Web Bot Auth is an IETF draft standard for cryptographically authenticating bot requests using HTTP Message Signatures. Sites publish a directory at /.well-known/http-message-signatures-directory listing public keys for trusted bots. The standard solves the long-running problem of distinguishing legitimate AI crawlers from impersonators.
Run the free 50-signal AI Agent Readiness Check or talk to our AEO team.
Score my site