⛓️ ERC1400 Security Token Smart Contracts

Part of the ODW ASSETTECH Legacy RWA / STO Reference Stack

⚡ About This Repository

This is the ERC-1400 Smart Contracts: a Solidity implementation of the ERC-1400 security token standard and its supporting extensions (validators, holdable tokens, partition logic, DvP swaps, etc.). It is the on-chain core of the legacy STO stack, and serves as a useful reference for designing compliant, partitioned security tokens before migrating to ERC-3643 or other modern standards.

Back in 2024, the ODW Team built a full Security Token Offering (STO) solution using the ERC‑1400 token standard on a private EVM chain running ConsenSys Quorum. Since then, the ecosystem has evolved: Quorum is no longer actively supported by ConsenSys (with Hyperledger Besu recommended as the successor), and STOs are now more commonly framed under the broader Real‑World Assets (RWA) narrative.

On the token side, ERC‑3643 (T‑REX) and ERC‑1155 have emerged as the most commonly used standards for regulated STO/RWA projects, with ERC‑3643 gaining prominence for its advanced, on‑chain compliance (DID, KYC/AML, transfer restrictions), and ERC‑1155 enabling efficient multi‑asset, multi‑class tokenization.

We are open‑sourcing this repository as a reference implementation to share architecture, design patterns, and integration approaches around ERC‑1400‑based STOs on permissioned EVM chains.

Important: This repository is not intended for production use. A production‑grade RWA/STO system today should:

• Migrate from Quorum → Hyperledger Besu (or another actively maintained EVM execution client), and
• Refactor token logic from ERC‑1400 → ERC‑3643 and/or ERC‑1155, with modern compliance and identity tooling.

---

📚 Repository Series

This repository is part of the ODW ASSETTECH legacy RWA collection:

1. ERC1400 Token Dashboard (Frontend Dashboard)
2. STO Backend API (Express.js API with JWT, Wallet Auth)
3. STO Web Client (Next.js Web Interface)
4. ERC1400 Smart Contracts ← You are here (Solidity Implementation)

Each repository can be explored independently, but together they form a complete STO platform architecture.

---

🎯 Overview

This repository implements the ERC1400 security token standard, designed for tokenized financial assets. ERC1400 extends ERC20 with advanced compliance features including partitioned tokens, granular transfer controls, and certificate-based authorization.

Core Features

• Partitioned Tokens: Partial fungibility - tokens within a partition are fungible, across partitions they're non-fungible
• Granular Transfer Controls: Certificate-based and allowlist/blocklist validation
• Token Holds: Lock tokens while maintaining accurate investor registry
• Document Management: Bind legal documents to tokens (IERC1643)
• Operator Management: Global and partition-specific operator authorization
• Controller Operations: Force transfers and redemptions for compliance

🏗️ Architecture

Core Components

1. ERC1400 Core (contracts/ERC1400.sol)

   • Main token implementation
   • ERC20 retrocompatible
   • Partition management
   • Document management

2. Token Extensions

   • ERC1400TokensValidator: Transfer validation, holds, certificates
   • ERC1400TokensChecker: View-only transfer validation

3. User Extensions

   • IERC1400TokensSender: Sender hooks
   • IERC1400TokensRecipient: Recipient hooks

4. Holdable Token (contracts/tokens/ERC1400HoldableToken.sol)

   • Pre-configured token with validator extension
   • Ready-to-deploy implementation

5. Delivery-vs-Payment (contracts/tools/Swaps.sol)

   • Atomic token swaps
   • Multi-standard support (ETH, ERC20, ERC721, ERC1400)
   • Price oracle integration

Contract Structure

contracts/
├── ERC1400.sol                          # Core token implementation
├── IERC1400.sol                         # ERC1400 interface
├── tokens/
│   ├── ERC1400HoldableToken.sol        # Pre-configured holdable token
│   ├── ERC20Token.sol                  # Basic ERC20 implementation
│   └── ERC721Token.sol                  # Basic ERC721 implementation
├── extensions/
│   ├── tokenExtensions/
│   │   ├── ERC1400TokensValidator.sol  # Transfer validation extension
│   │   └── ERC1400TokensChecker.sol    # View-only validation
│   └── userExtensions/
│       ├── IERC1400TokensSender.sol     # Sender hooks
│       └── IERC1400TokensRecipient.sol # Recipient hooks
├── tools/
│   ├── Swaps.sol                        # Delivery-vs-payment
│   ├── FundIssuer.sol                   # Fund issuance tool
│   └── BatchTokenIssuer.sol            # Batch issuance
├── roles/                               # Role-based access control
├── certificate/                         # Certificate implementations
└── interface/                           # Interface definitions

Key Features Explained

Partition System

Partitions enable partial fungibility:

• Tokens within a partition are fungible
• Tokens across partitions are non-fungible
• Use cases: asset classes, lock-up periods, corporate actions

Certificate-Based Transfers

Off-chain signed certificates for granular transfer control:

• Nonce-based: Sequential nonce prevents replay
• Salt-based: Unique salt for one-time use
• Enhanced security and auditability

Token Holds

Alternative to escrow that preserves investor registry:

• Tokens remain in holder's wallet but are locked
• Supports HTLC (Hash Time Locked Contracts)
• Enables delivery-vs-payment without registry loss

📋 ERC1400 Standard

ERC1400 introduces new concepts on top of ERC20:

• Granular transfer controls: Certificate-based validation via data field
• Controllers: Force transfers and redemptions
• Partitioned tokens: Partial fungibility for asset classes
• Document management: Legal document binding (IERC1643)
• Hooks: Sender/recipient hooks via ERC1820 (optional)
• Upgradeability: ERC1820-based migration support

🚀 Quick Start

Prerequisites

# Install Node.js and Yarn
brew install yarn
brew install nvm

Installation

git clone https://github.com/OnDemandWorld/erc1400-contracts.git
cd erc1400-contracts
nvm use
yarn install

Testing

# Run all tests
yarn test

# Run with coverage
yarn coverage

⚙️ Environment Setup

Create a .env file:

# Copy example
cp .env.example .env

# Required variables:
MNEMONIC=your_wallet_mnemonic_here           # [MANDATORY]
INFURA_API_KEY=your_infura_key              # [OPTIONAL]
RPC_ENDPOINT=http://localhost:8545          # [OPTIONAL]
NETWORK_ID=1337                             # [OPTIONAL]

Required Variables

• MNEMONIC - Ethereum wallet mnemonic for deployment

Optional Variables

• INFURA_API_KEY - For mainnet/ropsten/testnet access
• RPC_ENDPOINT - Custom RPC endpoint
• NETWORK_ID - Network ID for deployment

🚢 Deployment

Step 1: Deploy to Local Network (Ganache)

# Start Ganache
yarn start:chain
# or
ganache-cli -p 7545

# In another terminal, deploy
yarn truffle migrate

Step 2: Deploy to Testnet/Mainnet

# Deploy to Ropsten
yarn truffle migrate --network ropsten

# Deploy using .env configuration
yarn migrate

Deployment Networks

Supported networks:

• development - Local Ganache
• ropsten - Ethereum Ropsten testnet
• mainnet - Ethereum mainnet (not recommended for legacy code)

🧪 Testing

# Run all tests
yarn test

# Run with coverage
yarn coverage

# Lint code
yarn lint:all

# Fix linting issues
yarn lint:all:fix

Test Coverage

Tests cover:

• Core ERC1400 functionality
• Partition management
• Transfer validation
• Document management
• Hold functionality
• Operator management
• Controller operations

📝 Usage Examples

Basic Token Operations

// ERC20 compatible transfer
token.transfer(recipient, 1000);

// ERC1400 transfer with data
token.transferWithData(recipient, 1000, "");

// Partition transfer
bytes32 partition = keccak256("equity");
token.transferByPartition(partition, recipient, 1000, "");

Creating a Hold

bytes32 holdId = keccak256("hold-1");
bytes32 secretHash = keccak256(abi.encodePacked(secret));
uint256 expiration = block.timestamp + 30 days;

validator.hold(
    address(token),
    holdId,
    recipient,
    notary,
    partition,
    1000,
    expiration,
    secretHash,
    certificate
);

Managing Partitions

// Issue tokens to a specific partition
token.issueByPartition(partition, recipient, 1000, "");

// Get balance in partition
uint256 balance = token.balanceOfByPartition(partition, holder);

// Get partition list
bytes32[] memory partitions = token.partitionsOf(holder);

🔒 Security Considerations

Certificate Validation

⚠️ Important: See certificate documentation for known security considerations regarding certificate validation.

Best Practices

1. Access Control: Properly configure controllers and operators
2. Certificate Management: Use secure certificate signing
3. Hold Management: Validate hold parameters carefully
4. Migration: Test migration procedures thoroughly
5. Audit: Have contracts professionally audited before production use

🛠️ Development

Building

# Build all contracts
yarn build

# Build specific contract
yarn build:ERC1400

Code Quality

# Lint Solidity
yarn lint:sol

# Lint JavaScript
yarn lint

# Fix all linting issues
yarn lint:all:fix

Remix IDE

# Start Remix for contract interaction
yarn remix

🔧 Implementation Notes

Gas Optimization

Recent improvements:

• ✅ Removed SafeMath (Solidity 0.8.0+ built-in protection)
• ✅ Optimized partition management
• ✅ Efficient storage layout

Implementation Choices

Based on EIP-1400 specification with modifications for:

Business Requirements

• Sender/recipient hooks (ERC777-inspired, ERC1400-compliant)
• Validator hooks for upgradeable validation policies
• Partition-aware allowances
• ERC1820 migration support

Gas Optimizations

• Removed separate controller functions (merged into operator functions)
• Optional checker hooks (view functions moved to optional extension)
• SafeMath removed (Solidity 0.8.0+ has built-in overflow protection)

🔄 Migration Support

The contract supports ERC1820-based migration:

// Migrate to new contract
token.migrate(newContractAddress, false); // Non-definitive
token.migrate(newContractAddress, true);  // Definitive

📚 Documentation

• Architecture Documentation - Deep dive into system architecture
• API Reference - Complete API documentation
• Improvement Roadmap - Future enhancements and optimizations
• Certificate System - Certificate-based transfers
• Swaps Documentation - Delivery-vs-payment system

🔗 Resources

• ERC1400 EIP Specification
• ERC1820 Registry
• ERC1066 Status Codes

📄 License

Apache 2.0 - See LICENSE file for details.

---

🌟 Support & Community

If this repository is useful to you as a reference for STO/RWA design, please consider:

• Giving the project a ⭐ star on GitHub
• Watching the repo to follow updates
• Opening issues for questions, ideas, or problems you hit
• Submitting pull requests with improvements or fixes

Your feedback and contributions help us decide how much more to invest in evolving these open‑source building blocks.

---

💼 Work with the ODW Team

ODW ASSETTECH specializes in:

• RWA / STO architecture & solution design
• Smart contract engineering (ERC‑3643, ERC‑1155, custom compliance modules)
• Blockchain infrastructure - Hyperledger Besu setup and deployment
• Security auditing - Contract review and optimization
• Migration of legacy ERC‑1400 / Quorum stacks to Hyperledger Besu and modern standards
• Regulated environments: focusing on compliance‑aware tokenization flows

If you are:

• A financial institution or issuer exploring tokenization,
• A startup building an RWA platform, or
• An engineering team looking to modernize an existing STO stack,

we'd be happy to discuss how we can help.

📧 Contact the ODW Team

• Email: office@odw.ai
• Contact Page: https://ondemandworld.com/contact-us/
• GitHub Issues: Report bugs and request features
• GitHub Discussions: Ask questions and share ideas

---

🔗 Related Repositories in This Series

• ERC1400 Token Dashboard – Next.js dashboard UI for managing ERC‑1400 tokens
• STO Backend API – TypeScript/Express backend for auth, users, and wallet integration
• STO Web Client – Next.js web client for end‑user STO workflows
• ERC1400 Smart Contracts – Solidity implementation of ERC‑1400 and related extensions

This repository is one component of a 4‑repo reference stack. For a fuller picture, explore the other repos in the ODW ASSETTECH organization.

---

Made by the ODW Team – sharing our 2024 STO stack as a reference for today's RWA builders.