Staking services are securities offerings. The SEC's actions against Kraken and Coinbase establish that providing a tokenized yield from pooled assets constitutes an unregistered investment contract. This mirrors the 2017 ICO crackdown where utility token promises were reclassified as securities.
the-sec-vs-crypto-legal-battles-analysis
Blog
Why Staking Services Are the New ICOs in the Eyes of Regulators
The SEC's enforcement against Kraken and Coinbase reveals a deliberate strategy: treating centralized staking service offerings as unregistered securities, applying the exact legal framework that decimated the ICO market.
introduction
THE REGULATORY SHIFT
Introduction
Staking-as-a-Service is attracting the same regulatory scrutiny as ICOs due to its central role in capital formation and control.
The control is the vulnerability. Unlike simple wallet delegation, centralized staking providers like Lido and Rocket Pool exercise discretion over validator operations and slashing penalties. This creates a common enterprise where investor profits depend on a third party's managerial efforts, the legal hallmark of a security.
Evidence: The SEC's 2023 settlement with Kraken forced the shutdown of its U.S. staking program and established a precedent that applies to all centralized providers. The debate now centers on whether truly decentralized, non-custodial protocols can avoid the same fate.
thesis-statement
THE SEC'S PLAYBOOK
The Core Argument: A Legal Pattern Match
Regulators are applying the same legal framework used against ICOs to liquid staking and DeFi services, creating systemic risk.
The Howey Test is the blueprint. The SEC's core argument against ICOs was that selling a token representing future profits from a common enterprise constitutes an investment contract. This exact logic now targets staking-as-a-service models like Lido and Rocket Pool, where users surrender assets for a yield.
The key shift is delegation. Unlike solo staking, liquid staking tokens (LSTs) like stETH or rETH separate ownership from the underlying asset's utility. This creates a common enterprise where the protocol's success dictates returns, mirroring the ICO structure the SEC already knows how to prosecute.
The precedent is Coinbase Staking. The SEC's 2023 lawsuit against Coinbase's staking program is the direct template. The agency argued the program was an unregistered security because customers pooled assets, relied on Coinbase's managerial efforts, and expected profits. This is a direct pattern match to major DeFi staking services.
Evidence: The Hinman Speech Reversal. The SEC's 2018 guidance (the 'Hinman Speech') suggested sufficiently decentralized networks might not be securities. The agency is now aggressively walking this back, applying strict Howey analysis to any service offering yield, regardless of decentralization claims from protocols like Frax Finance or Aave.
key-trends
WHY STAKING IS THE NEW FRONTIER
The Regulatory On-Chain: Three Key Trends
Regulators are applying the Howey Test to staking-as-a-service, creating existential risk for centralized providers and forcing a structural shift in the ecosystem.
01
The SEC's Howey Test for Staking
The SEC argues that staking services, like those from Kraken and Coinbase, constitute an investment contract. The user's expectation of profit is derived from the managerial efforts of the service provider, not their own capital.\n- Key Precedent: Kraken's $30M settlement and shutdown of U.S. staking service.\n- Regulatory Target: Centralized, custodial yield generation with a single point of control.
$30M
Kraken Fine
100%
Custodial Risk
02
The Rise of Non-Custodial & Liquid Staking
The regulatory crackdown accelerates adoption of trust-minimized staking models. Protocols like Lido, Rocket Pool, and EigenLayer separate token ownership from validation duties.\n- Structural Defense: Users retain asset custody via liquid staking tokens (LSTs) like stETH or rETH.\n- Market Shift: $40B+ TVL in liquid staking demonstrates demand for compliant yield.
$40B+
LST TVL
0%
User Custody
03
The Institutionalization of Staking Infrastructure
Regulatory clarity, however painful, forces professionalization. Expect a bifurcation: compliant enterprise services (e.g., Coinbase Institutional) and permissionless DeFi stacks.\n- New Business Model: Regulated entities will offer staking as a licensed, audited utility.\n- Tech Consequence: Increased demand for SSV Network-style DVT and multi-operator validation to reduce centralization and slashing risk.
24/7
Audit Trail
>10
DVT Operators
REGULATORY LENS
ICO vs. Staking Enforcement: A Side-by-Side Analysis
A comparison of the legal and operational characteristics of Initial Coin Offerings (ICOs) and Staking-as-a-Service (SaaS) platforms, highlighting why regulators are applying similar frameworks.
| Regulatory Feature | ICO (2017-2018 Era) | Staking-as-a-Service (2023-Present) | Direct Self-Staking |
|---|---|---|---|
Primary Regulatory Classification | Security (Howey Test) | Security (Howey Test / Investment Contract) | Not a Security |
Core Value Proposition to User | Capital appreciation of new token | Yield on existing token (e.g., 3-5% APY on ETH) | Network security & governance rights |
User's Economic Reliance | On efforts of a third-party promoter | On efforts of third-party staking operator (e.g., Coinbase, Kraken, Lido) | On protocol's native consensus mechanism |
Typical SEC Enforcement Action | Unregistered securities offering | Unregistered securities offering (e.g., Kraken $30M settlement) | N/A |
Control of Private Keys | |||
Smart Contract Risk Exposure | High (funds locked in untested code) | High (funds locked in protocols like Lido, Rocket Pool) | User-managed |
Dominant Legal Precedent | SEC vs. Telegram (TON), SEC vs. Kik | SEC vs. Kraken (Staking), SEC vs. Coinbase (ongoing) | Hinman Speech / Framework |
Regulatory Clarity Post-Enforcement | Clear: Tokens are securities | Evolving: Staking services are securities offerings | Clear: Protocol-native activity is not a security |
deep-dive
THE LEGAL FRONTIER
Deconstructing the Howey Test for Staking
Regulators are applying the 1946 Howey Test to modern staking services, arguing they constitute unregistered securities.
Staking as an investment contract is the SEC's core argument. The Howey Test requires (1) an investment of money (2) in a common enterprise (3) with an expectation of profits (4) derived from the efforts of others. Staking services like Coinbase Earn or Kraken's offering satisfy all four prongs by pooling user assets and managing the technical validation process.
The critical distinction is delegation. Native, self-custodial staking (e.g., running an Ethereum validator) is not a security. The legal risk emerges when users surrender control to a third-party service. The SEC's case against Kraken established that promotional marketing promising returns transforms the service into a security, regardless of the underlying asset's status.
Regulatory arbitrage is collapsing. The SEC's actions against Lido Finance (stETH) and Rocket Pool (rETH) signal scrutiny extends beyond centralized exchanges to decentralized staking derivatives. The common enterprise is the pooled validator set, and the profit expectation is the advertised APR, creating a textbook Howey security.
Evidence: The SEC's 2023 settlement with Kraken forced the shutdown of its U.S. staking service and imposed a $30 million penalty, establishing a direct precedent that centralized staking-as-a-service fails the Howey Test.
case-study
WHY STAKING IS THE NEW ICO
Case Studies: The Enforcement Frontlines
Regulators are targeting staking services as the primary vector for securities enforcement, applying the Howey Test to pooled, yield-generating crypto assets.
01
Kraken's $30M Settlement
The SEC's landmark 2023 action defined staking-as-a-service (SaaS) as an unregistered security. The core argument: investors rely on Kraken's managerial efforts for a passive return.\n- Precedent: Established the 'pooled staking' model as a primary enforcement target.\n- Impact: Forced immediate shutdown of U.S. staking services, creating a $10B+ regulatory gap.
$30M
SEC Fine
100%
US Service Halt
02
Coinbase's Legal Counter-Attack
Coinbase is litigating the SEC's Wells Notice to create a legal distinction between protocol-level staking and custodial services. Their argument hinges on user ownership of underlying assets.\n- Strategy: Force a court ruling that not all SaaS arrangements are investment contracts.\n- Stake: A loss could cripple the ~$40B institutional staking market in the U.S.
$40B
Market at Risk
1
Existential Case
03
The Lido DAO Subpoena
The SEC's probe into Lido targets the decentralized governance of the largest liquid staking provider (~$30B TVL). This tests if a DAO can be held liable for the financial product its protocol enables.\n- Frontier: Attacks the 'sufficient decentralization' defense used by projects like Uniswap.\n- Implication: A successful action would set precedent for regulating autonomous code as a security issuer.
$30B
Lido TVL
DAO
Novel Target
04
The Non-Custodial Loophole
Services like Figment and Rocket Pool's node operator model operate in a grayer area by not taking custody of user assets. Regulators must prove the 'managerial efforts' prong of Howey.\n- Defense: Users retain key control and select operators, arguing against a common enterprise.\n- Risk: The SEC may still argue the orchestration of the network constitutes managerial effort.
Custody
Key Variable
High
Regulatory Risk
counter-argument
THE REGULATORY LENS
The Steelman: Isn't This Just Providing a Service?
Regulators view modern staking services as the functional and legal successor to ICOs, creating a new investment contract nexus.
The core economic reality is identical. An ICO sells a token for capital to fund development. A staking-as-a-service provider like Lido or Rocket Pool sells a derivative token (stETH, rETH) for the capital to run validators. The user's profit expectation hinges on the service provider's managerial efforts, not their own.
The legal classification shifts from 'utility' to 'investment contract'. The SEC's Howey Test focuses on profit from a common enterprise. Centralized staking services from Coinbase or Kraken explicitly market returns, creating a textbook case. Decentralized variants face scrutiny over DAO governance and fee distribution.
The enforcement precedent is set. The SEC's 2023 action against Kraken's staking program established that offering packaged staking constitutes a securities offering. This creates a regulatory playbook that applies to any service abstracting technical complexity for passive yield.
Evidence: The SEC's settlement forced Kraken to shut down its U.S. staking service and pay a $30 million penalty, defining the activity's legal status through enforcement, not legislation.
risk-analysis
REGULATORY FRONTIER
Builder & Investor Risk Matrix
The SEC's aggressive posture on staking-as-a-service reveals a new enforcement vector, treating pooled staking as an unregistered security offering.
01
The Kraken Precedent: A $30M Warning Shot
The SEC's 2023 settlement with Kraken established the core argument: pooled staking services offer an expectation of profit derived from the managerial efforts of others. This is the Howey Test's third prong, and it's now the primary regulatory risk for protocols like Lido, Rocket Pool, and Coinbase.
- Key Risk: Centralized service provider control over validator keys and rewards distribution.
- Key Metric: $30M settlement fine and termination of U.S. service.
- Implication: Any service abstracting technical complexity while promising yield is now a target.
$30M
SEC Fine
100%
US Service Halted
02
The Technical vs. Financial Abstraction Divide
Regulators distinguish between providing software (non-security) and providing a financial return (security). Running your own validator with DVT clusters from Obol or SSV is likely safe. Having a third party pool your ETH, run nodes, and send you a yield token like stETH is the danger zone.
- Safe Harbor: Permissionless node software and decentralized middleware.
- Red Flag: Custodial key management and branded "yield" products.
- Builder Action: Architect for non-custodial, credibly neutral coordination, not financial intermediation.
0%
Custodial Risk
DVT
Key Tech
03
The Liquid Staking Token (LST) Trap
The secondary market for liquid staking tokens creates a self-reinforcing security designation. Regulators argue the tradable LST (e.g., stETH, rETH) itself is an investment contract, as its value is pegged to the performance of the underlying staking service. This creates existential risk for the $50B+ LST ecosystem and its DeFi integrations.
- Core Issue: LSTs are marketed and traded based on their yield-bearing properties.
- Network Effect Risk: A ruling against a major LST could trigger systemic DeFi contagion.
- Investor Due Diligence: Scrutinize the legal structure of the issuing entity (e.g., Lido DAO vs. Rocket Pool's hybrid model).
$50B+
LST TVL
High
Contagion Risk
04
The Sovereign Rollup Escape Hatch
The most credible long-term defense is architectural: staking services must evolve into sovereign infrastructure layers. This means the protocol's utility must be indispensable for chain security and liveness, not just a yield wrapper. Think EigenLayer's cryptoeconomic security marketplace or Babylon's Bitcoin staking for PoS chains.
- Strategic Pivot: Frame staking as a public good for blockchain consensus, not a financial product.
- Regulatory Arbitrage: Provide a verifiable, decentralized service that cannot be centrally "turned off".
- Example: EigenLayer's restaking secures Actively Validated Services (AVSs), creating a utility beyond passive yield.
AVS
Core Utility
Sovereign
Legal Shield
future-outlook
THE NEW TARGET
The Regulatory Endgame & Protocol Implications
Regulators are classifying staking services as unregistered securities offerings, creating an existential threat to major protocols.
Staking-as-a-Service is a security. The SEC's core argument is that pooled staking services like those from Coinbase and Kraken constitute an investment contract. Users provide capital expecting profits derived from the managerial efforts of the service operator, meeting the Howey Test.
The target is protocol control. This legal theory directly implicates the Lido DAO and Rocket Pool protocol treasuries. Regulators view the protocol's fee structure and tokenomics as a profit-sharing mechanism orchestrated by a decentralized, yet identifiable, group of developers and validators.
The endgame is protocol insolvency. A successful enforcement action would force these protocols to register or shut down US operations, crippling Ethereum's validator decentralization and creating massive sell pressure on governance tokens like LDO and RPL.
Evidence: The SEC's 2023 settlement with Kraken forced a shutdown of its US staking service and imposed a $30 million penalty, establishing the precedent that is now being applied to native protocols.
takeaways
REGULATORY FRONTIER
TL;DR for Protocol Architects
Regulators are targeting staking services as the new unregistered securities offering, forcing a fundamental redesign of protocol incentives and delegation.
01
The SEC's Howey Test for Staking
The SEC argues pooled staking services constitute an investment contract: capital is invested in a common enterprise with profits derived from the efforts of a third party (the service). This reclassifies staking yields as securities income.
- Key Risk: $100B+ in staked assets across Ethereum, Solana, Cardano now in the crosshairs.
- Key Implication: Native protocol staking may be safe, but any service abstracting it is not.
$100B+
TVL at Risk
3-Part
Howey Test
02
Kraken's $30M Settlement as the Blueprint
The SEC's action against Kraken established the enforcement template: cease offering the service, pay a massive fine, and admit wrongdoing. This is a direct parallel to the ICO crackdown of 2018.
- Key Precedent: Admission of guilt is now the price of settlement, creating legal liability for other services like Coinbase and Binance.
- Strategic Shift: Protocols must design for non-custodial, solo-staking primitives to stay compliant.
$30M
Settlement Fine
100%
Service Halted
03
The Protocol Architect's Mandate: Decentralize or Die
The only durable path is to architect staking that is permissionless, non-custodial, and minimizes third-party managerial effort. This means investing in DVT (Distributed Validator Technology) like Obol and SSV Network, and better solo-staking UX.
- Key Solution: Shift from Lido's stETH model to trust-minimized pools using DVT.
- Key Metric: Target >100,000 independent validators to prove network decentralization.
DVT
Core Tech
>100k
Validator Goal
04
The Liquid Staking Token (LST) Paradox
LSTs like Lido's stETH and Rocket Pool's rETH are now toxic assets for regulated entities. Their derivative value is explicitly tied to a centralized service's managerial efforts, making them likely securities.
- Key Problem: DeFi's foundational collateral (~$40B in LSTs) faces existential regulatory risk.
- Architect's Pivot: Design for non-rebasing, non-custodial LSTs or move to restaking primitives on EigenLayer that separate provision from yield.
$40B+
LST Market
High
Securities Risk
05
Restaking as the Regulatory Escape Hatch
EigenLayer's restaking model cleverly sidesteps the SEC's current framing. It doesn't sell a staking service; it allows already-staked ETH to opt into providing cryptoeconomic security for other protocols (AVSs).
- Key Innovation: Yield is from additional slashing risk, not from a promoter's managerial efforts.
- Strategic Advantage: Creates a $10B+ native yield market outside the traditional securities box.
EigenLayer
Key Protocol
$10B+
TVL Potential
06
The Global Regulatory Arbitrage Play
The US SEC's stance is not global. Jurisdictions like the UAE, Singapore, and Switzerland are crafting clear, favorable crypto frameworks. Protocol architecture must be modular to deploy compliant staking services in friendly regions.
- Key Action: Design jurisdiction-aware node clients and legal wrapper DAOs.
- Key Metric: Target <20% of total protocol stake from any single hostile jurisdiction.
3+
Friendly Jurisdictions
<20%
Risk Exposure Target
ENQUIRY
Get In Touch
today.
Our experts will offer a free quote and a 30min call to discuss your project.
NDA Protected
Confidentiality24h Response
Time to ValueDirectly to Engineering Team
No Sales Fluff10+
Protocols Shipped
$20M+
TVL Overall