This is an automated archive.
The original was posted on /r/ethereum by /u/samdane7777 on 2023-09-08 21:55:11+00:00.
Where to begin… First, I have included the legal wording in quotation below. If you have skin in the game as a developer and you do not read it, you do so at your own peril.
The CFTC just cracked down on three separate derivative defi protocols, despite IP blocking the Usa and blocking the use of VPNs. This means, it isn’t going to be enough, and in conjunction with the 279 page Treasury Proposal, the Usa clearly has plans on *how* it’s going to make foreign development teams block americans.
This industry is about to be forced to use massive clear list and block lists on virtually all front ends, by the americans. This is a prelude to them putting it onchain, and mandating it onchain globally, which is of course what G20 wants.
The more important question is what *is* an “associative list” or “list of association”. First we need to be clear, the Usa has hijacked the crypto industry with its Sanction politics. Most hard privacy advocates including me do not fully agree with this privacy paper put out by Vitalik, this is an internationally mandated “proof of innocence” and not “proof of guilt” because “Muh Sanctions”.
VC-backed “crypto” will give superpowers to central bankers & tyrants. Few will understand.
“how do they get super powers”
they control the liquidity and banking onboarding
they have the entire protocol stack doxxed
they write the regulatory moats for themselves
they do mergers and acquisition to get it back to the wealthy upper stakeholder of private equity in the West
they have a global geolocation-metadata-mossaic of Eth and Solana, most of cosmos
They have all the meta data and they have etherscan, they have all the doxx information to all the central exchanges in the world, they can and will use machine learning to tie addresses to black and white lists, then enforce them with federal prosecution and extradition.
There are virtually no limitations/restrictions or regulations against these Chain analysis companies, they have a free for all of metadata and junk forensics, it’s the Patriot act onchain. They are, they can, and they will, and they will be doing *much more* machine learning basic forensics to build these “association lists” to “give” to larger VC protocols.
They will not let non american self regulatory organizations decide on associative lists, they will force it on you with the IMF and Fatf/EU regs and Fatca/Ofac style regs, it will be top down, done with Ciphertrace and Cisa/DHS/FBI etc, compliance cost will bankrupt small company. They will never have some fairy tell honour system for geoblocking public crypto addresses from smart contracts, it will be lists made by american, curated by intelligence, and forced on the rest of the world with central planning, after VC merges and acquires everything.
You won’t be able to get this geolocation taint off of your addresses or get new addresses easily without committing felonies, or do “chain breaks” with monero or TC, they will make it hard to do, so you’re stuck with the taint, so they can kill actual DeFi.
If you have middleware and spyware that blocks entire countries of people, or entire protocols, and money flows from unregistered unlicensed non US-VC smart contracts with geo-contamination based blocking- that isn’t DeFi. That isn’t permissionless.
- globally litigating all developer teams into using middleware to block VPNs a default crimilization of VPN use for DeFi
- globally litigating clear list and block list for “associative lists” to even get white listed to use a front end, which will of course be a de facto ban for americans, because no protocol will ever be approved, and has not been so far
- If your developer team and legal council resist the subpoenas by the americans, the Department of Justice will go after your banking relations in those countries
- You might actually get extradited even if you’re not american
- Tradfi clearly uses White List blocking of smart contract to suppress and merge and acquisition and steal the industry while kicking the ladder out from everyone else and building crony regulatory moats based on licensing and registration
- The SEC and CFTC have put out an extensive list of “Responsible Persons” (spoiler, it includes virtually anyone involved in the protocol or project from stem to stern) they intend to doxx, namely so they can hold them liable for collecting 1099-B in the new Treasury IRS proposal, they want the full stack of developer teams hyper doxxed.
Not being an american, will not protect you.
Recommendation 2 – Identify Responsible Persons A regulator should aim to identify the natural persons and entities of a purported DeFi arrangement or activity that could be subject to its applicable regulatory framework (Responsible Person(s)).
43 These Responsible Person(s) include those exercising control or sufficient influence over a DeFi arrangement or activity. Guidance Responsible Person(s) generally are persons and entities that provide or actively facilitate the provision of products or services. Responsible Person(s) include those that maintain control or sufficient influence over a particular DeFi arrangement or activity.
44 Regulators can consider, for example, those with design and maintenance control; financial and economic control; and formal and legal control, among other things. In many cases, those who have control or sufficient influence over a particular activity at the enterprise level (see Recommendation 1 above) will also be Responsible Persons. In conducting this analysis, a regulator should carefully examine any claim that the arrangement or activity is purportedly decentralized to the point that no persons or entities are responsible and should subject Responsible Persons to its applicable regulatory
43 Responsible person(s) is meant broadly, to encompass, for example, natural persons, groups of persons, entities and organizations, whether formally or informally constituted. 44 See also FATF, UPDATED GUIDANCE FOR A RISK-BASED APPROACH, VIRTUAL ASSETS AND VIRTUAL ASSET SERVICE PROVIDERS 27 (2021), available at: (“[C]reators, owners and operators or some other persons who maintain control or sufficient influence in the DeFi arrangements, even if those arrangements seem decentralized, may fall under the FATF definition of a [Virtual Asset
Service Provider (‘VASP’)] where they are providing or actively facilitating VASP services. This is the case, even if other parties play a role in the service or portions of the process are automated. Owners/operators can often be distinguished by their relationship to the activities being undertaken. For example, there may be control or sufficient influence over assets or over aspects of the service’s protocol, and the existence of an ongoing business relationship between themselves and users, even if this is exercised through a smart contract or in some cases voting protocols. Countries may wish to consider other factors as well, such as whether any party profits from the service or has the ability to set or change parameters to identify the owner/operator of a DeFi arrangement. These are not the only characteristics that may make the owner/operator a VASP, but they are illustrative.
Depending on its operation, there may also be additional VASPs that interact with a DeFi arrangement.”). Indicia of control or influence can include, for example, ownership interest; significant financial interest; significant voting rights; management of or the ability to impact the operations of the protocol at an enterprise or fundamental level; the ability to set permissions or access rights for users of the protocol, or to otherwise impact the rights of other users of the protocol; control over user assets; and the ability to enter into agreements for the protocol or enterprise. What constitutes control may also depend on the relevant regulations in a jurisdiction.
23 framework. In assessing who is a Responsible Person, rather than relying on labels or concepts such as decentralization or the automated nature of smart contracts in DeFi arrangements, a regulator should evaluate all the facts and circumstances, including:
(a) the roles of natural persons and entities in a DeFi arrangement and how those persons and entities interact with each other and how those roles may evolve over time;
(b) the ability of those natural persons and entities, such as developers or foundations or decentralized autonomous organizations (DAOs), to control or influence the arrangement, including through actions that would impact a smart contract, protocol, or the enterprise level operations of any particular DeFi arrangement;
© whether there are other parties exercising control or influence over the DeFi arrangement, such as venture capital firms, large investors, or governance/voting token holders or voters;
(d) the economics of the arrangement, including financial incentives for participation, such as who is receiving investments and returns on investment, fees, payments for development or governance activities, or payments from inventories or treasuries; and (e) how a regulator might apply regulatory oversight over these natural persons …
Content cut off. Read original on https://www.reddit.com/r/ethereum/comments/16dnig7/chain_analysis_geolocation_metadata_mosaics_will/