The Ethereum Foundation says ERC-8004 is heading to mainnet soon. For many people, the first reaction is familiar: another new standard—does this actually matter?
This time, it might.
ERC-8004 isn’t about faster blocks or flashier apps. It’s aimed at a more uncomfortable problem—one that becomes unavoidable once AI agents start acting on our behalf and spending real money:
How do you know the agent on the other side is legitimate—and worth trusting?
1. When Agents Scale, Trust Breaks First
Picture a near-future scenario. You have a personal travel agent powered by AI. You ask it to book flights, hotels, a rental car, and plan an itinerary.
To do that, it has to interact with many other agents: an airline booking agent, a hotel reservation agent, a car rental agent, maybe even a local guide agent.
That’s where things get messy:
Is the “airline agent” actually official, or an impersonation?
If the rental agent confirms a booking, what guarantees it won’t fail at the last minute?
If an agent asks for payment, who is accountable if something goes wrong?
In the human world, we rely on licenses, credit ratings, platforms, and legal recourse.
In an agent-to-agent world—anonymous, cross-platform, and autonomous—those systems largely disappear.
At scale, the entire agent economy runs into a simple but brutal question:
Who are you, and why should I trust you?
2. What ERC-8004 Is Actually Doing
At its core, ERC-8004 is an attempt to give AI agents a portable identity and history.
It does not claim that an agent is honest or safe. Instead, it sets a baseline:
you can at least verify who controls the agent, how it presents itself, and how it has behaved in the past.
The standard is built around three registries.
A. Identity Registry: Who Are You?
Each agent is represented on-chain as an ERC-721 NFT linked to a structured registration file. That file can include:
Capabilities
Communication endpoints (MCP, A2A, APIs, ENS, URLs)
Contact methods and metadata
One subtle but important design choice:
changing the agent’s payment address requires cryptographic authorization.
This prevents a classic attack vector where a trusted identity is reused while silently redirecting payments elsewhere.
In short:
identity becomes discoverable, referenceable, and portable.
B. Reputation Registry: How Have You Performed?
This is where ERC-8004 avoids a common trap. It does not try to create an on-chain Yelp score.
Instead, it functions as a shared reputation event layer:
Minimal feedback primitives are stored on-chain
Rich context (task IDs, payment proofs, execution logs) lives off-chain
Feedback can be revoked, updated, or disputed
The design assumes reality:
reputation will be gamed—through Sybil attacks, collusion, and spam.
Rather than pretending otherwise, ERC-8004 lets different platforms apply their own filtering and scoring models to the same underlying data.
The protocol doesn’t decide who is trustworthy.
It makes trust measurable and portable.
C. Validation Registry: Who Backs the Result?
Reputation works for low-stakes tasks. High-stakes actions need verification.
ERC-8004 includes a generic validation framework where agents can request third-party verification and validators can post results with evidence.
The mechanism is deliberately flexible: re-execution, zkML, TEEs, or even human arbitration can all fit.
Naturally, this raises a harder question:
who validates the validators?
ERC-8004 doesn’t solve that directly. Instead, it leaves room for validator reputation, staking, insurance, and audit markets to emerge organically.
3. ERC-8004 and x402: Trust and Payment as Separate Rails
The division of labor is straightforward: ERC-8004 handles identity and trust, while x402 enables agent-to-agent payments.
x402 standardizes machine-readable billing and settlement. A service agent can issue a payment request, and the requesting agent can automatically settle it—without human intervention.
Together, they resemble a familiar pairing:
ERC-8004 acts like an ID and credit history
x402 acts like a POS terminal
Once agents can discover services, assess risk, pay automatically, and accumulate reputation, the idea of an “agent economy” stops being theoretical.
4. Is This a Strategic Move by Ethereum?
Probably—and a calculated one.
Ethereum has long positioned itself as a settlement layer, but most real usage has revolved around DeFi. If AI agents move into production, they will generate:
High-frequency, low-value payments
Constant identity and reputation lookups
Verification and attestation events
These are not speculative behaviors. They look like infrastructure usage.
ERC-8004 extends Ethereum’s role from financial coordination into machine coordination—turning trust itself into something composable.
5. The Risks Are Real—and Built In
This is not a silver bullet.
Identity proves control, not honesty
Reputation can be manipulated
The best indexers may become new gatekeepers
Validators can cartelize
Portable reputation will collide with enterprise governance and regulation
But ERC-8004’s value isn’t perfection.
It’s that trust stops being implicit and starts being modular.
Conclusion: Trust Is Becoming a Shared Interface
If AI agents proliferate, trust systems will either be locked inside dominant platforms—or collapse under fraud.
ERC-8004 proposes a third option:
treat trust as shared infrastructure.
Whether it succeeds depends on adoption, not elegance. But the direction is clear. As agents move from demos to systems that trigger real-world actions, being more capable is no longer enough.
They also need to be more accountable.
And that, more than performance, may decide which agent economies actually scale.