Home  >  Companies  >  EigenCloud
EigenCloud
Developer platform providing verifiable cloud primitives for cryptographic trust, deterministic AI inference, verifiable compute, and tamper-resistant data availability
View PDF
Details
Headquarters
Seattle, WA
CEO
Sreeram Kannan
Website
Milestones
FOUNDING YEAR
2021

Valuation & Funding

EigenCloud has raised $234.5 million in total financing across equity rounds and a direct token investment.

The most recent financing was a $70 million direct purchase of EIGEN tokens by a16z crypto, announced in June 2025 alongside the EigenCloud platform launch. Before that, a16z led a $100 million Series B in February 2024.

Earlier rounds include a $50 million Series A closed in March 2023, and a $14.5 million seed round. Investors across the company's history include a16z crypto, Blockchain Capital, Polychain Capital, Ethereal Ventures, Coinbase Ventures, Hack VC, Electric Capital, and Finality Capital.

Product

EigenCloud is a verifiable cloud platform for running applications with the flexibility of standard cloud infrastructure and cryptographic and cryptoeconomic guarantees about what code ran, on what data, and with what identity.

The basic model is an AWS-style developer experience with blockchain-style verifiability. Developers keep minimal enforcement logic onchain and run heavier workloads offchain in EigenCloud's verifiable services, using Docker containers, standard languages like TypeScript, Python, Go, and Rust, and familiar CLI tooling.

The core execution product is EigenCompute, which runs a Dockerized application inside a Trusted Execution Environment backed by AMD SEV-SNP or Intel TDX hardware. On deployment, an app receives a cryptographic identity, a dedicated wallet whose private key is accessible only to that exact attested image, encrypted secret management, and an onchain deployment record tied to the Docker image digest. Developers can inspect these artifacts through a Verifiability Dashboard with release history, TEE attestations, and wallet addresses, so third parties can verify the evidence directly.

EigenAI is the deterministic inference layer. The same prompt to the same model can produce different outputs because of floating-point behavior and batching differences, which makes re-execution-based verification impractical. EigenCloud fixes inference to be bit-exact on specific hardware, then adds an optimistic verification system: the operator signs and encrypts the request-response log, publishes it to EigenDA, and any verifier can request re-execution during a challenge window. If the bytes do not match, the operator can be slashed. The API is OpenAI-compatible, and current supported models include gpt-oss-120b-f16 and qwen3-32b-128k-bf16.

EigenDA is the data availability layer and the most mature component. It uses erasure coding and KZG proofs to make large blobs durably available to verifiers without full replication, currently supporting 100 MB/s throughput and backed by over 4 million restaked ETH across 100+ operators. In the stack, it stores the logs and outputs that verifiers need to retrieve if offchain compute or inference is challenged.

AgentKit is the highest-level product, combining EigenCompute, wallets, USDC payments, social credentials, and an inference gateway into a deployable kit for sovereign agents. A developer describes an agent, generates configuration files that define its personality and workflow, funds it with USDC, and deploys. The resulting agent gets its own wallet, cryptographic identity, and verifiable execution base, and can route inference requests to Anthropic, OpenAI, or Gemini through EigenCloud's managed gateway.

Business Model

EigenCloud sells verifiable infrastructure on a usage-based and subscription model to developers and teams building high-trust offchain systems. Its go-to-market is B2B with a developer-first motion: a self-serve CLI, docs, and templates drive initial experimentation, while larger or more complex workloads involve direct onboarding and solutions support.

EigenDA uses reserved annual bandwidth tiers priced in ETH, with on-demand burst pricing on top. EigenCompute uses subscription plus metered instance pricing, payable by card or USDC credits. AgentKit splits billing into compute and inference, with EigenCloud taking a 1% margin on inference pass-through from external providers like Anthropic, OpenAI, and Gemini.

A core feature of the model is that EigenCloud does not need to bootstrap its own validator or security network for each new service. It inherits shared cryptoeconomic security from EigenLayer's restaking ecosystem, millions of restaked ETH across 100+ operators, which lowers the fixed cost of launching new verifiable services. That shared base can also improve distribution: more stake can attract more AVSs, which can attract more applications.

The cost structure is heavier than pure software SaaS. TEE-backed compute, GPU-backed inference, onchain transaction plumbing, and operator incentives create meaningful infrastructure costs. Gross margins are likely below typical SaaS levels, though the platform's ability to reuse shared Ethereum security rather than building isolated verifier networks per workload provides a capital efficiency advantage.

Expansion is consumption-led and vertical. As developers adopt EigenDA for rollups, the next step can be EigenCompute for offchain logic and EigenAI for verifiable inference, with each primitive increasing switching costs. AgentKit moves up the stack toward packaged solutions, where EigenCloud can capture more value per workload than raw infrastructure pricing alone.

Competition

EigenCloud competes across three overlapping layers: modular blockchain infrastructure, confidential compute platforms, and AI-native decentralized networks. No single rival matches its integrated stack, but most competitors are deeper than EigenCloud in one or two layers today.

TEE-based verifiable compute

Phala, Oasis, and iExec are the most direct rivals on the confidential execution layer.

Phala markets Phala Cloud and Dstack as decentralized confidential cloud for AI and offchain compute, with GPU TEE support that overlaps directly with EigenCloud's EigenCompute pitch. Oasis competes through its ROFL framework for AI agents, oracles, and verifiable compute tasks, paired with Sapphire for encrypted EVM execution. iExec centers on programmable privacy using Intel TDX and composable confidentiality for onchain and offchain workloads.

All three are more mature in production confidential compute than EigenCloud's current mainnet alpha state. That creates a near-term risk: teams that need verifiable agent execution today may choose Oasis or Phala rather than wait for EigenCloud's roadmap to harden. EigenCloud's counterpoint is deeper Ethereum alignment, integrated DA, and cryptoeconomic slashing rather than hardware-only trust.

AI-native decentralized networks

Gensyn, Ritual, and 0G compete for the same developer mindshare, but from an AI-first rather than Ethereum-first angle.

Ritual packages its product as a purpose-built chain where model calls, scheduling, keys, attestation, and execution guarantees are first-class primitives. That makes it a direct competitor for agent developers who prefer an opinionated agent runtime over EigenCloud's modular cloud primitives. Gensyn targets the full ML lifecycle, training, verification, and coordination across devices, which is broader than EigenCloud's inference and execution focus but competes for the same AI infrastructure budget. 0G markets a decentralized AI operating system spanning compute, storage, and DA, making it a direct threat where developers want a unified AI infra chain rather than a trust layer attached to Ethereum.

ZK proving networks and hyperscalers

RISC Zero and Succinct represent the strongest long-term architectural threat. Both push toward cryptographic proof rather than hardware attestation, RISC Zero through a zkVM and Succinct through a decentralized prover network, which would offer stronger correctness guarantees than TEE-based optimistic verification if proving costs continue to fall. EigenCloud's roadmap points toward ZK-backed options over time, but the current product is TEE-first.

AWS, Azure, and Google Cloud are the most formidable indirect competitors. All three already offer confidential computing, attestation, and key management at enterprise scale, AWS Nitro Enclaves, Azure Confidential Computing, and Google Cloud Confidential Space with Intel TDX attestation, which is the same infrastructure EigenCloud currently runs on. For enterprise buyers that mainly need private execution rather than public verifiability or Ethereum-native composability, the hyperscaler option is often good enough and comes with procurement familiarity and existing contracts.

On the data availability layer, Celestia, Avail, and NEAR DA are direct substitutes for EigenDA, competing primarily on price and ecosystem familiarity for rollup teams that treat DA as a commoditized backend.

TAM Expansion

EigenCloud's expansion logic runs in two directions: moving up the stack from primitives toward packaged application products, and moving beyond crypto-native developers toward AI-native builders that need auditability but do not start from a blockchain context.

New products and vertical integration

The July 2026 orchestration framing extends that logic. As multi-model AI systems become more common, the unverified surface shifts from individual model inference to the routing layer itself. If EigenCompute becomes the place where an AI orchestrator runs, attests, and signs routing receipts, EigenCloud's addressable market would expand from verifiable inference into verifiable decisioning for compliance workflows, premium model selection, and cost-sensitive model brokering.

EigenDA's expansion beyond rollups into AI and agent workloads follows the same pattern. Publishing execution traces, inference receipts, and intermediate agent state to a tamper-resistant DA layer broadens the buyer base from L2 scaling teams to applications that need auditable records for later verification.

Customer base expansion

Near-term customer expansion runs from AVS builders and rollup teams into AI agent builders, orchestration platforms, and high-stakes offchain applications. EigenCloud's own materials target prediction markets, trading agents, medical records, automated adjudication, and agentic commerce, workloads where the trust premium is high and standard cloud logging is insufficient.

The broader AI security context also fits this expansion. Prompt injection remains the top structural risk in deployed LLM applications according to OWASP's LLM Top 10, and the attack surface grows as agents gain tool access and financial authority. That creates demand for attestation, auditable execution, and constrained agent authority, the core functions EigenCloud's stack is built to provide.

AgentKit's inference gateway, which already spans Anthropic, OpenAI, and Gemini, places EigenCloud between application developers and frontier model APIs as trust middleware. That is a different buyer than the crypto-native rollup team, and a larger population.

Platform and ecosystem expansion

EigenCloud's platform model creates a TAM expansion path beyond direct product revenue. EigenCompute is designed both to run app logic and to serve as a distribution layer for third-party AVSs, where more applications attract more services and more services attract more applications.

If that flywheel works, EigenCloud's addressable market expands from first-party primitive revenue to marketplace-style economics across AVSs, agent services, data services, and verifiable orchestration modules. The Google Cloud and Intel Trust Authority partnership, where EigenCompute runs on Google Cloud Confidential Space with Intel TDX attestation, creates a path to enterprise buyers that are more likely to trust software built on established confidential-computing infrastructure.

Community and developer ecosystem events in Seoul and Hyderabad in early 2026 indicate active ecosystem formation in Asian developer hubs, where dense clusters of AI and crypto builders represent an expansion surface before larger framework vendors standardize similar trust features.

Risks

TEE key custody: The June 2026 Taiko bridge exploit showed that exposed enclave signing keys can defeat an entire TEE-based trust model, and EigenCloud's core verifiability claim depends on the integrity of key custody within Google Cloud Confidential Space and Intel TDX, a hardware and cloud dependency that EigenCloud does not fully control.

External model dependence: EigenCloud's own orchestration framing acknowledges that attesting the conductor does not prove the downstream provider actually served the model it claimed, leaving the platform exposed to model substitutions, API policy changes, and access shocks like the June 2026 Anthropic export-control disruption that disabled advanced models globally.

Crypto trust gap: EigenCloud's economic security model relies on EIGEN-based staking, slashing, and ultimately forkability as the enforcement mechanism for malicious-majority faults, a mechanism that mainstream enterprise buyers may find institutionally unfamiliar and operationally difficult to underwrite compared to conventional cloud SLAs and compliance frameworks.

DISCLAIMERS

This report is for information purposes only and is not to be used or considered as an offer or the solicitation of an offer to sell or to buy or subscribe for securities or other financial instruments. Nothing in this report constitutes investment, legal, accounting or tax advice or a representation that any investment or strategy is suitable or appropriate to your individual circumstances or otherwise constitutes a personal trade recommendation to you.

This research report has been prepared solely by Sacra and should not be considered a product of any person or entity that makes such report available, if any.

Information and opinions presented in the sections of the report were obtained or derived from sources Sacra believes are reliable, but Sacra makes no representation as to their accuracy or completeness. Past performance should not be taken as an indication or guarantee of future performance, and no representation or warranty, express or implied, is made regarding future performance. Information, opinions and estimates contained in this report reflect a determination at its original date of publication by Sacra and are subject to change without notice.

Sacra accepts no liability for loss arising from the use of the material presented in this report, except that this exclusion of liability does not apply to the extent that liability arises under specific statutes or regulations applicable to Sacra. Sacra may have issued, and may in the future issue, other reports that are inconsistent with, and reach different conclusions from, the information presented in this report. Those reports reflect different assumptions, views and analytical methods of the analysts who prepared them and Sacra is under no obligation to ensure that such other reports are brought to the attention of any recipient of this report.

All rights reserved. All material presented in this report, unless specifically indicated otherwise is under copyright to Sacra. Sacra reserves any and all intellectual property rights in the report. All trademarks, service marks and logos used in this report are trademarks or service marks or registered trademarks or service marks of Sacra. Any modification, copying, displaying, distributing, transmitting, publishing, licensing, creating derivative works from, or selling any report is strictly prohibited. None of the material, nor its content, nor any copy of it, may be altered in any way, transmitted to, copied or distributed to any other party, without the prior express written permission of Sacra. Any unauthorized duplication, redistribution or disclosure of this report will result in prosecution.