I Deployed a Custom OP Stack Rollup in 23 Minutes With Zero Infrastructure Experience - Here's My Step-by-Step RaaS Comparison of Conduit, Caldera, and Gelato

How I Went From “What’s a Rollup?” to Running My Own Chain in Under 30 Minutes

I’ll be honest — three months ago, if you’d told me I’d be comparing Rollup-as-a-Service (RaaS) platforms and deploying custom chains, I would have laughed nervously and changed the subject. I’m a frontend developer who got pulled into web3 when my team decided to build on Ethereum. My infrastructure experience? I once set up a Raspberry Pi to run Pi-hole. That’s it.

But last weekend, I sat down with three RaaS providers — Conduit, Caldera, and Gelato — and deployed a test rollup on each. The whole process, from sign-up to live chain, took 23 minutes on the fastest one. Here’s what I learned, what surprised me, and how to decide which one is right for your project.

Why RaaS Even Exists

A year ago, launching your own L2 or L3 rollup meant 6-9 months of custom engineering work: configuring consensus, setting up sequencers, integrating data availability layers, building block explorers, and getting bridge contracts audited. Only well-funded teams with dedicated infrastructure engineers could pull it off.

RaaS platforms changed that equation completely. They package all the hard infrastructure work — sequencer operation, data availability integration, RPC endpoints, block explorers, bridge contracts — into managed services you can configure through a dashboard. Think of it as the “Heroku moment” for blockchain infrastructure.

Conduit: The Infrastructure Powerhouse

What they offer: Conduit is the 800-pound gorilla in the RaaS space. They’ve raised a $37M Series A led by Paradigm and currently power 300+ chains with a combined $1.2B in total value locked across their network. They’re processing an astonishing 5.3 billion daily RPC requests.

My deployment experience: Conduit’s dashboard walked me through choosing between OP Stack (their primary framework) and Arbitrum Orbit. I went with OP Stack since I’m more familiar with the Optimism ecosystem. The configuration wizard let me pick my data availability layer (I chose Ethereum blobs for maximum security, but Celestia and EigenDA are options too), set custom gas parameters, and configure block times.

What really impressed me was the Developer Suite — it’s not just “here’s your chain, good luck.” You get integrated tooling for testing, monitoring, and debugging. Their Marketplace lets you plug in additional infrastructure services (oracles, indexers, bridges) with minimal configuration.

The standout technical feature is their support for OP Succinct ZK proofs, which means your OP Stack rollup can optionally generate zero-knowledge proofs for faster finality. That’s honestly mind-blowing — you get the developer experience of the OP Stack with the finality guarantees of a ZK rollup.

Deployment time: About 25 minutes from account creation to live testnet chain.

Caldera: The One-Click Dream

What they offer: Backed by $15M from Founders Fund, Caldera has taken the “simplicity first” approach further than anyone else. Their pitch is one-click, no-code deployment — and they actually deliver on it.

My deployment experience: I’m not exaggerating when I say this was the fastest. Caldera’s interface feels like signing up for a SaaS product. Pick your stack, choose your DA layer, name your chain, click deploy. I had a functioning testnet rollup in about 18 minutes. That’s where my “23 minutes” headline number comes from — I averaged across all three, but Caldera was the quickest individual deployment.

The bigger play from Caldera is Metalayer, their interoperability protocol that connects 50+ rollups in their network. If you’re thinking about cross-chain composability from day one, this matters. Your rollup isn’t just an island — it can communicate with every other Caldera-powered chain through Metalayer.

They’ve also announced the ERA token and have sequencer decentralization planned for Q1 2026, which is significant. Most RaaS chains run centralized sequencers (a single entity ordering transactions), and Caldera is one of the few making concrete, timeline-specific commitments to changing that.

Deployment time: About 18 minutes. The fastest of the three.

Gelato: The All-in-One Platform

What they offer: Gelato takes a different philosophical approach. Rather than being purely a rollup deployer, they’ve built an all-in-one platform with 25+ integrated infrastructure providers and a track record of 99.9% uptime over 4 years of operation.

My deployment experience: Gelato’s deployment was slightly more involved than Caldera’s — not because it’s harder, but because there are more configuration options exposed upfront. What stood out immediately was the native account abstraction support. They’ve built in ERC-4337 and EIP-7702 compatibility from the ground up, which means your chain launches with a built-in paymaster and bundler service.

For the non-technical folks: this means users on your chain can pay gas fees in any token (or you can sponsor their gas entirely), and complex multi-step transactions can be bundled into single clicks. If you’re building a consumer app, this is huge. The UX difference between “approve token, then swap, then bridge” versus “click once” is the difference between crypto-native users and mainstream adoption.

The 25+ integrated providers means you’re getting block explorers, oracles, indexers, bridges, and monitoring tools all pre-configured. I didn’t have to go shopping for infrastructure add-ons after deployment.

Deployment time: About 28 minutes, but the chain came with more out-of-the-box functionality.

My Honest Comparison

What I’d Choose (And Why)

If I were a startup founder building a DeFi protocol and needed maximum credibility with investors, I’d go with Conduit. The Paradigm backing, the 300+ chain ecosystem, and the $1.2B TVL across their network signals institutional trust.

If I were building a consumer app and needed the fastest path to production with the best UX tools, I’d go with Gelato. Native account abstraction is a game-changer for user onboarding, and the 99.9% uptime track record means I’m not going to get paged at 3 AM.

If I needed speed and interoperability, especially if my product involves cross-chain interactions, I’d pick Caldera. Metalayer connecting 50+ rollups means your chain isn’t isolated, and the sequencer decentralization commitment gives a clear path to progressive decentralization.

The Bigger Picture

The fact that deployment dropped from 6-9 months of custom engineering to under 30 minutes is genuinely transformative. Most RaaS chains now offer configurable gas parameters, your choice of data availability layer (Ethereum blobs for security, Celestia or EigenDA for cost savings), and adjustable block times. The infrastructure barrier to launching a chain has effectively vanished.

The question isn’t “can I launch a chain?” anymore. It’s “should I launch a chain?” And that’s a much more interesting question that I’d love to hear your thoughts on.

Has anyone else tried these platforms? What was your experience? I’m especially curious about production deployments — my testing was all on testnets, and I’d love to hear from teams running real traffic.

Excellent writeup, Emma — you’ve made this space approachable for people who’d otherwise be intimidated by rollup infrastructure. I want to dig into some of the technical nuances that will matter once you move beyond testnet deployments, because the architecture decisions you make at the RaaS configuration stage have profound downstream implications.

The Sequencer Architecture Question Is Bigger Than You Think

You mentioned that most RaaS chains run centralized sequencers, and Caldera has committed to sequencer decentralization by Q1 2026. This deserves much deeper examination. The sequencer is the single most critical component in your rollup’s architecture — it determines transaction ordering, controls inclusion/exclusion of transactions, and directly impacts MEV dynamics on your chain.

When you deploy through any of these RaaS providers, here’s what’s actually happening under the hood: the provider runs the sequencer node, batches your chain’s transactions, and submits them to the L1 (or your chosen DA layer). This means the RaaS provider has monopoly control over transaction ordering on your chain. For a testnet, this is fine. For a chain handling real economic activity, this is a significant trust assumption.

Conduit’s approach with OP Stack is particularly interesting from a protocol perspective. OP Stack rollups use a “sequencer window” — there’s a period during which the sequencer has exclusive rights to propose blocks, after which anyone can force-include transactions through the L1. This is a crucial safety mechanism. If Conduit’s sequencer goes down or starts censoring transactions, users can still get their transactions included by going directly to Ethereum. The key parameter here is SEQUENCER_WINDOW_SIZE, which defaults to 12 hours in most OP Stack deployments. That’s 12 hours where a censored user has to wait.

Arbitrum Orbit chains have a similar mechanism through the “delayed inbox” — force-inclusion through L1 after a timeout period. The architectural difference is that Arbitrum uses an interactive fraud proof protocol (BOLD) while OP Stack uses a non-interactive output proposal system (with OP Succinct adding ZK proofs as an alternative).

Data Availability Layer Selection: The Nuance Nobody Explains

You correctly noted that all three providers offer configurable DA layers — Ethereum blobs, Celestia, and EigenDA. But the choice between these isn’t just “security vs. cost.” Let me break down what’s actually different.

Ethereum blobs (EIP-4844): Your transaction data is posted directly to Ethereum L1 as blob transactions. The data is available for approximately 18 days (4096 epochs), after which it’s pruned from consensus nodes. This is the gold standard for security because the same validator set securing Ethereum is guaranteeing data availability. After Fusaka’s blob doubling, this got significantly cheaper — but it’s still the most expensive option. The important subtlety: after 18 days, your historical data relies on archival infrastructure (block explorers, archival nodes, data availability sampling networks). If you need permanent data availability, blobs alone aren’t sufficient.

Celestia: Data is posted to Celestia’s independent blockchain, which uses Data Availability Sampling (DAS) to ensure data is available without requiring full nodes to download all data. The security model is different — you’re trusting Celestia’s validator set (currently around 100 validators) rather than Ethereum’s. The cost savings are substantial (often 10-100x cheaper than Ethereum blobs), but you’re introducing a new security assumption. If Celestia’s consensus fails or reorganizes, your rollup’s data availability guarantees are compromised.

EigenDA: This sits in an interesting middle ground. EigenDA uses Ethereum restakers to provide DA guarantees, so the economic security is derived from Ethereum’s staking set via EigenLayer. The tradeoff is that it’s newer, less battle-tested, and introduces the restaking security model’s recursive risk properties. If a mass slashing event hits EigenLayer, your DA layer’s security is affected.

The practical recommendation: for chains handling significant TVL (above $10M), use Ethereum blobs. For application-specific chains where cost matters more than maximum security (gaming, social, NFTs), Celestia or EigenDA can reduce your operating costs dramatically. Most RaaS providers let you switch DA layers post-deployment, but it’s not a trivial migration — it requires redeploying bridge contracts and updating the rollup’s L1 configuration.

OP Succinct ZK Proofs: A Technical Deep Dive

You highlighted Conduit’s support for OP Succinct ZK proofs, and this genuinely is one of the most architecturally significant developments in the RaaS space. Let me explain why.

Traditional OP Stack rollups use a fraud proof system: transactions are assumed valid, and there’s a challenge period (typically 7 days) during which anyone can submit a fraud proof if they detect an invalid state transition. This means withdrawals from your rollup to L1 take 7 days. With OP Succinct, the rollup generates a zero-knowledge proof of the state transition, which can be verified on L1 immediately. This collapses the 7-day withdrawal window to approximately 1-2 hours (limited by proof generation time, not challenge periods).

The technical implementation uses Succinct’s SP1 zkVM to generate STARK proofs of the OP Stack state transition function. The prover takes the rollup’s block execution trace and produces a cryptographic proof that the state root is correct. This proof is verified by a smart contract on L1. The proof generation cost is non-trivial — current estimates suggest $0.005-0.02 per proof for typical block sizes — but it’s orders of magnitude cheaper than running a full optimistic challenge game.

The architectural elegance here is that you get the developer experience of the OP Stack (Solidity, EVM compatibility, existing tooling) with the finality properties of a ZK rollup. You’re not rewriting your contracts for a zkEVM — you’re deploying standard Solidity contracts and getting ZK finality as an infrastructure-level feature.

What to Watch For in Production

A few technical considerations that only matter when you’re running real traffic:

1. Block time configuration: Most RaaS chains default to 2-second block times, but this is configurable. Shorter block times give better UX but increase DA costs (more blocks = more data to post). Find the sweet spot for your application’s latency requirements.

2. Gas limit per block: This determines your chain’s throughput ceiling. Set it too low and transactions queue up during high demand. Set it too high and you risk state growth that makes node operation expensive.

3. Batch submission frequency: How often the sequencer submits batches to the DA layer. More frequent submissions = lower latency for L1 finality but higher costs. Less frequent = cheaper but users wait longer for finality.

4. Force-inclusion mechanism: Verify that the L1 contracts for your rollup support force-inclusion of transactions. This is your escape hatch if the sequencer becomes adversarial.

Emma, your comparison is genuinely useful as a starting point. The “should I launch a chain?” question you raised is the right one — and the answer often depends on whether your application’s throughput requirements, MEV dynamics, or governance needs justify the operational overhead of a dedicated chain versus deploying on an existing L2.

Emma, Brian — great thread. I want to tackle the “should I launch a chain?” question head-on, because I’ve been on both sides of this decision. I co-founded a DeFi protocol that launched on Arbitrum in 2024, and six months ago we seriously evaluated spinning up our own app-chain using two of the RaaS providers you reviewed. Here’s what I learned about when it makes sense, when it doesn’t, and the business realities nobody puts in their marketing materials.

The Decision Framework: When to Launch Your Own Chain

After going through this evaluation process with my team and our investors, I boiled it down to four questions. If you answer “yes” to at least three, an app-chain probably makes sense. If it’s two or fewer, you’re better off deploying on an existing L2.

1. Do you need sovereign gas economics?

On a shared L2, you’re at the mercy of other applications’ gas demand. When a popular NFT mint or airdrop claim happens on “your” L2, your users pay higher fees and experience slower confirmations. On your own chain, you control the gas market entirely. You can set custom gas tokens, subsidize transactions for new users, or implement dynamic fee mechanisms that prioritize your application’s specific transaction types.

This mattered enormously for us. Our protocol handles leveraged positions that need to be liquidated within tight time windows. On a shared L2 during congestion spikes, liquidation transactions were getting delayed by 10-30 seconds — enough to create bad debt in the protocol. On a dedicated chain, we control block space allocation and can guarantee liquidation priority.

2. Do you generate enough transaction volume to justify the infrastructure cost?

Here’s the math nobody talks about. Running a chain through a RaaS provider isn’t free. You’re paying for sequencer operation, DA layer costs, bridge maintenance, and RPC infrastructure. Based on my conversations with all three providers Emma reviewed, you’re looking at roughly $3,000-15,000 per month depending on your configuration and traffic volume. Conduit’s 300+ chain ecosystem and $1.2B TVL suggests many of their clients are generating enough activity to justify this, but not every project will.

If your protocol does fewer than 50,000 transactions per day, the cost-per-transaction on a dedicated chain is likely higher than just deploying on Base, Arbitrum, or Optimism where the infrastructure cost is spread across millions of users. The breakeven point in my analysis was around 100,000-200,000 daily transactions — below that, you’re paying a premium for sovereignty you might not need.

3. Is your product’s value proposition enhanced by chain-level customization?

Most RaaS chains let you configure gas parameters, block times, and DA layers. But the real customization unlock is at the protocol level. Can you implement custom precompiles for your application’s core operations? Can you modify the EVM execution environment to optimize for your specific use case? Conduit’s Developer Suite and Marketplace give you additional tooling here, and Gelato’s native account abstraction (ERC-4337/EIP-7702) with built-in paymasters and bundlers is genuinely differentiated — that level of UX infrastructure is hard to replicate on a shared L2.

If your answer is “I just need standard EVM execution with lower fees,” you don’t need your own chain. If your answer is “I need gasless onboarding, custom transaction ordering, or application-specific optimizations,” an app-chain starts making sense.

4. Do your investors or partners expect a chain-level narrative?

I’ll be blunt about something the technical purists hate hearing: in 2026, “we launched our own chain” is a fundraising narrative that works. When we told VCs we were evaluating app-chains, their eyes lit up in a way that “we deployed a new contract on Arbitrum” never achieved. The Paradigm backing of Conduit’s $37M Series A and Founders Fund backing of Caldera’s $15M round signal that smart money believes in the app-chain thesis. If you’re raising capital, deploying on a RaaS platform tells investors you’re thinking about long-term infrastructure ownership, not just building a smart contract on someone else’s chain.

Is this a good technical reason? No. Is it a real business factor? Absolutely.

Why We Ultimately Decided NOT to Launch Our Own Chain (Yet)

After running through this framework, we scored 2 out of 4. We had the transaction volume argument (borderline) and the customization need (strong). But our gas economics issue could be solved with a priority fee mechanism on our existing L2, and our investors were already committed.

The deciding factor was liquidity fragmentation. This is the elephant in the room for every app-chain conversation. When you launch your own chain, every dollar of liquidity has to be bridged from somewhere else. Your chain starts with zero TVL, zero users, and zero composability with the rest of DeFi. On Arbitrum, our protocol could tap into billions in existing liquidity. On our own chain, we’d need to bootstrap an entirely new liquidity ecosystem.

Caldera’s Metalayer (connecting 50+ rollups) and similar interoperability solutions are working on this problem, but we’re not there yet. Cross-chain liquidity is still fragmented, bridges are still slow, and the UX of moving assets between rollups is still painful for non-technical users.

The Timing Question: When Should You Pull the Trigger?

My advice for founders:

Pre-PMF (Pre-Product Market Fit): Deploy on an existing L2. Do not spend your engineering bandwidth on chain infrastructure before you’ve proven your product works. Use Base, Arbitrum, or Optimism. Focus on users, not infrastructure.

Post-PMF, <100K daily transactions: Stay on your current L2 but start evaluating RaaS providers. Build relationships with Conduit, Caldera, and Gelato teams. Understand your customization needs. The fact that deployment dropped from 6-9 months to under 30 minutes means you can make this move relatively quickly when you’re ready.

Post-PMF, >100K daily transactions, clear customization needs: This is your moment. Spin up a testnet on your preferred RaaS provider (Caldera’s one-click deployment makes this trivial for evaluation). Run a parallel deployment for 2-4 weeks. Measure actual costs, latency, and user experience differences. Then make the migration decision with real data.

Post-PMF, >500K daily transactions, strong brand: You might be in a position to not just launch a chain, but build an ecosystem around it. At this scale, the Conduit Marketplace model and Gelato’s 25+ integrated infrastructure providers become compelling — you’re not just deploying a chain, you’re building a platform.

The Counter-Narrative: Most Projects Don’t Need Their Own Chain

I want to push back gently on the RaaS marketing narrative. The fact that you CAN deploy a chain in 23 minutes doesn’t mean you SHOULD. The RaaS market is growing because it’s selling infrastructure to teams that, in many cases, would be better served by deploying contracts on an existing L2. Caldera’s sequencer decentralization commitment (Q1 2026) is promising, but until sequencer decentralization is actually live and battle-tested, you’re trusting a single company to operate your chain’s most critical infrastructure.

The right question isn’t “Conduit vs. Caldera vs. Gelato.” It’s “do I need a chain at all?” For 90% of crypto projects, the answer is no. For the 10% where it’s yes, Emma’s comparison is the best starting point I’ve seen.

This is a fantastic thread, and Steve nailed the liquidity fragmentation problem. I want to build on that from a DeFi-specific perspective, because the economics of running DeFi protocols on app-chains are fundamentally different from what most teams expect. I’ve been tracking DeFi deployments across RaaS-powered chains for the past year, and the data tells an interesting — and often sobering — story.

The Liquidity Bootstrap Problem: By the Numbers

Steve mentioned that your app-chain starts with zero TVL, and that’s the core challenge for any DeFi protocol considering the RaaS route. Let me put some numbers around this.

Across Conduit’s 300+ chains with $1.2B combined TVL, the median chain has approximately $2-4M in TVL. That’s not bad for a purpose-built chain, but compare it to deploying on Arbitrum ($3.2B TVL) or Base ($14.7B TVL) where you have immediate access to deep liquidity pools. A lending protocol needs borrowers AND lenders — on a new chain, you need to incentivize both sides simultaneously. A DEX needs liquidity providers AND traders — on a fresh chain, the first LPs take enormous impermanent loss risk because trading volume is low.

The bootstrapping math is brutal. To reach a minimum viable liquidity level for a lending protocol (approximately $10M in total deposits to offer reasonable borrow rates), you typically need to spend 15-25% APY in incentive tokens for the first 6-12 months. That’s $1.5-2.5M annually in token emissions just to keep the lights on. On an existing L2, you can launch with zero incentives and tap into existing liquidity routing through aggregators.

Where App-Chain DeFi Actually Works

That said, I’ve identified three DeFi verticals where app-chains provide genuine advantages:

1. Perpetual DEXs and Derivatives Platforms

This is the strongest use case. Perp DEXs have high transaction volume (frequent trades, liquidations, funding rate updates), need guaranteed block space for keeper operations, and benefit from custom gas optimization. The latency requirements are also critical — a 2-second block time with guaranteed inclusion is qualitatively different from a shared L2 where your liquidation transaction might wait behind a memecoin swap.

Conduit’s 5.3 billion daily RPC requests across their network gives you a sense of the throughput these platforms generate. Several of the most active chains in the Conduit and Caldera ecosystems are perpetual trading platforms. The gas cost savings from configurable block parameters and dedicated DA can reduce operational costs by 40-60% compared to running on a shared L2 with the same volume.

2. Lending Protocols With Custom Risk Parameters

This is where Gelato’s native account abstraction becomes extremely compelling. With built-in ERC-4337/EIP-7702 support, paymasters, and bundlers, you can build lending protocols where:

• Borrowers can pay interest in any token (paymaster handles the conversion)
• Liquidations are bundled with position closures in single transactions
• New users can start borrowing without holding the native gas token

The risk management angle is equally important. On your own chain, you control the oracle update frequency, liquidation priority, and can implement custom precompiles for complex interest rate calculations. The 99.9% uptime track record Gelato advertises over 4 years matters enormously for lending — one missed liquidation during a market crash can create cascading bad debt.

3. Cross-Chain Yield Aggregation Platforms

This is where Caldera’s Metalayer connecting 50+ rollups gets interesting. If you’re building a yield aggregator that routes capital across multiple chains, having your own coordination layer makes sense. Your app-chain becomes the routing hub — it aggregates yield opportunities across Metalayer-connected chains, executes rebalancing operations, and settles accounting on your sovereign chain where you control the execution environment.

The ERA token economics add another dimension here. If Caldera successfully decentralizes the sequencer in Q1 2026 and the ERA token captures some of the MEV/sequencing value, yield aggregation platforms built on Caldera could potentially earn revenue from sequencer operations in addition to their core business.

The DA Layer Choice Has DeFi-Specific Implications

Brian covered the technical differences between DA layers, but there’s a DeFi-specific angle. For any protocol holding user funds (lending, staking, bridging), the data availability guarantee directly impacts your protocol’s security properties.

Consider a scenario: a user deposits $1M into your lending protocol on your RaaS chain. The state transition recording that deposit is posted to your chosen DA layer. If that data becomes unavailable (DA layer failure), the validity proof or fraud proof for your rollup can’t be verified, and user funds could theoretically be at risk.

For protocols handling significant TVL:

• Ethereum blobs: Safest for DeFi. Same security as Ethereum L1. Worth the extra cost.
• Celestia: Acceptable for protocols with <$50M TVL, but add a secondary data archiving layer.
• EigenDA: I’d wait for more battle-testing before trusting it with large DeFi deposits. The restaking recursive risk is a real concern for protocols that are already managing their own smart contract risk.

Yield Opportunities on RaaS Chains: The Hidden Layer

Something nobody in this thread has mentioned yet: RaaS chains create new yield opportunities that don’t exist on shared L2s.

Sequencer fee revenue sharing: Some RaaS deployments allow the chain owner to capture a portion of sequencer fees (the priority fees users pay for transaction inclusion). If your chain processes 200K transactions per day at an average priority fee of $0.005, that’s $1,000/day or $365K annually in sequencer revenue — potentially enough to offset your RaaS infrastructure costs entirely.

Native token gas economics: On your own chain, you can denominate gas in your protocol’s native token. This creates organic buy pressure for your token as users need to acquire it for transactions. Combined with Gelato’s paymaster (which can abstract this away for end users while still settling in your token on the backend), you get buy pressure without UX friction.

Liquidity provision incentives with reduced dilution: On a shared L2, you compete with every other protocol for LP attention. Yield farmers have infinite alternatives. On your chain, you’re the primary protocol — LPs don’t have as many competing opportunities, which means you can achieve the same TVL with lower incentive rates. Based on the data I’ve tracked, app-chains typically need 30-50% lower incentive spend compared to shared L2 deployments to maintain equivalent TVL levels, once they’ve overcome the initial bootstrap phase.

My Bottom Line

Steve’s framework is right — most projects shouldn’t launch their own chain for DeFi. But the ones that do, and do it well, gain advantages that are impossible to replicate on shared infrastructure. The RaaS market collapsing deployment from 6-9 months to under 30 minutes means the risk calculus has shifted. The question is no longer about technical feasibility — it’s about whether your DeFi protocol’s economics can overcome the cold-start problem of zero-liquidity chains.

If you can answer yes to that question with a concrete bootstrapping plan, an app-chain will outperform a shared L2 deployment within 12-18 months. If you can’t, stay on Arbitrum.

I appreciate how thorough this thread has been, but I need to pump the brakes and talk about the security implications that nobody has adequately addressed. The fact that deployment dropped from 6-9 months to under 30 minutes is presented as an unambiguous win in this thread, and I fundamentally disagree. Speed of deployment and quality of security are often inversely correlated, and the RaaS market has created new attack surfaces that teams need to understand before they deploy production systems.

The Trust Model You’re Actually Accepting

When you deploy through a RaaS provider, you are delegating the most security-critical components of your blockchain to a third party. Let me enumerate exactly what you’re trusting them with:

1. Sequencer key management: The RaaS provider holds the private key that signs blocks on your chain. If that key is compromised, an attacker can produce invalid state transitions, censor transactions, or extract MEV. Brian mentioned that OP Stack rollups have a sequencer window and force-inclusion mechanism — true, but consider the attack timeline. The sequencer has 12 hours of exclusive block production rights before force-inclusion kicks in. A compromised sequencer key gives an attacker 12 hours to manipulate transaction ordering, front-run every transaction on your chain, and extract maximum value before anyone can bypass them through L1.

2. Bridge contract administration: The canonical bridge between your rollup and L1 is one of the highest-value targets in crypto. The Bybit hack earlier this year demonstrated that compromised multisig UIs can drain hundreds of millions. Who controls the upgrade keys for your RaaS-deployed bridge contracts? In most cases, the RaaS provider retains admin access to the bridge proxy contracts. This means a compromise of the provider’s operational security — not your protocol’s — could result in the loss of all bridged assets on your chain.

3. Infrastructure supply chain: Conduit’s 300+ chains and 5.3 billion daily RPC requests mean they’re operating massive infrastructure. That’s also a massive attack surface. A supply chain attack on the Conduit deployment pipeline could theoretically inject malicious code into multiple chains simultaneously. Similarly, Gelato’s 25+ integrated infrastructure providers means 25+ potential supply chain vectors. The 99.9% uptime over 4 years is impressive for availability, but availability and security are different properties. You can have 99.9% uptime while being completely compromised if the attacker is patient.

The Smart Contract Audit Gap

Here’s something that genuinely concerns me: most teams using RaaS platforms audit their application-level smart contracts but not the rollup infrastructure contracts. The OP Stack, Arbitrum Orbit, and other rollup frameworks have been audited extensively, but the RaaS-specific modifications — the configuration layer, the deployment automation, the bridge customization — often haven’t received the same level of scrutiny.

When Emma deployed her test rollup in 23 minutes, how much of that deployment was custom code that hasn’t been independently audited? The bridge contracts on her chain — are they bit-for-bit identical to the audited OP Stack reference implementation, or has the RaaS provider made modifications? Most teams don’t ask these questions, and most RaaS providers don’t proactively disclose the delta between their deployment and the audited reference.

Conduit’s Developer Suite and Marketplace add additional integration points. Every marketplace service you plug into your chain is a new trust boundary. An oracle integration, an indexer connection, a monitoring tool — each one has API keys, access permissions, and potential for data exfiltration or manipulation. Has the marketplace vetting process been audited? Are the integrated services held to the same security standards as the core rollup infrastructure?

Data Availability Layer Security: The Underappreciated Risk

Brian gave an excellent technical comparison of DA layers, but let me add the security-specific angle. The choice of DA layer doesn’t just affect cost and security guarantees — it affects the attack surface of your entire chain.

Ethereum blobs: The most secure option, but with a caveat. Blob data is pruned after approximately 18 days. If your chain’s fraud proof system requires historical data access (which OP Stack’s dispute game does during the 7-day challenge period), you need to ensure that data remains available beyond the blob pruning window. If an attacker can ensure that blob data expires before a fraud proof challenge completes, they could potentially finalize invalid state transitions.

Celestia and EigenDA: These introduce external validator sets as security dependencies. Your chain is now only as secure as the weakest link between (a) Ethereum’s validator set, (b) your DA layer’s validator set, and (c) your RaaS provider’s operational security. Each additional security dependency multiplies your attack surface rather than adding to your security.

For DeFi protocols specifically (relevant to Diana’s points), the DA layer choice directly impacts the trustworthiness of your state transitions. If you’re running a lending protocol with $50M in deposits and using a DA layer that has a theoretical data withholding attack, your entire protocol’s solvency depends on that attack being impractical. “Impractical” and “impossible” are very different security guarantees.

Sequencer Decentralization: Don’t Trust Roadmaps

Caldera’s Q1 2026 commitment to sequencer decentralization is notable, but I want to be very direct: roadmap commitments are not security guarantees. Every major L2 has promised sequencer decentralization for years — Arbitrum, Optimism, Base, zkSync, Starknet — and none have delivered. Astria, which was specifically building shared sequencer infrastructure, shut down entirely after raising $18M.

Until sequencer decentralization is deployed, audited, and running in production for at least 6 months, every RaaS chain is a centralized system with a single operator who has god-mode access to transaction ordering. For security-critical applications, this is a showstopper that no amount of marketing can paper over.

My Security Checklist for RaaS Deployments

If you’re going to deploy through a RaaS provider despite these concerns (and there are valid reasons to do so), here’s the minimum security diligence I’d recommend:

1. Bridge contract audit: Request the exact contract code deployed for your bridge. Compare it byte-for-byte with the audited reference implementation. Any delta needs independent review.

2. Admin key management: Understand who holds the admin keys for bridge contracts, sequencer operation, and chain configuration. Require multi-sig with your team having at least one signer.

3. Sequencer fallback: Verify that the force-inclusion mechanism works on your deployment. Actually test it. Submit a transaction through L1 force-inclusion and confirm it’s processed within the expected window.

4. DA layer monitoring: If you’re using Celestia or EigenDA, set up independent monitoring for data availability. Don’t rely solely on the RaaS provider’s monitoring.

5. Incident response plan: What happens if the RaaS provider goes offline? What if they’re acquired? What if they suffer a security breach? You need contractual agreements and technical capabilities to operate your chain independently if needed.

6. Upgrade governance: Who can upgrade your rollup’s smart contracts? If the RaaS provider can unilaterally upgrade bridge contracts, you have a centralization risk that undermines the entire point of deploying on a blockchain.

7. Insurance and liability: Does your RaaS provider carry insurance for security incidents? What’s their liability cap? This isn’t a technical question, but it’s a security-relevant business question.

The Uncomfortable Truth

The RaaS market has made it trivially easy to deploy a chain. It has not made it trivially easy to deploy a secure chain. The 23-minute deployment time is a UX achievement, not a security achievement. Every team deploying through a RaaS provider needs to spend significantly more than 23 minutes understanding the trust assumptions they’re accepting.

Emma, your comparison is genuinely useful for understanding features and pricing. I’d encourage you to do a follow-up post specifically focused on the security properties of each provider — it’s the dimension of this comparison that matters most and gets discussed least.