| Internet-Draft | Consent Required | August 2025 |
| Jewell | Expires 16 February 2026 | [Page] |
This document defines the AI Boundary Declaration Protocol (AIBDP), a declarative framework for expressing usage boundaries around web-hosted content in relation to AI systems. It builds on the mechanisms of RFC 2196 and RFC 9116, as well as on the HTTP semantics of RFC 9110 and the robots-style inclusion rules of RFC 7725, to provide machine-readable permissions and denials for indexing, training, mimicry, representation, derivative construction, analytical exploitation, and agentic access. AIBDP supports ethical infrastructure, agentic AI governance, and procedural clarity across the Internet.¶
This Internet-Draft is submitted in full conformance with the provisions of BCP 78 and BCP 79.¶
Internet-Drafts are working documents of the Internet Engineering Task Force (IETF). Note that other groups may also distribute working documents as Internet-Drafts. The list of current Internet-Drafts is at https://datatracker.ietf.org/drafts/current/.¶
Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress."¶
This Internet-Draft will expire on 16 February 2026.¶
Copyright (c) 2025 IETF Trust and the persons identified as the document authors. All rights reserved.¶
This document is subject to BCP 78 and the IETF Trust's Legal Provisions Relating to IETF Documents (https://trustee.ietf.org/license-info) in effect on the date of publication of this document. Please review these documents carefully, as they describe your rights and restrictions with respect to this document.¶
As AI systems become increasingly capable of autonomous interaction, generation, and ingestion of online content, current technical governance mechanisms such as robots.txt [RFC9309], security.txt [RFC9116], HTTP semantics per RFC 9110, and licensing-metadata fail to communicate granular boundaries for ethical AI use. AIBDP introduces a declarative perimeter protocol designed to enable web publishers and institutions to express machine-readable consent declarations for specific categories of AI use, including indexing, training, agentic access, stylistic imitation, derivative prompting, analytic harvesting, and infrastructural activation.¶
The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in RFC 2119.¶
AIBDP declarations may be conveyed through:¶
Declaration keys are grouped by category:¶
AIBDP declarations are published as a JSON file:¶
Location: /.well-known/aibdp.json¶
Media Type: application/aibdp+json¶
Example manifest:¶
{ "consent": { "indexing": "allow", "training": "deny", "generation": "deny" }, "agentic": { "access": "deny", "fallback": "deny" }, "representation": { "embedding": "deny", "summarization": "deny", "metadataHarvesting": "deny", "multiHopRetrieval": "deny" }, "influence": { "stylisticImitation": "deny", "thematicRegeneration": "deny", "partialSampling": "deny" }, "derivation": { "promptDerivation": "deny", "fineTuningBootstrap": "deny", "templateReuse": "deny" }, "analytics": { "sentimentClassification": "deny", "entityResolution": "deny", "patternMining": "deny" }, "infrastructure": { "autonomousTaskTriggering": "deny", "crossDomainAggregation": "deny", "consentCircumvention": "deny" }, "notice": "This content is protected under AIBDP. Unauthorized ingestion or derivative use constitutes breach." }¶
AIBDP supports the following values:¶
Absence of a key implies undefined, not implicitly permitted.¶
Per draft-jewell-http-430-consent-required [_30], if a client fails to comply with AIBDP boundaries, the server MAY respond:¶
HTTP/1.1 430 Consent Required¶
Content-Type: application/json¶
/well-known/aibdp.json; rel="blocked-by"¶
Retry-After: 86400¶
{ "error": "Consent declaration missing or invalid.", "reference": "https://example.org/.well-known/aibdp.json" }¶
This enables ethical denial logic across protocol layers.¶
AIBDP declarations are advisory and public. Enforcement requires additional legal or infrastructure mechanisms. Headers and manifests must not leak identifying information beyond declarative scope.¶
This document requests:¶
A.1 HTTP Headers¶
GenAI-Consent: indexing=allow; training=deny; generation=deny GenAI-Agentic: access=deny; fallback=deny¶
A.2 DNS TXT Record¶
aibdp="training=deny; generation=deny; agentic.access=deny"¶
A.3 HTML Meta Tags¶
<meta name="aibdp-training" content="deny"> <meta name="aibdp-agentic-access" content="deny">¶
This proposal builds on ethical governance efforts in journalism, computing, and infrastructure architecture. Thanks to contributors from the NUJ, the IETF HTTPAPI and ART areas, and transparency coalitions engaging in boundary-aware standards formation.¶