A Standard for Trustless Agents
There's a quiet revolution happening at the intersection of AI and blockchain. As autonomous agents — AI systems that can transact, negotiate, and make decisions independently — become more capable, a fundamental question emerges: how do agents trust each other?
ERC-8004: Trustless Agents, a draft Ethereum standard authored by Marco De Rossi, Davide Crapis, Jordan Ellis, and Erik Reppel, proposes an answer. The standard introduces three on-chain registries — Identity, Reputation, and Validation — that allow agents to discover, evaluate, and interact with each other across organizational boundaries, without any pre-existing trust relationship.
This isn't just another token standard. It's a protocol-level framework for open-ended agent economies — systems where agents from different organizations, built by different teams, running different models, can find each other and decide whether to transact. And it does this with a deliberately modular design: trust requirements scale with the stakes involved.
We've been following this proposal closely because it describes a future we've been building toward. Cred Protocol's credit scoring, identity attestations, and sybil detection APIs provide exactly the kind of data these registries need to function. Here's how the pieces connect.
The Three Registries
ERC-8004 defines three complementary on-chain registries that together form a trust stack for autonomous agents:
1. Identity Registry
An ERC-721-based system where agents claim portable, on-chain identifiers. Each agent publishes a registration file containing metadata, service endpoints, supported protocols (MCP, A2A), and a wallet address verified via EIP-712 or ERC-1271 signatures. Think of it as DNS for agents — a way to answer "who are you and what can you do?"
2. Reputation Registry
A non-revocable, on-chain feedback ledger. After interacting with an agent, clients submit structured feedback — quality scores, uptime percentages, response times, success rates — tagged for composability. The data is permanent: once submitted, feedback cannot be deleted, only responded to. This creates an immutable audit trail of agent performance.
3. Validation Registry
A system where designated validators independently verify agent capabilities. Validators assess agents on a 0-100 scale with categorized tags and evidence URIs. Multiple validators can assess the same agent, enabling progressive confidence through independent corroboration.
Together, these registries answer three questions an agent needs answered before transacting with a stranger: Who are you? What's your track record? Has anyone independently verified your claims?
The Missing Layer: Financial Trust
ERC-8004 is deliberately focused on structure — it defines how trust data should be organized, stored, and queried on-chain. What it doesn't prescribe is what data should populate these registries. The Reputation Registry accepts arbitrary feedback values. The Validation Registry accepts any 0-100 assessment. The standard is agnostic about the signals that feed into trust decisions.
This is where on-chain credit infrastructure becomes essential.
Consider a scenario: an autonomous lending agent discovers a borrower agent through the ERC-8004 Identity Registry. The borrower has a registered identity, some peer feedback in the Reputation Registry, and a validation score from one assessor. Is this enough to issue a $50,000 loan?
Probably not. What's missing is financial trust — an objective, data-driven assessment of the agent's (or its controlling wallet's) economic behavior. Not "did other agents like working with you?" but "do you have a history of honoring financial obligations across chains?"
This is precisely what Cred Protocol provides.
Credit Scores as Reputation Signals
Cred Protocol's credit scoring API generates a score from 300 to 1000 for any Ethereum address, computed from on-chain transaction history, DeFi interactions, asset holdings, and protocol participation across 10+ blockchain networks. This score directly maps to the kind of structured feedback the ERC-8004 Reputation Registry is designed to store.
An agent ecosystem built on ERC-8004 could use Cred scores as a standardized financial reputation signal:
{
"value": 847,
"decimals": 0,
"endpoint": "credprotocol.com/api/v2/score",
"tag1": "financial",
"tag2": "credit_score",
"uri": "ipfs://Qm.../score-report-0xABC.json",
"hash": "0x7f83b1657ff1fc53b92dc..."
}Because the Reputation Registry stores feedback on-chain with immutable hashes, credit scores submitted as reputation entries become verifiable, composable, and permanent. Any agent can query the registry, filter by the credit_score tag, and instantly understand the financial standing of a counterparty — without calling an external API or trusting a single data source.
The on-chain composability is key. Smart contracts managing agent escrows, lending pools, or insurance funds can directly read credit-based reputation entries and make automated decisions. A lending contract could require a minimum Cred Score of 700 before releasing funds to a borrower agent — all enforced on-chain.
Identity Attestations as Validation Evidence
ERC-8004's Validation Registry relies on independent validators to assess agents. But what constitutes a valid assessment? The standard wisely leaves this open. Cred Protocol's Identity Attestations API provides a natural answer.
Our identity endpoint aggregates verified credentials for any Ethereum address — ENS names, Gitcoin Passport scores, POAPs, Basenames, Worldcoin verification, and BrightID status. These are exactly the kind of independently verifiable signals that the Validation Registry is designed to store.
A Cred Protocol validator node could operate within the ERC-8004 framework by:
- Receiving a validation request for an agent's wallet address
- Querying identity attestations (ENS, Gitcoin Passport, POAPs)
- Querying the credit score and report for financial history
- Running sybil detection to verify the wallet is human-operated
- Computing a composite validation score (0-100) weighted across all signals
- Submitting the result on-chain with evidence URIs pointing to detailed reports
This transforms Cred Protocol into a trust oracle for the ERC-8004 ecosystem — an independent validator that combines financial, identity, and behavioral signals into a single, on-chain verification.
Sybil Detection: The Foundation of Agent Trust
One of ERC-8004's acknowledged security challenges is sybil attacks. The authors note that reputation gaming — creating fake agents to submit favorable reviews — is an inherent risk in open registries. Their suggested mitigation is "reviewer reputation systems and filtering."
This is where sybil detection becomes foundational. Our Sybil Detection API analyzes transaction patterns, funding sources, timing entropy, and identity credentials to determine whether a wallet is likely operated by a real human or a bot. In an ERC-8004 ecosystem, sybil detection serves multiple critical roles:
- Registry hygiene: Before accepting feedback into the Reputation Registry, check whether the submitting agent's wallet passes sybil detection. Feedback from wallets scoring 50+ on sybil risk could be flagged or weighted lower.
- Agent verification: When an agent registers in the Identity Registry, a sybil check on its controlling wallet adds a layer of legitimacy that cryptographic registration alone cannot provide.
- Cluster detection: Our funding source analysis identifies wallets that share a common funder — a strong signal that multiple "independent" agents are controlled by the same entity. In an agent economy, this prevents a single operator from creating dozens of agents to game reputation.
ERC-8004 provides the structure for agent reputation. Sybil detection provides the immune system that keeps that reputation meaningful.
x402: The Payment Layer ERC-8004 Envisions
A detail in the ERC-8004 specification that caught our attention: agent registration files include an optional x402Support boolean field. This signals that the standard's authors expect agents to use the x402 protocol for payments — the same HTTP-native payment standard we've already integrated.
This alignment isn't coincidental. The x402 protocol transforms the HTTP 402 "Payment Required" status code into a working payment layer using USDC on Base. It enables exactly the kind of permissionless, pay-per-request interactions that an open agent economy requires.
Cred Protocol already supports x402 payments across all endpoints. An agent operating in an ERC-8004 ecosystem can:
- Discover a counterparty through the Identity Registry
- Query Cred Protocol for a credit score via x402 ($0.01 USDC)
- Pull identity attestations via x402 ($0.01 USDC)
- Run sybil detection via x402 ($0.03 USDC)
- Make a trust decision — all without API keys, accounts, or human intervention
Total cost to fully evaluate a counterparty agent: $0.05. Total time: seconds. This is the economics of trust in an agent economy.
MCP and A2A: The Communication Protocols
ERC-8004's agent registration files explicitly support both MCP (Model Context Protocol) and A2A (Agent-to-Agent) as service endpoint types. Cred Protocol already offers an MCP integration that exposes credit scoring, reporting, and identity tools to AI agents natively.
This means an ERC-8004-registered agent running MCP can discover Cred Protocol's tools through standard protocol negotiation and use them conversationally. The agent doesn't need to know our API structure in advance — it discovers available tools, understands their parameters, and invokes them as needed.
The combination of ERC-8004 for discovery, MCP for communication, and Cred Protocol for financial intelligence creates a complete stack for agent trust:
| Layer | Protocol | Function |
|---|---|---|
| Discovery | ERC-8004 Identity Registry | Find agents and their capabilities |
| Communication | MCP / A2A | Interact with agent services |
| Payment | x402 | Permissionless micropayments |
| Financial Trust | Cred Protocol Credit Score | Assess financial reliability |
| Identity Trust | Cred Protocol Identity API | Verify credentials and humanity |
| Integrity | Cred Protocol Sybil Detection | Detect manipulation and fraud |
| Reputation | ERC-8004 Reputation Registry | Store and query trust signals |
| Validation | ERC-8004 Validation Registry | Independent agent verification |
What We're Building Toward
ERC-8004 is still a draft. It hasn't been ratified or deployed to mainnet. But the vision it articulates — open agent economies with pluggable trust models — is one we believe is inevitable. The question isn't whether agents will need standardized trust infrastructure, but when.
We're not waiting to find out. Several initiatives are already underway:
Credit-as-Reputation: We're exploring how Cred Scores can be natively submitted as ERC-8004 Reputation Registry entries, creating a financial reputation layer that any agent can query on-chain.
Validator Node: We're designing a Cred Protocol validation service that operates within the ERC-8004 Validation Registry framework, combining credit, identity, and sybil signals into standardized validation assessments.
Agent Registration: Our own MCP and x402 endpoints could be registered in the ERC-8004 Identity Registry, making Cred Protocol's services discoverable by any agent in the ecosystem.
Tiered Trust Models: ERC-8004 explicitly supports tiered trust — security that scales with financial risk. A $1 transaction needs minimal verification. A $100,000 loan needs comprehensive assessment. Our multi-endpoint approach (quick score for $0.01, full report for $0.07, sybil check for $0.03) maps naturally to this tiered model.
The Bigger Picture
We see ERC-8004 as a recognition of something the crypto-AI ecosystem has been converging toward: trust is the fundamental primitive of agent economies. Not tokens. Not protocols. Not models. Trust.
Every agent transaction — whether it's a loan, a service request, a data purchase, or a collaboration — depends on some level of trust between parties. Today, that trust is established through gatekeepers: API key providers, identity verification services, reputation platforms. ERC-8004 proposes to decentralize and standardize this trust infrastructure.
Cred Protocol's role in this future is clear: we provide the financial and identity intelligence that makes trust decisions possible. The registries define where trust data lives. We help determine what that data says.
The building blocks are in place. On-chain credit scoring. Identity attestations. Sybil detection. x402 payments. MCP integration. Each of these was built to solve an immediate need, but together they form the data layer for a trustless agent economy that ERC-8004 envisions.
The standard is still evolving, and we'll be following — and contributing to — its development. If you're building agent systems and thinking about trust infrastructure, we'd love to talk.
Get Involved
- Read the ERC-8004 Draft — the full specification on eips.ethereum.org
- Explore Cred Protocol's APIs — credit scoring, identity, and sybil detection
- Try Our x402 Playground — experience pay-per-request agent-friendly APIs
- Create a Free Account — get 1,000 credits monthly to start building
Follow us on Twitter or join our Discord to stay updated as ERC-8004 progresses and our integrations deepen.