On February 5, 2026, the National Cybersecurity Center of Excellence (NCCoE) at NIST opened public comment on a draft concept paper titled Accelerating the Adoption of Software and Artificial Intelligence Agent Identity and Authorization . Comment closed April 2. Eleven pages, four authors, one project email at AI-Identity@nist.gov . The paper is short and sober. It picks the right scaffold for L1 through L3, lists what that scaffold doesn't yet cover, and asks the ecosystem to weigh in. What NIST said it will adapt Section 2 of the paper, "Relevant Standards and Guidelines," names six identity standards and three NIST publications: Model Context Protocol (MCP) OAuth 2.0 / 2.1 and extensions OpenID Connect (OIDC) SPIFFE / SPIRE System for Cross-domain Identity Management (SCIM) Next Generation Access Control (NGAC) SP 800-207 Zero Trust Architecture SP 800-63-4 Digital Identity Guidelines NISTIR 8587 Protecting Tokens and Assertions from Forgery, Theft, and Misuse These are the right primitives for…