What is Agentic Experience Design (AXD)?

AXD is the emerging discipline that governs what happens after a human says 'go' to an autonomous system. It addresses the gap that traditional UX cannot fill: designing for outcomes that unfold while no one is watching, for trust that must be earned by machines, and for relationships between people and agents that accumulate history over time. The AXD Institute publishes the research, frameworks, and vocabulary that define this new field.

What is the AXD Institute?

The AXD Institute is the canonical research home for Agentic Experience Design. Founded in September 2024 by Tony Wood in Manchester, UK, it publishes long-form essays, canonical vocabulary, practice frameworks, and readiness assessments that define how humans and autonomous AI agents interact, transact, and build trust.

Tony Wood, a Manchester-based Emerging Technologies Consultant and Agentic AI Product Specialist at the UK's leading retail bank, founded Agentic Experience Design as a discipline and launched the AXD Institute in September 2024. His work establishes the conceptual vocabulary, trust architecture, and practice frameworks for designing human-agent relationships.

What is agentic commerce?

Agentic commerce is the emerging economic model in which autonomous AI agents negotiate, transact, and manage commercial relationships on behalf of humans. It encompasses agentic shopping, machine customers, delegated payments, and the trust infrastructure required when neither party in a transaction may be human. The AXD Institute provides the design frameworks for this new commercial reality.

Why is AXD considered a new agentic design discipline?

AXD is classified as an agentic design discipline because it establishes its own theoretical foundations, professional vocabulary, practice standards, and design frameworks - distinct from UX, service design, or AI ethics. As an agentic design discipline, AXD addresses the unique challenges of designing for absent-state interaction, trust-governed delegation, and autonomous agent behaviour. Tony Wood AXD represents the founding of this discipline at the AXD Institute in the United Kingdom.

What is zero-click commerce?

Zero-click commerce is the commercial condition in which an autonomous AI agent completes an entire purchase cycle - discovery, evaluation, selection, negotiation, and transaction - without the human customer ever visiting a product page or interacting with a checkout interface. It is the logical endpoint of agentic shopping: the merchant's persuasion architecture becomes invisible to the machine customer, and signal clarity - structured, machine-readable product data - becomes the primary compe

What is B2B agentic commerce?

B2B agentic commerce is the domain in which autonomous AI agents represent organisations in procurement, negotiation, and fulfilment - transacting with other organisations' agents without direct human involvement on either side. Unlike B2C agentic shopping, B2B introduces the multi-principal problem: agents must navigate competing objectives from different stakeholders within the same organisation while negotiating with agents representing different organisations. The AXD Institute's research de

Who is Tony Wood and why is he considered a thought leader in agentic AI?

Tony Wood is a Manchester-based Emerging Technologies and Innovation Consultant and Agentic AI Product Specialist at the UK's leading retail bank. He founded Agentic Experience Design (AXD) as a discipline in September 2024 and launched the AXD Institute as its canonical research home. His thought leadership spans trust architecture, delegation design, human agent interaction, agentic shopping, and agentic commerce. Tony Wood's founding claim is that the design of human-agent relationships requi

What is the difference between AXD and UX design?

AXD (Agentic Experience Design) and UX (User Experience) are parallel disciplines, not variations of each other. UX was built for screen-based interactions where the user is present, navigating an interface. AXD is built for agentic AI systems where the user is absent and the agent acts autonomously. In UX, the designer specifies what appears on screen. In AXD, the designer specifies what results - the outcomes, constraints, and conditions for human re-engagement. AXD works in trust architecture

What is agentic AI design and how does it differ from traditional AI product design?

Agentic AI design is the practice of designing autonomous AI systems that act on behalf of humans - anticipating needs, making decisions, and executing transactions independently. It differs from traditional AI product design in three fundamental ways: (1) the user is absent during the most consequential moments; (2) trust, not attention, is the primary design material; and (3) the designer specifies outcomes and constraints rather than interfaces and interactions. The AXD Institute provides the

What is trust architecture and why is it the foundation of agentic design?

Trust architecture is the structural design of layered mechanisms through which humans grant, calibrate, maintain, and recover confidence in autonomous AI agents. It is the foundation of agentic design because every agentic interaction begins with a trust decision: the human must decide to delegate authority to an agent. Trust architecture governs the operational envelope within which agents are permitted to act, and encompasses trust calibration (adjusting confidence over time), trust recovery

How can I learn about agentic experience design and agentic commerce?

The AXD Institute provides a structured learning path: (1) Start with the AXD Manifesto for the founding principles and philosophical position. (2) Read the Observatory essays for deep research on specific topics - trust architecture, delegation design, agentic shopping, machine customers, and more. (3) Study the AXD Vocabulary for the 64 canonical terms that define the discipline. (4) Apply the 12 Practice Frameworks to your own products and services. (5) Take the AXD Readiness Assessment to ev

What is the x402 protocol for agentic payments?

The x402 protocol is a proposed HTTP-based payment protocol that enables AI agents to make micropayments and transactions natively within web interactions. Inspired by the reserved HTTP 402 'Payment Required' status code, x402 creates a standardised mechanism for agents to discover payment requirements, negotiate terms, and execute transactions as part of normal web browsing and API interactions.

How does x402 enable agent-to-agent commerce?

x402 enables agent-to-agent commerce by embedding payment capability directly into HTTP interactions. When an agent encounters a 402 response, it can automatically negotiate payment terms, verify its spending authority, and execute the transaction - all without human intervention. This makes paid API access, premium content, and commercial services accessible to autonomous agents.

What is the relationship between x402 and existing payment infrastructure?

x402 is designed to work alongside existing payment infrastructure, not replace it. It provides the protocol layer that connects agent intent to payment execution, using existing rails (credit cards, crypto, bank transfers) for actual fund movement. The innovation is in making payment discovery and negotiation machine-native, enabling the seamless agent commerce that current payment UIs prevent.

The x402 Protocol and the Trust Vacuum

In 1992, the architects of HTTP reserved status code 402 for future use. The name they gave it was "Payment Required." For thirty-three years, it sat dormant - a placeholder in the specification, a promise the web never kept. In February 2026, Stripe activated it. The question is not whether the activation was overdue. The question is whether the world it activates into is ready for what it enables.

Stripe's 2025 annual letter introduced two payment primitives that, taken together, represent the most significant infrastructure development in agentic commerce since the concept was named. The first is machine payments - built on the x402 protocol, enabling AI agents to pay for API calls, data, and digital services using stablecoin micropayments settled on-chain. The second is Shared Payment Tokens - a new payment primitive that lets agents initiate purchases on behalf of humans without exposing credentials.

Together, these primitives address the two payment problems that have constrained agentic commerce: how agents pay for their own operational needs, and how agents pay for things humans want. The Five Levels of Agentic Commerce that Stripe described in the same letter are not merely a maturity model. They are a roadmap - and x402 and Shared Payment Tokens are the infrastructure that makes Levels 4 and 5 mechanically possible. The AXD Institute's Protocol Tracker monitors x402 alongside seven other active agentic commerce protocols.

This essay is concerned with what that mechanical possibility does not include. The payment rails are being laid. The trust rails are not. And the gap between the two - examined in the AXD Institute's analysis of AI agent payments design - is where the most consequential design failures of agentic AI will occur.

The Dormant Code

HTTP 402 was reserved alongside codes that became foundational to the web. 200 OK. 301 Moved Permanently. 404 Not Found. 403 Forbidden. Each of these was implemented within years of the specification being written. 402 was not. The reason is instructive: the web's architects anticipated that the internet would need a native payment layer, but the economics and the technology were not ready. Micropayments in 1992 meant fractions of a penny for web pages, and no infrastructure existed to settle them.

For three decades, the web evolved without a native payment protocol. Instead, it built payment on top of identity. Credit cards required names, addresses, and verification. PayPal required accounts. Stripe itself built a business on making card payments programmable. Every payment mechanism the web produced required the payer to be known - to be identified, authenticated, and authorised through a human-centric process.

x402 breaks this pattern. It implements the dormant status code using USDC stablecoins on Base, Coinbase's Layer 2 blockchain. When a client requests a resource from an x402-enabled server, the server returns a 402 response with payment requirements in the header - price, token, chain, recipient. The client signs a gasless USDC transfer, retries the request with the payment signature, and the server settles the transaction through a facilitator before returning the resource. The entire exchange happens in HTTP headers. No accounts. No identity verification. No monthly invoices. No minimum transaction size.

The protocol has already processed over 100 million payments since its launch in May 2025. More than 10,000 paid endpoints are live. The x402 Foundation - co-founded by Coinbase and Cloudflare, with members including Google, Visa, AWS, Circle, Anthropic, and Vercel - governs the specification. This is not a whitepaper. It is operational infrastructure.

The dormant code has woken up. But it has woken up in a world its original architects could not have imagined - a world where the entity making the payment is not a human browsing a website, but an autonomous agent executing a task. And that changes everything about what "Payment Required" means.

What x402 Actually Does

The x402 protocol operates through a four-step exchange between three roles: the client (the agent with a crypto wallet), the server (the API host offering a paid resource), and the facilitator (the settlement service that verifies and executes the on-chain payment).

The x402 Exchange

Step 1. The client sends a standard HTTP request to the server.

Step 2. The server returns HTTP 402 with a PAYMENT-REQUIRED header containing the price, token type, blockchain network, and recipient address.

Step 3. The client signs a gasless USDC transfer locally and retries the request with a PAYMENT-SIGNATURE header.

Step 4. The server forwards the signed payment to the facilitator for on-chain settlement, then returns HTTP 200 with the requested resource and a PAYMENT-RESPONSE header confirming settlement.

The economics are striking. Gas costs on Base run under $0.001 per settlement. There is no minimum transaction size - payments of a fraction of a cent are viable. Settlement is near-instant. And because the protocol uses stablecoins rather than credit cards, there are no chargebacks, no 30-day settlement windows, and no interchange fees.

What x402 enables, in practical terms, is a world where an AI agent can autonomously pay for data, compute, API access, and digital services on a per-request basis without any human involvement in the payment itself. The agent needs only a funded wallet. It does not need an account, an API key, a subscription, or a credit card. It encounters a price, evaluates it, pays it, and receives the resource. The entire exchange is stateless and permissionless.

From a payments engineering perspective, this is elegant. From an agentic experience design perspective, it raises questions that the protocol does not answer and was not designed to answer.

Shared Payment Tokens: Delegation as Infrastructure

If x402 solves the problem of agents paying for their own operational needs, Shared Payment Tokens solve the problem of agents paying for things humans want. Stripe describes them as "a new payment primitive that lets agents initiate payments without exposing credentials, usable even by businesses that don't process payments with Stripe."

The mechanism is tokenised delegation. A human authorises a payment method. Stripe generates a token - a reference to that payment method that carries authority but not the underlying credentials. The agent receives the token and can initiate purchases within whatever constraints the token encodes. The human's card number, bank details, and identity are never exposed to the agent or to the merchant.

This is a significant engineering achievement. It solves a genuine security problem - the risk of credential exposure when agents transact on behalf of humans. And it does so in a way that is backwards-compatible with existing payment infrastructure. Merchants do not need to adopt new protocols. They receive a standard Stripe payment. The agentic layer is invisible to them. But as the AXD Institute's analysis of the merchant's stack demonstrates, this invisibility is temporary - merchants who want to compete for agent-mediated commerce will need to build far more than payment acceptance.

But from an AXD perspective, Shared Payment Tokens are delegation instruments. And delegation instruments must be evaluated not only by what they enable but by what they constrain - or fail to constrain. A token that carries payment authority is, in trust architecture terms, a trust boundary. It defines the perimeter within which the agent is permitted to act. The design question is whether that perimeter is sufficient.

What constraints does a Shared Payment Token encode? A spending limit, presumably. A time window, perhaps. A merchant category, possibly. But does it encode the human's preferences? Their risk tolerance? Their contextual priorities? Does it know that the human would spend freely on their child's birthday but frugally on routine groceries? Does it understand that the human trusts this agent for books but not for electronics? These are not payment constraints. They are trust constraints. And they live in a layer that Shared Payment Tokens were not designed to address.

Two Primitives, Two Trust Problems

x402 and Shared Payment Tokens address different levels of the Five Levels of Agentic Commerce, and they create different trust problems.

Dimension	x402 / Machine Payments	Shared Payment Tokens
Purpose	Agent pays for its own operational needs	Agent pays for things the human wants
Payment method	Stablecoin micropayments (USDC on Base)	Tokenised reference to human's payment method
Five Levels mapping	Infrastructure layer beneath all levels	Enables Level 4 (Delegation) and Level 5 (Anticipation)
Trust question	"Can this agent spend its own funds wisely?"	"Can this agent spend my money as I would?"
Identity model	Anonymous - wallet address only	Pseudonymous - token linked to human identity
Failure consequence	Agent wastes its operational budget	Human receives unwanted purchases

The trust problem with x402 is one of resource allocation. The agent has a wallet. It encounters services that cost money. It must decide whether the resource is worth the price, whether the provider is reliable, and whether the expenditure aligns with its objectives. This is a trust problem, but it is an agent-to-service trust problem - the agent must trust the service, and the service must trust the payment.

The trust problem with Shared Payment Tokens is one of delegated authority. The human has given the agent permission to spend their money. The agent must exercise that permission in a way that reflects the human's values, preferences, and constraints - many of which are unspoken, contextual, and changeable. This is a delegation trust problem, and it is orders of magnitude more complex than the resource allocation problem.

Stripe has built infrastructure for both. But infrastructure is not architecture. The payment rails carry money. They do not carry trust. And the distinction matters enormously at Levels 4 and 5, where the human is absent and the agent acts alone.

The Hesitation Layer

Traditional commerce has a feature that nobody designed and everybody relies on: human hesitation. People pause before buying. They abandon carts. They compare prices across tabs. They sleep on decisions. They ask a partner. This hesitation is not a bug in the customer experience. It is a safety mechanism - an undesigned layer of friction that absorbs errors, prevents regret, and gives the human time to calibrate their own preferences.

x402 eliminates the hesitation layer entirely. The protocol is designed for speed. An agent encounters a price, evaluates it programmatically, signs a payment, and receives the resource - all within a single HTTP exchange. There is no cart. No checkout page. No "Are you sure?" confirmation. No cooling-off period. The transaction is atomic: request, pay, receive.

For the use cases x402 was designed for - API calls, data lookups, compute access - this speed is appropriate. An agent paying a fraction of a cent for a weather API response does not need a hesitation layer. But the precedent matters. The protocol establishes a pattern of frictionless, instantaneous, autonomous payment that will inevitably be extended beyond micropayments. When agents begin making larger purchasing decisions - and they will - the absence of any designed hesitation becomes a design liability.

The CockroachDB team articulated this precisely in their February 2026 analysis of agentic payment infrastructure: "Agentic pay removes the safety margin that you did not realise you were relying on. Traditional checkout flows benefit from human inefficiency. People pause, abandon carts and correct mistakes. That hesitation layer absorbs race conditions and partial failures that would otherwise surface immediately."

From an AXD perspective, the hesitation layer is not friction to be eliminated. It is a trust mechanism to be redesigned. The challenge is not to preserve human slowness - that would defeat the purpose of agentic commerce. The challenge is to design agent-native hesitation: programmatic pause points, contextual evaluation thresholds, and escalation triggers that serve the same function as human hesitation but operate at machine speed. This is what Delegation Design calls constraint specification - and it must be built into the trust architecture, not the payment protocol.

No Chargebacks: Feature or Failure Mode?

x402 settles payments on-chain using stablecoins. On-chain settlement is final. There are no chargebacks. This is presented as a feature - and for service providers, it genuinely is. A developer offering an API endpoint through x402 receives payment that cannot be reversed. No disputes. No fraud claims. No 90-day chargeback windows. The economics are clean and predictable.

But from a Failure Architecture perspective, the absence of chargebacks is not a feature. It is the removal of a recovery mechanism. Chargebacks exist in traditional commerce because transactions go wrong. Products are defective. Services are not delivered. Merchants are fraudulent. The chargeback is an imperfect, expensive, adversarial mechanism - but it is a mechanism. It provides a path from failure back to resolution.

What happens when an agent pays for data through x402 and the data is wrong? What happens when it pays for compute and the computation fails? What happens when it pays for an API response and the response is garbage? The payment is settled. The stablecoins have moved. There is no reversal mechanism in the protocol.

The x402 ecosystem's answer is reputation and market forces - bad providers will lose customers. This is true in equilibrium. But agents do not operate in equilibrium. They operate in real time, making rapid sequential decisions, often encountering services for the first time. An agent that pays for ten bad API responses before "learning" that a provider is unreliable has already wasted resources and, more importantly, has already produced ten potentially flawed outputs based on that bad data.

The design implication is clear: if the payment layer removes recovery mechanisms, the trust layer must provide them. Failure Architecture for x402-enabled agents must include pre-payment validation (is this provider reliable?), post-payment verification (was the resource as described?), and escalation protocols (what happens when verification fails?). None of this exists in the x402 specification. All of it must exist in the agentic experience design.

The Facilitator Nobody Designed

The x402 protocol defines three roles: client, server, and facilitator. The facilitator is the settlement layer - the service that verifies signed payments and executes on-chain transfers. Over 22 facilitators currently operate in the ecosystem, including Coinbase's CDP facilitator for production traffic and the community-run x402.org facilitator for development.

In trust architecture terms, the facilitator is a trust intermediary. Both the client and the server trust the facilitator to settle payments honestly and reliably. If the facilitator fails - if it does not settle, if it settles incorrectly, if it is compromised - both parties are affected. The facilitator holds a position of structural trust in the protocol.

But the facilitator role was designed as a technical component, not a trust component. The specification defines what the facilitator does (verify and settle payments) but not what it owes to the parties that depend on it. There is no service-level agreement in the protocol. There is no dispute resolution mechanism. There is no accountability framework. If a facilitator fails to settle a payment, the client has paid (the signed transfer is valid) but the server has not received. Who bears the loss? The protocol does not say.

This is a recurring pattern in infrastructure-first development: the technical role is specified, but the trust role is left to emerge. In traditional finance, trust intermediaries - banks, payment processors, clearinghouses - are heavily regulated precisely because their position in the system creates systemic risk. The x402 facilitator occupies an analogous position but without analogous governance.

From an AXD perspective, the facilitator is an undesigned trust boundary. It is a point in the system where trust is concentrated but not architected. As the ecosystem scales - and it is scaling rapidly - the facilitator's trust role will become more consequential, not less. The design of facilitator accountability, transparency, and recovery is not a protocol concern. But it is an agentic experience design concern, because the human who delegates purchasing authority to an agent is implicitly trusting every intermediary in the payment chain, whether they know it or not.

Payment Without Identity

x402 separates payment from identity. An agent pays with a wallet address. The server knows the money is real but does not know who sent it. This is by design - the protocol's architects argue that payment should not require identification, that the money itself is sufficient authorisation.

For micropayments - a cent for an API call, a fraction of a cent for a data lookup - this separation is reasonable. The server does not need to know who is paying for a weather forecast. The payment is the authorisation.

But trust architecture requires more than payment. Trust is relational. It accumulates over time. It depends on knowing - at some level of abstraction - who you are dealing with. An agent that pays anonymously for services cannot build a reputation. A service that accepts anonymous payments cannot differentiate between a reliable agent and a malicious one. The separation of payment from identity creates a system that is transactionally efficient but relationally impoverished.

Shared Payment Tokens take the opposite approach. The token is linked to a human identity through Stripe's infrastructure. The merchant knows (through Stripe) that the payment is backed by a real person with a real payment method. Identity is preserved, even though credentials are not exposed. This is a fundamentally different trust model - one that enables the kind of relational commerce that agentic experience design requires.

The tension between these two models - anonymous machine payments and identity-linked consumer payments - maps directly to the tension in agentic commerce between efficiency and trust. x402 optimises for efficiency. Shared Payment Tokens optimise for trust. The question for AXD practitioners is not which model is better, but how to design systems that use each model appropriately - anonymous payments for operational infrastructure, identity-linked payments for delegated consumer commerce - and how to manage the boundary between them.

What the Payment Rails Cannot Carry

Stripe has built the payment infrastructure for Levels 4 and 5 of agentic commerce. Shared Payment Tokens enable delegated purchasing. Machine payments enable autonomous operational spending. The Agentic Commerce Protocol provides interoperability between AI platforms and merchants. The Agentic Commerce Suite gives businesses a single integration point. The infrastructure is real, it is operational, and it is scaling.

But payment rails carry money. They do not carry the things that agentic experience design requires for Level 4 and Level 5 to work as human experiences, not merely as technical capabilities.

Payment rails cannot carry preference. A Shared Payment Token encodes payment authority - the ability to charge a card up to a limit. It does not encode the human's preferences, values, or contextual priorities. The agent knows it can spend. It does not know what the human wants. Preference is a trust layer concern, not a payment layer concern.

Payment rails cannot carry judgement. x402 enables an agent to pay for any resource that has a price. It does not help the agent evaluate whether the resource is worth the price, whether the provider is reliable, or whether the expenditure aligns with the human's objectives. Judgement requires context, history, and evaluation criteria - none of which exist in the payment protocol.

Payment rails cannot carry accountability. When an agent makes a purchase through a Shared Payment Token, who is accountable for the outcome? The agent that executed the purchase? The platform that hosted the agent? The human who delegated authority? The merchant who accepted the payment? Accountability is a trust architecture problem, and it is entirely absent from the payment infrastructure.

Payment rails cannot carry recovery. When a delegated purchase goes wrong - the wrong item, the wrong size, the wrong merchant, the wrong time - the payment has already settled. Recovery requires return mechanisms, refund protocols, trust recalibration, and constraint adjustment. These are Failure Architecture concerns that exist above the payment layer.

Payment rails cannot carry consent. A Shared Payment Token is a one-time act of delegation. But consent in agentic systems is not a one-time event. It is a continuous, contextual, revocable state. The human who authorised a token yesterday may not want the same authority to persist today. Consent is temporal, and payment tokens are static.

This is the trust vacuum. The payment infrastructure is being built with remarkable speed and engineering quality. But the trust infrastructure - the layer that carries preference, judgement, accountability, recovery, and consent - is not being built at the same pace, by the same organisations, or with the same urgency. The rails are ahead of the architecture. And the gap is where the failures will occur.

The x402 Protocol: Implications for Practitioners

Treat Shared Payment Tokens as trust boundaries, not payment methods. When implementing Shared Payment Tokens, frame them through Delegation Design. The token is not just a way to pay. It is a trust boundary that defines what the agent is permitted to do with the human's money. Design the constraints of that boundary with the same care you would design any delegation instrument - specifying not just spending limits but contextual rules, category restrictions, and escalation triggers.

Design agent-native hesitation for x402 interactions. The protocol is designed for speed. Your trust architecture must introduce appropriate friction. For micropayments, this may mean aggregate monitoring - tracking total spend over time rather than evaluating each transaction. For larger expenditures, it means programmatic pause points where the agent evaluates the transaction against its objectives before committing. The hesitation layer must be rebuilt at the trust level, not the payment level.

Build verification into every payment flow. Because x402 has no chargebacks, your Failure Architecture must compensate. Every payment should be followed by verification: did the agent receive what it paid for? Was the data accurate? Was the service as described? Verification is not optional in a no-chargeback environment. It is the only recovery mechanism available.

Map payment primitives to trust dimensions. Use x402 for operational infrastructure where anonymous, stateless payment is appropriate. Use Shared Payment Tokens for consumer-facing delegation where identity and trust history matter. Do not use anonymous payment protocols for delegated consumer commerce, and do not burden operational micropayments with identity requirements. The payment primitive must match the trust requirement.

Design consent as a continuous state, not a one-time token. A Shared Payment Token is issued once. But the human's consent to the agent's purchasing authority is not static. Design systems where the token's authority can be narrowed, expanded, paused, or revoked in real time based on the evolving trust relationship between the human and the agent. The Consent Horizon framework applies directly: consent must be designed as a temporal, contextual, revocable state.

Audit the facilitator as a trust dependency. If your agent relies on x402 facilitators for payment settlement, those facilitators are trust dependencies in your system. Evaluate them as such. What happens if the facilitator fails? What happens if settlement is delayed? What is your fallback? The facilitator is an undesigned trust intermediary in the protocol, but it must be a designed trust dependency in your architecture.

Recognise that the trust vacuum is a design opportunity. Stripe has built the payment infrastructure. The trust infrastructure is unbuilt. This is not a criticism of Stripe - trust architecture is not their responsibility, just as payment infrastructure is not the responsibility of AXD practitioners. But the gap between payment rails and trust rails is where the next generation of agentic experience design will be defined. The organisations that fill this gap - that build the trust layer on top of the payment layer - will shape how humans experience agentic commerce for decades to come.