More than 13,000 DAOs manage over $21 billion in assets. Some oversee billion-dollar protocols. Others struggle with voter turnout below 10%. The gap between what DAOs promise and what they actually deliver is where things get interesting.
A DAO is an organization run by code instead of managers. Rules are written into smart contracts on the blockchain. Members hold tokens that give them voting rights. Decisions happen through proposals, not board meetings. No CEO. No board. No corporate hierarchy. That's the theory, anyway.
How DAOs actually work#
Think of a DAO as a group bank account with built-in rules. Nobody can withdraw funds, change the rules, or pass decisions without a group vote. The mechanics are straightforward:
Developers write a smart contract that defines how the organization operates. The contract lives on the Ethereum blockchain (or Solana or Polygon), and once deployed, it runs exactly as written. No one can edit it in secret.
Members buy or earn governance tokens. Each token equals one vote. When someone wants the DAO to do something—fund a project, adjust fees, hire a contributor—they submit a proposal. Token holders vote. If it hits the threshold, the smart contract executes it automatically.
There are two common membership models. Token-based DAOs let anyone buy governance tokens on the open market. MakerDAO's MKR token works this way: buy it on any exchange and you can vote on Maker protocol decisions. Share-based DAOs are more selective. You apply, existing members vote on whether to admit you, and if approved, you get shares representing voting rights and treasury equity. MolochDAO, which funds Ethereum ecosystem projects, uses this model.
This last part matters. A traditional company can vote on something and ignore the result. A DAO can't. If the code says "when 60% vote yes, transfer 100 ETH to this address," that's what happens. Smart contracts don't care about politics or feelings or second thoughts.
The DAO that broke everything#
You can't talk about DAOs without mentioning The DAO. In 2016, a team launched what was essentially a decentralized venture fund on the Ethereum blockchain. The idea was simple: pool investor money, let them vote on which projects to fund, share the returns. It raised $150 million from over 18,000 investors in less than a month. At the time, that was about 14% of all existing Ethereum.
Then someone found a bug. An attacker exploited a flaw in the smart contract code and stole $50 million in ETH. The Ethereum community faced an impossible choice: let the theft stand (code is law, after all) or roll back the blockchain to undo it.
They rolled it back. The hard fork created two separate chains: Ethereum (with the rollback) and Ethereum Classic (keeping the theft). The incident didn't kill DAOs, but it proved that "decentralized" doesn't mean "safe." Code is only as good as the people who write it.
What DAOs do now#
DAOs have moved far beyond that 2016 venture fund experiment.
The biggest use case is protocol governance. Most major DeFi protocols—Uniswap, Aave, MakerDAO, Compound—operate as DAOs. Token holders vote on fee changes, protocol upgrades, and how to spend treasury funds. Uniswap's treasury alone is worth about $2.5 billion.
Then there's large-scale treasury management. According to DeepDAO, DAOs collectively hold over $21 billion in liquid assets. The top five DAOs—Optimism, Arbitrum, BitDAO, Uniswap, Polygon—control more than 60% of that. Optimism Collective leads at about $5.5 billion.
Grant distribution is another growing use. Gitcoin lets the community vote on which open-source developers get funding instead of leaving those decisions to a foundation. They've distributed over $60 million in grants so far.
一些DAO的运作方式类似投资俱乐部,成员汇集资本并投票决定资金的用途。Friends with Benefits这样的社交DAO则通过代币所有权来控制成员资格。持有代币就能加入,就能对资金使用方式发表意见。
没人解决的治理问题#
DAO有个参与问题,而且在恶化。
全球650万治理代币持有者中,大多数人从不投票。活跃DAO的平均投票率低于10%。这意味着少数大代币持有者——通常被称为"鲸鱼"——最终为其他人做决定。前20%的利益相关者持有约78%的代币,也就是说他们掌控78%的投票权。
这不是理论问题。2024年7月,Compound Finance的一项治理提案以52-48的微弱多数通过,将2500万枚COMP代币转移到一个新金库。批评人士称之为"治理攻击"。投票时间很可疑,在周末进行,当时参与度最低。等大多数成员发现时,投票已经通过,智能合约已经执行。
问题是结构性的。投票需要支付燃气费。如果你只持有500美元的代币,花15美元的燃气费投票一个不重要的提案就没有经济意义。所以你不投。乘以数百万个小持有者,你就得到一个组织,其中只有鲸鱼和内部人士会持续投票。
一些DAO正在尝试解决方案。二次投票给小持有者更多相对权重。委托让你把投票权交给你信任的人——DAO内部的代议制。Optimism设置了两院制,一院代表代币持有者,另一院代表社区贡献者。这些都不完美,但方向是对的。
安全风险是真实的#
智能合约是代码,代码会有漏洞。2016年的DAO黑客事件之后,近年来的事件表明治理本身也可能是个安全漏洞。
2024年10月,Tapioca DAO通过社交工程攻击损失了440万美元。攻击者破坏了持有私钥的人的账户。他们不需要黑进智能合约,只需要黑进人。
闪电贷攻击是另一种威胁。攻击者借入大量代币,获得临时投票权,强制通过恶意提案,然后在同一笔交易中归还贷款。整个过程发生在一个区块链区块内,DAO事先看不到。
这就是代码审计为什么重要,但审计还不够。DAO需要扎实的合约代码、谨慎的密钥管理、对大额交易的时间锁定(给社区反应时间)和主动监控。成熟的DAO现在通常在提案通过和资金实际转移之间设置等待期。这种延迟很烦人,但它已经阻止了多次攻击。
多签钱包提供了额外的保护层。与其让一个人持有金库密钥,不如由一群信任的签署者必须一起批准交易。如果五个签署者中的三个都要同意才能移动资金,那么破坏单个密钥对攻击者来说就不够了。
法律问题#
DAO的大部分历史都存在于法律灰色地带。没有公司、没有注册实体、没有司法管辖权,出现问题时谁该负责?
怀俄明州首先采取了行动。2021年7月,它成为美国第一个承认DAO为有限责任公司的州。怀俄明州DAO有限责任公司可以由成员或智能合约直接管理。成员获得与传统有限责任公司相同的责任保护,个人资产与组织债务分开。
马绍尔群岛采取了不同路线。其2022年DAO法案(2024年更新)承认基于智能合约的治理在法律上可强制执行。DAO可以注册为有限责任公司,不需要传统董事或高管。对于寻求法律身份而不想被重监管的DeFi项目来说,马绍尔群岛在2026年前是个热门选择。
其他国家也在建立加密相关的法律制度。阿联酋的RAK DAO自由区对加密友好。瑞士允许DAO注册为协会。欧盟还在摸索,暂时没有统一规则。
但获得法律身份要花钱。在大多数地方,为DAO办理法律和监管手续需要2到15万美元,取决于当地和DAO的规模。小社区很难承受这笔费用,所以许多DAO干脆不走法律途径。
怎么加入一个DAO#
想参与的话,其实不难。
先找一个符合你兴趣的DAO。DeFi项目、NFT社区、资助计划、投资小组,加密领域里各种DAO都有。DeepDAO和Tally是两个网站,列出了活跃的DAO,还有金库、提案和投票记录的数据。
然后购买治理代币。可以在Uniswap这样的去中心化交易所买,也可以在币安这样的中心化交易所买(如果代币在那上市)。有些DAO免费发放代币,通过空投、质押或做贡献。
有了代币后,把钱包连到DAO的投票平台上(Snapshot、Tally,或DAO自己的系统)。看看有哪些提案,到Discord或论坛里看讨论,然后投票。大多数DAO还允许代币持有者提交自己的提案,所以如果你发现问题,可以自己提。
实际建议:不用买成千上万的代币才能参与。很多DAO支持把投票权委托给别人,有些用Snapshot投票,不用付交易费。
DAO是未来的组织形式吗?#
某种程度上是。DAO金库里有210亿美元,不是凭空出现的。真实的协议在运作,真实的赠款在分配,真实的全球社区在跨国协调,谁都管不了。这部分是有效的。
但是,如果90%的成员从不投票,那就不是去中心化,只是换个样子的独裁。代币集中在少数鲸鱼手里这个问题,最后会把DAO想要打破的权力结构重新建立一遍。讽刺得很。
智能合约那块基本没问题。代码执行,交易透明,金库可以审计。难的是人的问题:怎么让分散在全球各地的人持续参与,做出有思想的集体决策。这不是区块链的问题,就是个难题。
DAO开发市场预计到2035年会达到250亿美元。越来越多国家会出台法律框架。投票机制也会改进。增长有希望。但如果你想加入一个DAO,先看参与率,再看金库。看代币权力集中在谁手里。看审计报告。DAO的去中心化程度,就取决于真正来参与的人有多少。
