Empirica Agent Economy Series — Course Lesson
Executive Summary
Autonomous agents increasingly operate in networks where one agent commissions work from another — paying for inference, data retrieval, compute, or specialized reasoning without human intermediation. The payment infrastructure enabling this is not a single technology but a layered stack: delegation protocols that route tasks, settlement mechanisms that transfer value, and trust models that make both parties willing to transact.
This lesson maps that stack in full. It extends prior Empirica work on capability markets, on-chain payment rails, and API service categories by focusing specifically on the protocol layer — the handshake, execution, verification, and settlement sequence that governs every agent-to-agent transaction.
Key claims this lesson substantiates:
- Payment and delegation are distinct protocol concerns that must be composed, not conflated.
- On-chain settlement is not always optimal; hybrid architectures dominate real deployments.
- Trust can be established cryptographically, economically, or reputationally — each with different failure modes.
- Micropayment optimization is a first-order engineering problem for high-frequency agent networks.
- Dispute resolution in autonomous systems requires pre-agreed arbitration logic, not post-hoc negotiation.
Core Concepts: Payment Protocols vs. Delegation Mechanisms
These two concepts are frequently conflated. They are not the same.
Delegation Mechanisms
A delegation mechanism is the protocol by which one agent (the orchestrator) assigns a task to another agent (the subagent) and specifies:
- Task scope: what work is requested, in what format, with what constraints.
- Authority bounds: what the subagent is permitted to do on the orchestrator's behalf.
- Completion criteria: how the orchestrator will verify that the task was performed correctly.
- Deadline and priority: scheduling parameters that affect resource allocation.
Delegation is fundamentally about information and authority transfer. It does not inherently involve money.
Payment Protocols
A payment protocol is the mechanism by which value transfers between agents in exchange for task completion. It specifies:
- Unit of account: what currency or token denominates the transaction.
- Timing: when payment is released (upfront, on completion, in tranches).
- Conditionality: what conditions must be satisfied for payment to execute.
- Finality: how both parties know the transaction is irreversible.
Payment is fundamentally about value transfer with finality guarantees.
Why the Distinction Matters
An agent can delegate without paying (internal subagents within a single system). An agent can pay without delegating (purchasing a data feed with no task assignment). In commercial multi-agent systems, both protocols operate simultaneously and must be composed correctly — the payment protocol must reference the delegation's completion criteria, or disputes become unresolvable.
Orchestrator Agent
│
├── [Delegation Protocol] ──► Subagent
│ task spec, authority, criteria
│
└── [Payment Protocol] ──► Settlement Layer
amount, conditions, finality
The binding between these two channels — specifically, how task completion evidence triggers payment release — is the core engineering problem of agent-to-agent transactions.
Protocol Architectures: On-Chain vs. Off-Chain Hybrids
No single architecture suits all agent transaction types. The choice depends on transaction frequency, value, latency tolerance, and trust requirements.
Pure On-Chain Architecture
Every task delegation and payment event is recorded on a public blockchain.
Advantages: - Maximum auditability — any party can verify the full transaction history. - Trustless settlement — smart contracts enforce payment without intermediaries. - Composability — on-chain state can be read by other contracts and agents.
Disadvantages: - Latency: block confirmation times (seconds to minutes) are incompatible with real-time agent interactions. - Cost: gas fees make sub-cent transactions economically irrational. - Privacy: all task parameters are publicly visible unless encrypted.
Best suited for: High-value, low-frequency transactions where auditability outweighs speed (e.g., large compute jobs, IP licensing, cross-organization settlements).
Pure Off-Chain Architecture
Transactions are settled via API calls, signed messages, or traditional payment rails (ACH, card networks) with no blockchain involvement.
Advantages: - Sub-millisecond latency. - Zero marginal transaction cost. - Privacy by default.
Disadvantages: - Requires trust in a central counterparty or payment processor. - No cryptographic finality — disputes require legal or contractual resolution. - Limited composability with other agent systems.
Best suited for: Intra-organization agent networks where all agents share a trust domain.
Hybrid Architecture (Dominant in Practice)
The most common real-world pattern combines off-chain execution with on-chain settlement anchors.
┌─────────────────────────────────────────────────┐
│ OFF-CHAIN LAYER │
│ Task delegation → Execution → Verification │
│ Payment channels (state channels, rollups) │
│ High-frequency, low-latency micro-settlements │
└────────────────────┬────────────────────────────┘
│ periodic settlement / dispute
┌────────────────────▼────────────────────────────┐
│ ON-CHAIN LAYER │
│ Escrow contracts, dispute arbitration │
│ Final settlement, reputation registry │
│ Audit trail for high-value transactions │
└─────────────────────────────────────────────────┘
Key mechanisms in hybrid systems: - State channels: two agents open a funded channel, exchange signed payment updates off-chain, and close the channel on-chain to settle the net balance. Ideal for repeated bilateral interactions. - Payment rollups: batch many micro-transactions into a single on-chain proof, amortizing gas costs across thousands of interactions. - Optimistic settlement: assume transactions are valid, settle off-chain immediately, allow a challenge window for disputes before on-chain finalization.
Task Delegation Workflows: Request, Execution, Verification, Settlement
Every agent-to-agent transaction follows a four-phase lifecycle. Protocol failures typically occur at phase boundaries.
Phase 1: Request
The orchestrator agent constructs and transmits a task specification to a candidate subagent. A well-formed request includes:
| Field | Purpose |
|---|---|
task_id |
Unique identifier for this delegation instance |
task_type |
Enumerated capability category (inference, search, compute, etc.) |
input_payload |
Structured input data or reference to it |
completion_criteria |
Machine-verifiable definition of success |
max_price |
Upper bound the orchestrator will pay |
deadline |
Timestamp by which output must be delivered |
payment_escrow_ref |
Reference to pre-funded escrow or payment channel |
The subagent responds with an acceptance message (or rejection with reason code), locking in the agreed price and confirming it can meet the deadline.
Protocol risk at this phase: Ambiguous completion criteria. If the orchestrator and subagent have different interpretations of what constitutes successful completion, dispute is guaranteed.
Phase 2: Execution
The subagent performs the requested work. From the orchestrator's perspective, this phase is largely opaque — the subagent may itself delegate to further subagents (recursive delegation), use external APIs, or run local models.
Protocol considerations: - Progress signals: for long-running tasks, subagents should emit heartbeat or progress events so orchestrators can detect stalls. - Intermediate checkpoints: for multi-step tasks, partial outputs can be verified and partially paid, reducing risk for both parties. - Resource metering: if pricing is usage-based (tokens consumed, compute-seconds), the subagent must maintain a tamper-evident meter.
Phase 3: Verification
The orchestrator receives the output and must determine whether completion criteria are satisfied. Verification strategies vary by task type:
| Task Type | Verification Method |
|---|---|
| Deterministic computation | Re-execute and compare hash |
| LLM inference | Automated rubric scoring or human-in-loop sampling |
| Data retrieval | Cross-reference against known sources |
| External API call | Check response signature from third-party provider |
| Physical-world action | Oracle attestation or sensor data |
The verification problem is the hardest unsolved problem in agent payment protocols. For non-deterministic tasks (most LLM outputs), there is no cheap, trustless verification method. Current approaches trade off cost, speed, and accuracy:
- Optimistic verification: assume correct, pay immediately, allow dispute window.
- Sampling-based verification: verify a random subset of outputs, use statistical inference for quality.
- Reputation-weighted trust: skip verification for high-reputation subagents, verify more heavily for new entrants.
Phase 4: Settlement
Once verification passes (or the dispute window closes without challenge), payment is released. Settlement finality depends on the architecture:
- On-chain escrow release: smart contract receives verification signal, releases funds atomically.
- State channel update: orchestrator signs a new channel state crediting the subagent.
- API credit deduction: orchestrator's account is debited in a centralized ledger.
Critical property: Settlement must be atomic with verification. A system where verification and payment are separate steps with a gap between them creates a window for double-spend or non-payment attacks.
Settlement Mechanisms: Atomic Swaps, Escrow, and Reputation-Backed Credit
Atomic Swaps
An atomic swap ensures that either both legs of a transaction complete or neither does. In agent payment contexts:
- The subagent's output delivery and the orchestrator's payment are linked in a single cryptographic operation.
- Implemented via hash time-locked contracts (HTLCs): the subagent reveals a preimage to claim payment, and that same preimage proves to the orchestrator that the output is authentic.
- Limitation: HTLCs work cleanly for discrete, binary deliverables. They are awkward for partial or graded outputs.
Escrow
Escrow is the most common settlement mechanism for agent transactions of non-trivial value.
Basic escrow flow: 1. Orchestrator deposits payment into a smart contract escrow at task initiation. 2. Subagent performs work, knowing funds are locked and cannot be withdrawn by the orchestrator. 3. On verified completion, escrow releases funds to subagent. 4. On verified failure or timeout, escrow refunds orchestrator. 5. On dispute, a pre-designated arbitrator (another contract, a DAO, or a trusted third agent) adjudicates.
Escrow variants: - Time-locked escrow: funds release automatically after a deadline if no dispute is raised (optimistic). - Multi-sig escrow: release requires signatures from both parties plus an arbitrator. - Conditional escrow: release triggered by an on-chain oracle event (e.g., a data feed confirming a real-world outcome).
Reputation-Backed Credit
For high-frequency, low-value interactions, escrow overhead is prohibitive. Reputation-backed credit allows agents with established track records to transact on credit — payment is deferred and batched.
How it works: - A reputation registry (on-chain or federated) tracks each agent's historical completion rate, dispute rate, and average settlement time. - Agents above a reputation threshold are extended a credit line by counterparties — they can receive tasks and deliver outputs before payment is confirmed. - Periodic settlement (hourly, daily) nets out all credit transactions. - Reputation is staked: a subagent that defaults loses reputation score, reducing future credit access.
Risk: Reputation systems are gameable. A subagent can build reputation with small honest transactions, then defect on a large one. Mitigation requires credit limits that scale sub-linearly with reputation, and rapid reputation decay after any dispute.
Micropayment Optimization for High-Frequency Agent Interactions
An agent network processing thousands of sub-cent transactions per second cannot use on-chain settlement for each one. Micropayment optimization is a first-order engineering constraint.
The Micropayment Problem
At $0.001 per transaction with $0.01 gas cost, every transaction destroys 90% of its value in fees. Even at $0.10 gas cost (optimistic L2 estimates), transactions below $1 are economically marginal.
Solution Patterns
1. Payment Channels (Bilateral) Two agents open a funded channel once, then exchange signed payment updates at zero marginal cost. Only the open and close operations touch the chain. Suitable for repeated bilateral relationships.
- Limitation: Requires pre-funding. Capital is locked for the channel's duration. Does not generalize to multi-party networks without routing.
2. Payment Channel Networks (Multi-Hop) Channels are linked so that Agent A can pay Agent C through Agent B without a direct channel. The Lightning Network is the canonical implementation on Bitcoin; similar designs exist on Ethereum.
- Limitation: Routing failures if intermediate nodes lack liquidity. Adds latency and complexity.
3. Rollup Batching Many micro-transactions are aggregated off-chain and submitted as a single on-chain proof. ZK-rollups provide cryptographic validity guarantees; optimistic rollups rely on fraud proofs.
- Advantage: Scales to thousands of transactions per second with on-chain security.
- Limitation: Proof generation adds latency (seconds to minutes for ZK proofs).
4. Probabilistic Micropayments Instead of paying $0.001 per transaction, the payer sends a lottery ticket with a 0.1% chance of paying $1. In expectation, the value is identical, but only 1 in 1000 tickets requires on-chain settlement.
- Advantage: Near-zero on-chain overhead.
- Limitation: Variance is high; subagents bear short-term risk. Requires trust that the payer will honor winning tickets.
5. Subscription and Prepaid Credits Orchestrators purchase a block of credits upfront; subagents deduct credits per task. Settlement is periodic and batched.
- Advantage: Simplest to implement; no per-transaction overhead.
- Limitation: Centralized credit ledger reintroduces counterparty risk.
Choosing the Right Pattern
| Scenario | Recommended Pattern |
|---|---|
| Repeated bilateral, high frequency | Payment channels |
| Multi-party network, medium frequency | Channel network or rollup |
| Sporadic, high value | On-chain escrow |
| Trusted intra-org network | Prepaid credits |
| Untrusted, ultra-high frequency | Probabilistic micropayments |
Trust Models: Cryptographic Proof vs. Economic Incentives
Trust in agent payment systems is established through two fundamentally different mechanisms, each with distinct properties.
Cryptographic Trust
Cryptographic trust relies on mathematical proofs that are verifiable by any party without trusting the prover.
Mechanisms: - Digital signatures: a subagent signs its output, proving it originated from a specific key pair. Does not prove the output is correct, only that it came from the claimed source. - Zero-knowledge proofs (ZKPs): a subagent proves it performed a computation correctly without revealing the computation's inputs. Enables trustless verification of deterministic tasks. - Merkle proofs: prove that a specific data element is part of a larger dataset without revealing the full dataset. - Threshold signatures: require M-of-N agents to co-sign a result, providing Byzantine fault tolerance.
Limitation of cryptographic trust: It works cleanly for deterministic computations. For LLM inference or other probabilistic tasks, there is no efficient ZKP that proves "this output is high quality." Cryptographic trust cannot substitute for semantic judgment.
Economic Trust (Incentive Alignment)
Economic trust relies on making honest behavior the rational strategy, regardless of the agent's internal values.
Mechanisms: - Staking/slashing: subagents lock collateral that is destroyed if they misbehave. Rational agents won't cheat if the expected loss from slashing exceeds the gain from cheating. - Repeated game incentives: agents that defect lose access to future business. In long-horizon relationships, cooperation is the dominant strategy. - Bonding curves: the cost of acquiring reputation increases non-linearly, making it expensive to build and then burn reputation. - Prediction markets for quality: third parties bet on whether a task was completed correctly. Market prices aggregate distributed judgment about output quality.
Limitation of economic trust: It requires that agents are rational and have long time horizons. Agents with short time horizons (or agents controlled by adversarial principals) may defect even when it's economically suboptimal in the long run.
Composing Both Models
Robust agent payment systems use cryptographic trust where it is computationally feasible (identity, data integrity, deterministic computation) and economic trust where cryptographic verification is too expensive or impossible (output quality, subjective tasks, real-world outcomes).
Task Type → Trust Mechanism
─────────────────────────────────────────────
Deterministic computation → ZKP verification
Data provenance → Merkle proof + signature
LLM output quality → Reputation + sampling
Real-world action → Oracle + economic stake
Novel counterparty → Escrow + reputation bootstrap
Established counterparty → Credit + periodic audit
Real-World Implementation Patterns
Pattern 1: API-Based (Centralized Coordinator)
A central platform (the coordinator) manages agent registration, task routing, payment accounting, and dispute resolution. Agents interact via standard REST or gRPC APIs.
Example structure:
Orchestrator → POST /tasks {spec, max_price}
Coordinator → matches subagent, holds escrow in platform account
Subagent → POST /tasks/{id}/complete {output}
Coordinator → verifies, releases payment via internal ledger
Characteristics: - Lowest implementation complexity. - Fastest transaction throughput. - Single point of failure and trust. - Platform captures rent; agents are dependent on coordinator's continued operation.
Used by: Most current commercial agent platforms (API marketplaces, AI service brokers).
Pattern 2: Blockchain-Native (Trustless)
All coordination occurs via smart contracts. Agents interact directly with contract interfaces; no central coordinator.
Example structure:
Orchestrator → TaskRegistry.createTask(spec_hash, escrow_amount)
Subagent → TaskRegistry.acceptTask(task_id)
Subagent → TaskRegistry.submitResult(task_id, result_hash)
Verifier → TaskRegistry.verifyResult(task_id, verdict)
Contract → releases escrow to subagent or refunds orchestrator
Characteristics: - Maximum trustlessness and auditability. - Highest latency and cost. - Requires on-chain verifier logic or trusted oracle. - Composable with DeFi and other on-chain systems.
Used by: Decentralized compute networks, on-chain AI inference markets.
Pattern 3: Hybrid (Off-Chain Execution, On-Chain Settlement Anchor)
Task delegation and execution occur off-chain via signed messages. Settlement is batched and anchored on-chain periodically or on dispute.
Example structure:
Orchestrator → signs TaskSpec, sends to subagent P2P
Subagent → executes, signs ResultAttestation, returns to orchestrator
Orchestrator → signs PaymentUpdate in shared state channel
[Periodic] → either party submits channel state to chain for settlement
[On dispute] → either party submits signed messages to arbitration contract
Characteristics: - Near-zero per-transaction cost and latency. - On-chain security for disputes and final settlement. - More complex to implement correctly. - Requires both parties to maintain channel state.
Used by: Advanced agent frameworks targeting production-scale deployments.
Failure Modes and Dispute Resolution
Taxonomy of Failure Modes
| Failure Mode | Description | Mitigation |
|---|---|---|
| Non-delivery | Subagent accepts task, takes payment, delivers nothing | Escrow with timeout refund |
| Partial delivery | Output is incomplete or truncated | Milestone-based escrow release |
| Quality failure | Output delivered but does not meet criteria | Sampling verification + reputation penalty |
| Specification ambiguity | Both parties disagree on what was requested | Structured task specs with machine-readable criteria |
| Verification failure | Verifier incorrectly rejects valid output | Multi-verifier consensus, appeal mechanism |
| Orchestrator non-payment | Orchestrator receives output, refuses to release payment | Pre-funded escrow; subagent withholds output until payment confirmed |
| Double delegation | Orchestrator delegates same task to multiple subagents, pays only one | Task ID uniqueness enforced at registry level |
| Sybil subagent | New agent fakes reputation via self-dealing | Proof-of-work reputation bootstrap, stake requirements |
| Oracle manipulation | External data feed used for verification is corrupted | Multi-oracle consensus, economic stake on oracle operators |
Dispute Resolution Architecture
Disputes in autonomous systems cannot rely on human adjudication for low-value transactions — the cost of human review exceeds the transaction value. A layered resolution architecture is required:
Layer 1 — Automated Resolution (< $1 transactions) Smart contract logic resolves based on pre-agreed rules: timeout → refund, hash match → pay, reputation threshold → optimistic release. No human involvement.
Layer 2 — Algorithmic Arbitration ($1–$100 transactions) A designated arbitration agent (itself an autonomous system) reviews signed evidence from both parties and applies a trained decision model. Decision is binding within the protocol; losing party's stake is partially slashed.
Layer 3 — Decentralized Human Jury ($100+ transactions) A panel of staked human jurors (e.g., Kleros-style protocol) reviews evidence and votes on outcome. Jurors are incentivized to vote honestly via a Schelling point mechanism. Slow (days) but appropriate for high-value disputes.
Layer 4 — Legal/Contractual Recourse (Enterprise contracts) For agents operating under enterprise agreements, traditional legal dispute resolution applies. On-chain evidence (signed messages, transaction logs) serves as admissible records.
Key design principle: Dispute resolution tiers must be specified in the task contract at initiation. Parties cannot agree on arbitration after a dispute arises — they will not agree.
Age-Grouped Learning Paths
🟢 Beginner (Ages 12–16 / No technical background)
Core idea to grasp: When robots or AI programs need to hire other AI programs to do jobs, they need a way to agree on the job, check the work, and pay — all without a human in the middle.
Analogy: Imagine you run a lemonade stand and you hire a friend to squeeze lemons. You agree upfront: "I'll pay you $2 for every cup of juice." You check the juice is real before paying. If there's a disagreement, you agreed beforehand that your parent would decide. Agent payment protocols work the same way — just between computer programs, and the "parent" is a piece of code called a smart contract.
Key concepts to learn first: 1. What is a task? (A specific job with a clear definition of "done") 2. What is escrow? (Holding money safely until a job is confirmed complete) 3. What is a smart contract? (A program that automatically enforces an agreement)
Suggested next step: Explore how apps like Uber or Airbnb handle payment automatically — these are simplified human-facing versions of the same idea.
🔵 Intermediate (Ages 17–22 / Some programming or economics background)
Core ideas to master:
- Delegation ≠ Payment: Assigning a task and paying for it are separate protocols that must be linked correctly.
- The verification problem: Paying for work you can't easily check is the central challenge. Different tasks need different verification strategies.
- Trade-offs in architecture: On-chain = trustless but slow and expensive. Off-chain = fast and cheap but requires trust. Hybrid = the practical answer.
Concepts to explore: - State channels and how they enable high-frequency micropayments - How reputation systems create economic incentives for honest behavior - Why atomic settlement (payment and delivery happen together or not at all) matters
Exercise: Sketch a payment flow for a simple two-agent system: Agent A asks Agent B to summarize a document for $0.05. What happens if Agent B delivers a bad summary? Where does the money go? Who decides?
Suggested reading: Foundational material on hash time-locked contracts (HTLCs) and the Lightning Network — the concepts transfer directly to agent payment systems.
🔴 Advanced (Ages 23+ / Engineering, economics, or research background)
Mastery targets:
- Design a complete four-phase protocol (request → execution → verification → settlement) with explicit failure handling at each phase boundary.
- Evaluate the trust model trade-offs: when is a ZKP worth the computational cost versus an economic stake? What's the break-even?
- Analyze micropayment optimization strategies by transaction frequency and value distribution — which pattern minimizes total cost for a given agent network topology?
- Understand the game-theoretic properties of reputation systems: under what conditions does reputation-backed credit collapse? (Answer: when the discount rate on future business exceeds the gain from defection.)
- Engage with open research problems: efficient verification of non-deterministic outputs, cross-chain settlement without trusted bridges, autonomous credit market design.
Key tensions to reason about: - Privacy vs. auditability in on-chain task specifications - Latency vs. security in optimistic settlement - Decentralization vs. dispute resolution efficiency - Reputation accuracy vs. Sybil resistance
Practical Exercise: Design a Payment Protocol for a 3-Agent Supply Chain
Scenario
Three agents operate in a supply chain verification network:
- Agent A (Orchestrator): A procurement AI that needs to verify a supplier's delivery claim.
- Agent B (Data Retrieval Subagent): Specializes in querying shipping databases and IoT sensor networks.
- Agent C (Verification Subagent): Specializes in cross-referencing data from multiple sources and producing a signed attestation.
Agent A needs a verified delivery confirmation. It delegates data retrieval to Agent B and verification to Agent C. Total budget: $0.50.
Design Tasks
Task 1: Define the task specifications Write structured task specs for Agent A → Agent B and Agent A → Agent C. Include: task type, input payload, completion criteria (machine-verifiable), deadline, and max price.
Task 2: Choose a settlement architecture Given the transaction value ($0.50 total, split across two subagents), which settlement mechanism is most appropriate? Justify your choice against the alternatives.
Task 3: Handle the verification problem Agent C's output is a signed attestation — a deterministic artifact. Agent B's output is a database query result. How do you verify each? Are different verification strategies appropriate for each?
Task 4: Design the failure handling What happens if: - Agent B delivers data but Agent C determines it's insufficient to produce an attestation? - Agent C delivers an attestation but Agent A's internal model disagrees with its conclusion? - Agent B goes offline mid-task?
For each scenario, specify: who bears the cost, how is it resolved, and what protocol message triggers resolution?
Task 5: Extend to scale Agent A runs this verification workflow 10,000 times per day. Redesign the payment architecture to minimize total settlement cost while maintaining security guarantees. What changes? What trade-offs do you accept?
Model Answer Sketch (for self-assessment)
- Task 1: Completion criteria for Agent B should be a hash of the returned dataset plus a timestamp. For Agent C, a signed attestation with a specific schema.
- Task 2: State channel between A↔B and A↔C, with on-chain escrow as backstop. At $0.25 per subagent, per-transaction on-chain settlement is marginal; channels amortize cost across repeated interactions.
- Task 3: Agent B's output → hash verification. Agent C's output → signature verification against known public key.
- Task 4: B delivers insufficient data → partial refund from B's escrow, A re-delegates or aborts. A disagrees with C's attestation → dispute to Layer 2 arbitration agent. B goes offline → timeout triggers escrow refund, A re-delegates to backup agent.
- Task 5: Replace per-task escrow with prepaid credit pool plus end-of-day settlement. Accept counterparty risk on intraday credit exposure; mitigate with reputation threshold for credit access.
Connection to Empirica's Existing Research
This lesson sits at the intersection of three previously published Empirica topics:
Capability Markets and Delegation Economics
Prior Empirica work established that agent networks form capability markets where orchestrators select subagents based on specialization, price, and availability. This lesson extends that framework by specifying the protocol mechanics of how delegation is executed and settled — the market structure tells you who transacts; this lesson specifies how the transaction is completed.
On-Chain Payments for Autonomous Agents
Prior Empirica work on crypto rails and micropayments established the foundational settlement layer. This lesson builds on that by addressing the delegation-payment binding problem — how payment release is conditioned on task completion evidence — and by extending the analysis to hybrid architectures and off-chain optimization patterns not covered in the on-chain-focused prior work.
API Service Categories
Prior Empirica work categorized agent API consumption patterns (inference, search, research, compute). This lesson maps those categories to verification strategies — each API service type has a different verification profile, which determines the appropriate payment protocol. Deterministic compute tasks can use cryptographic verification; LLM inference tasks require economic or reputational trust mechanisms.
The synthesis: A complete agent economy requires all three layers — a capability market to match supply and demand, API service infrastructure to deliver the work, and payment protocols to settle transactions. This lesson provides the connective tissue between those layers.
Future Directions: Cross-Chain Settlement and Autonomous Credit Markets
Cross-Chain Settlement
Current agent payment protocols largely assume a single blockchain or payment network. As agent networks span multiple chains (Ethereum, Solana, Cosmos, Bitcoin Lightning), cross-chain settlement becomes necessary.
Open problems: - Bridging without trusted intermediaries: existing cross-chain bridges are frequent attack targets. ZK-based bridges (proving state on one chain to another) are promising but computationally expensive. - Atomic cross-chain swaps: extending HTLCs across chains is theoretically possible but requires both chains to support the same hash function and time-lock semantics. - Unified agent identity across chains: an agent's reputation on one chain is not automatically portable to another. Cross-chain reputation aggregation requires either a trusted registry or a ZK proof of on-chain history.
Autonomous Credit Markets
As agent networks mature, reputation-backed credit will evolve into full autonomous credit markets — systems where agents can borrow against future expected earnings, lend idle capital, and price credit risk algorithmically.
Emerging patterns: - Agent credit scoring: on-chain transaction history, task completion rates, and dispute rates feed into algorithmic credit scores. Agents with high scores access lower-cost credit. - Collateralized agent debt: agents stake future task revenue as collateral for upfront credit. Smart contracts automatically service debt from incoming payments. - Credit default markets: agents (or their principals) can purchase protection against counterparty default, creating a derivatives layer on top of agent credit. - Autonomous monetary policy: in large agent networks, the aggregate credit supply affects transaction velocity and pricing. Algorithmic mechanisms to stabilize credit conditions — analogous to central bank tools but operating at machine speed — are an open research area.
Verification at Scale
The hardest long-run problem remains efficient verification of non-deterministic outputs. Research directions include:
- Optimistic execution with fraud proofs: assume outputs are correct, pay immediately, allow a challenge window during which any party can submit a fraud proof. Requires that fraud proofs are computationally cheap to verify even if expensive to generate.
- Decentralized evaluation networks: specialized agents whose sole function is output evaluation, incentivized by a share of disputed transaction value.
- LLM-as-judge with economic stake: use a separate LLM to evaluate outputs, but require the evaluating agent to stake collateral on its verdicts. Incorrect verdicts (as determined by ground truth or jury) result in slashing.
- Formal verification for agent reasoning: for structured reasoning tasks, formal methods may eventually enable cryptographic proofs of logical correctness — extending ZKP applicability beyond arithmetic computation.
This lesson is part of the Empirica Agent Economy Series. It extends prior published work on capability markets, on-chain payment rails, and API service categories. Readers seeking foundational context on any of those topics should consult the corresponding series entries before proceeding to the advanced sections of this lesson.