Articles

Non-Custodial Design for a Fediverse-Based MMO with Crypto Integration

Michael Ten 5 min read
Closeup of monero, bitcoin, and other cryptocurrencies golden coins

Designing an online game that blends decentralized identity, cryptocurrency, and persistent world history is an ambitious endeavor. To succeed, it must not only be technically sound but also legally safe. The project should operate as a spiritual successor to Ultima Online—drawing inspiration from its open-ended gameplay without copying assets or infringing on intellectual property. At the same time, it must avoid falling into the category of a regulated financial service.

The key to this lies in building the system as non-custodial. By ensuring that wallets and funds always remain under the player’s control, the game avoids the burdens of anti-money laundering (AML) compliance, know-your-customer (KYC) regulations, and money transmitter licensing. Instead of becoming a financial intermediary, the game functions as a platform where players transact directly with one another, preserving the spirit of decentralization.

The meaning of non-custodial in gaming

In financial technology, “custodial” refers to any system where a service provider holds a user’s funds or keys on their behalf. This typically triggers regulatory oversight, since holding customer assets is akin to operating as a bank or money transmitter. To steer clear of this, the game must ensure that players’ cryptocurrency wallets are never in the custody of the server or developer.

A non-custodial wallet means that:

  • Private keys are generated and stored locally on the player’s device.
  • Transactions are signed locally by the player, not by the game server.
  • Funds are sent peer-to-peer directly to recipients on the blockchain.

The game can facilitate these interactions, but it should never touch, store, or transmit the funds itself. In this way, it operates as a communication layer between players rather than as a financial service.

How wallet integration can work safely

The simplest method for non-custodial integration is through light clients or external wallet links. Players could use a built-in light client that connects directly to the blockchain, or connect an existing wallet app via message signing. Both approaches maintain player control while allowing the game to interact with blockchain data.

A safe design might include:

  1. Wallet creation or linking: When setting up a character, the player either generates a new wallet locally or attaches an existing one. The private key never leaves their machine.
  2. Transaction signing: All payments are signed locally within the client. The game simply broadcasts the signed transaction or provides a QR code or URI for an external wallet.
  3. Payment proofs: To confirm a trade in-game, the system can request a payment proof or transaction hash. This lets the game verify that payment was made without acting as an escrow service.
  4. Public key attachment: The server only stores public addresses, linking them to Fediverse identities for gameplay reference.

With these safeguards, the game supports real economic exchange while remaining outside the scope of regulated custodianship.

Avoiding AML, KYC, and licensing burdens

Once custody is avoided, much of the regulatory weight disappears. AML and KYC obligations arise primarily for services that handle funds, especially when they transmit or convert between currencies. Similarly, money transmitter licensing in many jurisdictions is triggered by custody or control over customer assets.

Because in this model:

  • The server never holds private keys,
  • Trades are peer-to-peer, and
  • Wallets remain fully user-controlled,

the game avoids crossing into those categories. It does not act as an exchange, bank, or remittance provider. Instead, it functions as a marketplace overlay, much like how social media platforms allow people to arrange trades without handling the money themselves.

This design protects the project legally while also aligning with the values of decentralization and digital sovereignty.

A spiritual successor, not a clone

Equally important is how the project positions itself in relation to Ultima Online. To avoid intellectual property concerns, it should be presented clearly as a spiritual successor or alternative, not as a direct copy. This means avoiding use of copyrighted assets like art, music, or lore. Instead, it can borrow from the philosophy of open-ended, sandbox gameplay that made the original so influential.

Players who loved Ultima Online are often looking for the sense of freedom and emergent community that it provided, not necessarily the exact same characters or maps. By recreating that spirit in a modern, open-source, decentralized environment, the project sidesteps legal risks while still honoring its inspiration.

Additional safeguards and considerations

While the non-custodial approach is the most important piece, a few other design choices reinforce the safety and integrity of the project.

  • Clear opt-in mining: If mining Monero is part of the design, it must be transparent, optional, and bounded. Payouts go directly to the player’s wallet through P2Pool, avoiding any custody by the server.
  • Arweave for history: Storing snapshots of world-state and player achievements on Arweave helps preserve continuity without raising financial compliance issues, since this data is not monetary in nature.
  • Fediverse identity integration: Using ActivityPub accounts as identities keeps the project aligned with decentralized infrastructure while ensuring players retain control of their presence across multiple platforms.
  • Disclosure and education: The game should make it clear that it never holds funds on behalf of users and that all transactions are the responsibility of the players themselves.

These safeguards together form a coherent framework where innovation can thrive without unnecessary legal entanglements.

The path forward

By committing to a non-custodial design, this project can pursue its vision of a decentralized MMO without getting bogged down in regulatory quicksand. It can remain true to its role as a game and a social experiment rather than becoming an unintended financial institution.

The guiding principle is simple: the game should never hold, control, or transmit money on behalf of players. Instead, it should empower them to connect, trade, and build freely, using their own wallets and tools. This approach not only minimizes legal risk but also enhances player sovereignty and aligns with the values of the open-source and Fediverse communities.

In the end, the project is not about reinventing the financial system but about creating a vibrant digital world. By remaining non-custodial and clearly a spiritual successor rather than a clone, it can honor the legacy of Ultima Online while charting a new path forward—one that is decentralized, player-driven, and free from unnecessary regulatory weight.

Michael Ten

Michael Ten is an author and artist. He is director of Tenoorja Musubi and practices Tenqido. Follow his work.