Stablecoin Interoperability: How CCTP, Wormhole, and Native Issuance Solve the Fragmentation Problem
Analyzing solutions to stablecoin fragmentation across blockchains, from Circle's CCTP to native multi-chain issuance.
A dollar on Ethereum is not a dollar on Solana. Despite sharing the same name, backing, and issuer, USDC on one chain cannot be spent on another without an intermediary step. This is the stablecoin fragmentation problem: over $321 billion in stablecoin supply spread across dozens of isolated blockchains, each with its own liquidity pools, its own token contracts, and its own bridging infrastructure.
The consequences are real. Users pay unnecessary fees to move value between chains. Liquidity providers split capital across fragmented pools, reducing efficiency. And bridges, the connective tissue holding this system together, have lost over $2.8 billion to exploits since 2022. Several competing approaches now aim to solve this: Circle's Cross-Chain Transfer Protocol (CCTP), Wormhole's guardian-validated messaging, LayerZero's OFT standard, and native multi-chain issuance. Each makes different tradeoffs between security, speed, and decentralization.
Why Stablecoin Fragmentation Exists
Blockchains are isolated execution environments. A token contract deployed on Ethereum has no awareness of Solana, Avalanche, or Base. When Circle issues USDC on Ethereum, it deploys an ERC-20 contract backed by reserves. When it issues USDC on Solana, it deploys a separate SPL token contract backed by the same reserve pool. These are distinct tokens that happen to share a name and a 1:1 dollar peg.
The scale of this fragmentation is significant. As of mid-2026, Ethereum holds roughly $175 billion in stablecoins, Tron holds approximately $81 billion, Solana carries around $16 billion, and Base has grown to nearly $5 billion. Each of these pools is largely isolated from the others. Moving value between them requires either a bridge, a centralized exchange acting as intermediary, or a protocol-level burn-and-mint mechanism.
Cross-chain bridges facilitated over $10 billion in stablecoin transfers per month in 2025, reflecting the sheer demand for interoperability. But bridges introduce risk. The Ronin bridge lost $624 million in March 2022. The Wormhole bridge lost $326 million the month before. Nomad lost $190 million that August. These were not minor incidents: they represented fundamental failures in the trust models that bridges depend on.
The Bridge Trust Model Spectrum
Every cross-chain transfer requires some entity or mechanism to attest that tokens were locked or burned on the source chain before minting on the destination. The security of this attestation is what separates one approach from another.
Lock-and-Mint (Wrapped Tokens)
The earliest approach: lock tokens in a smart contract on chain A, mint a wrapped representation on chain B. The wrapped token is an IOU redeemable for the original. This is how Wormhole originally operated and how most early bridges worked.
The problem is custody concentration. All locked tokens sit in a single bridge contract. If that contract is exploited, every wrapped token on every destination chain becomes unbacked. The Wormhole exploit in February 2022 demonstrated this precisely: an attacker exploited a signature verification bypass to mint 120,000 wETH without depositing collateral, draining $326 million. Jump Crypto covered the loss, but the architectural vulnerability remained.
Burn-and-Mint (Issuer-Controlled)
Instead of locking tokens, burn them on the source chain and have the issuer authorize minting on the destination. This eliminates the custody concentration problem: there is no pool of locked tokens to steal. But it requires trusting the issuer's attestation service. Circle's CCTP and LayerZero's OFT standard both use this model.
Validator-Attested Messaging
A decentralized set of validators observes events on the source chain and signs attestations that the destination chain can verify. Wormhole's current architecture uses 19 Guardian validators that must reach a 13-of-19 supermajority to approve any cross-chain message. This is more decentralized than issuer-controlled attestation but introduces validator collusion risk.
Native Multi-Chain Issuance
The issuer deploys and controls token contracts on each chain directly, with no bridge intermediary. The stablecoin exists natively on each supported chain, backed by the same reserve pool. This is how Circle issues USDC on its supported chains and how USDB operates on Spark: the stablecoin is issued directly on the layer where it will be used, with no bridging step.
The core tradeoff: Decentralized bridge validation distributes trust but increases attack surface. Issuer-controlled attestation centralizes trust but reduces the number of components that can fail. Native issuance removes the bridge entirely but limits the stablecoin to chains the issuer actively supports.
Circle CCTP: Issuer-Native Burn-and-Mint
Circle's Cross-Chain Transfer Protocol is the most tightly integrated interoperability solution for USDC. Rather than relying on third-party bridges, CCTP uses Circle's own attestation service (Iris) to authorize burn-and-mint operations across chains.
How CCTP Works
- A user initiates a transfer by calling the CCTP contract on the source chain, which burns their USDC and emits a burn event.
- Circle's off-chain Iris attestation service observes the burn and signs an attestation confirming it occurred.
- The user (or a relayer) submits the signed attestation to the CCTP contract on the destination chain.
- The destination contract verifies the attestation and mints fresh, native USDC to the recipient.
The critical property: Iris cannot mint USDC without a corresponding burn. The attestation service is a verification layer, not a custody layer. There is no pool of locked tokens to exploit. If Iris goes offline, transfers pause, but no funds are at risk.
CCTP V2 Performance
CCTP V2, which became the canonical version in 2025, introduced significant latency improvements. The protocol now supports two transfer modes:
- Fast Transfer: uses pre-confirmation attestation to settle in roughly 8 to 20 seconds on supported routes
- Standard Transfer: waits for source-chain finality before attestation, taking roughly 13 to 19 minutes for Ethereum-originated transfers
V2 is live on 13+ chains including Ethereum, Arbitrum, Optimism, Base, Avalanche, Polygon PoS, Solana, Linea, Unichain, Sonic, and World Chain. V1 is scheduled for deprecation on July 31, 2026.
CCTP Limitations
CCTP only works for USDC. It cannot transfer USDT, DAI, or any other stablecoin. It is controlled entirely by Circle: if Circle decides not to support a chain, CCTP cannot operate there. And its trust model depends on a single attestation service. Circle is a regulated, audited entity, which provides certain assurances, but the architecture is fundamentally centralized.
Wormhole: Decentralized Guardian Validation
Wormhole takes a different approach, using a decentralized set of Guardian validators to attest cross-chain messages. The protocol supports over 30 blockchains and has processed more than 1 billion cross-chain messages since launch.
Guardian Architecture
Wormhole's security relies on 19 Guardian nodes operated by independent entities. A cross-chain message requires 13-of-19 signatures to be considered valid. Each Guardian runs a full node on every connected chain, independently observing events and producing signatures.
The original Wormhole model used lock-and-mint for token transfers, creating wrapped assets on destination chains. The February 2022 exploit targeted this model specifically: the attacker forged a Guardian signature set by exploiting a deprecated Solana system program, minting wrapped ETH without any corresponding deposit. The protocol has since operated without a repeat incident for over four years, but the architectural lesson persists: custody concentration in bridge contracts creates single points of failure.
Wormhole's Evolution
In response to the industry-wide recognition of bridge risks, Wormhole has moved toward intent-based settlement. The protocol's Settler product adopted the ERC-7683 cross-chain intents standard, co-authored by Uniswap and Across in 2024 and now supported by over 50 protocols. Rather than directly locking and minting tokens, the intents model lets users express what they want (for example, "I have USDC on Ethereum, I want USDC on Arbitrum") and lets solvers compete to fill the order. This shifts settlement risk from users to professional market makers.
LayerZero OFT: Issuer-Configurable Burn-and-Mint
LayerZero's OFT standard (Omnichain Fungible Token) offers a different take on burn-and-mint. Like CCTP, OFT burns tokens on the source chain and mints them on the destination. Unlike CCTP, OFT is not limited to a single asset or issuer: any token issuer can deploy OFT contracts and configure their own security parameters.
How OFT Works
An OFT deployment consists of token contracts on each supported chain, connected by LayerZero's messaging protocol. When a user transfers tokens from chain A to chain B, the OFT contract on chain A burns the tokens, LayerZero transmits a verified message to chain B, and the OFT contract on chain B mints an equivalent amount. There is no wrapped token and no custody contract holding locked assets.
LayerZero's messaging layer uses a configurable security model. Token issuers choose which Decentralized Verifier Networks (DVNs) validate their messages. A regulated stablecoin issuer might require attestation from multiple DVNs with different trust assumptions, while a smaller project might use a lighter configuration.
OFT Adoption
The OFT standard has seen significant uptake since launch. As of 2026, over 750 Omnichain Fungible Tokens are in production, overseeing approximately $87 billion in assets. According to a Messari report, 25.4% of major stablecoin issuers (those with over $50 million in market cap) now use the OFT standard, including Tether (via USDT0), Ethena (USDe), PayPal (PYUSD), Ondo (USDY), and Frax (FRAX).
USDT0 is the most prominent example. Launched in January 2025 as a joint effort between Tether and LayerZero, USDT0 is a burn-and-mint version of USDT available on 18+ chains including Ethereum, Arbitrum, Optimism, Berachain, Polygon, and Hyperliquid. By January 2026, it had processed over $63 billion in cumulative cross-chain transfers.
Comparing Interoperability Approaches
Each protocol makes distinct tradeoffs across security, scope, and decentralization. The following table summarizes the key differences:
| Property | CCTP V2 | Wormhole | LayerZero OFT |
|---|---|---|---|
| Mechanism | Burn-and-mint | Guardian-attested messaging | Burn-and-mint |
| Attestation | Circle Iris (centralized) | 13-of-19 Guardian multisig | Configurable DVNs |
| Supported assets | USDC only | Any token | Any token (issuer deploys) |
| Chain coverage | 13+ chains | 30+ chains | 70+ chains |
| Fast transfer | 8 to 20 seconds | Varies by route | Varies by DVN config |
| Wrapped tokens | No (native mint) | Yes (legacy) / No (NTT) | No (native mint) |
| Trust assumption | Trust Circle | Trust Guardian majority | Trust chosen DVN set |
| Permissionless | No (Circle-controlled) | Yes | Yes (issuer-deployed) |
No universal winner: CCTP is the strongest choice for USDC-specific flows because Circle controls both the attestation and the mint. OFT is the strongest choice for issuers who want to deploy their own omnichain stablecoin with configurable security. Wormhole's Guardian model provides decentralized validation for general-purpose cross-chain messaging. The right solution depends on what you are transferring and what trust assumptions you accept.
The Intent-Based Future
A newer paradigm is emerging alongside these protocols: intent-based cross-chain transfers. Rather than the user choosing a bridge and managing the mechanics of locking, burning, or minting, the user simply declares what they want. Professional solvers compete to fill the order, absorbing the complexity and settlement risk.
The ERC-7683 standard, ratified in early 2025, defines a common order format for cross-chain intents. Any solver that implements the standard can fill orders from any protocol that emits them: Uniswap X, Across, and over 50 other protocols now support it. This creates a shared solver network rather than siloed liquidity per bridge.
Intents do not eliminate the underlying infrastructure problem. Solvers still need bridges or native issuance to move value across chains. But they abstract the complexity away from users and create competitive pressure on execution quality. A solver using CCTP competes against one using OFT competes against one using centralized exchange settlement. The user sees only the price and speed.
Why Native Issuance Sidesteps the Problem
All of the approaches above share a common premise: stablecoins exist on multiple chains and need to move between them. Native issuance challenges this premise directly. If the stablecoin is issued on the layer where it will be used, there is nothing to bridge.
This is the approach taken by USDB on Spark. USDB is issued directly on Spark by Brale, a FinCEN-registered Money Services Business with multi-state money transmitter licenses. The stablecoin is backed by U.S. Treasury bills held in segregated, bankruptcy-remote accounts. Reserves are audited monthly with daily public attestations.
Because USDB is issued natively on Spark using the BTKN token standard, it never needs to cross a bridge. There is no wrapped representation, no custody contract holding locked assets on another chain, and no attestation service mediating transfers. Users hold the stablecoin directly on the layer where they transact.
| Property | Bridged Stablecoin | CCTP-Transferred USDC | Natively Issued (e.g., USDB) |
|---|---|---|---|
| Bridge dependency | Yes (lock-and-mint) | Yes (burn-and-mint via Iris) | None |
| Wrapped token risk | High (custody contract) | None | None |
| Attestation dependency | Bridge validators | Circle Iris | None for transfers |
| Transfer latency | Minutes to hours | 8 seconds to 19 minutes | Near-instant (on-layer) |
| Transfer fees | Gas + bridge fee | Gas only | Near-zero |
| Exploit surface | Bridge contract + validators | Iris attestation service | Layer security model |
The tradeoff is scope. Native issuance works on the chain where the stablecoin is issued. Users who need the same stablecoin on Ethereum, Solana, and Arbitrum simultaneously still need an interoperability protocol. Native issuance does not replace CCTP or OFT: it eliminates the need for them in contexts where users operate within a single layer.
Liquidity and Capital Efficiency
Fragmentation has a direct cost: fragmented liquidity reduces capital efficiency. A liquidity provider with $10 million in stablecoins must split that capital across every chain where they operate. Ten chains means $1 million per chain, each earning fees only from local volume. If that same capital could be deployed in a unified pool, it would earn fees from aggregate volume across all chains.
Annual stablecoin transaction volume surpassed an estimated $33 trillion in 2025, yet much of this volume was siloed within individual chains. Cross-chain bridge transfers accounted for over $10 billion per month, but this represents only a fraction of overall stablecoin activity. The gap reflects how much value stays locked within chain boundaries due to the friction and risk of bridging.
Protocols like CCTP and OFT reduce this friction by making cross-chain transfers cheaper and safer, but they do not eliminate fragmentation. Each chain still has its own liquidity pools, its own AMM markets, and its own DeFi composability. A stablecoin that exists natively on one layer, without needing to fragment across multiple chains, concentrates liquidity by default.
Security Lessons from Bridge Exploits
The history of bridge exploits provides clear lessons about which trust models hold up under adversarial conditions. The three largest bridge exploits of 2022 illustrate different failure modes:
- Ronin ($624 million, March 2022): compromised validator keys allowed attackers to forge withdrawal approvals from a 5-of-9 multisig
- Wormhole ($326 million, February 2022): a deprecated Solana system program allowed forged signature verification, enabling unauthorized minting of wrapped tokens
- Nomad ($190 million, August 2022): a flawed initialization left the bridge's Merkle root set to zero, allowing any user to forge valid withdrawal proofs
In each case, the exploit targeted the attestation or validation layer that authorized cross-chain transfers. The underlying blockchains were never compromised. This pattern underscores why the trust model of the interoperability layer matters more than the security of the chains it connects.
Burn-and-mint protocols like CCTP reduce the attack surface by eliminating custody contracts. Intent-based systems shift settlement risk to professional solvers. Native issuance removes the interoperability layer entirely for same-layer transfers. Each approach represents a different point on the spectrum between convenience and security, and the industry has been moving consistently toward minimizing bridge trust assumptions since 2022.
The $2.8 billion lesson: Bridge security is not a theoretical concern. Cumulative losses from bridge exploits since 2022 exceed $2.8 billion. Any stablecoin bridging strategy must account for the possibility that the bridge itself is the weakest link.
What This Means for Builders
Developers building stablecoin payment applications face a practical decision: which interoperability model fits their use case?
- If your users primarily transact in USDC across EVM chains, CCTP V2 provides the simplest integration with strong security guarantees from Circle's attestation service
- If you are issuing your own stablecoin and need omnichain presence, LayerZero OFT offers configurable security with broad chain coverage
- If your application operates on a single layer and does not need cross-chain transfers, native issuance eliminates bridging complexity and risk entirely
- If you want to abstract away bridge selection from users, the ERC-7683 intents standard lets solvers handle routing and execution
For applications built on Spark, the native issuance model means stablecoin integration requires no bridge infrastructure. Spark's SDK supports USDB transfers natively, with near-instant settlement and near-zero fees. Wallets like General Bread demonstrate this model in production: users hold and transfer stablecoins without ever interacting with a bridge.
For a deeper comparison of stablecoin options available to builders, see the stablecoin decision guide or the analysis of stablecoins on Bitcoin.
The Road Ahead
Stablecoin interoperability is converging on a few clear trends. Burn-and- mint is replacing lock-and-mint as the default transfer mechanism, removing the custody concentration that made early bridges vulnerable. Intent-based systems are abstracting bridge selection away from users, creating competitive markets for cross-chain execution. And native issuance is growing as more stablecoins launch directly on the layers where they will be used.
The fragmentation problem will not be solved by a single protocol. CCTP serves USDC. OFT serves issuers who want omnichain presence. Wormhole serves applications needing general-purpose cross-chain messaging. Native issuance serves ecosystems where users operate primarily within one layer. The practical path forward is not a single bridge to rule them all, but a stack of complementary protocols, each optimized for different trust assumptions and use cases, connected by shared standards like ERC-7683 that let solvers route value through whichever path offers the best execution.
This article is for educational purposes only. It does not constitute financial or investment advice. Bitcoin and Layer 2 protocols involve technical and financial risk. Always do your own research and understand the tradeoffs before using any protocol.