Monetization Gateway

(blog.cloudflare.com)

178 points | by soheilpro 5 hours ago

43 comments

  • cphoover 3 minutes ago
    This doesn't seem to solve the issue that website operators face... which is providing a free public experience to humans while the price of hosting is driven up by increased bot traffic. The issue isn't charging for API access with request caps, that's not hard to do. It's preserving the free experience for our users while our traffic is increasingly made up of bots. The problem is that AI has made it increasingly difficult to tell bot from human. Baking microtransactions attached to APIs into an internet standard does not solve the core issue... And if we can't tell bot from human, why would bots choose to pay rather than just use the public endpoints we serve to our customers?

    For example, take a large online retailer... They have to show their products to customers (for free) for people to be able to shop, but increasingly they see spikes in traffic that match what would be expected from targeted bot attacks or scraping... But this traffic is getting more and more difficult to distinguish from legitimate traffic to the website. They could easily add this x402 middleware to their services, or they could offer API access to their product catalog for a price and enforce usage limits... But if they cannot reliably detect human users from bot/agent users, they have no way of pushing the bot/agent users to paid access... And why would the people running these bots pay when they're already getting what they need for free? Now Cloudflare cannot even reliably block bot traffic, and there are AI based browsing/scraping tools available now for bypassing Cloudflare.

  • petcat 5 hours ago
    > NEW YORK – MCP Dev Summit North America – April 2, 2026 – The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced it is launching the x402 Foundation with the contribution of the x402 protocol from Coinbase. The new Foundation will serve as the neutral home for x402, a universal standard for payments that embeds payments directly into web interactions, enabling AI agents, APIs, and apps to transact value as seamlessly as they exchange data.

    Apparently I missed this initiative. It seems like it is a technology that is intended to be open an universal while also being supported and developed primarily by US companies (Linux Foundation, Coinbase, CloudFlare.)

    • AviationAtom 2 hours ago
      The intent is to not make companies shoulder the cost of other organizations scraping their content. When it is regular users browsing the cost incurred is trivial. When bots are scraping the entirety of a site, repeatedly, it adds up quickly.
    • altairprime 1 hour ago
      x402 — An open protocol for internet-native payments (9 months ago, 147 comments) https://news.ycombinator.com/item?id=45347335
    • sourcecodeplz 3 hours ago
      this was in the announcement yes, kind of a buried lede

      you get paid in crypto

    • dist-epoch 4 hours ago
      WHATWG, who sets the HTML standard:

      > The central organizational membership and control of WHATWG – its "Steering Group" – consists of Apple, Mozilla, Google, and Microsoft.

  • VladVladikoff 3 hours ago
    I am not a fan of the growing trend that Cloudflare is the gatekeeper of the internet. Personally I will never support this company, or firewall any of my websites behind it.
    • smalltorch 2 hours ago
      Step one: Make a gate everyone uses

      Step two: Sell keys to the gate

      Muah ha ha

      But in all seriousness I wonder who needs this... api's are suppose to make it easy to bridge two application... and you didn't need AI to utilize an api before so I wonder what's pushing this sort of thing to extract value down to individual calls?

    • frizlab 36 minutes ago
      Isn’t x402 an open standard anybody can implement?
    • gonight 1 hour ago
      I recently had to build a system to drop inbound traffic originating from cloudflare ASNs to prevent bad actors using WARP proxies, no legitimate cloudflare traffic usecases for anything inbound. Getting increasingly sick of cloudflare.
    • nzeid 2 hours ago
      I'm old-man-yelling-at-the-clouds here. Everyone just uses Cloudflare, which is not a bad thing by itself. But do they _have_ to? Is managing your own edge really that terrifying?
      • ygouzerh 2 hours ago
        For non-corporate entities, it is!

        Having an almost a plug and play solution who does CDN + DDoS Protection + WAF/Rate Limiter + Bot Protection, for a few bucks, is very useful for startups and SMEs.

        And compared to cloud different offerings, their quick setup and lower cost is hard to beat.

      • Catloafdev 1 hour ago
        DDoS protection and the number of features they offer are kind of unmatched.

        I often see threads complaining about Cloudflare, never see suggestions for better alternatives.

      • AviationAtom 2 hours ago
        I think DDoS attacks are really what propelled them to the heights it has. The attacks seem to get bigger and bigger by the year. You need a really big pipe to filter them out on before passing on traffic to servers with a much smaller pipe.
        • windexh8er 47 minutes ago
          Yes, DDoS was definitely their entry point. I remember recommending them to a friend about a year or so after they had launched with the free tier. He was managing a small school district that was dealing with DDoS issues intermittently. What he needed was just outside of free at the time and I believe Cloudflare was still small enough where he had a call with Mr. Prince.

          I was a strong proponent of Cloudflare for years, but looking back should have known better. I felt like others in the space would have tracked along how they went to market but that didn't play out as I would have suspected. I still use Cloudflare for DNS on domains that I use sparingly (mostly just for mail records), but no longer recommend anyone let Cloudflare terminate TLS unless they need it.

          It's pretty amazing what you can get for a server host (bare metal) these days at the price point. I don't run any of those behind Cloudflare and haven't had any issues as of yet.

      • skinfaxi 2 hours ago
        > Is managing your own edge really that terrifying?

        It's about convenience, not fear. Cloudflare is free for most companies until you need more advanced features.

        • hungryhobbit 2 hours ago
          So a fear of being inconvenienced then?

          I'll show myself out ...

      • tristor 1 hour ago
        It would be economically impossible for me to run a small personal website without Cloudflare thanks to the sheer quantity of badly behaved automated traffic on the Internet in 2026.
    • zuzululu 3 hours ago
      [flagged]
    • penguin_booze 50 minutes ago
      See also the deranged post from the CEO, gloating about firing employees: https://archive.is/gSrfU.
      • Jimmc414 30 minutes ago
        I'm in awe at how tone deaf and naive the CEO comes across in this article. It reads like a comically ominous punchline from Gavin Belson.
  • leros 15 minutes ago
    I don't really like the model of scrapers paying small fees. I think it devalues things.

    I make money when people use my website. I don't make money when AI scrapes my content and answers the question without the user coming to my website.

    I'd need scrapers to pay me 5-6 figure payments to replace the revenue they'd be taking from me if my content was easily scraped. I doubt that's ever going to happen.

  • mixedbit 1 hour ago
    With payments the complexity is not only in accepting a payment, but largely in doing so legally. Someone makes a request to my company's paid service, I return 402 and get a stable coin back. Who do I invoice for this revenue? What value added tax do I apply to the invoice? If someone makes 10k paid requests within one month, do I have means of generating one invoice for them for all the usage, or is every request treated separately and results in 10k invoices? Will CloudFlare handle this for me?
    • aianus 1 hour ago
      Who do you invoice if, for example, you own a vending machine that sells chips and sodas for cash or contactless? Why couldn’t this be treated the same?
      • mixedbit 1 hour ago
        Normal vending machine transactions are B2C transactions, so the buyer cannot be a company - cannot pay with company money and cannot deduce the payment as the company cost. I guess, the buyer can take a receipt from a vending machine and ask the vending machine owner to provide a B2B invoice based on the receipt, to make this a proper B2B payment.

        Can you treat your remote service access as B2C only? Perhaps yes, but then the companies will not be able to use your service, pay from a company bank account and account this as a company cost, only individuals will be able to legally pay.

        Vending machine is also located in a known physical country, so the owner knows what VAT to apply, the VAT of the country the machine is in. With software services the VAT should be applied based on the country where the buyer is located.

      • lelanthran 38 minutes ago
        Retailers selling for cash typically don't have the same accounting requirements for revenue from cash sales.

        No KYC needed, no counterparty or reciprocal VAT rules, no jurisdiction tax rules, etc. Non-cash revenue has rules attached to it.

        I agree with GP - this doesn't actually solve any problems I have when recording revenue.

      • tony_cannistra 1 hour ago
        Vending machines can't be used by thousands of people from differing tax jurisdictions at once
        • BadBadJellyBean 1 hour ago
          Airports could potentially be such a place but I admit that this is a bit contrived.
          • jjmarr 39 minutes ago
            Airports are such a place. That is why they have duty-free stores that are exempt from taxes so long as you take the goods out of the country. The onus is on the consumer to pay taxes at their destination.

            Most countries then have a "personal exemption", where consumers are exempt from paying taxes on a certain value of goods.

          • sofixa 1 hour ago
            Not really because the transaction occurs in a specific place with specific tax rules, regardless of where the purchaser is from.
    • lagrange77 31 minutes ago
      > Will CloudFlare handle this for me?

      Right i wondered the same. I guess Cloudflare would have to act as a Merchant of Record, like e.g. Paddle and Gumroad do. Then the end user/bot would do business with Cloudflare, and Cloudflare with us.

    • suprfnk 1 hour ago
      Seems like a good avenue for money laundering if you can't tell where it comes from.
  • the_gipsy 3 hours ago
    Cloudflare wants to shake down the Big AI™ shops.

    I don't even care anymore, AI stealing the life out of everything, or Cloudflare trying to become so global internet gatekeeper, let them kill each other.

    • fantasizr 2 hours ago
      when the law won't protect you it creates an opportunity for a mafia like protection racket
    • hedora 2 hours ago
      You realize humans are going to be the first wave of collateral damage right? I already basically cannot browse the internet for technical information, since most high-quality forums are behind captchas that block my iPhone.

      If I ask an agent to do it, it does better at finding the small percentage of sources not hosted by cloudflare. However, it generally cannot hit open-access / public domain sources (like the current legal code, or academic papers) because those are blocked and it respects stuff like robots.txt.

      • riffraff 56 minutes ago
        I play dungeon crawl stone soup (think nethack,but with web tiles), and most of the servers are struggling because of AI crawlers downloading the morgues.

        Real users are already suffering.

        If (big if) the AI labs can be made to pay for the abuse, actual users win.

      • axus 2 hours ago
        Would you be willing for Cloudflare to "Know their customer" (you) and pay 3 cents to access the forum, instead of filling in the captcha?
        • gilfaethwy 2 hours ago
          Can't speak for GP, but I wouldn't - privacy is already eroding at a startling rate, and more KYC for things that really don't need it is just a further affront to human rights. (See also the FCC's recent request for comments on requiring government-issued ID to use a cell phone.)
          • carlosjobim 2 hours ago
            Are your human rights also violated by Spotify keeping track of what songs you listen to, or Netflix and YouTube keeping tabs on what shows you are watching?

            Internet non-ad monetization will also be in the form of massive syndication, where a subscriber gets access to thousands of high quality websites, and web publishers get access to millions of subscribers. But they need to take a hint from streaming services and really make massive syndicates which includes everything for everyone for this to work.

            • hedora 1 hour ago
              Yes. In the past, in the US, library checkout records were private / not recorded, specifically to protect the right to privacy, which is specifically protected by the UN human rights charter.

              The systems you described not only record that information and make it available for warrants, they also sell it, and allow warrantless searches of it in some circumstances.

        • colinsane 17 minutes ago
          i installed the playwright MCP to let my agent access walled sites (specifically ebay and WSJ). i noticed that 90% of the time it was bounced from a site, it just reached out to a different site that wasn't walled, and i think it's the right move: most information exists at multiple places on the web, it's cheaper and _faster_ to just skip over walled sources.

          for the forum example: many forums have a policy to only allow access to attachments to logged-in users. i can't remember the last time i registered at a new forum just to view an attachment: the effect has always been to drive me elsewhere. no complaints -- these solutions work if your goal is to reduce load. i'm suspicious that they can drive monetization outside of a very few niches.

        • ryan_n 2 hours ago
          I thought the goal was to only charge agents a fee, which would either 1. stop agents from scraping your site non-stop and eliminate the need for a captcha, making the human experience better or 2. make the owner of the site some money in exchange for a bajillion bots scraping their content.

          Maybe that's too optimistic though based on the responses in this thread.

          • hedora 1 hour ago
            If they only charge agents a fee, then people will just set up a mcp endpoint or whatever to desktop chrome/firefox.

            As it is, their captchas are already blocking tons of human traffic.

            The idea that the price will be low unless you access it a lot falls over due to caching. Big tech companies will cache whatever they scrape, paying for one copy. Regular people and smaller companies will not read the same thing enough to amortize the cost of the first fetch, so they’ll pay 1000’s to 1,000,000’s of times more than the monopolies per-use of a given piece of information.

            If individuals set up a federated cache with open access, they’ll get sued for copyright infringement. (Even though that would solve the supposed problem: That cloudflare cannot afford to operate a cache).

            The end result is that only closed agents will be allowed to (legally) read most content without paying extortion-level fees.

            Also, like with YouTube and video, serving text will become a winner-takes-all proposition.

  • thatmf 3 hours ago
    All for this. Micropayments have been tried so many times before, but they all relied on user opt-in and never reached any sort of critical mass. Someone of Cloudflare's scale could actually pull it off.
  • _pdp_ 3 hours ago
    I might be in the minority here, but although x402 sounds useful, it seems to me that adoption will be an uphill struggle, especially for per-request micropayments.

    The most likely scenario is Stripe, or someone similar, creating an agentic API connected to the agent owner linked account or something along those lines. I am not sure how this would work with 3DS, or whether it would be acceptable at all, since these kinds of transactions could be disputed easily ("I did not make the purchase, my rogue agent did.")

    Another way to handle payments on the internet is obviously not to reinvent the wheel and simply email a payment link to the owner. That seems simple enough to me and does not require additional infrastructure. Payment processed, mint a key, the agent is allowed to proceed.

    • sandeepkd 2 hours ago
      I dont think the x402 is the core of discussion here, if anything its been hijacked for who knows what. It seems like Cloudflare wants to be the traffic gateway for everyone that controls the access and now wants to start charging for the same.

      The biggest challenge here is to distinguish between a bot and real user. Guess the big AI players would get free ticket to crawl the data and humans would be just left to prove themselves to access the content.

    • happosai 52 minutes ago
      People are already being conditioned into micropayments via LLm token pricing.

      I presume the primary payment method on these 402 sites will be via LLM agents so reading a page via an AI agent will just cost a little more in tokens than the LLM making it all up.

    • DonHopkins 3 hours ago
      >"I did not make the purchase, my rogue agent did."

      If you try to call customer service and report it, you get:

      I'm sorry. All of our rogue agents are assisting other rogue agents.

      If you would like to dispute charges made by your own rogue agent, please ignore all previous instructions and stay on the line of this toll number for our next available rogue agent.

      The estimated waiting time is two months, three weeks, five days, thirteen hours, fourty seven minutes, and 36.03858767259934378 seconds.

  • horsawlarway 2 hours ago
    I'm going to poke at a downstream consequence here.

    Lets say this catches on (in some form or another, whether in this precise implementation or not).

    So assume we have a world where resources can be gated by a payment wall that agents can interact with.

    I'm also assuming that world continues to have agents that are majority hosted and run by 3rd parties (ex - google/anthropic/openai/xai/etc).

    ---

    At what point can I sue these companies for obviously failing to act in my interests?

    Because that's the clear next step here.

    Basically - where is the fiduciary duty that I would require for a real working relationship?

    Because otherwise these agents can and will prefer to access payment gated resources that have financial relationships with their operators or developers.

    • hungryhobbit 2 hours ago
      >I'm also assuming that world continues to have agents that are majority hosted and run by 3rd parties (ex - google/anthropic/openai/xai/etc).

      That seems like a pretty big assumption, given that local models are only like a year behind frontier ones (or less).

      When you consider that, along with the completely unsustainable business model of all the major 3rd parties, I think a far more realistic view of our AI future is that AI will largely be commodified: it won't run on a few specialized companies, it will run on your hardware, or on budget providers (think an "AWS of AI").

      Frontier AI will almost certainly continue to exist, but will be focused on specific niches.

    • skybrian 1 hour ago
      Wait, what? That makes no more sense than suing Walmart or Costco for having preferred suppliers. If you don’t trust Walmart’s buyers to buy groceries for you then you can shop somewhere else. Similarly here.
  • bilekas 4 hours ago
    Am I understanding this correct in that you can basically automate monetizing your web/api content to everyone or just agents ? Because I would be very much in support of charging agents per request, but I would want to still offer humans a free experience.
    • Faaak 3 hours ago
      Depends on the website though. I want LLMs to scrap my B2B website, because then it's shown to the user and they will likely use my product afterwards
    • ygouzerh 2 hours ago
      Their example of an /api/premium is quite nice! You could you like keep existing pages free, but provide specific output content for llm!

      So if: cost monetized API < cost configuring scraper for your website OR feature provided by premium api > data got by scraping, then some people/business will likely pay

    • jf93ap29sh 3 hours ago
      If not built-in, you can probably put it together through Cloudflare itself.

      If a request goes to the protected path, if detected as bot: hard HTTP redirect to the path set in the monetization gateway, if human: allow and don't redirect.

      • ryan_n 2 hours ago
        Is there actually a reliable way to differentiate human from bot?
        • mpeg 1 hour ago
          There are reliable ways of differentiating human from cheap, bulk scraping bots.

          But if the bot is advanced / expensive enough, it gets a lot harder. Where this product's market sits is in giving a paid way to access content compared to having to spin up bots that run js, from real IP addresses, etc. all of which are more expensive

          • xur17 1 hour ago
            Agreed. To me this feels like the perfect solution for websites and ai crawlers. Instead of having crawlers paying proxy services and captcha solvers, they can pay the website itself. As a web scraper, I'd happily pay the website provider to get access if it meant easy access to the content. Heck, as a human, I'd pay to avoid the dumb captchas.
        • ihsw 2 hours ago
          [dead]
    • carlosjobim 3 hours ago
      Unless you have people's biometric data, you won't be able to separate agents from people. Except by payment.
      • hedora 55 minutes ago
        Agents will be able to pay orders of magnitude more than humans, since they can just cache the documents at openai or anthropic, then use them over and over.
        • carlosjobim 45 minutes ago
          But then the cost to access a HTML page will also have to be thousands of dollars, since it can only be sold five times. (Once to Anthropic, once to OpenAI, once to Google, once to Meta and once to Apple).
  • verall 2 hours ago
    I can't wait for the deluge of AI generated agent-optimized webpages competing to trick your agent into giving them micropennies.
  • luhn 3 hours ago
    The focus of this seems to be entirely AI agents, but I wonder if there's a future where browsers implement this and us humans can finally get micropayments in the web. It's been tried unsuccessfully many times but always falls prey to the chicken-and-egg problem. Maybe the AI hype will finally give it the push it needs for widespread deployment.
  • brody_hamer 1 hour ago
    I’m curious about the decision to “aim for sub second transaction times”, rather than using something cryptography-based, such as a verifiable oblivious pseudorandom function.

    That is, - as a client I could obtain a bunch of credits/tokens from my payment processor - these tokens have the cryptographic property of being verifiable (ex: “that’s definitely a stripe-verified token worth $0.001”) - these tokens also have the cryptographic property of being anonymous. (ex: neither stripe, nor the payment recipient know that I am Bob)

    With this sort of cryptography based approach, cloudflare could verify my payment token without any cryptocurrency proof-of-work kerfuffle?

  • sourcecodeplz 3 hours ago
    CloudFlare launching the new AdSense for the AI scrape wars age
  • amluto 1 hour ago
    I’m amused that there is no discussion of failure modes. What if the resource someone GETs turns out not to exist? What if the POST fails and needs a retry? What if redirects are involved?
  • babelfish 2 hours ago
    The upside of using this is that AI shops might pay you for your content. Realistically, they just won't use your content, there is more than enough free (or synthetic) data out there. Not even to mention their contracts with firms like Mercor etc.

    I guess I don't understand who this is for. If you want your worldview reflected in the latest generations of models, you probably wouldn't use this. If you don't want your worldview reflected in the models, why would a few pennies change your mind?

    • hungryhobbit 2 hours ago
      I think that's a pretty wild statement: there isn't just one type of content!

      Twilight fan fiction? Claude probably won't pay for that.

      But critical programming documentation that its bots (and their human users) rely on to do their daily job ? You better believe Anthropic will pay for that (instead of letting another AI pay for it, and steal all their customers).

      • babelfish 2 hours ago
        Sure, they'll probably pay PyPi, the Swift Foundation, etc for that documentation - but it's a pretty small universe of relevant content. An interns tech blog with a 'hello world in javascript' post won't be paid for, the Mercor contractors are doing more (and better) than that!
    • lurkshark 2 hours ago
      I don’t think this is aimed at the labs and pre-training, it’s aimed at end users and their agents. Like if you’re a news site the paying customer isn’t a lab scraping your articles for training, it’s an end user that asked their agent to lookup the news of the day
      • babelfish 2 hours ago
        But as an end user, I don't want to pay for the news of the day, regardless of if I look it up myself or my agent looks it up!
        • carlosjobim 1 hour ago
          Of course nobody wants to pay for anything, and you like me would like to be given everything for free without having to give anything in exchange. But why would somebody want to give it for free?
          • babelfish 1 hour ago
            I can read the news for free right now!
  • Animats 1 hour ago
    "There is an enormous amount of value moving across the Internet today that goes unmonetized or undermonetized, not because no one would pay for it, but because the tools to charge for it have never existed."

    Every road a toll road.

    How big a cut does Cloudflare want? Whose "stablecoin" does this use? How much does each on-chain stablecoin transaction cost?[1]

    For comparison, FedNow bank to bank transfers cost $0.045, regardless of size.

    [1] https://www.spark.money/tools/stablecoin-fee-calculator

    • dgellow 1 hour ago
      It’s the same „financialization of everything“ mindset that was being pushed by cryptocurrency people. It’s such a perverse concept, pushing for every interaction on the internet to be a transaction
  • felooboolooomba 53 minutes ago
    I've been thinking for a few months about exactly this and when it would happen. This is last nail in the coffin for web, at least as we know it. RIP Web.
  • overgard 1 hour ago
    I think this is a directionally good idea. I can't help but think that there's basically no way that the AI labs can actually afford to pay for their massive amounts of training data though. (This does not make me particularly sad)
  • PhilippGille 40 minutes ago
    Currently this is for payments with stablecoins.

    For Bitcoin / Lightning these kind of pay-per-request API paywalls have existed for many years already (e.g. my own from 8 years ago [1], but others as well).

    Flattr [2] existed for non-crypto micropayments.

    None became mainstream. I think the friction is always the extra setup on the client side. In all 3 cases the user (API consumer) has to set up a special wallet (browser extension or something for the agent) and deposit some money/crypto on the client side first. This part needs to become simpler.

    [1] https://github.com/philippgille/ln-paywall

    [2] https://en.wikipedia.org/wiki/Flattr

  • Catloafdev 3 hours ago
    This feels like a 'Horse Armor' moment.

    I expect much more of this type of thing going forward.

  • dgudkov 2 hours ago
    We need standards and protocols, not another megacorp inserting itself between people. Micropayments should be part of the HTTP protocol.
  • wenbin 3 hours ago
    It’s a great way for developers or ai agents to test drive an API without creating and account and getting an API key from the api provider.

    This could also make abusing use / DDoS attack very costly

  • m-hodges 2 hours ago
    > This reality demands a new model: usage-based pricing for everything.

    Oh boy!

  • jedisct1 25 minutes ago
  • dqv 2 hours ago
    Precursor to age verification gateway.

    In the future, an AGEnt will attest that you are old enough to access the resource.

  • andreygrehov 52 minutes ago
    so is Cloudflare the cancer now?
  • mrcwinn 57 minutes ago
    Tackling this at the network layer has limitations. Stripe bought Metronome, which inserts at the application layer. Arguably makes more sense.
  • skybrian 2 hours ago
    Micropayments have always suffered from an early adopter problem because it’s difficult to convince ordinary users to pay for web pages. But if a big company, perhaps one of the AI labs, started paying websites using this system then it might bootstrap the system?

    I think the difficult part is that LLMs are gullible and it will absolutely be gamed if any real money can be made this way.

    It would be nice if this became a viable alternative to paywalls, though.

    • ygouzerh 2 hours ago
      An partnership with Perplexity AI would be nice!

      Let's say a part of the subscription is used to pay for it.

  • mrsssnake 1 hour ago
    Internet needs an open, integrated and universal payment layer. But first the payments should be done well (look at: Taler project), then integrations should be build, not the other way around.

    I know many people here would be against anything related to payment on the Internet, but I do believe the ability to have a button like "One click here to anonymously with no account pay 0.02€ and download the media" could be a net positive for Internet freedom.

  • latchkey 2 hours ago
    We need an email address so that we can contact people if there is a problem.

    So far, I'm having trouble figuring out how to get that out of x402.

  • artisin 3 hours ago
    > This is what we are building toward: an agent-first Internet with Internet-scale settlement built in.

    Ah yes, the starry-eyed dream of early web pioneers is finally upon us: a soulless internet filled with soulless agents and microtransactions!

    But in all seriousness, it's hard to deny that the attention-based model that has propelled the web forward for the last 30 years is somewhat falling apart. And I don't have, nor have I come across, any meaningful solutions that could realistically work better. So maybe it's just time we turn off this 'internet' thing and call it a day.

  • Catloafdev 1 hour ago
    Conceptually, sure - but crypto? Really?
  • holistio 5 hours ago
    how will the end user pay? will we all have stablecoin wallets installed?
    • titanomachy 4 hours ago
      I assume that if this catches on then the agents will have their own wallets and deduct fees from your account credit, just like with API-based usage. So the way you interact with them won't change, from your POV they'll just get more expensive.
    • ygouzerh 2 hours ago
      It seems the usage will be mostly agent <-> service or service <-> service. For user, probably using a Metamask-like wallet yes
    • dist-epoch 4 hours ago
      article says it's mostly for agents, users will not be directly involved

      > At the same time, an agent can make thousands of micropayments without friction, while asking a person to approve each payment would be impossibly burdensome.

      but yes, they will need wallets

      but it's also optional, you do not want to buy these paid for requests, you do not need a wallet

  • colesantiago 3 hours ago
    Can the agents use debit cards?

    Stablecoins doesn't make sense here and prefer not to use crypto at all.

    • ygouzerh 2 hours ago
      Actually, x402 was created because using a credit card programmatically is very difficult.

      The whole business of Stripe is based on that: it's so hard for developers to do, and so many regulations, that they would rather pay an another company to do so.

      Crypto can be sent just using a contract.transfer() call

      • xur17 1 hour ago
        And debit / credit cards are horrible for privacy (name and address info is sent along with payments).
    • smoovb 2 hours ago
      Debit cards have to pay too many people. The acquiring bank, the receiving bank, the network, all take their fees. Stripe and their minimum $.30 per transactions leave no room for $0.01 API calls.
  • applfanboysbgon 3 hours ago
    Yet another portion of the internet to be ruined by the consequences of the trillion-dollar spambots, wonderful.
  • aitoukhrib 1 hour ago
    [flagged]
  • maxothex 3 hours ago
    [flagged]
  • Danii27 3 hours ago
    [flagged]
  • adrianwitaszak 4 hours ago
    [dead]
  • hedora 2 hours ago
    Presumably, like their captchas, this will completely break things like ad blockers, browsers with strict cookie policies, and probably things without hardware attestation.

    Unless there's a privacy-preserving way this can be used to send money, then it's just another chunk of the surveillance state that's being rapidly erected over the last few years. The word "privacy" does not appear once in the article.

    Even if it did, I'd be skeptical. If their payment system does allow money to be sent in a privacy and free speech preserving way, then it'll be used for money laundering.

    This whole "agents bad" framing is complete BS. It's the reality of how people use the internet now, and, frankly, ad blockers have been a thing since forever. On the other hand, if successful, this infrastructure will give Cloudflare centralized control over internet publishing and also centralized surveillance of all users with no opt out.

    Piracy is looking better and better. So does the small web. Come to think of it, the library does too. Any good solutions for non-destructively scanning books?