How Does Neo Work?

L1|Risk B-|7 mechanisms|5 interactions

Neo is a Layer 1 blockchain platform founded in 2014, often called the 'Ethereum of China,' using a delegated Byzantine Fault Tolerance (dBFT) consensus mechanism for instant transaction finality. With a dual-token model (NEO for governance, GAS for fees), approximately $50 million in ecosystem TVL, and a $273 million fully diluted valuation, Neo is a mature but declining L1 chain. Its B- grade reflects the proven dBFT consensus design with 8+ years of operation and no major exploits on the core chain, but material risk from a small centralized consensus node set, Chinese regulatory exposure, declining ecosystem vitality, and a June 2025 remote token theft vulnerability disclosed by Tencent.

TVL

$50M

Sector

L1

Risk Grade

B-

Value Grade

D+

Core Mechanisms

9.1.1

dBFT consensus (delegated Byzantine Fault Tolerance) — NEO holders vote for consensus nodes that produce blocks with single-block finality using a 2/3 supermajority agreement

BFT-based consensus is a well-established pattern from distributed systems research (PBFT, 1999). dBFT is Neo's implementation with delegation, live since 2016. Multiple blockchains use BFT variants (Tendermint/CometBFT, HotStuff).

9.1.2

NEO/GAS dual-token model — NEO represents governance and network ownership (generates GAS passively), GAS is the utility token for transaction fees and contract deployment

Dual-token models existed before Neo (NXT/Ardor, VeChain VET/VTHO). The pattern of a governance token generating a utility token is well-established.

5.1.1

Neo Council governance — NEO holders elect consensus nodes and council members who set network parameters including GAS generation rate, fee factors, and protocol upgrades

Delegated governance for parameter management. Standard pattern in dPoS and dBFT systems.

9.2.1

NeoVM smart contracts — stack-based virtual machine supporting C#, Python, Java, Go, and TypeScript for smart contract development

Virtual machine for smart contract execution. Standard for L1 blockchains. NeoVM predates EVM alternatives but the pattern is well-established.

9.3.1

Neo X EVM sidechain — EVM-compatible sidechain enabling interoperability with Ethereum ecosystem tools, contracts, and bridges

EVM-compatible sidechains are standard. Multiple L1s have added EVM compatibility (Avalanche C-Chain, Cosmos EVM chains). Standard industry pattern.

1.1.3

GAS fee burning — transaction system fees are burned, creating deflationary pressure on GAS supply while new GAS is generated per block

Fee burn mechanism identical to EIP-1559 pattern on Ethereum. Standard tokenomics since 2021.

9.4.1

NeoFS decentralized storage — distributed file storage system integrated with Neo blockchain for dApp data storage

Decentralized storage integrated with blockchain. Similar to Filecoin, Arweave, IPFS integration. Standard infrastructure pattern.

How the Pieces Interact

dBFT consensusNeo Council governanceHigh

The small consensus node set controlled by Neo Council elections means that a concentrated group of NEO holders can effectively control which nodes produce blocks. If the council is captured by adversarial or negligent parties, they could elect compromised consensus nodes, enabling censorship or network halts.

NEO/GAS dual-token modelGAS fee burningMedium

The balance between GAS generation per block and GAS fee burning depends on transaction volume. During periods of low activity, GAS generation exceeds burning, creating inflationary pressure. During high activity, burning may exceed generation. The Neo Council can modify generation rates, creating uncertainty about long-term tokenomics.

dBFT consensusNeo X EVM sidechainMedium

The bridge between Neo mainnet and Neo X EVM sidechain introduces cross-chain messaging risk. If the bridge relay is compromised, assets could be minted or stolen on either chain. The security assumptions differ between dBFT-based mainnet and the sidechain.

NeoVM smart contractsdBFT consensusMedium

Smart contract execution on a small consensus node set means a vulnerability in NeoVM could be exploited to manipulate consensus or drain node resources, as the June 2025 Tencent-disclosed vulnerability demonstrated with remote token theft potential.

Neo Council governanceGAS fee burningLow

The council can modify fee factors and GAS generation rates via governance votes. Parameter changes that are too aggressive (very low fees) could undermine network security economics, while overly high fees could drive users away from an already small ecosystem.

What Could Go Wrong

  1. Small and permissioned consensus node set: Neo uses delegated Byzantine Fault Tolerance (dBFT) with a limited number of consensus nodes elected by NEO token holders. The small validator set creates centralization risk — if a sufficient number of consensus nodes are compromised or go offline simultaneously, the network could halt. Unlike proof-of-stake chains where anyone can become a validator, dBFT consensus participation is restricted.
  2. Chinese regulatory exposure and jurisdictional concentration: Neo was founded in China and has historically had strong ties to Chinese developer and user communities. Chinese regulatory actions against cryptocurrency (2017 ICO ban, 2021 mining ban) have directly impacted Neo's ecosystem. While the project has diversified globally, its historical Chinese nexus creates ongoing regulatory surface area.
  3. Declining ecosystem vitality: Neo's TVL, developer activity, and ecosystem engagement have declined significantly from 2018-2021 peaks. The chain's DeFi ecosystem is minimal compared to competing L1s (Solana, Avalanche, Sui). Despite the Neo N3 upgrade and upcoming Neo X (EVM sidechain), the protocol faces an uphill adoption battle.
  4. June 2025 remote token theft vulnerability: A security vulnerability disclosed by Tencent in June 2025 allowed potential remote theft of native tokens (including GAS) from Neo blockchain users. While the vulnerability was disclosed responsibly and patched, it demonstrates ongoing smart contract and node-level security risks in the Neo codebase.

Consensus Node Compromise and Network Halt

Tail

Trigger: An attacker compromises more than 1/3 of Neo's dBFT consensus nodes (the threshold needed to prevent consensus), either through direct node exploitation (similar to the June 2025 Tencent vulnerability) or through governance capture via accumulated NEO voting power.

  1. 1.Attacker gains control of sufficient consensus nodes through node software vulnerability or by accumulating enough NEO to elect malicious nodes via Neo Council governance dBFT consensus breaks down as compromised nodes refuse to validate blocks or produce conflicting proposals
  2. 2.Network halts as the remaining honest nodes cannot reach the 2/3 supermajority required for block finality All transactions, smart contract executions, and cross-chain bridge operations on Neo are frozen. DeFi protocols on Neo become inaccessible.
  3. 3.Neo Council must coordinate an emergency consensus node rotation, requiring NEO holder voting during a period of uncertainty Extended downtime (hours to days) while governance process elects replacement nodes. Users cannot withdraw funds from DeFi protocols during the halt.
  4. 4.Loss of confidence in Neo's dBFT consensus reliability triggers capital flight once network resumes TVL drains from Neo ecosystem as users migrate to competing L1s with larger validator sets and more decentralized consensus
See all 2 collapse scenarios in the full risk report →

Risk Profile at a Glance

Mechanism Novelty0/15
Interaction Severity5/20
Oracle Surface0/10
Documentation Gaps3/10
Track Record6/15
Scale Exposure5/10
Regulatory Risk6/10
Vitality Risk6/10
B-

Overall: B- (31/100)

Lower score = safer

More on Neo

Is Neo Safe?

Safety analysis

Is Neo a Good Investment?

Value analysis

Full Risk Report

All mechanisms & interactions

Related L1 Explainers

How Does Aster Work?D+How Does Mantra Chain Work?D+How Does Bittensor Work?D+How Does Flare Network Work?C-How Does Canto Work?C-