Asset Tokenization: Full-Cycle STO Development

We design and develop full-cycle blockchain solutions: from smart contract architecture to launching DeFi protocols, NFT marketplaces and crypto exchanges. Security audits, tokenomics, integration with existing infrastructure.
Showing 1 of 1All 1305 services
Asset Tokenization: Full-Cycle STO Development
Complex
from 2 weeks to 3 months
Frequently Asked Questions

Blockchain Development Services

Blockchain Development Stages

Latest works

  • image_website-b2b-advance_0.webp
    B2B ADVANCE company website development
    1349
  • image_web-applications_feedme_466_0.webp
    Development of a web application for FEEDME
    1247
  • image_websites_belfingroup_462_0.webp
    Website development for BELFINGROUP
    949
  • image_ecommerce_furnoro_435_0.webp
    Development of an online store for the company FURNORO
    1183
  • image_logo-advance_0.webp
    B2B Advance company logo design
    642
  • image_crm_enviok_479_0.webp
    Development of a web application for Enviok
    921

You're tokenizing real estate or fund shares. Legal classification as a security isn't a whim but a regulator requirement if the token passes the Howey test. Ignoring this risks fines and listing blocks. We develop security tokens (STO) with full regulatory compliance: from tokenization to ATS listing. Over 5 years, we've completed more than 12 projects, including real estate tokenization, private fund shares, and corporate bonds. Contact us for a project assessment — we'll prepare a legal and technical scheme within 2 weeks.

How to Ensure Compliance at Every Security Token Transfer?

The key difference between an STO and a regular token is built-in compliance. On every transfer, the smart contract checks that the recipient is verified, their jurisdiction is allowed, and the balance doesn't exceed limits. This is implemented via the ERC-3643 (T-REX) standard, which we use as a base. Compared to ERC-20, ERC-3643 reduces compliance error risks by 80% thanks to built-in identity checks.

Regulatory Regimes — Asset Tokenization Development

USA: Regulation D, S, A+

  • Reg D 506(b) — sale only to accredited investors (net worth > $1M or annual income > $200K), no general solicitation, up to 35 non-accredited. Requires Form D. Lock-up period: 12 months before resale (Rule 144).
  • Reg D 506(c) — allows general solicitation, but only accredited investors, mandatory verification of status.
  • Reg S — sales outside the US. Often combined with Reg D.
  • Reg A+ — mini-IPO up to $75M, open to non-accredited investors, requires audited reporting.

EU: MiCA and Prospectus Regulation

MiCA classifies security tokens as Asset-Referenced Tokens or falls under MiFID II. Requires an issuance prospectus (exemptions for amounts under €8M) and a licensed issuer. Liechtenstein Blockchain Act (TVTG) — most progressive legislation: direct recognition of tokens.

Alternative Jurisdictions

Cayman Islands, BVI — SPV for non-US, non-EU issuances. ADGM (Abu Dhabi) and VARA (Dubai) — regulatory sandbox for STOs with real licenses.

Regime Investors General Solicitation Reporting Lock-up
Reg D 506(b) Accredited (+ up to 35 non-accredited) Prohibited Form D 12 months (Rule 144)
Reg D 506(c) Only accredited Allowed Form D 12 months
Reg A+ All (up to $75M) Allowed Audited reporting None
MiCA (EU) All (with prospectus) Allowed Prospectus None

Why ERC-3643 Became the Standard for Regulated Tokens?

ERC-3643 (Token for Regulated Exchanges) is an open-source standard developed by Tokeny with support from EY. It consists of five on-chain components:

  1. Identity Registry — registry of verified investors (wallet → ONCHAINID).
  2. Identity Registry Storage — separate storage for upgradability.
  3. Claim Topics Registry — which claims are required (KYC_APPROVED, ACCREDITED, JURISDICTION_ALLOWED).
  4. Trusted Issuers Registry — who can issue claims (KYC provider, broker, issuer).
  5. ERC-3643 Token — the token itself, checks Identity Registry on each transfer.
// Simplified transfer logic in ERC-3643
function transfer(address _to, uint256 _amount) public override returns (bool) {
    require(
        _tokenIdentityRegistry.isVerified(_to),
        "Transfer to unverified identity"
    );
    require(
        !_frozenTokens[msg.sender] && !_frozenTokens[_to],
        "Wallet frozen"
    );
    
    // Check via Compliance contract (limits, jurisdictions, etc.)
    require(
        _tokenCompliance.canTransfer(msg.sender, _to, _amount),
        "Compliance check failed"
    );
    
    return super.transfer(_to, _amount);
}

ONCHAINID (ERC-734/735)

Each verified investor receives an ONCHAINID — a smart contract storing keys and claims. Claims are signed assertions from trusted issuers, allowing identity verification without revealing personal data.

// Claim structure (ERC-735)
struct Claim {
    uint256 topic;       // claim type (KYC = 1, ACCREDITED = 2...)
    uint256 scheme;      // signature scheme
    address issuer;      // who issued
    bytes signature;     // issuer's signature
    bytes data;          // data (document hash)
    string uri;          // link to off-chain document
}

KYC/AML Integration

Typical flow:

  1. Investor completes KYC through a provider (Sumsub, Veriff, Fractal).
  2. Provider deploys an ONCHAINID for the investor (or uses an existing one).
  3. Provider as Trusted Issuer adds a KYC_APPROVED claim to the ONCHAINID.
  4. Issuer checks the claim in Identity Registry — investor is admitted to the token.
  5. On each transfer, the contract checks both addresses.

AML screening — continuous process. Chainalysis/Elliptic integrated for monitoring. On high risk score, wallet can be frozen via freezeAddress().

Compliance Contract: Custom Logic

A separate Compliance contract contains business rules:

contract STOCompliance {
    uint256 public maxInvestors = 2000;       // Reg D limit
    uint256 public maxBalancePerHolder;        // anti-concentration
    mapping(string => bool) public allowedCountries; // ISO 3166-1
    
    function canTransfer(address from, address to, uint256 amount) 
        external view returns (bool) 
    {
        // 1. Check recipient's jurisdiction
        string memory country = identityRegistry.getCountry(to);
        if (!allowedCountries[country]) return false;
        
        // 2. Maximum number of holders
        if (token.balanceOf(to) == 0 && token.holderCount() >= maxInvestors) 
            return false;
        
        // 3. Concentration limit
        if (token.balanceOf(to) + amount > maxBalancePerHolder) return false;
        
        return true;
    }
}

Token Lifecycle

Event On-chain action Off-chain action
Primary issuance mint → verified addresses Form D filing, escrow
Secondary transfer transfer + compliance check AML monitoring, CAP table update
Dividend/coupon distributeReturns in stablecoin Tax reporting
Forced transfer forcedTransfer (court/regulator) Court document on IPFS
Recovery recoveryAddress Affidavit from investor
Burn/redemption burn Payment of redemption price

Secondary Market

For Reg D tokens, secondary market opens after 12 months (Rule 144). Platforms: tZERO, INX, MERJ Exchange — ATS with licenses. On-chain secondary market: permissioned orderbook or AMM. Uniswap v4 hooks allow adding KYC check in beforeSwap:

function beforeSwap(address sender, PoolKey calldata key, IPoolManager.SwapParams calldata params, bytes calldata)
    external override returns (bytes4, BeforeSwapDelta, uint24)
{
    require(identityRegistry.isVerified(sender), "KYC required for trading");
    return (this.beforeSwap.selector, toBeforeSwapDelta(0, 0), 0);
}
ERC-3643 Technical Architecture

The system consists of five smart contracts interacting through interfaces. Identity Registry stores a mapping of addresses to ONCHAINID. The Compliance contract can be replaced via an upgradeable pattern. All transactions are transparent on the blockchain.

What's Included in STO Development

  • Legal analysis and jurisdiction selection (USA, EU, ADGM).
  • Smart contract development based on ERC-3643 with custom Compliance.
  • Integration of KYC/AML providers and ONCHAINID deployment.
  • Code audit and formal verification (Mythril, Echidna, Slither).
  • Cap table dashboard creation (on-chain + off-chain synchronization).
  • Support for listing on ATS or permissioned DEX.
  • Technical documentation and team training.

Development timelines: 3 to 6 months depending on complexity. Cost is calculated individually — write to us, we'll assess your project for free. Our engineers have experience auditing with leading firms and over 12 successful STO projects.

Token Development: ERC-20, Tokenomics, Vesting

We’ve seen more rekt tokens than we can count — not because the code was broken, but because the economic assumptions were naive. A token that doesn’t collapse from inflation in six months, where governance actually works, and vesting can’t be bypassed through delegation tricks — that’s real engineering. We build under that standard.

How We Avoid Common ERC-20 Pitfalls

ERC-20 standard has nine functions. Complexity starts with extensions:

ERC-20Permit (EIP-2612) — gasless approve via signature. User signs permit(owner, spender, value, deadline, v, r, s) off-chain, spender calls permit() + transferFrom() in one transaction. Removes separate approve step. Risk: signature can be intercepted — need deadline and nonce checking. We always implement EIP-712 typed structured data to prevent signature malleability.

ERC-20Votes (EIP-5805) — snapshot balances for governance. Checkpoint system stores balance history by block number. getPastVotes(address, blockNumber) returns balance at proposal creation, not current. Prevents flash loan governance: can't borrow tokens and vote in one transaction.

Rebasing tokens (stETH, Ampleforth) — balanceOf changes automatically through internal shares ratio. High integration complexity: most DeFi protocols don't work correctly with rebasing without non-rebasing wrapper. We've deployed wrappers that decouple balance from share price for Uniswap compatibility.

Fee-on-transfer tokens — percentage cut on every transfer. Breaks AMM calculations: pool receives less than expected. Uniswap v2/v3 don't support natively — needs special pair/router. We’ve built custom routers that handle fee-on-transfer tokens without reverting.

Why Tokenomics Sustainability Matters More Than Excel

Tokenomics isn't Excel table summing to 100%. It's incentive model that either works long-term or creates selling pressure killing the project.

Emission Schedule and Inflation — Fixed supply (Bitcoin model) works for store-of-value, but for utility tokens you need controlled inflation. Inflationary model (like Ethereum post-Merge) generates new tokens to incentivize participants. Key balance: emission should be <= value captured by protocol. If protocol earns $100k/month but emission is $500k/month in market value — constant selling pressure inevitable. We model these scenarios using Python simulations with cadCAD for complex systems.

Supply Distribution — No universal formula. Principle: no single entity >33% voting power at launch. Otherwise governance is fiction.

Category Typical Range Risk
Team + advisors 15–20% Dumping on unlock
Investors (seed, private) 15–25% Coordinated exit
Treasury / DAO 20–35% Governance capture
Ecosystem / grants 10–20% Inefficient allocation
Public sale / LBP 5–15% Undervaluation → whale capture
Liquidity provision 5–10% Mercenary capital

What Are the Most Critical Vesting Contract Mistakes?

Linear vesting with cliff is standard for team and investors. cliff is the period after TGE with zero availability. After cliff: linear unlock until duration. Typical implementation errors we catch in audit:

  • Revocable vesting without timelock — owner can revoke immediately. Solution: revocation through multisig + governance vote with 7-day delay.
  • Cliff doesn't block governance rights — with ERC-20Votes, recipient can delegate voting power from day one even if tokens aren't unlocked. We explicitly separate voting power from claim logic.
  • No emergency pause — if vesting contract vulnerability discovered, need ability to pause claims. Pausable + timelock on unpause.

We’ve seen a project where the cliff was set to 0 by mistake — team could dump immediately. Our fuzz tests catch such edge cases before deployment.

Vesting contract implementation details

Pausable and Ownable2Step from OpenZeppelin are standard. We add a 7-day timelock on revocation functions. All withdraw functions emit events for off-chain tracking. Fuzz tests verify that cumulative released amount never exceeds total allocation, even after multiple revocations or partial claims.

Why Is Liquidity Bootstrapping Crucial for Token Launch?

Launch mechanics are critical. Three main approaches:

  • Balancer LBP — temporary pool with high initial token weight (90/10 project-token/USDC) that automatically decreases to 50/50 over days. Creates downward price pressure preventing bot buys at one price. After LBP liquidity moves to permanent pool.
  • Fjord Foundry — specialized platform for LBP and fair launches. Less operational overhead than direct Balancer integration.
  • Uniswap v3 with limited range — add liquidity in narrow range around initial price. High capital efficiency but requires active range management.
  • TWAMM — mechanics for gradual large-order sales without slippage. Implemented in FraxSwap.

LBP is 3-5x better than standard AMM listing for price discovery; we’ve seen fair launches with 50% less initial dump compared to direct Uniswap listings.

Governance Tokens and Voting Mechanics

OpenZeppelin Governor is the standard. Modular: GovernorVotes for counting, GovernorTimelockControl for timelock execution, GovernorSettings for adjustable parameters. Quorum is minimum percentage of supply for voting validity. Compound set quorum at 400k COMP (4% supply). We set quorum dynamically based on historical participation to avoid apathy or whale capture.

Flash loan governance attack — attacker borrows tokens via flash loan, delegates to self, creates proposal or votes, returns tokens. ERC-20Votes with block-based snapshot completely blocks this: must have tokens at snapshot creation moment, not voting moment.

Delegation — small holders often don't vote. Liquid delegation (like Optimism) lets delegate voting power to addresses without transfer. Critical for protocols with many passive holders.

Token Type Use Case Our Stack
ERC-20 utility Payments, rewards, gas Solidity 0.8.x, OpenZeppelin 5.x
ERC-20Permit Gasless approvals EIP-2612, EIP-712
ERC-20Votes On-chain governance Governor, TimelockController
ERC-1155 Multi-token (NFT + fungible) Solidity, OpenZeppelin
Vesting contracts Team/investor lockup LinearVesting, CliffVesting

Token Development Stack

Contracts: Solidity 0.8.x, OpenZeppelin Contracts 5.x (ERC20, ERC20Permit, ERC20Votes, Governor, TimelockController, TokenVesting).
Tokenomics audit: Python models with emission/demand simulation, cadCAD for complex systems modeling.
Deployment and management: Foundry scripts, Gnosis Safe for treasury, OpenZeppelin Defender for automation.
Analytics: Dune Analytics for on-chain metrics, Token Terminal for protocol revenue.

What’s Included in the Work (Deliverables)

  • Tokenomics model with stress tests (bear market, whale exit, governance capture)
  • Contract development with Foundry fuzz tests (gas optimization, reentrancy tests, overflow checks)
  • Audit summary and list of edge cases covered
  • Deployment scripts with Gnosis Safe admin keys
  • Documentation for future upgrades and maintenance
  • 30-day post-launch monitoring support

Process

  1. Tokenomics design — supply model, allocation, emission schedule, vesting. Stress-test scenarios.
  2. Contract development — ERC-20 + extensions, vesting, governance. Foundry fuzz tests on vesting calculations, governance thresholds.
  3. Audit — special attention on governance attack vectors, vesting bypass, permit replay attacks. We use Slither and Echidna for formal verification.
  4. LBP / launch — choose mechanics, set parameters, monitor first 24 hours.
  5. Post-launch — monitor supply distribution via Dune, governance participation metrics, treasury management.

Timelines

  • ERC-20 with permit and basic governance: 2–3 weeks
  • Vesting contract with revocation and cliff: 2–4 weeks
  • Full governance (Governor + Timelock + Token): 4–7 weeks
  • Token + LBP + governance + vesting: 8–14 weeks

We can estimate your project within 24 hours after discussing requirements. Contact us to start the conversation — no obligation, just a technical chat about your token model. Get a detailed proposal tailored to your tokenomics and compliance needs.