated transactions. During sandbox testing, you can skip it. In production, agent identity verification is critical for fraud prevention.
7. x402 — The Crypto-Native Payments Protocol
Machine-to-machine payments without human involvement.
| Built by | Coinbase Development Platform (2025) |
| What it does | Enables programmatic payments using HTTP 402 "Payment Required" status code with cryptocurrency |
| Transport | HTTP 402 semantics, ERC-20 on Base, Ethereum, Polygon, Solana |
| License | Open |
| Adoption | 35M+ transactions processed, $10M+ volume, 500K weekly transactions |
| Spec | x402.org |
What Developers Should Know
x402 is fundamentally different from the other protocols. It's not about shopping — it's about agents paying for services autonomously. When Agent A needs data from Agent B's API, Agent B returns HTTP 402 "Payment Required" with a price. Agent A sends a USDC payment, Agent B serves the response.
The protocol supports ERC-20 tokens (USDC, EURC) via EIP-3009 or Permit2. Free tier: 1,000 transactions/month, then $0.001/transaction.
When You Need It
x402 is relevant if you're building agent infrastructure where agents need to autonomously purchase data, compute, or services from other agents. It's less relevant for consumer-facing commerce (where AP2 and Stripe handle payments) but important for the agent-to-agent economy.
Bonus: Mastercard Agentic Tokens
Not a standalone protocol, but worth understanding. Mastercard built Agentic Tokens — dynamic digital credentials on top of their existing tokenization infrastructure (the same foundation as contactless payments). These tokens empower AI agents to transact using existing Mastercard rails.
Mastercard explicitly designed these to work across ACP, UCP, AP2, and A2A. Their Agent Toolkit is available via MCP servers, enabling AI assistants to access Mastercard's API documentation through Claude, Cursor, and GitHub Copilot.
Mastercard Agentic Tokens rolled out to all US cardholders by holiday 2025, with global expansion following.
The Decision Matrix: Which Protocols Do You Need?
| If you're building... | You need | Start with |
|---|---|---|
| A Shopify store accepting agent traffic | UCP + MCP | Shopify's native UCP activation |
| A merchant on Stripe wanting ChatGPT traffic | ACP | ACP REST endpoints + Stripe SPT |
| A merchant wanting both Google and ChatGPT traffic | UCP + ACP + MCP | UCP first (broader scope), then add ACP |
| An AI shopping assistant | MCP + ACP or UCP | MCP (for product data), then ACP/UCP (for checkout) |
| A multi-agent commerce system | MCP + A2A + ACP/UCP | MCP + A2A (infrastructure first), then commerce |
| A payment processor supporting agents | AP2 + Visa TAP | AP2 (mandates), then TAP (trust verification) |
| An agent-to-agent service marketplace | MCP + A2A + x402 | x402 for payments, MCP for capability discovery |
Where This Is Going
The protocol landscape will consolidate. My predictions:
Within 12 months: MCP becomes universal infrastructure (it's already there). ACP and UCP develop interoperability layers — merchants implement one and adapters handle the other. AP2 becomes the standard fiat payment authorization for agent transactions.
Within 24 months: A "meta-protocol" emerges that abstracts ACP/UCP differences. Agent identity standards (TAP and equivalents) become required for production deployments. x402 or similar becomes standard for agent-to-agent micropayments.
The invariant: Merchants who test their protocol implementations will capture agent-driven revenue. Merchants who don't will lose sales they never knew existed.
Test your ACP and UCP endpoints before real agents hit them. Get your Agent Readiness Score