A Decade of Regulation Finally Clarified, Victory for Crypto-Native Logic

BTC, ETH, SOL, XRP, DOGE, SHIB.

These names were written together in an SEC regulatory filing for the first time, with a few words added after them: not securities.

On the evening of March 17, 2026, the SEC and CFTC jointly released a 68-page interpretive document, formally providing a comprehensive qualitative assessment of the securities status of crypto assets. This marked the first time at the U.S. federal level that specific tokens were officially addressed and classified in a regulatory interpretation. The document also superseded the SEC's previous 2019 "Investment Contract Analysis Framework," which had been a primary reference for industry compliance assessments.

This document followed a clear timeline.

In January 2025, SEC Acting Chair Mark T. Uyeda established the Crypto Task Force to clarify the application of securities laws to crypto assets. In July of the same year, the President's Working Group on Digital Assets released a report recommending that the SEC and CFTC use their existing powers to provide regulatory clarity to the industry.

SEC Chair Paul S. Atkins subsequently launched Project Crypto, which was upgraded to a joint SEC-CFTC project in January 2026. During this period, the Crypto Task Force received over 300 public comments from issuers, investors, law firms, audit firms, and other stakeholders.

In other words, this document represents the "unified answer" from the two federal regulatory agencies after more than a year of industry jockeying and policy coordination.

Five Lines Draw the Whole Map

In this document, the SEC categorizes crypto assets into five classes, with the core criterion being the four elements of the Howey Test.

The first category is "Digital Commodities." This is the most highlighted section of the entire document as the SEC provides a specific list of names. BTC, ETH, SOL, XRP, ADA, AVAX, DOGE, SHIB, LINK, DOT, LTC, BCH, HBAR, XLM, XTZ, APT, totaling 16 tokens are explicitly mentioned in the body. The footnote also includes Algorand (ALGO) and LBRY Credits (LBC) in this category.

The logic provided by the SEC is as follows: the value of these tokens is inherently tied to the programmatic operations of the functional encrypted system they reside in, primarily driven by supply and demand, rather than by the expectation of profit from the managerial efforts of others.

The second category is "Digital Collectibles." CryptoPunks, Chromie Squiggles, WIF (dogwifhat), and VCOIN are specifically mentioned. Meme coins find their place here, where the SEC believes their value is primarily driven by "artistic, entertainment, social, or cultural significance," similar to physical collectibles, and thus do not constitute securities.

The third category is "Digital Tools." Examples such as ENS domains and CoinDesk's Microcosms NFT tickets are mentioned. The key feature of these assets is their ability to perform specific functions, such as membership credentials, identity tokens, or ownership certificates, many of which are soul-bound and non-transferrable.

The fourth category is "Stablecoins." According to the previously passed "GENIUS Act," "payment-type stablecoins" issued by compliant issuers are expressly excluded from the definition of securities. However, the SEC retains regulatory authority over stablecoins that do not meet the standards set by this Act.

The fifth category is "Digital Securities." This is the only category definitively classified as securities. However, the SEC does not specifically mention any tokens as belonging to this category in the document.

The boundaries between these five categories are not absolute. The SEC itself acknowledges the existence of hybrid assets that span multiple categories and crypto assets that do not fall into any category. However, the significance of this classification framework lies in bringing the question of "what is a security and what is not" from courtroom debates to the realm of regulatory enforcement for the first time.

Four Categories of On-Chain Activities, Unified Classification

Beyond token classification, another significant contribution of this document is the unified classification of four core on-chain activities: mining, staking, wrapping, and airdrops.

Protocol Mining does not constitute a securities offering. Whether individual mining or joining a mining pool, mining activity itself is considered network maintenance, and the newly minted tokens are a protocol-level programmatic reward, not involving any investment contract relationship.

Protocol Staking does not constitute a securities offering. This determination covers four scenarios: individual staking, self-custody with delegation, delegation to a custodian for staking, and liquidity staking. The SEC expressly states in the document that staking rewards come from the protocol's predetermined programmatic allocation, rather than from the operational efforts of a specific management team. For LST generated from liquidity staking (e.g., stETH), the SEC considers them merely as "receipts" of the underlying staked assets, not classified as derivatives, and not constituting securities.

Asset Wrapping does not constitute a securities offering. Wrapping BTC into WBTC for use on Ethereum is merely a technical interoperability operation and does not alter the nature of the underlying asset.

Airdrops do not constitute a securities offering. As long as recipients do not provide funds, goods, or services as consideration, the free distribution of tokens does not meet the "investment of money" element of the Howey Test.

These determinations have a direct impact on the industry, as core mechanisms of DeFi protocols, such as staking, wrapping, and airdropping, have all been removed from the scope of securities law. Over the past three years, every project offering staking services or distributing airdrops has faced concerns, and now there is a unified answer from federal regulators.

Security Status Is Not a Permanent Label

Perhaps the most worthy section of this document for close reading is the SEC's explanation of the "Separation" mechanism. The document clearly states that a crypto asset that is not itself a security can be subject to securities regulation based on its method of issuance (e.g., through an investment contract). However, when the conditions of the investment contract are no longer met, the asset can be "separated" from its security status.

The SEC provides two scenarios for separation. The first is when the issuer fulfills their promises. For example, if a project promised to develop a decentralized network during an ICO and the network later goes live and operates in a decentralized manner, investors no longer rely on the efforts of the issuing team to profit, thus failing to meet the core requirement of the Howey Test, and the token "graduates" from the investment contract.

The second scenario is more interesting, as it involves the project team "abandoning" the project. If the issuer fails to fulfill the promises and statements made in the investment contract, and investors' reasonable expectations of "efforts of others" bringing profits are shattered, the investment contract is likewise terminated. However, the SEC emphasizes that this does not mean the issuer can escape liability, as they may still face fraud charges.

The true significance of this "Separation" mechanism is that it provides a compliant path for crypto projects. From ICO to mainnet launch to full decentralization, it is no longer an adventurous journey through legal gray areas but a regulatory tunnel with a clear endpoint. Once completed, you're out.

68 pages. Nine chapters. 18 tokens singled out, six categorized on-chain behaviors, two "graduation" paths. The SEC spent over a year collecting over 300 comment letters, and ultimately, in collaboration with the CFTC, handed in this response. It is not perfect; the boundaries of stablecoins still have gray areas, no specific examples were given under the "digital securities" category, and the assessment criteria for hybrid assets remain open to interpretation.

But for an agency that has been criticized in the past for its "regulation by enforcement" approach, this document at least does one thing: It puts the rules down on paper instead of in enforcement actions.