AEO/EXPERT v4.2 · LIVE
NL [EN]
BLOG
AI & AGENTS PROTOCOLS & STANDARDS 25 Feb 2026 9 min read

Web Bot Auth: authentication for AI bots

Bas Vermeer
Bas Vermeer SEO/AEO Specialist

Why AI bots need authentication

The current web runs on a simple model: bots identify themselves via a User-Agent string in their HTTP request. GPTBot sends "GPTBot/1.0," ClaudeBot reports as "ClaudeBot/1.0" and PerplexityBot does the same. The problem is that this identification is trivially forgeable. Any developer can write a script that impersonates GPTBot, making it impossible for website owners to verify whether a request actually originates from OpenAI.

This lack of reliable identification creates a stalemate. Websites want to give AI bots access to their content, but only to bots they trust and under conditions they determine. Without authentication, that is impossible. It is similar to the difference between robots.txt as a request and actual access control: robots.txt asks politely but cannot enforce anything. Web Bot Auth provides that enforceable layer.

Web Bot Auth, a proposal introduced in 2025 by a consortium of technology companies and standardization organizations, addresses this problem by defining a cryptographic verification protocol. Bots prove their identity not with a simple string but with a digital signature that website owners can verify against a public key.

IMPORTANT

Web Bot Auth does not replace robots.txt. It is an additional layer that works on top of existing crawl instructions. Robots.txt determines what a bot may do; Web Bot Auth verifies who the bot actually is.

How Web Bot Auth works technically

The protocol is based on a challenge-response mechanism similar to how HTTPS certificates work, but tailored to bot authentication. The process follows four steps.

  1. The bot sends an HTTP request to the website and indicates in a special header that it supports Web Bot Auth.
  2. The server responds with a challenge: a randomly generated nonce (one-time number) that the bot must sign.
  3. The bot signs the nonce with its private key and sends the signature back in a follow-up request.
  4. The server verifies the signature against the bot's public key (published at a well-known URI of the bot operator) and grants or denies access.
# Step 1: Bot sends initial request\nGET /api/content HTTP/1.1\nHost: example.com\nUser-Agent: GPTBot/1.0\nBot-Auth-Support: WBA/1.0\n\n# Step 2: Server responds with challenge\nHTTP/1.1 401 Unauthorized\nWWW-Authenticate: BotAuth realm="example.com",\n  nonce="a8f3b2c1d4e5f6789",\n  algorithm="ed25519"\n\n# Step 3: Bot sends signed request\nGET /api/content HTTP/1.1\nHost: example.com\nUser-Agent: GPTBot/1.0\nAuthorization: BotAuth\n  operator="openai.com",\n  nonce="a8f3b2c1d4e5f6789",\n  signature="base64-encoded-signature"\n\n# Step 4: Server verifies against public key\n# Fetched from: https://openai.com/.well-known/bot-auth-keys.json\nHTTP/1.1 200 OK\nContent-Type: text/html

The public keys are published at a standardized path at the bot operator. For OpenAI, this would for example be `https://openai.com/.well-known/bot-auth-keys.json`. This file contains the current and optionally rotated keys, similar to how JWKS (JSON Web Key Sets) work for OAuth.

The difference with existing bot verification

Several methods already exist to verify bots, but each has limitations that Web Bot Auth resolves.

The most commonly used method is IP verification: checking whether the request originates from an IP address belonging to the bot operator. Google, for example, publishes a list of IP ranges for Googlebot. But IP verification scales poorly. Bot operators increasingly use distributed infrastructure and CDNs, causing IP lists to change constantly. Moreover, IP verification offers no granular control: you cannot distinguish between different bots from the same operator. Web Bot Auth solves this with cryptographic identities that are independent of network topology, similar to how OAuth discovery works for user authentication with AI agents.

  • IP verification: works but scales poorly, no granular control, IP lists change constantly.
  • User-Agent string: trivially forgeable, no cryptographic guarantee whatsoever.
  • robots.txt: only a request, no enforcement. Bots can ignore it.
  • Web Bot Auth: cryptographic proof of identity, scalable, granular control per bot possible.

Implementing Web Bot Auth on your website

The server-side implementation is relatively straightforward, especially if you use a modern framework like Laravel. You need three components: middleware that handles the challenge-response, a configuration file with trusted bot operators and a caching layer for public keys.

# Example: Nginx configuration for Web Bot Auth\n# Add to your server block\n\nlocation / {\n    # Route bot requests to authentication middleware\n    if ($http_bot_auth_support) {\n        set $bot_auth_required "true";\n    }\n\n    # Laravel handles the authentication\n    try_files $uri $uri/ /index.php?$query_string;\n}\n\n# Example: Laravel middleware (simplified)\n# app/Http/Middleware/VerifyBotAuth.php\n\npublic function handle(Request $request, Closure $next)\n{\n    if (! $request->hasHeader('Bot-Auth-Support')) {\n        return $next($request);\n    }\n\n    if (! $request->hasHeader('Authorization')) {\n        return response()->json(['error' => 'Bot auth required'], 401)\n            ->header('WWW-Authenticate', $this->buildChallenge());\n    }\n\n    $operator = $this->parseOperator($request);\n    $publicKey = $this->fetchPublicKey($operator);\n\n    if (! $this->verifySignature($request, $publicKey)) {\n        return response()->json(['error' => 'Invalid signature'], 403);\n    }\n\n    return $next($request);\n}

It is wise to combine Web Bot Auth with your existing security headers. The authentication layer protects against unauthorized bots, while your security headers strengthen the overall trustworthiness of your site. Together, they form a robust defense model that gives AI crawlers confidence and protects your content against abuse.

Benefits for your AI strategy

Web Bot Auth opens possibilities that simply do not exist without authentication. When you can verify which bot is requesting your content, you can provide differentiated access.

  • Give verified AI bots access to premium content that you keep behind a crawl barrier for anonymous scrapers.
  • Offer different content formats: fully structured data for verified bots, regular HTML for browsers.
  • Implement rate limiting per verified bot instead of per IP address, which is fairer and more effective.
  • Monitor exactly which AI models fetch your content and how often, with cryptographic certainty about their identity.
  • Set conditions per bot operator: OpenAI may train on your content, another party may only cite.
TIP

Start with a permissive configuration: verify bots that support Web Bot Auth, but do not automatically reject unverified bots. This way you benefit from improved monitoring without disrupting existing crawling.

The relationship with TDM and content licenses

Web Bot Auth becomes especially powerful in combination with TDM headers (Text and Data Mining). Where TDM headers indicate under what conditions your content may be used, Web Bot Auth ensures you can verify who is actually fetching that content. Without authentication, TDM conditions are unenforceable because you do not know with certainty who is knocking at the door. With Web Bot Auth, you can establish a contractual chain: the bot identifies itself, you deliver the TDM conditions and the bot operator agrees by fetching the content. This connects to the broader development around llms.txt and standardized AI communication.

This combination is particularly relevant for publishers, media companies and organizations with valuable content. You can make your content available to AI models you trust, under conditions you determine, while keeping unknown or untrustworthy bots out.

In a world where AI bots are becoming the primary readers of your content, the question is not whether you need authentication but when you implement it.
READ MORE

Dive deeper: OAuth discovery for AI agents | Robots.txt for AI crawlers | Security headers for AI trust

Key takeaways

  • Web Bot Auth is a cryptographic protocol that lets AI bots prove their identity to websites via a challenge-response mechanism.
  • The protocol solves the fundamental problem that User-Agent strings are trivially forgeable and IP verification scales poorly.
  • Implementation requires server-side middleware that issues challenges, verifies signatures and caches public keys.
  • The combination with TDM headers enables enforceable content licenses: you know who fetches your content and under what conditions.
  • Start with a permissive configuration to improve monitoring without disrupting existing crawling.

Frequently asked questions

Do the major AI bots already support Web Bot Auth?

The protocol is in an early adoption phase. Google has indicated it wants to support Web Bot Auth for Googlebot and the Gemini crawler. OpenAI and Anthropic participate in the working group but have not yet rolled out a full implementation. The expectation is that major players will add support during 2026 and 2027. By setting up the server-side infrastructure now, you are prepared as soon as the bots activate the protocol.

Does Web Bot Auth slow down crawling of my website?

The challenge-response adds an extra round-trip to the first request of a bot session. In practice, this costs 50 to 200 milliseconds extra, depending on network latency. After the initial authentication, the server can issue a session token that speeds up subsequent requests. The net effect on crawl speed is negligible, especially since most AI bots already maintain limited crawl frequencies.

What if a bot does not support Web Bot Auth?

You determine how you handle unverified bots. The recommended approach is a fallback to the current model: check the User-Agent string and optionally the IP address. You can give unverified bots full access, offer limited access or block them. The protocol is designed as an opt-in improvement, not a mandatory gateway.

Can I combine Web Bot Auth with a paywall or members area?

Yes, and that is one of the most powerful applications. You can give verified AI bots access to content behind a paywall, so your articles can be cited in AI answers while human visitors need a subscription. This model is called "metered AI access" and offers publishers a way to maintain AI visibility without giving up their revenue model.

How does Web Bot Auth relate to robots.txt?

Web Bot Auth and robots.txt complement each other. Robots.txt is an instruction file that indicates which paths a bot may or may not visit. Web Bot Auth is an authentication protocol that verifies who the bot is. You can use robots.txt to define global crawl rules and Web Bot Auth to allow exceptions for verified bots. For example, you could block a path in robots.txt for all bots, but grant verified OpenAI bots access via Web Bot Auth.

Web Bot Auth elevates the trust model of the web to a new level. No longer "trust good behavior" but "verify and grant access based on proof."

How does your website score on AI readiness?

Get your AEO score within 30 seconds and discover what you can improve.

Free scan

TAGS

#protocol #authenticatie #Web Bot Auth #bots

SHARE THIS ARTICLE

LINKEDIN X
NEWSLETTER

Test your website

Discover how AI-ready your website is with our free scanner.

Start scan

RELATED ARTICLES