Lot of options though. Identity and signing is built into to Google's A2A, agents have keypairs. Also I suspect when an A2A agent wants to interact with an MCP Server it can use its A2A identity to authenticate to that MCP Server and piggyback that way.