TessPay: Verify-then-Pay Infrastructure for Trusted Agentic Commerce
Mehul Goenka, Tejas Pathak, Siddharth Asthana
TL;DR
TessPay tackles the trust gap in agentic commerce by introducing a Verify-then-Pay infrastructure with a two-plane architecture that separates control/verification from settlement. The system anchors agents in a canonical registry, converts user intent into verifiable mandates, locks funds in escrow, and releases payment only after cryptographic Proof of Task Execution (PoTE) backed by TLS Notary and TEE attestations. Its architecture supports chain-agnostic settlement through modular Rail Adapters and Wallet Abstraction, and it maintains a tamper-evident audit trail for dispute resolution. The paper presents threat modeling, tiered verification, and two practical use cases (an e-commerce shopping agent and a portfolio manager) to demonstrate how TessPay enables verifiable, interoperable, and secure agentic payments across heterogeneous ecosystems. Overall, TessPay offers a holistic endpoint for end-to-end agentic transactions, with potential to standardize cross-chain, trust-enabled agent commerce at scale.
Abstract
The global economy is entering the era of Agentic Commerce, where autonomous agents can discover services, negotiate prices, and transact value. However adoption towards agentic commerce faces a foundational trust gap: current systems are built for direct human interactions rather than agent-driven operations. It lacks core primitives across three critical stages of agentic transactions. First, Task Delegation lacks means to translate user intent into defined scopes, discover appropriate agents, and securely authorize actions. Second, Payment Settlement for tasks is processed before execution, lacking verifiable evidence to validate the agent's work. Third, Audit Mechanisms fail to capture the full transaction lifecycle, preventing clear accountability for disputes. While emerging standards address fragments of this trust gap, there still remains a critical need for a unified infrastructure that binds the entire transaction lifecycle. To resolve this gap, we introduce TessPay, a unified infrastructure that replaces implicit trust with a 'Verify-then-Pay' architecture. It is a two plane architecture separating control and verification from settlement. TessPay operationalizes trust across four distinct stages: Before execution, agents are anchored in a canonical registry and user intent is captured as verifiable mandates, enabling stakeholder accountability. During execution, funds are locked in escrow while the agent executes the task and generates cryptographic evidence (TLS Notary, TEE etc.) to support Proof of Task Execution (PoTE). At settlement, the system verifies this evidence and releases funds only when the PoTE satisfies verification predicates; modular rail adapters ensure this PoTE-gated escrow remains chain-agnostic across heterogeneous payment rails. After settlement, TessPay preserves a tamper-evident audit trail to enable clear accountability for dispute resolution.
