a2aproject · chopmob-cloud · May 30, 2026 · May 30, 2026 · May 30, 2026 · May 30, 2026
@@ -1,7 +1,13 @@
 Abhimanyu
-lfx
-luma
+JCS
+PEF
 Petschulat
 SFDC
 Siwach
+algovoi
+hopley
+jcs
+lfx
+luma
+pef
 siwachabhi
@@ -0,0 +1,179 @@
+# Payment Evidence Frame
+
+## Overview
+
+A **Payment Evidence Frame (PEF)** is a transport-agnostic JSON envelope that
+wraps any payment lifecycle receipt under a named `claim_type`, a deterministic
+`frame_id`, and an optional transport-layer signature.
+
+PEF is defined by the IETF Internet-Draft
+[`draft-hopley-x402-payment-evidence-frame`](https://datatracker.ietf.org/doc/draft-hopley-x402-payment-evidence-frame/).
+This page describes how PEF is used within A2A task artifacts.
+
+---
+
+## Why PEF in A2A
+
+When a payment agent completes a task and returns a receipt as an artifact, the
+orchestrator faces three practical problems:
+
+1. **Type identification** -- the orchestrator must know what kind of receipt it
+   is without parsing the inner format.
+2. **Stable reference** -- the orchestrator needs an identifier that does not
+   change if the receipt is re-serialised or if a signature is appended later.
+3. **Tamper detection** -- the orchestrator must be able to confirm the inner
+   receipt has not been altered without re-parsing it end-to-end.
+
+PEF solves all three at the envelope level, before any inner-format parsing
+occurs. The outer frame carries enough metadata for orchestration logic
+(`claim_type`, `frame_id`, `receipt_hash`), while the inner `receipt` object
+remains the authoritative domain record.
+
+---
+
+## claim_type Taxonomy
+
+The `claim_type` field is a closed string enum. Each value corresponds to a
+distinct payment lifecycle event.
+
+| `claim_type`           | Lifecycle stage                       | Typical inner format            |
+| :--------------------- | :------------------------------------ | :------------------------------ |
+| `payment_admission`    | Compliance screen result              | `compliance-receipt-v1`         |
+| `payment_settlement`   | Settlement confirmation               | `settlement-attestation-v1`     |
+| `payment_cancellation` | Mandate or order termination          | `cancellation-receipt-v1`       |
+| `payment_refund`       | Post-settlement refund                | `refund-receipt-v1`             |
+| `composite_verdict`    | Verifier-of-verifier trust conclusion | `composite-trust-query-v1`      |
+
+An orchestrator that does not recognise a `claim_type` value SHOULD treat the
+frame as opaque and forward it without modification.
+
+---
+
+## Frame Fields
+
+| Field                | Type    | Required | Description                                                                           |
+| :------------------- | :------ | :------- | :------------------------------------------------------------------------------------ |
+| `pef_version`        | string  | yes      | Specification version. Currently `"1"`.                                               |
+| `claim_type`         | string  | yes      | Closed enum; see taxonomy above.                                                      |
+| `receipt_format`     | string  | yes      | Inner receipt format identifier, e.g. `"compliance-receipt-v1"`.                      |
+| `receipt`            | object  | yes      | The inner receipt verbatim.                                                           |
+| `receipt_hash`       | string  | yes      | `sha256:<hex>` of the JCS-canonical form of `receipt`.                                |
+| `frame_id`           | string  | yes      | `sha256:<hex>` of the JCS-canonical form of the frame preimage (see below).           |
+| `frame_provider_did` | string  | yes      | DID URI of the party that issued this frame.                                          |
+| `frame_timestamp_ms` | integer | yes      | Frame creation time as Unix epoch milliseconds.                                       |
+| `canon_version`      | string  | yes      | Canonicalisation algorithm URI. MUST be `"urn:x402:canonicalisation:jcs-rfc8785-v1"`. |
+| `signature`          | string  | no       | RFC 9421 HTTP message signature string, covering the frame preimage.                  |
+
+All string values are UTF-8. Integer values are JSON numbers with no fractional
+part.
+
+---
+
+## frame_id Derivation
+
+The `frame_id` is computed over the **frame preimage**: the frame object with
+`frame_id` and `signature` fields excluded before serialisation.
+
+Derivation steps:
+
+1. Construct the frame object with all required fields present and `frame_id`
+   and `signature` absent.
+2. Serialise to JSON using JCS canonicalisation (RFC 8785).
+3. Compute SHA-256 over the canonical byte sequence.
+4. Encode as the lowercase hex string prefixed with `sha256:`.
+
+```text
+frame_id = "sha256:" + hex( sha256( JCS( frame_without_frame_id_and_signature ) ) )
+```
+
+This derivation ensures that `frame_id` is stable: adding a `signature` field
+after the fact does not change the identifier. Orchestrators may record or index
+`frame_id` before signing has occurred.
+
+---
+
+## Usage as a Task Artifact
+
+A payment agent attaches a PEF as an A2A task artifact. The artifact contains a
+single part with `mediaType: "application/json"`, where the `data` field carries
+the complete frame object.
+
+Example artifact for a settlement confirmation:
+
+```json
+{
+  "artifactId": "artifact-uuid-123",
+  "name": "Payment Evidence",
+  "parts": [
+    {
+      "mediaType": "application/json",
+      "data": {
+        "pef_version": "1",
+        "claim_type": "payment_settlement",
+        "receipt_format": "settlement-attestation-v1",
+        "frame_provider_did": "did:web:payments.example.com",
+        "frame_timestamp_ms": 1748563200000,
+        "canon_version": "urn:x402:canonicalisation:jcs-rfc8785-v1",
+        "receipt": {
+          "status": "SETTLED",
+          "chain": "base",
+          "tx_hash": "0x3c4f1e2a...",
+          "settled_at_ms": 1748563195000
+        },
+        "receipt_hash": "sha256:a1b2c3d4e5f6...",
+        "frame_id": "sha256:3c4f1e2a9b8d..."
+      }
+    }
+  ]
+}
+```
+
+An orchestrator receiving this artifact can:
+
+- Read `claim_type` to determine routing logic without inspecting `receipt`.
+- Verify `receipt_hash` to confirm `receipt` has not been altered.
+- Index `frame_id` as a stable cross-system reference.
+- Verify the optional `signature` field if present, using the RFC 9421 rules
+  with `frame_provider_did` to locate the public key.
+
+---
+
+## frame_id Stability
+
+Because `frame_id` and `signature` are excluded from the preimage, a signer may
+attach a `signature` to a frame that has already been distributed without
+invalidating any previously recorded `frame_id` references.
+
+This property is useful in multi-agent pipelines where:
+
+- An upstream agent issues a frame and records `frame_id` in a ledger.
+- A signing service later attaches a `signature` field.
+- A downstream verifier confirms integrity using the same `frame_id` that was
+  logged before signing occurred.
+
+Implementations MUST NOT include `frame_id` or `signature` in the preimage
+computation.
+
+---
+
+## Reference Implementation
+
+Two reference implementations are published under the Apache 2.0 licence:
+
+- **Python**: [algovoi-pef on PyPI](https://pypi.org/project/algovoi-pef/)
+- **TypeScript**: [@algovoi/pef on npm](https://www.npmjs.com/package/@algovoi/pef)
+
+Both implementations expose helpers for frame construction, `frame_id`
+derivation, `receipt_hash` computation, and signature verification. They share
+a common test-vector corpus to ensure byte-for-byte agreement across languages.
+
+---
+
+## Normative Reference
+
+- IETF Internet-Draft `draft-hopley-x402-payment-evidence-frame`:
+  <https://datatracker.ietf.org/doc/draft-hopley-x402-payment-evidence-frame/>
+- RFC 8785 -- JSON Canonicalization Scheme (JCS):
+  <https://www.rfc-editor.org/rfc/rfc8785>
+- RFC 9421 -- HTTP Message Signatures:
+  <https://www.rfc-editor.org/rfc/rfc9421>
@@ -31,6 +31,7 @@ nav:
       - Multi-Tenancy: topics/multi-tenancy.md
   - Extensions:
       - Overview: topics/extensions.md
+      - Payment Evidence Frame: topics/payment-evidence-frame.md
       - Custom Protocol Bindings: topics/custom-protocol-bindings.md
       - Extension & Binding Governance: topics/extension-and-binding-governance.md
   - Specification: