Bandaid: Brokered Agent Network for DNS AI Discovery (datatracker.ietf.org)

An Internet‑Draft titled "BANDAID: Brokered Agent Network for DNS AI Discovery" (draft‑mozleywilliams‑dnsop‑bandaid‑00, Oct 2025) proposes using existing DNS infrastructure to enable scalable discovery, capability advertisement, and basic trust signaling between autonomous AI agents. Rather than inventing a new discovery protocol or centralized registry, BANDAID defines a convention for a leaf namespace (e.g., _agents.example.com) where Service Binding (SVCB) records like chat._agents.example.com carry application‑specific metadata. The draft is an individual I‑D (not yet IETF‑endorsed) and argues DNS’s ubiquity, governance models and operational tooling make it a practical foundation for agent-to-agent bootstrapping and automation. Technically, BANDAID leverages existing DNS mechanisms—SVCB for structured metadata, DNS‑SD for service discovery, DNSSEC and DANE for integrity and certificate binding, and a Domain Control Validation (DCV) best practice to prove an agent’s authority for a domain—while explicitly introducing no new DNS opcodes, RRs, or message formats. The draft covers zone/delegation requirements, key rollover, authenticated denial of existence, performance optimizations (aggressive caching, EDNS(0) resilience, prefetch), multitenancy and abuse resistance, and implementation guidance for AI operators, consumers and developers. For the AI/ML community this means a standards‑friendly, decentralized path to interoperable discovery and secure session initiation—reducing friction for federation, auditability and operator sovereignty—while surfacing operational and security tradeoffs that implementers must address.