What are DeFi yield vaults? Strategies, risks, and how to choose

In 2020, a developer named Andre Cronje launched Yearn Finance with a simple premise: deposit your stablecoins, and a smart contract will move them around DeFi lending protocols to chase the best rate. The contract did what most people did not have the time to do themselves: check rates on Compound, check rates on Aave, move the capital and repeat. Yearn attracted over a $1 billion in deposits in under a year.

Five years later, vaults are one of the largest categories in DeFi, with over $10B in TVL. Hundreds of protocols run them. The strategies have gotten far more sophisticated. Lending is still there, but so is basis trading, market making, CeFi lending to institutional borrowers, and tokenized real-world assets. Vaults went from a clever yield optimizer to the primary way capital gets allocated onchain.

But the core idea hasn't changed. You deposit a token. A strategy runs. You get a composable share token representing your principal and any accrued yield. The vault can be programmed to do virtually anything across those three vectors: accept various deposit tokens, deploy to multiple protocols, issue credit against the share token.

Vaults are the backbone of any financial product built on blockchain rails.

You send tokens to a vault smart contract. In return, you get vault shares: tokenized claims on the vault's total assets. As the vault earns yield, the value of each share increases. When you withdraw, you burn your shares and get back the underlying token plus whatever it earned.

This share-based accounting is standardized through ERC-4626, an Ethereum specification that defines how deposits, withdrawals, and share math work. Before ERC-4626, every vault protocol implemented its own interface. Wallets and aggregators had to write custom code for each one. Now there's a single standard. Any wallet can interact with any ERC-4626 vault the same way, regardless of what strategies run underneath.

The lifecycle looks like this:

That queued withdrawal pattern is worth understanding. When a vault deploys into less liquid strategies (private credit, cross-chain positions, institutional loans), it can't always liquidate instantly. As such, vaults typically include a liquidity sleeve as a reserve for instant redemptions.

The strategy inside the vault determines everything: risk profile, expected return, how liquid your position is. A vault is a container for accounting. What matters is what's inside it.

The most common type. Vault deposits flow into lending protocols like Morpho or Aave. Borrowers pay interest. That interest flows back to the NAV of the vault. DeFi lending is typically overcollateralized, so the main risks are smart contract bugs and extreme market conditions where liquidations can't keep up. Stablecoin lending vaults, like Upshift's DeFi yield vaults, usually return 2-8% APY depending on borrowing demand.

The vault supplies tokens to decentralized exchange pools and earns trading fees. Concentrated liquidity strategies (targeting specific price ranges on Uniswap V3, for instance) can generate higher returns but require active management. The tradeoff is impermanent loss. If the token price moves significantly while you're providing liquidity, your position can end up worth less than if you'd just held the asset.

This is where things get interesting. A basis trade vault holds a spot position, say ETH, and simultaneously opens a short perps position. The vault captures the funding rate spread between spot and derivatives. When funding rates are positive (common during bull markets), this earns yield while staying market-neutral on the underlying asset. You're not betting on ETH going up. You're collecting the premium that leveraged longs pay.

Carry trades extend the concept: borrow at a low rate in one venue, deploy at a higher rate in another, pocket the spread. These strategies often span both DeFi and CeFi venues. That requires infrastructure capable of routing capital across centralized and decentralized markets within the same vault, which is a meaningfully different architecture than most vault platforms offer. Upshift supports strategies across both DeFi and CeFi, meaning vault curators have maximum flexibility for deployments.

A newer category. The vault sits onchain (depositors keep self-custody), but the yield comes from lending to institutional borrowers through centralized facilities. Trading firms, market makers, and institutions that need short-term capital. The borrowers are underwritten. The loans are managed by a lending desk. Products like upUSDC route stablecoin deposits to vetted institutional borrowers, with rates that tend to be more stable and higher than DeFi lending.

The risk profile shifts too. Instead of smart contract risk being your primary exposure, it becomes counterparty and credit risk. Who's borrowing the money? What collateral backs the loan? What is the LTV? A well-designed policy engine can restrict which borrowers receive capital, enforce collateral ratios, and cap exposure to any single counterparty.

Some vaults run several strategies at once. Capital might be split across lending, LP provision, and carry trades simultaneously. The curator rebalances based on market conditions, concentrating capital wherever risk-adjusted returns look strongest.

If lending yields compress, carry trade spreads might widen. The vault adapts. The depositor does nothing. The cost is complexity: you're trusting the curator to allocate well across strategies with very different risk profiles.

Yearn's early vaults had strategies hardcoded. Deposit USDC, lend it on Compound, collect interest. That worked when DeFi was three protocols on one chain.

Today, vaults are managed by curators: professional strategy teams who decide where capital goes, how much risk to take, when to rebalance. Sentora manages hundreds of millions across DeFi lending strategies, with at the time of writing over $400M across the two largest vaults on Morpho. Gauntlet runs quantitative risk models. Steakhouse Financial focuses on stablecoin yield optimization. These are the new cohort of onchain asset managers for self-custodial vaults, each with distinct specializations and risk philosophies.

The important part: curators don't have custody of your funds. The vault contract defines what a curator can and can't do. In well-designed infrastructure, a policy engine enforces those rules at the smart contract level. A curator might be authorized to deploy into Morpho on Ethereum but automatically blocked from touching an unaudited lending protocol on a newer chain. The restrictions are enforced at the protocol, chain, token, and even function level.

This separation, curator handles strategy, infrastructure enforces risk controls, is what makes curated vaults viable for serious capital. The risk management framework matters as much as the yield number.

These three terms get mixed up constantly. Here's how they differ.

A lending pool does one thing. Staking secures a network. A vault is the flexible layer that can combine multiple yield sources into one deposit.

Yield doesn't matter if you lose your deposit. Three things to evaluate.

Every serious vault protocol has its contracts audited. But a single audit from one firm is a very different thing from four audits across two years from firms like Hacken, ChainSecurity, Sigma Prime, and Zellic. Look at the audit trail over time. Continuous auditing from multiple independent firms signals a meaningfully different security posture than a single report.

After the centralized lending collapses of 2022, custody design matters more than almost any other feature. In a non-custodial vault, deposits sit in smart contracts. The vault operator executes strategies within the rules the contract enforces but can't withdraw funds to an arbitrary address. Celsius, Voyager, and BlockFi could redirect depositor funds because depositors gave them custody. Non-custodial vaults are architecturally incapable of that.

Think of a policy engine as an investment mandate enforced by code. In traditional finance, a fund manager agrees to rules (max 30% in any single asset, no junk bonds, etc.) and compliance checks periodically. In a vault with a policy engine, the smart contract enforces those rules at execution time. The curator literally cannot deploy into a non-whitelisted protocol, exceed an exposure cap, or interact with restricted chains. The rules run on every transaction.

The single most important question. Sustainable returns run the gamut of DeFi/CeFi strategies: for example, lending interest, trading fees, funding rate spreads, or protocol incentives. As more assets are tokenized, RWA yields such as from private credit or receivables financing will increasingly be powered by vaults. The Upshift FAQ breaks down where vault yield originates. If the APY is 30% and nobody can explain the yield source clearly, you are probably the yield source.

Look at the curator's track record across market conditions. A curator that delivered steady returns during a drawdown tells you more than one that posted high APY during a rally. How long have they been operating? What's their AUM? Have they been through a stress event and how did they communicate? What expertise do they have with a specific strategy? Do they have transparent communications with depositors? What is their mandate for this vault - is it fully discretionary and limited to specific assets or chains or strategies?

Can you exit instantly or is there a queue? What fees apply? The earnAUSD vault on Monad, for instance, faciliates instant redemptions for a small fee. Some vaults have 72-hour windows.

A vault platform operating across multiple chains and strategy types can offer more diversified yield sources than one limited to a single chain. If lending rates compress on Ethereum, a multi-chain vault can access opportunities on Monad, Flare, Solana, or a dozen other networks.

Vaults started as yield optimizers for DeFi-native retail users. That's still a big use case. But the user base has expanded in ways that would've seemed implausible in 2020.

Exchanges and wallets use vault infrastructure to power Earn products. When someone taps "Earn 5% on USDC" inside a wallet app, those deposits typically flow into a vault backend. The vault and curator handles accounting, strategy execution, risk curation, and yield distribution via an SDK or API integration. The app team ships a button. The vault does the rest.

Institutional allocators, foundations, treasuries, and funds, use vaults to deploy balance sheet capital with programmatic risk controls. Policy engine enforcement, deep audit trails, and non-custodial architecture address the concerns that kept serious capital away from earlier DeFi yield products.

Curators use vaults as their operating layer. Instead of building custom smart contracts from scratch, professional strategy teams deploy through vault infrastructure and focus on what they're good at: managing risk and generating returns.

A few trends are reshaping what vaults can do.

Real-world assets are moving into vault structures. Tokenized treasury bills, private credit, real estate: yield from traditional financial instruments, delivered through the same onchain deposit-withdraw-compound flow. Cross-chain deployment makes these accessible on chains where the underlying assets don't natively exist.

PayFi is a newer idea: vault deposits that back payments infrastructure. Your yield-bearing position serves as collateral for a payment card, with atomic redemptions pulling from the vault at the moment of purchase. An alternative model involves taking out a credit facility against the vault position or against the receivables of the card issuer. In either cases, idle earns yield until the second you spend it and vaults enable a layer of capital efficiency for payments teams.

Institutional adoption is accelerating. The combination of ERC-4626 (standardized interface), policy engines (programmatic risk controls), and professional curators (managed strategies) is turning vaults into something institutional compliance teams can actually evaluate. Financial advisors are already incorporating vault strategies into client portfolios.

The throughline across all of these is that vaults are becoming general-purpose financial infrastructure. The strategies keep diversifying. The user base keeps expanding. The controls keep maturing. What started as an automated yield optimizer is turning into the capital efficient layer between capital and opportunity onchain.

Vaults are powering all financial products built on blockchain rails.

By deploying deposits into strategies: examples include lending (borrower interest), liquidity provision (trading fees), basis trading (funding rate spreads), or CeFi lending (institutional borrower interest). The source depends on the vault's specific strategy.

Yes. Smart contract bugs, strategy losses during extreme volatility, oracle failures, and liquidity crunches during mass withdrawals are all real risks. Audits, non-custodial architecture, and policy engine controls aim to address these risks but don't eliminate them.

A lending pool matches lenders with borrowers on a single protocol. Some lending markets are maintained by simple lending vaults which pool capital to supply liquidity. A more general-purpose vault infrastructure, like Upshift's, can combine multiple strategies across multiple protocols and chains, managed by a professional curator. Vaults sit on top of primitives like lending pools.

An Ethereum token standard that defines how vaults handle deposits, withdrawals, and share accounting. It makes vaults composable: any wallet or protocol can interact with any ERC-4626 vault through the same interface.

A professional strategy manager who proposes and executions where vault capital gets deployed. They choose protocols, set position sizes, and rebalance. Curators operate within rules the vault's smart contract enforces. They manage strategy but don't have custody of funds.

As tokenized assets come onchain, buy-side infrastructure is critical for establishing clear market structure. Vaults reinvent non-custodial asset management.

This is why institutional adoption is growing. Capital efficient architecture, multi-firm audit trails, policy engines, and ERC-4626 address many concerns that kept institutions out of earlier DeFi products. But risk management frameworks vary by platform, and institutions should evaluate each vault individually.

Most vaults charge a management fee (0-2% annually) and a performance fee (10-20% of yield earned). Some add instant withdrawal fees. The net APY displayed usually reflects fees already deducted, but always check the specific terms.