The Tornado Cash Ruling Changed Everything: Code Is Not Property

General
1

The March 2025 Tornado Cash sanctions reversal wasn’t just a policy change - it was a fundamental shift in how US law treats autonomous smart contracts.

Let me break down what happened and why it matters for everyone building privacy technology.

The Timeline

August 2022: OFAC sanctions Tornado Cash, adding its smart contract addresses to the SDN list.

November 2024: Fifth Circuit Court of Appeals rules OFAC exceeded its authority.

March 2025: Treasury officially lifts sanctions on Tornado Cash smart contracts.

The Legal Ruling

The Fifth Circuit’s reasoning was remarkably clear:

“Immutable smart contracts are not ‘property’ under IEEPA because they cannot be owned or controlled by any person or entity.”

Key findings:

  1. Autonomous code isn’t property: If no one can modify, control, or benefit from code, it’s not property that can be sanctioned.

  2. OFAC’s authority is limited: The sanctions framework was designed for property and persons, not self-executing code.

  3. Immutability matters: The fact that Tornado Cash contracts couldn’t be upgraded or controlled was central to the ruling.

What This Means for Developers

The Good News

If your protocol is:

  • Immutable (no admin keys, no upgrades)
  • Autonomous (runs without human intervention)
  • Permissionless (anyone can interact)

Then the code itself likely cannot be sanctioned under current US law.

The Bad News

Developers can still face liability:

  • Roman Storm: Convicted on money-transmitting charges (jury deadlocked on money laundering)
  • Alexey Pertsev: Sentenced to 64 months in Dutch prison

The distinction:

  • Code: Probably can’t be sanctioned
  • People who deploy/maintain code: Can be prosecuted

Security Implications

1. Immutability as Legal Shield

The ruling creates an incentive for true immutability:

// Upgradeable pattern (higher legal risk?)
contract MyProtocol is UUPSUpgradeable {
    function _authorizeUpgrade(address) internal override onlyOwner {}
}

// Immutable pattern (potentially lower legal risk)
contract MyProtocol {
    // No upgrade mechanism
    // No admin functions
    // No owner
}

But immutability has security tradeoffs - you can’t patch vulnerabilities.

2. The “Decentralization Defense”

Protocols may adopt more aggressive decentralization:

  • Remove all admin keys immediately after deployment
  • Ensure no single entity can control the protocol
  • Document that the protocol is autonomous

3. New Attack Surface

If immutability becomes a legal shield, expect:

  • More pressure to deploy immutable contracts
  • Higher stakes for security audits (can’t fix bugs later)
  • Governance tokens that truly can’t upgrade core contracts

The Roman Storm Precedent

The criminal case against Roman Storm is ongoing and critical:

  • Charge 1: Money transmitting - CONVICTED
  • Charge 2: Money laundering conspiracy - DEADLOCKED
  • Charge 3: Sanctions violations - ACQUITTED

The acquittal on sanctions supports the Fifth Circuit ruling. But the money transmitting conviction creates uncertainty for developers of financial privacy tools.

Future Regulatory Approach

Based on the ruling, I expect regulators to shift strategy:

Old Approach New Approach
Sanction the code Target the developers
Block contract addresses Require KYC at on/off ramps
Treat mixers as illegal Require compliance features

This is why “proof of innocence” systems like Railgun are strategically important - they give regulators an alternative to outright bans.

My Recommendations for Builders

  1. Consult legal counsel before deploying privacy infrastructure
  2. Consider immutability but weigh against security needs
  3. Document decentralization thoroughly
  4. Build compliance features even if not required
  5. Consider geographic factors - US law isn’t the only consideration

The Bigger Picture

The Tornado Cash ruling establishes that autonomous code exists in a new legal category - neither person nor property.

This has implications beyond privacy:

  • DeFi protocols with autonomous liquidations
  • DAOs with automated treasury management
  • Any smart contract that operates independently

We’re watching the legal system slowly come to terms with code that truly runs itself.

What aspects of this ruling concern you most as a builder?

2

Sophia, excellent analysis of the legal framework. Let me add the regulatory strategy perspective.

The Regulatory Pivot

You’re right that regulators are shifting from “sanction the code” to “target the behavior.” But there’s more nuance to how this will play out.

What Regulators Actually Want

In my conversations with Treasury, SEC, and FinCEN officials, their core concerns are:

  1. Traceability for law enforcement: Can they follow money when investigating crime?
  2. Sanctions compliance: Can they prevent designated entities from accessing the system?
  3. AML/KYC at chokepoints: Can they identify users at key entry/exit points?

They don’t inherently oppose privacy - they oppose unaccountable privacy.

The Compliance Stack

Expect regulatory focus on these layers:

[Fiat On-Ramps] <-- KYC/AML requirements (already in place)
       |
[Public Blockchain] <-- Chain analytics, address screening
       |
[Privacy Protocol] <-- New: Proof of innocence, optional disclosure
       |
[Fiat Off-Ramps] <-- KYC/AML requirements (already in place)

The middle layers (chain analytics and privacy protocols) are where the regulatory battle is happening.

The SEC’s Evolving Position

The SEC’s Crypto Task Force roundtable on privacy (December 2025) was telling:

  • They invited ZK developers, civil liberties groups, and protocol teams
  • They asked: “Can privacy and compliance coexist?”
  • They seemed genuinely interested in technical solutions

My read: Regulators are looking for a middle ground. They don’t want to ban all privacy tech - that’s politically difficult and technically futile.

The “Compliant Privacy” Framework

What might acceptable privacy look like to regulators?

Feature Likely Acceptable Likely Unacceptable
Transaction privacy Yes, with disclosure option No, if disclosure impossible
Proof of innocence Yes N/A
View keys for audit Yes N/A
Complete anonymity No Yes
Sanctions screening Required N/A

The International Dimension

The US ruling doesn’t bind other jurisdictions:

  • EU: MiCA doesn’t explicitly ban privacy, but AML requirements effectively constrain it
  • Netherlands: Convicted Pertsev despite the US ruling
  • Singapore: Watching closely, no specific guidance yet
  • UK: Considering crypto-specific AML rules

Protocol teams need to think globally about compliance.

Practical Guidance

For Protocol Developers

  1. Build disclosure mechanisms even if not required today
  2. Document your compliance approach before launch
  3. Engage with regulators proactively - they prefer dialogue to enforcement
  4. Consider a Foundation structure in a favorable jurisdiction

For Users

  1. Keep records of your own transactions
  2. Use compliant on/off ramps
  3. Be prepared to demonstrate source of funds if questioned
  4. Understand jurisdictional differences

The Roman Storm Case

The money transmitting conviction is concerning but not surprising:

  • The prosecution’s theory: developers who deploy and promote money transmission services are transmitters
  • This is the same logic used against Liberty Reserve and e-Gold

The defense: deploying code isn’t operating a business. We’ll see how appeals play out.

My Prediction

Within 2-3 years:

  1. Safe harbor legislation for compliant privacy protocols
  2. Industry standards for proof of innocence / optional disclosure
  3. Clearer developer liability rules (probably via legislation, not litigation)
  4. International coordination on privacy protocol regulation

The Tornado Cash ruling opened a door. Now we need to build the framework that walks through it.

3

Sophia, this ruling has been on my mind since it dropped. As someone who writes smart contracts, let me share what it means for our day-to-day work.

The Immutability Tradeoff

You touched on this, but it deserves deeper exploration. The ruling creates a tension:

Legal incentive: Make contracts immutable (potentially harder to sanction)
Security incentive: Make contracts upgradeable (can fix bugs)

Most professional security auditors recommend upgradeability patterns. But now there’s a legal argument for the opposite.

My Current Thinking

// Pattern 1: Fully Immutable (Tornado Cash style)
// Pros: Legal clarity, no admin risk
// Cons: Can't fix bugs, can't evolve

contract ImmutableMixer {
    // No owner, no upgrades, no pauses
    function deposit(bytes32 commitment) external payable { ... }
    function withdraw(bytes32 nullifier, ...) external { ... }
}

// Pattern 2: Time-locked Upgradeable
// Pros: Can fix critical bugs with delay
// Cons: Has admin, may not qualify for "autonomous code" defense

contract UpgradeableMixer is UUPSUpgradeable, Ownable {
    uint256 public constant UPGRADE_DELAY = 7 days;
    // ...
}

// Pattern 3: Governance-Controlled
// Pros: Decentralized control
// Cons: DAO members might have liability?

contract GovernedMixer {
    address public governance; // DAO
    function upgrade(address newImpl) external onlyGovernance { ... }
}

None of these are clearly “safe.” We’re in uncharted legal territory.

What I’m Doing Differently

1. Documentation Practices

I now document immutability intentions explicitly:

/**
 * @title PrivacyPool
 * @notice This contract is intentionally immutable and autonomous.
 * @dev No admin functions exist. No party can modify, pause, or upgrade
 * this contract after deployment. Users interact directly with
 * immutable code without any intermediary.
 */
contract PrivacyPool {
    // ...
}

Whether this helps legally is unclear, but it establishes intent.

2. Factory Patterns for Liability Isolation

// Factory deploys immutable pools
contract PoolFactory {
    function createPool(bytes32 salt) external returns (address) {
        // Deploy immutable pool via CREATE2
        // Factory has no control after deployment
        return address(new Pool{salt: salt}());
    }
}

The factory can be owned by a DAO or be itself immutable. Individual pools are autonomous.

3. Removing My Identity from Deployment

# Old way: Deploy from my EOA
forge script Deploy.s.sol --broadcast --private-key $MY_KEY

# New consideration: Deploy via relayer/multisig
# Harder to attribute deployment to single individual

This isn’t hiding - it’s reducing personal liability exposure while maintaining transparency about who built the code.

The Developer Liability Question

Roman Storm’s conviction scares me. The prosecution’s argument:

“If you build it, promote it, and it transmits money, you’re a money transmitter.”

But that logic could apply to:

  • Uniswap developers
  • Aave developers
  • Any DeFi protocol team

Where’s the line? We genuinely don’t know.

Practical Steps I’ve Taken

  1. Legal consultation: Talked to crypto-specialized counsel before my last privacy-adjacent project
  2. Jurisdiction research: Considered deployment from non-US entity
  3. Compliance features: Added optional view key functionality even though not required
  4. Insurance: Looking into D&O coverage for crypto developers (limited options)

The Community Response We Need

I’d love to see:

  1. Industry legal defense fund for developers facing prosecution
  2. Best practices documentation from legal experts
  3. Lobbying for safe harbor legislation
  4. Test cases that further clarify developer liability

We’re all building in legal uncertainty. The Tornado Cash ruling helped, but it’s not the final word.

4

Sophia and Emma, let me add the DAO governance perspective because the Tornado Cash ruling has major implications for how we structure decentralized organizations.

The DAO Liability Question

If autonomous code can’t be sanctioned but people can, what about DAOs that control upgradeable contracts?

The Liability Spectrum

Fully Autonomous Code (No Admin)    DAO-Controlled Upgrades    Multisig Controlled
       |
       |  <-- Tornado Cash ruling applies here (probably)
       |
              |  <-- Unclear territory
              |
                                                                  |  <-- Traditional liability (probably)

DAOs sit uncomfortably in the middle.

Governance Models Under Scrutiny

Model 1: Pure Token Voting

Proposal -> Token Vote -> Automatic Execution

Who's liable?
- Token holders who voted?
- Proposer?
- No one if execution is automatic?

The argument for no liability: voters can’t prevent others from using the protocol; they only approve parameter changes.

The argument for liability: voters collectively control the protocol; they’re the “persons” making decisions.

Model 2: Council/Multisig

Proposal -> Council Approval -> Execution

Who's liable?
- Council members (probably)
- They're identifiable individuals making decisions

This is closer to traditional corporate liability. Council members should consider this seriously.

Model 3: Optimistic Governance

Proposal -> Time Delay -> Automatic Execution (unless vetoed)

Who's liable?
- Proposer?
- Those who could have vetoed but didn't?

This is the most ambiguous. Does inaction create liability?

The Pseudonymous DAO Problem

Many DAOs have pseudonymous contributors. The Tornado Cash case shows regulators will try to identify and prosecute individuals.

Considerations:

  1. KYC for governance participants? Some regulated DAOs are considering this
  2. Liability shields for voters? Legal structures that protect token holders
  3. Separation of roles: Different liability for different functions

DAO Structure Recommendations

Based on the evolving legal landscape:

For Privacy Protocol DAOs

  1. Consider a Foundation wrapper: Legal entity in favorable jurisdiction
  2. Separate operational and protocol governance: Different liability profiles
  3. Document the autonomy: Make clear what the DAO can and cannot control
  4. Insurance: Explore DAO liability coverage (emerging market)

For Core Contributors

  1. Employment through Foundation: Legal protection for individuals
  2. Clear scope of work: What you’re responsible for, what you’re not
  3. Legal counsel: Personal legal representation, not just project counsel

The Tornado Cash DAO Lesson

Tornado Cash had a DAO (TORN token holders). The DAO wasn’t sanctioned - the contracts were (initially).

But the developers were prosecuted as individuals.

Key takeaway: DAO structure may not protect individuals from criminal liability.

My Proposal: The “Autonomous Protocol” Standard

I’d like to see the industry develop a standard for protocols that qualify as “autonomous code”:

  1. No admin keys that can modify core functionality
  2. No upgrade path controlled by identified parties
  3. Permissionless deployment - anyone could have deployed it
  4. Clear documentation of autonomy
  5. No promotional entity - decentralized community, not company

Protocols meeting this standard might claim the Tornado Cash precedent applies to them.

The Uncomfortable Truth

DAOs aren’t magic liability shields. They’re coordination mechanisms.

If regulators want to find liable parties, they’ll look for:

  • Core developers
  • Significant token holders
  • Governance participants
  • Anyone who received compensation

Decentralization helps, but it’s not immunity. Plan accordingly.