A2A, a protocol for AI agent communication, offers a robust foundation for secure AI agent communication. However, it has several critical issues in handling sensitive data, such as payment details, identification documents, and personal information. This paper reviews the existing protocol, identifies its limitations, and proposes specific enhancements to improve security, privacy, and trust. It includes a concrete example to illustrate the problem and solution, research-backed rationales, and implementation considerations, drawing on prior studies to strengthen the arguments and proposed solutions. This proposal includes seven enhancements: short-lived tokens, customer authentication (SCA), granular scopes, explicit consent, direct data transfer, multi-transaction approval, and payment standard compliance. The vacation booking example illustrates how these enhancements reduce risks and enhance user experience.
View on arXiv@article{louck2025_2505.12490,
title={ Proposal for Improving Google A2A Protocol: Safeguarding Sensitive Data in Multi-Agent Systems },
author={ Yedidel Louck and Ariel Stulman and Amit Dvir },
journal={arXiv preprint arXiv:2505.12490},
year={ 2025 }
}