Mastercard AP4M
Agent Pay for Machines — machine-to-machine payment protocol. The first agentic protocol scored under the LISR Agentic Custody Readiness (ACR) framework. Assessed against Linkmerica's dated monitoring record, June 11–28, 2026.
ACR Score
HIGH RISK| ACR Category | Score | Risk Bar |
|---|---|---|
| Session Key Support | 6.5 | |
| Programmable Guardrails | 6.0 | |
| Audit Log Generation | 5.5 | |
| Multi Party Approval | 7.0 | |
| Protocol Compatibility | 6.5 | |
| Quantum Resistance Readiness | 8.3 |
Six structural agentic custody properties. Category weights and internal scoring math are proprietary.
- No public technical documentation on session key scoping or credential expiration for agent operations
- Absence of disclosed protocol-native multi-party approval mechanisms for high-value agent transactions
- On-chain credentials on three quantum-vulnerable blockchain networks with no PQC migration plan
- Multi-chain, multi-rail settlement architecture creates elevated interoperability and fragmentation risk
- 18-day operational history insufficient to validate audit trail completeness or incident response capabilities
- Agent permission revocation mechanics not publicly documented
- Mastercard institutional pedigree and 50+ year payments security track record
- New York State BitLicense obtained at launch demonstrates proactive regulatory compliance posture
- Regulated custodian partners (Coinbase, Anchorage Digital) provide institutional-grade asset custody
- No disclosed security incidents as of June 28, 2026 monitoring window close
Analyst Assessment
This is the first independent Agentic Custody Readiness (ACR) score published under the LISR framework, assessing Mastercard AP4M based on Linkmerica monitoring from June 11-28, 2026. AP4M represents a landmark development as the first tier-one payments network to use public blockchain for production-scale agent authorization, but scores in the HIGH risk tier (6.3/10.0) due to limited public documentation on institutional custody controls. The quantum resistance category (8.3/10.0) drives score elevation, reflecting ECDSA/EdDSA vulnerabilities across Polygon, Solana, and Base with no disclosed PQC roadmap. While Mastercard's BitLicense compliance and regulated custodian partnerships provide meaningful institutional assurance, absence of published specifications on session keys, programmable guardrails, multi-party approval, and audit log export creates uncertainty for institutional custodians evaluating agentic delegation risk. The 18-day operational history limits empirical validation but does not diminish the protocol compatibility risks inherent in multi-chain, multi-rail hybrid settlement architecture. Future score revisions will incorporate disclosed technical specifications and operational track record as they emerge. Institutions evaluating AP4M integration should request session key scoping, guardrail, and approval-workflow documentation directly from Mastercard as a precondition of due diligence — the absence of public disclosure is itself the primary finding of this assessment.