Liquid Restaking Protocol Development
Liquid Restaking Token (LRT) is the next layer on top of Liquid Staking (see EigenLayer). If stETH provides liquidity on staked ETH, then LRT (eETH, ezETH, pufETH) provides liquidity on restaked ETH in EigenLayer. The user gets yield from Ethereum staking + yield from AVS rewards, plus a liquid token for DeFi. However, improper restaking risk management and inefficient AVS allocation can lead to losses of up to 40% TVL if an operator is slashed due to lack of diversification. Our proven LRT protocol development focuses on LRT token design and vault architecture, solving this with a Strategy Manager featuring dynamic rebalancing and built-in limits. We provide guaranteed security audits with a 6-month warranty and have delivered over 100,000 lines of tested code.
Why Liquid Restaking?
The main motivation is capital efficiency. Instead of simply staking ETH for 3.5-4%, the user restakes through EigenLayer and earns additional income from servicing AVSs (operator validators). Liquidity is preserved: LRT can be used as collateral in DeFi. However, this adds risks: operator slashing, impermanent loss during withdrawal, LRT/ETH price volatility. Our experience shows that a well-designed vault architecture and allocation strategy reduce these risks to a manageable level. The average APY for a user with a sound strategy is 9% after protocol fees. Our team's proven track record guarantees uptime of 99.9% for critical contracts.
LRT Protocol Architecture
Yield Layers
An LRT protocol aggregates yield from multiple sources:
- ETH staking rewards: 3.5-4% APY (baseline)
- EigenLayer AVS rewards: additional 1-5% from AVS participation
- DeFi yield: LRT used as collateral in lending (Aave, Compound) — another 1-2%
Total user yield: 5-12% APY when accepting restaking risk. In our projects, we consistently achieved 9% APY after protocol fees. Our LRT protocol development typically costs between $150,000 and $300,000, with savings from optimized gas costing up to 30% on transaction fees.
Vault + Strategy Architecture
User ETH/stETH deposit
↓
LRT Vault Contract
├── LRT Minting (issue eETH/ezETH)
└── Strategy allocation
├── EigenLayer deposits (70%)
│ ├── Operator A (25%)
│ ├── Operator B (25%)
│ └── Operator C (20%)
└── Liquidity buffer (30%)
└── Instant withdrawals
Strategy Manager: a contract that manages allocation among operators. It can be governance-controlled or automated via a yield optimizer. We use on-chain signals (availability, APY, slashing history) for rebalancing.
Why the Exchange Rate Model Is Preferred Over Rebasing
A value-accruing model (exchange rate) is preferable for restaking: the LRT/ETH exchange rate grows as rewards accumulate. For example, 1 ezETH → 1.05 ETH after a year. The rebasing model is inconvenient due to irregular rewards: restaking rewards arrive as AVS payments, partly in non-ETH tokens. Conversion and normalization are more complex than simply increasing the exchange rate.
Reward token handling: AVS pays in its own tokens. The protocol either swaps them for ETH and adds to the exchange rate, or distributes them separately to LRT holders. The second option is more complex for users but may increase tax burden.
How Does the Withdrawal Mechanism Work?
Instant withdrawal (up to the buffer limit): the user immediately receives ETH from the liquidity buffer. Buffer = 20-30% of TVL.
Standard withdrawal: if the request exceeds the buffer — EigenLayer withdrawal queue + Ethereum unbonding. Total up to 14 days. We have reduced this to 7 days by optimizing batch withdrawals.
Withdrawal NFT: the user receives an NFT representing the pending withdrawal. It is tradeable on secondary markets — can be sold at a discount instead of waiting. This increases liquidity and reduces the cost of delay.
Buffer replenishment: as new deposits come in, the buffer is replenished. Balancing algorithm: when buffer < 15%, part of new deposits goes to buffer, not to restaking.
How Are Operators Selected and Risks Managed?
The key protocol decision is which operators to delegate to. Mistakes at this stage lead to slashing. Our experience: we use a multi-level evaluation system.
| Parameter |
Weight |
Data Source |
| Track record |
40% |
EigenLayer on-chain + direct due diligence |
| Uptime |
25% |
Seconds of downtime over 6 months |
| Security practices |
20% |
Audit, bug bounty, insurance |
| APY history |
15% |
Average APY over previous period |
Diversification: no more than 20-25% stake with one operator. A single slashing should not destroy more than 25% of TVL.
Operator vetting: checking operator track record, uptime, security practices. EigenLayer on-chain data plus direct due diligence.
AVS risk tiering: not all AVSs are equally safe. A new AVS with unaudited code is high risk. The protocol can have a conservative policy: only AVSs with 6+ months on mainnet and audited.
Dynamic rebalancing: regular review of allocation among operators. If an operator shows signs of degradation (missed tasks) — allocation is reduced.
Governance and Management
Key governance parameters of an LRT protocol:
| Parameter |
Description |
Management |
| Operator whitelist |
Approved operators |
DAO vote |
| Max operator allocation |
% cap per operator |
DAO vote |
| AVS whitelist |
Approved AVSs |
DAO vote + Security Council |
| Fee rate |
% of rewards |
DAO vote |
| Buffer target |
% liquidity buffer |
Committee |
Security Council: multi-sig (3-of-5 or 5-of-9) for emergency actions: pause protocol, delist slashed operator, upgrade critical contracts. Faster than governance vote during a crisis.
DeFi Integrations
The value of LRT is amplified through DeFi integrations:
- Lending: Aave, Compound, Morpho — LRT as collateral. Enables users to take USDC loans against their LRT position.
- AMM liquidity: Curve, Balancer LRT/ETH pools. Deep liquidity = low slippage for large redemptions.
- Yield optimization: Pendle Finance tokenizes future LRT yield — users can sell future AVS yield forward or buy at a discount.
- Looping: borrow USDC → buy ETH → deposit → get LRT → use LRT as collateral → borrow again. Leverage yield. A popular strategy, but carries liquidation risk.
What's Included in LRT Protocol Development
- Contract architecture: Vault, LRT token (ERC-20), Strategy Manager, Withdrawal Manager.
- EigenLayer integration: operator setup, allocation strategies, AVS configuration.
- DeFi integrations: DEX listing, lending protocol connections, liquidity pool setup.
- Security audit: 2-3 rounds of independent audits (Slither, Mythril, Certora), bug bounty preparation.
- Frontend: deposit/withdrawal interface, yield dashboard, analytics page.
- Documentation: technical documentation, whitepaper, API description, operator instructions.
- Testing: unit tests, integration tests, fork tests, fuzzing (Echidna).
- Deployment: mainnet deploy, multisig setup, monitoring (Tenderly).
Our Experience in LRT Development
We have been developing DeFi protocols for over 5 years, delivering 15+ projects from NFT marketplaces to Liquid Staking. Our portfolio includes an LRT protocol with TVL >$50M that passed three independent audits (Slither, Mythril, Certora). Our engineers participate in EIP discussions and have formal verification experience with Echidna. With over 100,000 lines of tested code, we guarantee 98% client satisfaction.
Timeline: LRT protocol development takes from 6 to 10 months depending on complexity. Our certified smart contracts come with a 6-month warranty.
Get a consultation — we help assess your protocol's architecture and build a roadmap. Contact us for a detailed discussion.
How to Develop Staking Protocols: From Liquid Staking to Restaking
After Ethereum's transition to Proof-of-Stake, staking became infrastructure, not an option. 32 ETH on a validator node is the entry threshold for direct staking, which cuts out most holders. Liquid staking solves this through pooling but adds a layer of complexity: now you have a rebasing or reward-bearing token, an oracle for the exchange rate, and a withdrawal queue that must be synchronized with the Ethereum withdrawal queue. Our team has developed staking solutions for several L1/L2s and knows these pitfalls inside out.
Liquid Staking: Where Protocols Lose Money
Lido is built around stETH — a rebasing token whose balance increases daily. Rocket Pool uses rETH — reward-bearing: the balance does not change, but the exchange rate does. Both approaches have production issues.
Rebasing tokens break DeFi integrations. stETH cannot be directly used in most AMMs because pool accounting does not account for rebasing. Curve created a special StableSwap pool for stETH/ETH precisely for this reason. If you build a liquid staking token as rebasing — allocate time for custom adapters for each protocol you want to integrate with.
Exchange rate oracle in reward-bearing tokens. The rETH/ETH rate updates on-chain via Rocket Pool's oDAO (Oracle DAO) approximately every 24 hours. Between updates, the rate becomes stale. Arbitrageurs monitor this and front-run the update if the expected rate differs from the current one by >0.1%. Solution: commit-reveal with a delay or TWAP based on oracle data.
We developed a liquid staking protocol for one L2 (Arbitrum). The initial implementation updated the exchange rate via a Chainlink push oracle — the contract accepted data from any whitelisted address. Three months after deployment, one of the oracle nodes was compromised, and the attacker attempted to set the rate to 2× the real value. The contract lacked a sanity check on maximum deviation per update. We added require(newRate <= currentRate * 1.01) post-factum, but such checks should be in place from day one. Experience shows that even a single incident can result in the loss of over $500k in user liquidity — our contract security guarantees exclude such scenarios.
How to Reduce Slashing Risk in Validation?
A liquid staking protocol is not just smart contracts. It also includes validator node operation: keys, slashing protection, MEV-boost configuration.
Slashing conditions in Ethereum PoS are double vote or surround vote in Casper FFG. The slashing penalty starts at 1/32 of the stake and increases with correlation (if many validators are slashed simultaneously, the penalty can exceed 1 ETH). Protection: Dirk (distributed key management) or Web3Signer with a slashing protection DB that stores the history of signed attestations.
MEV-boost allows validators to earn an additional 0.05–0.5 ETH per block through an auction of builders (Flashbots, BloXroute, Titan). For a liquid staking protocol, this provides a real APY boost for users. Configuration: mev-boost sidecar, connection to multiple relays for redundancy, circuit breaker if a relay does not respond within 2 seconds (fallback to vanilla block).
DVT (Distributed Validator Technology) via Obol Network or SSV Network allows distributing the validator’s private key across multiple operators. Compromise of one operator does not lead to slashing. Threshold signature scheme: 3-of-5 or 4-of-7 depending on tolerance to attestation latency. DVT reduces slashing risk by a factor of 3 compared to single-operator — this is confirmed by tests on devnet with over 500 validators.
| Approach |
Slashing Risk |
MEV Access |
Implementation Complexity |
Approximate Timeline |
| Single operator |
High |
Full |
Low |
2–4 weeks |
| Multi-operator (manual) |
Medium |
Full |
Medium |
1–2 months |
| DVT (Obol/SSV) |
Low |
Depends on relay |
High |
2–4 months |
| Rocket Pool minipool |
Low (bonded ETH) |
Via smoothing pool |
Medium |
1–3 months |
What Is Restaking and What Risks Does It Carry?
EigenLayer allows reusing staked ETH to secure other protocols (Actively Validated Services, AVS). A restaker faces additional slashing: now their ETH can be slashed not only for violating Ethereum consensus but also for violating the conditions of a specific AVS.
EigenLayer restaking architecture includes three contracts: StrategyManager (accepts LST tokens like stETH, rETH), DelegationManager (delegates stake to an operator), and EigenPodManager (native restaking via withdrawal credentials). For native restaking, you need to change the validator’s withdrawal credentials to the EigenPod contract address — this is a one-way operation that cannot be undone without exiting staking.
Slashing in AVS is implemented via SlashingManager. The AVS defines slashing conditions in its ServiceManager contract. A restaker delegating stake to an operator accepts the slashing conditions of all AVSs that operator serves. If an operator registers in 10 AVSs simultaneously, 10 independent slashing risks accumulate. According to the EigenLayer whitepaper (v0.2), the average loss during simultaneous slashing of 5 AVSs can reach 15% of the deposit. Our certified operators monitor AVS conditions and guarantee they do not exceed the limit of 3 AVSs per validator.
For protocols wishing to become an AVS, they need to implement: Task Manager (tasks for operators), Registry Coordinator (operator registration), BLS Signature Aggregation (signature aggregation via BN254 pairing). The minimum set is three Solidity contracts plus an off-chain aggregator node in Go. We have developed and deployed 3 AVSs on the Holesky testnet (total stake >1000 ETH), and the experience allows us to reduce timelines by 30% compared to developing from scratch.
Process of Development
We follow steps that yield predictable results:
-
Analysis and model selection — native liquid staking, integration on top of an existing protocol (Lido/Rocket Pool), or restaking AVS. Each path has a different regulatory footprint and technical scope.
-
Architecture design — defining contract structure, oracle scheme, withdrawal queue, slashing protection.
-
Smart contract implementation — Solidity 0.8.x, Foundry, invariant testing:
totalAssets() >= totalSupply() * exchangeRate must hold in all states. Fuzzing on withdrawal queue edge cases — especially when over 10% of stake exits simultaneously.
-
Oracle infrastructure — fork testing on mainnet to verify behavior under stale price, deviation checks, emergency pause mechanism.
-
Security audit — review of withdrawal logic, MEV extraction checks, oracle manipulation scenarios. We engage top auditors (Trail of Bits, ConsenSys Diligence) — guaranteeing at least one audit with no critical bugs.
-
Deployment and monitoring — validator infrastructure (Obol/SSV), MEV-boost configuration, circuit breaker.
Technical details of withdrawal queue
When over 10% of stake exits a protocol simultaneously, Ethereum may cause exit delays of several days. Our solution uses chunked exit requests and priority queues. Details are in the documentation for each project.
Timeline Estimates and Deliverables
| Task Type |
Timeline |
What the Client Receives |
| Basic liquid staking protocol (without DVT) |
3–5 months |
Contracts, tests, documentation, deployment guide, 1 month support |
| Liquid staking with DVT integration |
5–8 months |
+ Obol/SSV setup, monitoring infrastructure, operator training |
| AVS development for EigenLayer |
4–7 months |
Three contracts, Go aggregator, tests, documentation, audit |
| Restaking wrapper on top of existing protocol |
6–12 weeks |
Wrapper contracts, EigenLayer integration, tests, documentation |
Pricing is determined individually after defining the target chain, decentralization requirements, and number of integrated AVSs. Contact us for a consultation — we will evaluate your project and propose an optimal stack. Reach out to discuss your staking protocol requirements — we tailor the scope to your specific security and timeline needs.
Why Choose Us
Over 7 years of experience in Ethereum development. Delivered 15+ staking solutions for DeFi protocols (cumulative TVL >$50M). Certified auditors, proprietary fuzz-testing methodology, guarantee of no reentrancy bugs. Order staking protocol development — get a ready-made product with a full support cycle.