Crypto Glossary

The mechanism by which a smart contract restricts who can call sensitive functions. Common patterns: a single owner address (Ownable), role-based permissions (OpenZeppelin's AccessControl), or multisig governance. The most common smart-contract bug class is missing access control — a function intended to be admin-only that has no modifier, allowing any address to call it. The fix is mechanical: every state-changing administrative function needs an `onlyOwner` modifier or equivalent require check.

A blockchain design pattern that transforms user accounts into programmable smart contracts, enabling features like gas sponsorship, social recovery, session keys, and batched transactions. Account abstraction (popularized by Ethereum's ERC-4337) removes the requirement for users to hold native tokens for gas and dramatically improves the user experience of interacting with dApps.

An attack where the scammer sends a zero-value (or dust) transaction from an address whose first and last characters match an address the victim has previously used. The fake address appears in the victim's transaction history. On the next transaction the victim copies an address from history, copies the poisoned one, and sends funds to the attacker. Defence: never copy addresses from transaction history — always re-verify the full address against an original source, and use address-book features that name-tag known recipients.

A distribution of free tokens to a set of wallet addresses, typically used as a marketing strategy or to reward early adopters and community members. Notable airdrops include Uniswap's UNI token (2020), ENS (2021), and Arbitrum's ARB (2023). Beware of scam airdrops designed to steal wallet access.

The deliberate strategy of interacting with protocols — bridging, swapping, providing liquidity, or accumulating points — to qualify for future token airdrops. While potentially lucrative, airdrop farming involves real costs (gas fees, capital lockups) with no guaranteed payout, and protocols increasingly use Sybil detection to disqualify gamers.

In crypto, alpha refers to exclusive or early information that provides a trading advantage. In traditional finance, alpha means returns above the market benchmark. Crypto 'alpha hunters' seek undervalued projects or on-chain patterns before they become widely known.

Any cryptocurrency other than Bitcoin. The term originated in Bitcoin's early days when all other projects were considered "alternative coins." It now encompasses thousands of coins and tokens across every category, from smart contract platforms like Ethereum to meme coins.

Anti-Money Laundering — a set of laws, regulations, and procedures designed to prevent criminals from disguising illegally obtained funds as legitimate income. Crypto exchanges implement AML monitoring by tracking transaction patterns and flagging suspicious activity.

Automated Market Maker — a type of DEX protocol that uses mathematical formulas and liquidity pools instead of traditional order books to price assets. Liquidity providers deposit token pairs into pools and earn trading fees. Uniswap's constant product formula (x * y = k) is the most well-known AMM model.

A blockchain dedicated to a single application or protocol, offering customizable throughput, governance, and fee structures without competing for block space with unrelated apps. Appchains trade some composability for performance and sovereignty. dYdX's move from Ethereum to its own Cosmos appchain is a notable example.

A standardized specification that defines how to interact with a smart contract's functions at the binary level. The ABI describes the contract's function names, input/output parameter types, and encoding formats, allowing external applications (wallets, dApps, scripts) to correctly encode function calls and decode return values. When you interact with a DeFi protocol through a frontend or directly via code, the ABI is what translates human-readable function names into the bytecode the EVM understands.

APR (Annual Percentage Rate) is the simple interest rate without compounding. APY (Annual Percentage Yield) includes the effect of compounding interest. A 10% APR compounded daily equals approximately 10.52% APY. In DeFi, protocols often advertise APY because it looks higher, but the actual return depends on compounding frequency and whether you manually reinvest.

The practice of exploiting price differences for the same asset across different markets or exchanges to earn a risk-free profit. In crypto, arbitrage opportunities arise between centralized exchanges, decentralized exchanges, and cross-chain markets. Automated bots execute most crypto arbitrage, and the practice helps maintain price efficiency across markets.

All-Time High — the highest price a cryptocurrency has ever reached. ATH is a key reference point for traders and investors, as breaking an ATH often triggers further momentum buying and media attention.

All-Time Low — the lowest price a cryptocurrency has ever recorded. Reaching or approaching ATL levels may signal extreme bearishness, capitulation, or — for contrarian investors — a potential buying opportunity.

A peer-to-peer exchange of cryptocurrencies between different blockchains without intermediaries. Atomic swaps use hash time-locked contracts (HTLCs) to ensure either both parties complete the trade or neither does. While technically elegant, they are slower and more limited than modern bridge solutions.

A periodic third-party statement — typically monthly, performed by a CPA firm — confirming that a stablecoin issuer's reserves at a specific point in time meet or exceed the circulating supply of tokens. An attestation is *not* an audit: it examines reserves at a single moment using management-supplied data, makes no opinion on internal controls, and does not validate the long-term solvency or composition risk of the reserves. Both USDC (Circle) and USDT (Tether) publish attestations rather than full audits. The distinction matters because attestations cannot detect intra-period reserve shortfalls or asset-quality problems.

A structured review of a smart-contract codebase performed by a third-party security firm — typically Trail of Bits, OpenZeppelin, Spearbit, ConsenSys Diligence, Code4rena (competitive), or others. The report enumerates findings by severity (Critical, High, Medium, Low, Informational), identifies specific code locations, recommends remediations, and indicates which findings were addressed before publication. An audit is a snapshot of the code at the time it was reviewed: changes after the audit are not covered, and findings the auditors missed are not covered. Multiple audits from different firms reduce single-auditor blind spots but do not produce guarantees — major exploits have followed audits, sometimes from named top-tier firms.

Someone left holding a cryptocurrency that has significantly decreased in value, often after a pump-and-dump or failed project. Proper position sizing and stop-losses help prevent becoming a bag holder.

A rollup whose transaction sequencing is performed by the Layer 1 base chain's validators rather than a centralized sequencer. Based rollups inherit the L1's liveness and decentralization guarantees, eliminating single-sequencer risks. The trade-off is potentially higher latency compared to centralized sequencing.

A sustained period of declining asset prices, usually defined as a drop of 20% or more from recent highs. Bear markets in crypto are often called "crypto winter" and can last one to two years, testing investors' conviction.

A false technical signal that makes it appear an asset's price is breaking down below a support level, luring traders into opening short positions, only for the price to quickly reverse and move sharply upward. Traders who sold or shorted during the apparent breakdown get 'trapped' as the price recovers, often being forced to buy back at higher prices (short squeeze), which further accelerates the upward move. Bear traps are common during periods of accumulation by larger players.

The token standard on BNB Smart Chain (BSC), functionally identical to ERC-20 but deployed on Binance's blockchain. BEP-20 tokens benefit from BSC's lower gas fees and faster block times. Many tokens exist on both Ethereum (ERC-20) and BSC (BEP-20) simultaneously.

Bitcoin Improvement Proposal 32 — the standard that defines hierarchical deterministic (HD) wallets. A single master seed derives an effectively infinite tree of private keys via a deterministic algorithm, so one backup recovers every account, address, and chain ever derived from that seed.

Bitcoin Improvement Proposal 39 — the standard that converts random entropy (128 to 256 bits) into a human-readable mnemonic of 12, 18, or 24 words drawn from a fixed 2048-word list. BIP-39 is the seed-phrase format that nearly every modern wallet uses. The last word includes a checksum, so a typo in one position usually fails validation.

Bitcoin Improvement Proposal 44 — the multi-account hierarchy that gives derivation paths their standard shape: `m / purpose' / coin_type' / account' / change / address_index`. BIP-44 is why one seed can manage many coins and many accounts deterministically. Later BIPs (49, 84, 86) reuse the same structure with different `purpose'` values for different script types.

A large binary data packet introduced by Ethereum's EIP-4844 (proto-danksharding) specifically for Layer 2 rollups to post transaction data to Ethereum at dramatically reduced costs. Blobs are stored temporarily (pruned after ~18 days) and use a separate fee market from regular Ethereum transactions. The introduction of blobs reduced L2 data posting costs by over 90%.

Data storage introduced via EIP-4844 (Proto-Danksharding). Blobs are large data chunks attached to transactions, available for ~18 days, and much cheaper than regular calldata. Layer 2 rollups use blob space to post transaction data, reducing fees by 10-100x.

A container of transaction data that is cryptographically linked to the previous block in the chain. Each block typically includes a header (with a timestamp, nonce, and hash of the prior block) and a body containing validated transactions. Once confirmed, a block becomes a permanent part of the ledger.

A web application that allows users to search and view blockchain data including transactions, addresses, blocks, and smart contracts. Block explorers like Etherscan, Solscan, and Blockscout are essential tools for verifying transactions, checking token contracts, and investigating on-chain activity.

The average time interval between new blocks being produced on a blockchain. Bitcoin's target block time is 10 minutes, Ethereum produces blocks every 12 seconds, and Solana targets 400 milliseconds. Block time directly affects transaction confirmation speed and user experience. Shorter block times mean faster initial confirmations but can increase the risk of temporary chain reorganizations.

A distributed, append-only digital ledger that records transactions across a network of computers. Each block contains a cryptographic hash of the previous block, creating an immutable chain. This structure makes it extremely difficult to alter historical records without network consensus.

The mandatory waiting period when staking or unstaking cryptocurrency on a Proof of Stake network. Ethereum requires a variable exit queue that can take days to weeks. Cosmos has a 21-day unbonding period. During unbonding, tokens earn no rewards and cannot be transferred. This delay exists to allow slashing of misbehaving validators.

A protocol that enables the transfer of assets between two different blockchains. Bridges lock tokens on the source chain and mint equivalent wrapped tokens on the destination chain. While essential for cross-chain interoperability, bridges have been a major target for exploits, with billions lost to bridge hacks.

A prolonged period during which asset prices are rising or are expected to rise, typically accompanied by investor optimism and increased trading volume. In crypto, bull markets often see prices double or more within months.

A false technical signal that makes it appear an asset's price is breaking out above a resistance level, luring traders into buying, only for the price to quickly reverse and decline. Traders who bought during the apparent breakout get 'trapped' as the price falls back below resistance, often leading to panic selling that accelerates the downward move. Bull traps frequently occur during bear market rallies, giving false hope that the trend has reversed.

The compiled binary representation of a smart contract — the EVM's executable format. Solidity source code is compiled into bytecode that gets deployed on-chain. The bytecode is what nodes actually execute; the source code is only available if the developer verifies it on a block explorer. Reading bytecode directly is hard, but tools like dedaub.com and panoramix can decompile it to approximate source.

The encoded input data of a transaction or contract call — the bytes that tell the EVM which function to invoke and what arguments to pass. Calldata starts with a 4-byte function selector (the first 4 bytes of the Keccak-256 hash of the function signature), followed by ABI-encoded arguments. Reading and decoding calldata is essential for understanding what a transaction actually does — block explorers like Etherscan auto-decode it when the contract source is verified, and tools like 4byte.directory let you look up unknown function selectors.

The data field in Ethereum transactions used to pass parameters to smart contracts or store rollup data on Layer 1. Calldata is read-only and cheaper than contract storage, making it the primary mechanism rollups use to post transaction batches to Ethereum for data availability. EIP-4844 introduced 'blobs' as an even cheaper alternative to calldata for rollup data posting.

A type of price chart originating from 18th-century Japanese rice trading that displays four data points for each time period: the opening price, closing price, highest price, and lowest price. The thick 'body' shows the range between open and close (green/bullish if close > open, red/bearish if close < open), while thin 'wicks' (shadows) extend to the high and low. Candlestick charts are the most widely used chart type in cryptocurrency trading.

The profit realised when an asset is disposed of for more than its cost basis. For crypto, the gain is the disposal proceeds minus the cost basis at the moment of disposal. Most jurisdictions distinguish 'short-term' gains (asset held for under a year — usually taxed as ordinary income) from 'long-term' gains (held longer — often taxed at lower rates). The categorisation and rates vary widely across jurisdictions. Losses can typically offset gains within the same tax year and sometimes carry forward.

Central Bank Digital Currency — a digital form of a nation's fiat currency issued and backed by its central bank. Unlike decentralized cryptocurrencies, CBDCs are centrally controlled. Over 130 countries are exploring or piloting CBDCs, with China's digital yuan being the most advanced large-scale deployment.

The property of a blockchain network that makes it practically impossible for any single entity — government, corporation, or individual — to prevent valid transactions from being included in blocks. Strong censorship resistance requires a sufficiently decentralized validator/miner set, diverse geographic distribution, and protocol-level inclusion guarantees. It is considered one of the foundational value propositions of public blockchains, ensuring that the network remains neutral and accessible to all participants.

Centralized Exchange — a cryptocurrency trading platform operated by a company that holds user funds and matches orders via a central order book. Examples include Coinbase, Binance, and Kraken. CEXs offer high liquidity and fiat on-ramps but require users to trust the custodian.

The structural pattern that eliminates reentrancy bugs: every function should perform (1) checks (require statements validating inputs and state), (2) effects (all state mutations), then (3) interactions (external calls and ETH transfers). If state changes always happen before external calls, an attacker's callback sees the post-update state and cannot re-enter into stale-state code paths. CEI is the architecture; ReentrancyGuard is defence-in-depth on top.

A mechanism in some DeFi protocols and exchanges that halts trading when prices move beyond a threshold in a short time. Similar to stock market circuit breakers, they prevent panic selling and flash crashes. Not all crypto exchanges have them, which is why crypto flash crashes can be more severe.

The number of tokens of a cryptocurrency that are currently available and circulating in the market. Circulating supply excludes locked, reserved, or unvested tokens. It is used together with price to calculate market capitalization.

A cryptocurrency that operates on its own independent blockchain, serving as the network's native currency. Bitcoin (BTC), Ether (ETH), and Solana (SOL) are coins. Coins are distinct from tokens, which are built on top of another blockchain's infrastructure.

Any method of storing cryptocurrency private keys completely offline, disconnected from the internet. Cold storage methods include hardware wallets, paper wallets, and air-gapped computers. It is the most secure way to hold crypto long-term because it eliminates remote attack vectors.

Assets deposited as security for a loan or leveraged position in DeFi or centralized lending. If the value of the collateral falls below a required ratio, the position is subject to liquidation. Most DeFi lending protocols require over-collateralization, meaning the collateral value must exceed the loan value.

The fraction of a collateral asset's value that a lending protocol allows to be borrowed against. A 75 percent collateral factor on ETH means depositing $1,000 of ETH lets you borrow up to $750 of stablecoin. Lower factors are applied to more volatile or less-liquid assets. When the borrowed-to-collateral ratio crosses the collateral factor due to price movement, the position becomes eligible for liquidation. Protocols may use slightly different terminology — Aave calls this the 'Loan-to-Value' (LTV) ratio, Compound the 'collateral factor' — but the mechanism is the same.

The ratio of reserve or collateral value to circulating stablecoin supply. A fiat-backed stablecoin targets exactly 1:1 (100 percent). Crypto-collateralized stablecoins like DAI deliberately over-collateralize — historically 150 percent or higher — because the crypto collateral itself is volatile and the buffer absorbs price swings. Under-collateralization (below 100 percent for a fiat-backed, or below the protocol's required ratio for a crypto-backed) is the precondition for a depeg. Some 'partially-collateralized' designs (FRAX historically) operate intentionally below 100 percent fiat backing, relying on protocol-controlled value or algorithmic stabilization for the residual.

The ability of DeFi protocols and smart contracts to seamlessly interact with and build upon each other, often described as 'money Legos.' Composability allows developers to combine existing protocols — for example, using Aave lending positions as collateral on another protocol. This interoperability is a core advantage of open blockchain ecosystems but also creates systemic risk if one component fails.

A liquidity provision model pioneered by Uniswap v3 that allows liquidity providers to allocate capital within a specific price range rather than across the entire price spectrum. This dramatically improves capital efficiency — LPs can earn the same fees with a fraction of the capital. However, it requires active management and positions earn nothing when the price moves outside the selected range.

A confirmation occurs when a blockchain transaction is included in a block and added to the chain. Each subsequent block adds another confirmation, increasing the transaction's security against reversal. Bitcoin typically requires 6 confirmations (~60 minutes); Ethereum achieves finality in ~12 minutes.

The mechanism by which a distributed network of nodes agrees on the current state of the blockchain. Different consensus algorithms — such as Proof of Work, Proof of Stake, and Delegated Proof of Stake — offer varying trade-offs between security, decentralization, and energy efficiency.

The process of publishing the human-readable Solidity (or Vyper) source code of a deployed contract on a block explorer like Etherscan, along with the compiler settings used to produce the deployed bytecode. The explorer verifies that compiling the source with those settings produces the exact bytecode on-chain. Verification enables source-level inspection, calldata decoding, and accurate transaction simulations. An unverified contract holding meaningful value is a red flag — the operator either lost the source code (incompetence) or is choosing not to publish it (obfuscation). 'Verified' does not mean 'safe' — it just means the code is readable.

The original value of an asset for tax purposes — typically what you paid for it in fiat-currency terms, plus any acquisition fees. When you sell or otherwise dispose of crypto, your taxable gain or loss is generally the difference between the disposal proceeds and the cost basis. Tracking cost basis accurately across many small acquisitions, swaps, airdrops, staking rewards, and DeFi interactions is the single most error-prone part of crypto tax reporting. Different jurisdictions allow different cost-basis methods (FIFO, HIFO, specific identification, average cost) with materially different outcomes.

A protocol specifically designed to transfer assets and data between different blockchain networks that are otherwise incompatible. Cross-chain bridges use various trust models, from centralized custodians to decentralized validator sets to zero-knowledge proofs. While essential for multi-chain interoperability, bridges have been the source of some of the largest hacks in crypto history, including the $600M+ Ronin Bridge exploit.

A wallet where a third party (usually an exchange) holds and manages the private keys on behalf of the user. Custodial wallets are convenient and offer account recovery, but users must trust the custodian with their funds. The saying 'not your keys, not your coins' refers to this trade-off.

The European Union's eighth Directive on Administrative Cooperation, adopted in October 2023 and entering into force from 1 January 2026. DAC8 requires EU-based crypto service providers (and non-EU providers serving EU customers) to report customer transaction data — including identity, balances, and disposal events — to tax authorities across the EU. The framework mirrors the OECD's Crypto-Asset Reporting Framework (CARF) and is designed to enable automatic information exchange between member states. For users, the practical effect is that crypto activity through any EU-licensed provider is now visible to your national tax authority.

Decentralized Autonomous Organization — an internet-native organization governed by smart contracts and token-holder votes rather than a traditional corporate hierarchy. Members propose and vote on decisions such as treasury allocation and protocol upgrades. Examples include MakerDAO and Uniswap governance.

Decentralized Application — an application built on a blockchain whose backend logic runs on smart contracts rather than centralized servers. The frontend can be a conventional website, but the core operations (swaps, lending, governance) are executed trustlessly on-chain.

The guarantee that all data needed to verify blockchain state has been published and is accessible. Critical for rollup security — if a rollup posts a proof but withholds data, fraud can't be detected. Dedicated DA layers like Celestia provide cheaper data availability.

An investment strategy where a fixed dollar amount is invested at regular intervals (e.g., weekly or monthly) regardless of the asset's current price. This approach reduces the impact of volatility by averaging the purchase price over time and eliminates the need to time the market. Widely considered the most beginner-friendly investment strategy for volatile assets like cryptocurrency.

A temporary, short-lived recovery in the price of a declining asset, followed by a continuation of the downtrend. The term derives from the morbid observation that 'even a dead cat will bounce if it falls from a great height.' In crypto markets, dead cat bounces are common after sharp selloffs, as bargain hunters and automated bots briefly push prices up before selling pressure resumes. Distinguishing a dead cat bounce from a genuine trend reversal is one of the most challenging aspects of technical analysis.

The distribution of power and control across a network rather than concentrating it in a single entity. In blockchain, decentralization means no company, government, or individual can control the network, censor transactions, or change rules unilaterally. The degree varies widely — Bitcoin is highly decentralized while some newer chains have more concentrated validator sets. Decentralization provides censorship resistance, fault tolerance, and trust minimization.

A visible wallet — usually holding a small, intentionally surrenderable balance — that exists to satisfy a coercive demand without exposing the user's real holdings. Often implemented as the 'no-passphrase' wallet on a hardware device while the real wallet sits behind a BIP-39 passphrase. The technique reduces exposure under wrench attacks but is not a magic shield against a sophisticated adversary.

Decentralized Finance — an ecosystem of financial applications built on blockchains that offer services like lending, borrowing, trading, and insurance without traditional intermediaries. DeFi protocols are permissionless, transparent, and composable, meaning they can be combined like building blocks.

Short for 'degenerate' — crypto slang for someone who takes extremely high-risk bets, often investing in unaudited protocols or newly launched tokens without research. While used self-deprecatingly, degen behavior has led to both massive gains and devastating losses.

The act of assigning your governance token voting power to another address (a 'delegate') who will vote on proposals on your behalf. Delegation allows token holders who lack the time or expertise to evaluate every proposal to still have their voting power exercised by a trusted community member. Importantly, delegation typically does not transfer token ownership — you retain your tokens and can revoke or reassign delegation at any time. Delegation is essential for DAO health, as it combats voter apathy and ensures quorum thresholds are met.

When a stablecoin trades materially away from its intended reference price (typically $1.00). Small intraday deviations of a few basis points are normal and usually arbitraged away within minutes. A 'depeg event' refers to a sustained or large deviation — for example, USDC trading at $0.87 on 11 March 2023 during the Silicon Valley Bank weekend, or TerraUSD's terminal collapse from $1.00 to under $0.01 in May 2022. Depegs can be temporary (USDC's recovered within days once SVB depositors were made whole) or terminal (TerraUSD never recovered because the algorithmic design failed structurally).

The notation that identifies a specific key within an HD wallet's tree — for example `m/84'/0'/0'/0/0`. Each segment selects a child key: `purpose'` (script type), `coin_type'`, `account'`, `change` (external vs internal), and `address_index`. Different wallets default to different paths, which is the most common cause of 'my seed is right but the balance is missing' after a restore — the seed is fine, the path is wrong.

Decentralized Exchange — a platform that enables peer-to-peer cryptocurrency trading without an intermediary holding users' funds. DEXs use smart contracts to facilitate swaps, with Automated Market Makers (AMMs) being the most common mechanism on chains like Ethereum and Solana.

Crypto slang for someone who holds their position through extreme volatility and price drops without selling. While considered a badge of honor, holding blindly without risk management can lead to significant losses.

An automatic recalibration mechanism in proof-of-work blockchains that adjusts how hard it is to mine a new block based on the current network hash rate. Bitcoin adjusts difficulty every 2,016 blocks (~2 weeks) to maintain a target block time of approximately 10 minutes. If miners join and blocks are found too quickly, difficulty increases; if miners leave and blocks slow down, difficulty decreases. This self-regulating mechanism ensures consistent block production regardless of how much mining power is active.

The reduction in an existing token holder's proportional ownership caused by the creation and distribution of new tokens through inflation, vesting unlocks, or additional minting. Dilution is a critical factor in evaluating a cryptocurrency's long-term value proposition. Projects with high emission rates and large upcoming vesting unlocks can experience significant sell pressure as new tokens enter circulation.

A database that is shared, replicated, and synchronized across multiple nodes in a network, with no single central administrator. Blockchain is the most well-known type of distributed ledger, but the term also covers other architectures like directed acyclic graphs (DAGs). Distributed ledgers enable trustless record-keeping.

A surveillance tactic where an attacker sends tiny amounts of cryptocurrency ('dust') to a large number of wallet addresses. The goal is to track future transaction activity from those wallets, potentially linking multiple addresses to a single user and de-anonymizing them. Dust attacks exploit blockchain transparency and are particularly concerning for privacy-conscious users.

Do Your Own Research — a widely used mantra in the crypto community urging investors to independently investigate a project's fundamentals, team, tokenomics, smart contract audits, and community before investing. DYOR emphasizes personal responsibility and critical thinking, serving as a counterweight to hype, shilling, and FOMO-driven decision making.

The speed at which new tokens are created and released into circulation, typically expressed as tokens per day, month, or year. Emission schedules vary widely: Bitcoin's emissions halve every four years, while some DeFi protocols have aggressive early emissions that taper over time. Understanding a project's emission rate relative to demand is essential for evaluating its tokenomics and potential inflationary pressure.

The amount of true randomness in a secret, typically measured in bits. A BIP-39 seed is generated from 128, 192, or 256 bits of entropy; 256 bits is so large that brute force is computationally infeasible. Low-entropy sources (a memorable phrase, a low-quality RNG, a 'brain wallet') produce seeds attackers can find — and frequently do.

A fixed time period or set number of slots used in Proof of Stake blockchain systems to organize validator duties and finalize blocks. In Ethereum, an epoch consists of 32 slots (~6.4 minutes), and validators are assigned to attest to blocks within specific slots of each epoch. At the end of an epoch, finality checkpoints are established. Epochs provide a structured rhythm for consensus operations, reward distribution, and validator set rotations.

A multi-token Ethereum standard that can handle both fungible and non-fungible tokens in a single contract. ERC-1155 is more gas-efficient than deploying separate ERC-20 and ERC-721 contracts and is widely used for gaming items where some tokens are unique and others are identical.

The most widely used token standard on Ethereum, defining a common set of rules for fungible tokens. Any ERC-20 token can be stored in Ethereum wallets, traded on DEXs, and integrated into DeFi protocols. USDT, USDC, UNI, LINK, and thousands of others follow this standard. It defines functions like transfer(), approve(), and balanceOf().

The Ethereum token standard for creating non-fungible tokens, where each token has a unique ID and is individually distinct. ERC-721 was the standard behind CryptoPunks, Bored Ape Yacht Club, and most early NFT collections. It guarantees each token is provably unique on-chain.

The net dollar value of shares purchased into a spot exchange-traded fund over a period, reported daily by each issuer. For spot Bitcoin and Ethereum ETFs (BlackRock IBIT, Fidelity FBTC, etc.), inflows trigger creations — new shares minted against newly-purchased underlying crypto. Inflows of $100M-$1B per day became common in early 2024 after spot ETF approval. Inflow data is widely cited as a demand signal, but it does NOT equal new buying pressure on the broader market: substantial inflows are basis-trade hedged (long ETF + short futures), so a $500M inflow can be a market-neutral arbitrage rather than directional demand.

The runtime environment for executing smart contracts on Ethereum and EVM-compatible blockchains. The EVM is a Turing-complete virtual machine that processes bytecode compiled from high-level languages like Solidity. Every node on the network runs an identical copy of the EVM, ensuring that smart contract execution produces the same result everywhere. Many other blockchains (BNB Chain, Avalanche, Polygon, Arbitrum) implement EVM compatibility, allowing developers to deploy the same smart contract code across multiple chains.

Indexed records emitted by smart contracts when defined events occur (a transfer, an approval, a swap). Events are written to a special structure in each transaction's receipt and are visible to off-chain observers but not readable by other contracts. Event topics (the indexed fields) are searchable on block explorers; non-indexed fields appear in the data section. Most on-chain analytics — Dune queries, The Graph subgraphs, Etherscan's token-transfer pages — reconstruct activity by parsing event logs rather than re-executing transactions.

The Ethereum Virtual Machine is the runtime environment that executes smart contract bytecode on Ethereum and EVM-compatible chains. Every Ethereum node runs the EVM to process transactions and update state. 'EVM-compatible' chains (Polygon, Arbitrum, BSC) can run the same smart contracts as Ethereum without modification.

A token-contract design where each transfer deducts a fee — typically routed to a treasury, burn address, or liquidity pool. Implementing fee-on-transfer breaks compatibility with many DeFi protocols that don't expect transfer amounts to differ from the requested amount, causing failed swaps, broken router quotes, and unexpected slippage. Fee-on-transfer tokens are common in meme coins and reflection-style projects, and are a red flag on legitimate-utility tokens because they signal either economic friction or rug-pull groundwork (fees that can be redirected by admin functions).

First-In, First-Out — a cost-basis accounting method that assumes the first units of an asset acquired are also the first units sold. For crypto, this often results in higher reported gains in rising markets (because oldest, cheapest units are matched against current high prices). FIFO is the default or mandatory method in many jurisdictions. Alternatives include LIFO (Last-In, First-Out, generally not permitted for crypto in the US after 2025 1099-DA finalisation), HIFO (Highest-In, First-Out — minimises reported gains in rising markets), specific identification (you choose which units to dispose), and average cost (used in some EU countries and Canada).

The guarantee that a confirmed blockchain transaction cannot be reversed, altered, or canceled. Different blockchains achieve finality at different speeds — Bitcoin transactions are considered final after about six confirmations (~60 minutes), while some Proof of Stake chains achieve finality in seconds.

The duration after which a blockchain transaction is considered irreversible and cannot be rolled back. Finality time varies significantly across chains: Bitcoin achieves probabilistic finality after ~60 minutes (6 confirmations), Ethereum reaches finality in ~13 minutes (2 epochs), while chains like Avalanche and Solana offer near-instant finality in under 2 seconds. Understanding finality time is critical for exchanges, bridges, and any application where transaction reversals would cause financial loss.

A sudden, severe price drop occurring within minutes or seconds that often recovers quickly. Triggered by liquidation cascades, large market sells, or algorithmic errors. Flash crashes on thin-liquidity markets can drop prices 90%+ temporarily. Always use limit orders during high volatility.

An uncollateralized loan in DeFi that must be borrowed and repaid within a single blockchain transaction. If the borrower cannot repay the full amount plus fees in the same transaction, the entire operation is atomically reverted. Flash loans enable arbitrage and liquidation strategies but have also been used in exploits.

A research organization mitigating MEV (Maximal Extractable Value) on Ethereum. Flashbots Protect sends transactions directly to block builders, bypassing the public mempool where sandwich bots operate. Using Flashbots Protect for large DEX swaps is a best practice.

Fear Of Missing Out — the anxiety-driven urge to buy a crypto asset because its price is rising rapidly. FOMO often leads to impulsive purchases at inflated prices and is a major driver of speculative bubbles in crypto markets.

A divergence in a blockchain's protocol or transaction history. A soft fork is a backward-compatible upgrade where old nodes still accept new blocks. A hard fork is a non-backward-compatible change that splits the chain into two, such as the Ethereum/Ethereum Classic split.

The practice of placing a transaction ahead of a known pending transaction to profit from the anticipated price impact. In crypto, front-running is executed by MEV bots that monitor the mempool for large trades, then submit their own transactions with higher gas fees to be included first. Front-running is a persistent issue on transparent blockchains and a key driver of MEV.

Fear, Uncertainty, and Doubt — negative information or rumors spread to drive down an asset's price or erode confidence. FUD can be legitimate concerns or deliberate manipulation. Critical thinking is essential to distinguish between the two.

A computer that downloads and validates every transaction and block on a blockchain, maintaining a complete copy of the ledger. Full nodes enforce all protocol rules independently and are essential for network decentralization. Running a Bitcoin full node requires ~500GB; Ethereum requires ~1TB with an archive node needing 13TB+.

The theoretical market cap if all possible tokens were in circulation at the current price. FDV = current price x maximum supply. A large gap between market cap and FDV indicates significant future dilution as locked tokens unlock. Always compare FDV to circulating market cap when evaluating tokenomics.

A periodic payment exchanged between long and short traders in perpetual futures markets to keep the contract price aligned with the spot price. When funding is positive, longs pay shorts; when negative, shorts pay longs. Funding rates are a key indicator of market sentiment and can represent a cost or income for perpetual futures traders.

A unit of measurement for the computational effort required to execute transactions or smart contracts on Ethereum and similar networks. Users pay gas fees (denominated in the chain's native token) to compensate validators for processing their operations. Higher gas prices incentivize faster inclusion in a block.

An attack pattern where a malicious actor causes a target contract to do expensive work that doesn't benefit the attacker but burns the target's gas allowance, ETH balance, or block-gas budget. Common forms: stuffing a contract's user-controlled array until iteration exceeds the block gas limit (denial of service), or sending tokens with malicious fallback that consumes the relayer's gas. Defences include capping array sizes, charging gas costs back to the caller, and using pull-payment patterns over push-payment patterns.

The maximum amount of computational work (measured in gas units) that a user is willing to pay for a transaction to be processed on a blockchain. If a transaction requires more gas than the specified limit, it fails and the gas is still consumed. Simple ETH transfers require 21,000 gas, while complex smart contract interactions can require millions. Setting the gas limit too low causes out-of-gas errors; setting it too high wastes funds if the transaction fails.

The maximum amount of computational work (measured in gas units) that a transaction or block is allowed to consume on Ethereum and EVM-compatible chains. Each transaction specifies a gas limit set by the sender — if the operation requires more gas than the limit, the transaction fails but the gas fee is still consumed. Block gas limits cap the total computation per block, effectively limiting block size and throughput.

The amount a user is willing to pay per unit of gas for a blockchain transaction. On Ethereum post-EIP-1559, gas price consists of a base fee (burned) and a priority fee (tip to validators). Higher gas prices get transactions processed faster during network congestion. Measured in gwei (1 gwei = 0.000000001 ETH).

The very first block in a blockchain, also called Block 0. It is hard-coded into the software and serves as the foundation upon which all subsequent blocks are built. Bitcoin's genesis block was mined on January 3, 2009.

An exploit where an attacker accumulates enough governance-token voting power to pass a malicious proposal — typically draining the protocol's treasury, minting unlimited tokens, or upgrading contracts to attacker-controlled addresses. The Beanstalk Farms attack in April 2022 ($182 million) used a flash loan to borrow enough BEAN governance tokens to push an emergency proposal that transferred the protocol's treasury to the attacker, all within a single transaction. Defences include token-holding timelocks on voting power, mandatory delay between proposal and execution, and emergency veto mechanisms held by a multisig.

A formal request submitted to a Decentralized Autonomous Organization (DAO) proposing a specific change to a protocol's parameters, treasury allocation, code upgrades, or operational policies. Governance proposals typically follow a lifecycle: discussion on a forum, a temperature check (non-binding poll), a formal on-chain or snapshot vote, and execution if passed. Token holders vote with their governance tokens, and proposals must meet quorum and approval thresholds to pass. Major DeFi protocols like Uniswap, Aave, and Compound are governed entirely through this process.

A cryptocurrency that grants holders voting rights over a protocol's development decisions, such as fee changes, treasury spending, or new feature proposals. Examples include UNI (Uniswap), AAVE, and MKR (MakerDAO). Governance tokens aim to decentralize protocol control.

A pre-programmed event in Bitcoin's protocol that cuts the block mining reward in half approximately every four years (every 210,000 blocks). Halvings reduce the rate at which new BTC enters circulation, enforcing Bitcoin's fixed supply of 21 million coins. The most recent halving in April 2024 reduced the block reward from 6.25 BTC to 3.125 BTC, and each halving has historically preceded significant bull market cycles.

A programmed event in Bitcoin (and some other cryptocurrencies) that reduces the mining block reward by 50% approximately every four years (every 210,000 blocks). Halvings reduce the rate of new Bitcoin entering circulation, creating deflationary pressure. The most recent halving occurred in April 2024, reducing the reward from 6.25 to 3.125 BTC per block.

A non-backward-compatible blockchain upgrade creating a permanent chain split. Nodes that don't upgrade follow old rules on a separate chain. Famous hard forks: Ethereum/Ethereum Classic (2016 DAO hack) and Bitcoin/Bitcoin Cash (2017 block size debate). Contentious forks result in two competing chains.

A physical device designed to store cryptocurrency private keys in a secure, offline chip. Transactions are signed on the device itself, so the private key never touches an internet-connected computer. Ledger and Trezor are the most popular hardware wallet brands.

A physical device that stores cryptocurrency private keys offline, isolated from internet-connected computers. Hardware wallets sign transactions internally and never expose keys to your computer, making them immune to malware and remote hacking. Ledger and Trezor are the most popular brands. Considered the gold standard for securing significant holdings.

A fixed-length alphanumeric string produced by a cryptographic function that takes arbitrary input data. Hashes are deterministic (same input always produces the same output) and one-way (practically impossible to reverse). They are fundamental to blockchain integrity and proof-of-work mining.

The total computational power being used to mine and process transactions on a proof-of-work blockchain, measured in hashes per second. Bitcoin's hash rate is typically measured in exahashes per second (EH/s), representing quintillions of hash computations per second. A higher hash rate indicates greater network security, as it becomes exponentially more expensive for any single entity to control 51% of the network's computing power.

A measure of the total computational power being used to mine and process transactions on a Proof of Work blockchain. Measured in hashes per second (TH/s, PH/s, EH/s). Higher hash rate means greater network security because more computing power would be needed for a 51% attack.

Hierarchical Deterministic Wallet — a wallet whose private keys are all derived from a single master seed via BIP-32. Nearly every modern non-custodial wallet (hardware and software) is an HD wallet. The practical consequence: one seed phrase backs up every address and every chain the wallet supports.

Highest-In, First-Out — a cost-basis accounting method that assumes the units sold are the ones with the highest acquisition cost. For crypto in rising markets, HIFO minimises reported gains (by matching disposals against the most expensive units acquired) and is therefore often the lowest-tax method where it's permitted. HIFO is typically only available under specific-identification rules where the taxpayer can demonstrate they tracked the exact lot disposed. Not all jurisdictions allow HIFO; check the specific rules in yours, and consult a tax professional.

Originally a misspelling of "hold" from a 2013 Bitcoin forum post, now a widely used term meaning to hold a cryptocurrency long-term regardless of price volatility. The philosophy emphasizes conviction over short-term trading.

A malicious token smart contract designed to allow users to buy but prevent them from selling. The contract's code contains hidden restrictions — such as a blacklist that blocks all addresses except the deployer from selling, an extremely high sell tax (99-100%), or a function that pauses selling after a set period — that trap buyers' funds. Honeypots are a common scam on decentralized exchanges and can be identified using contract analysis tools like Token Sniffer, GoPlus Security, or Honeypot.is before purchasing.

A cryptocurrency wallet that is connected to the internet, such as a browser extension, mobile app, or exchange account. Hot wallets are convenient for frequent trading and dApp interaction but are more vulnerable to hacking, phishing, and malware compared to cold storage.

A smart contract whose code cannot be changed after deployment — no admin keys, no proxy, no upgrade path. Immutable contracts have a strong safety property: users can audit once and rely on that forever. Trade-off: bugs cannot be fixed, and protocol evolution requires a full redeployment with user migration. Many highly-trusted protocols (Uniswap V2, original MakerDAO, Liquity) chose immutability for the trust properties.

The temporary reduction in value that liquidity providers experience when the price ratio of their deposited token pair changes compared to simply holding the tokens. The loss becomes permanent only when the LP withdraws while prices are diverged. The greater the price divergence, the larger the impermanent loss. For example, if you provide ETH/USDC liquidity and ETH doubles in price, you would have been better off simply holding — the AMM automatically rebalances by selling your appreciating asset. Concentrated liquidity positions (Uniswap v3) amplify both fees earned and impermanent loss. Many LPs underestimate this risk: studies show the majority of Uniswap v3 LPs lose money after accounting for impermanent loss versus simply holding.

When interacting with DeFi, you may approve 'unlimited' token spending for a smart contract. This means it can transfer any amount from your wallet without further permission. If the protocol is compromised, all approved tokens can be drained. Use Revoke.cash to check and revoke unnecessary approvals.

A signed message expressing what outcome a user wants (e.g., 'swap 1 ETH for at least 3,500 USDC') without specifying how to achieve it. Intents shift execution complexity from users to specialized solvers who compete to find the best path. Intent-based architectures are emerging as a UX improvement over manual transaction construction.

A value transfer or contract call that happens inside another transaction, executed by smart-contract code rather than initiated directly by an externally-owned account. Internal transactions are not separately recorded on the blockchain (they exist only as part of their parent transaction's execution trace), but block explorers reconstruct them from the trace and display them as 'internal txns' on address pages. They are essential for tracking funds through multi-step DeFi interactions, drainer-contract flows, and any complex on-chain activity.

Know Your Customer — a regulatory process requiring financial services to verify the identity of their users, typically via government-issued ID and proof of address. Most centralized crypto exchanges require KYC compliance before allowing trading or fiat withdrawals.

The foundational infrastructure layer beneath Layer 1 blockchains that provides cross-chain communication, shared security, or modular frameworks for launching new chains. Examples include Polkadot, Cosmos, and LayerZero. Layer 0 protocols aim to solve blockchain interoperability by connecting otherwise isolated networks.

The base blockchain network that processes and finalizes transactions on its own, such as Bitcoin, Ethereum, or Solana. Layer 1s define the consensus mechanism, security guarantees, and core functionality. They face the "blockchain trilemma" of balancing scalability, security, and decentralization.

A secondary protocol built on top of a Layer 1 blockchain to improve scalability and reduce transaction costs. Layer 2s process transactions off the main chain and periodically settle them back to L1 for security. Prominent examples include Arbitrum, Optimism, Base, and zkSync on Ethereum.

A trading mechanism that allows users to control a larger position than their deposited capital by borrowing funds. For example, 10x leverage means a $100 deposit controls a $1,000 position. While leverage amplifies gains, it equally amplifies losses and dramatically increases liquidation risk.

A blockchain node that downloads only block headers instead of full block data, relying on full nodes for transaction verification. Light clients require minimal storage and bandwidth, making them suitable for mobile devices and browsers. They sacrifice some trustlessness for practicality.

A trade instruction to buy or sell an asset at a specific price or better, rather than at the current market price. On centralized exchanges, limit orders sit in the order book until they are filled. In DeFi, limit orders are typically implemented through specialized protocols or DEX features since standard AMMs only support market swaps.

A token representing staked ETH that has been restaked on EigenLayer or similar protocols to secure additional services (AVSs). LRTs like eETH (ether.fi) and pufETH (Puffer) give holders exposure to both base staking yields and restaking rewards while maintaining liquidity. LRTs add another layer of smart contract risk on top of regular liquid staking.

The forced closure of a leveraged or collateralized position when the value of the collateral falls below the protocol's required threshold. In DeFi lending protocols like Aave and Compound, anyone can trigger a liquidation and receive a discount on the seized collateral as a reward. Liquidation cascades during market crashes can amplify price declines.

A chain reaction of forced position closures in DeFi lending or leveraged trading. When a large position is liquidated, forced selling pushes prices lower, triggering more liquidations in a destructive feedback loop. The May 2021 and November 2022 crashes involved massive liquidation cascades.

The ease with which a cryptocurrency can be bought or sold without significantly affecting its price. High liquidity means there are many buyers and sellers, resulting in tight bid-ask spreads. Low liquidity increases the risk of slippage.

A DeFi incentive mechanism where protocols distribute their native governance tokens to users who provide liquidity to specific pools. Liquidity mining supercharges yield farming by adding token rewards on top of trading fees. The strategy was popularized by Compound's COMP distribution in 2020 and kicked off the 'DeFi Summer' boom.

A smart contract holding a pair of tokens that enables decentralized trading. Users deposit equal values of two tokens into the pool and receive LP (liquidity provider) tokens in return. They earn a share of trading fees proportional to their contribution.

The ratio between the amount borrowed and the value of the collateral deposited, expressed as a percentage. In DeFi lending, a typical maximum LTV is 75-80%, meaning you can borrow up to 75-80% of your collateral's value. If the LTV exceeds the liquidation threshold due to collateral price decline, the position is automatically liquidated to protect the protocol.

A token received by liquidity providers when they deposit assets into a liquidity pool, representing their proportional share of the pool. LP tokens can be redeemed for the underlying assets plus accumulated trading fees. They are also commonly used as collateral in yield farming to earn additional protocol rewards.

The primary, live blockchain network where real transactions with actual value are recorded. A mainnet launch is a major milestone indicating that a blockchain project is fully operational. Before mainnet, projects typically run on a testnet for development and debugging.

The collateral a trader deposits to open a leveraged position, representing a fraction of the total position size. In crypto margin trading, if the position moves against the trader beyond a certain threshold, the margin is liquidated. Margin requirements vary by exchange and asset volatility.

The total market value of a cryptocurrency, calculated by multiplying the current price by the circulating supply. Market cap is the primary metric for ranking cryptos by size, with Bitcoin typically holding the largest market cap.

An entity that provides liquidity to a market by continuously quoting buy and sell prices, profiting from the spread between them. In crypto, market makers operate on centralized exchanges (using order books) and decentralized exchanges (by providing liquidity to AMM pools). Professional market makers like Wintermute, Jump Trading, and GSR play a critical role in maintaining liquid and efficient crypto markets.

The 'memory pool' of transactions that have been broadcast to a blockchain but not yet included in a block. Every node maintains its own view of the mempool; public mempool transactions are visible to anyone running a node, which is the foundation of MEV (front-running, sandwich attacks). Private mempools (Flashbots Protect, MEV-Share) submit transactions directly to block builders to avoid public-mempool visibility. The mempool is also the inspection point for fee estimation and pending-transaction monitoring.

A cryptographic proof that a specific piece of data is included in a Merkle tree without needing to download the entire tree. Merkle proofs enable light clients to verify transactions are included in blocks, allow efficient state verification in rollups, and are fundamental to how blockchains ensure data integrity with minimal data.

A binary tree data structure in which every leaf node contains the hash of a transaction and every non-leaf node contains the hash of its two children. This allows efficient and secure verification that a specific transaction is included in a block without downloading the entire block.

The descriptive information associated with an NFT, including its name, description, image URL, and traits. Metadata can be stored on-chain (fully decentralized) or off-chain (on IPFS or centralized servers). The reliability of metadata storage affects the long-term durability of an NFT.

Maximal Extractable Value — the profit that block producers (miners or validators) can extract by reordering, inserting, or censoring transactions within a block. MEV strategies include arbitrage, liquidations, and sandwich attacks. MEV is a fundamental property of blockchains with programmable transaction ordering and has spawned an entire ecosystem of searchers, builders, and relays.

Markets in Crypto-Assets — the European Union's comprehensive regulatory framework for crypto assets, which took full effect in late 2024. MiCA establishes licensing requirements for crypto service providers, reserve rules for stablecoin issuers, and consumer protection standards across all EU member states.

The process of using computational power to validate transactions and create new blocks on a Proof of Work blockchain. Miners run specialized hardware (ASICs for Bitcoin, GPUs for others) that repeatedly solves mathematical puzzles. The first miner to find the solution earns the block reward (currently 3.125 BTC for Bitcoin) plus transaction fees. Mining secures the network but requires significant electricity.

A group of cryptocurrency miners who combine their computational resources (hash power) over a network to increase their chances of finding a block and earning the reward. When the pool successfully mines a block, the reward is distributed among participants proportional to their contributed hash power. Mining pools make mining more predictable for individual participants, as solo mining a coin like Bitcoin has become impractical for all but the largest operations.

A group of cryptocurrency miners who combine their computational hash power to increase the probability of finding a block and earning rewards. Rewards are split among pool participants proportional to their contributed hash power. Major Bitcoin mining pools include Foundry, AntPool, and F2Pool.

The process of creating a new token or NFT on a blockchain by writing it to a smart contract. When an NFT is minted, its metadata and ownership record are permanently inscribed on-chain. Minting typically requires paying a gas fee to cover the transaction cost.

A human-readable encoding of a seed as a sequence of 12, 18, or 24 words drawn from the BIP-39 word list. The mnemonic is what users actually write down — but cryptographically it is just the entropy plus a checksum, encoded in a memorable form. Two wallets given the same mnemonic and (optional) passphrase derive identical keys.

A person — sometimes a willing accomplice, often a victim themselves — used to move stolen funds through their own bank or exchange account to obscure the origin. In crypto scams, mules typically receive 'investment returns' or 'sales proceeds' into their accounts and forward them on, taking a small cut. Even unwitting mules face criminal liability in most jurisdictions because banks and prosecutors look at the account holder, not the beneficial owner. Any request to receive money on someone else's behalf — regardless of how plausible the cover story — is the textbook recruitment pattern.

Crypto slang for a dramatic price increase — 'going to the moon.' Used as a verb ('this token is mooning') and aspiration ('when moon?'). Most tokens that appear to moon quickly often crash equally fast. Not a sound basis for investment decisions.

A multi-signature wallet that requires two or more private key holders to approve a transaction before it can be executed. Multi-sig setups (e.g., 2-of-3 or 3-of-5) are widely used by DAOs, treasuries, and security-conscious individuals to protect against single points of failure.

A cryptocurrency wallet requiring multiple private key signatures to authorize a transaction. Common configurations include 2-of-3 (any 2 of 3 keyholders must approve) or 4-of-7. Multisig wallets are the standard for DAOs, corporate treasuries, and teams managing shared funds. Safe (formerly Gnosis Safe) is the most widely used multisig, securing over $100 billion in assets.

Non-Fungible Token — a unique digital asset stored on a blockchain that represents ownership of a specific item such as art, music, in-game items, or real-world assets. Unlike fungible tokens (where each unit is interchangeable), each NFT has distinct metadata and cannot be swapped 1:1 with another.

A computer running blockchain software that maintains a copy of the ledger and participates in validating and relaying transactions. Full nodes store the entire blockchain history, while light nodes store only block headers and request data as needed.

A wallet where the user retains full control of their own private keys, with no third party able to access or freeze their funds. Non-custodial wallets include hardware wallets (Ledger, Trezor) and software wallets (MetaMask, Phantom). They provide sovereignty but require the user to safeguard their seed phrase.

A sequential number assigned to each transaction from an Ethereum account, starting from zero. The nonce ensures transactions are processed in order and prevents replay attacks. If a transaction gets stuck, you can replace it by sending a new transaction with the same nonce but higher gas price.

A design pattern enabling protocols and tokens to operate seamlessly across multiple blockchains through unified messaging layers. Omnichain tokens (e.g., OFT standard via LayerZero) can be natively transferred between chains without traditional lock-and-mint bridges, reducing fragmentation and bridging risk.

A single low-level instruction in the Ethereum Virtual Machine, such as ADD, SLOAD (storage read), CALL (external call), or KECCAK256 (hash). Each opcode has a fixed gas cost defined by the protocol. Solidity source code compiles down to a sequence of opcodes the EVM executes; reading a contract's bytecode means reading its opcode stream. Reference at evm.codes.

A service that provides smart contracts with access to external, off-chain data such as asset prices, weather information, or sports results. Since blockchains are isolated systems that cannot natively access the outside world, oracles serve as the critical bridge between on-chain and off-chain environments. Chainlink and Pyth Network are leading oracle providers.

An exploit that manipulates the price source a smart contract relies on to make financial decisions. Classic pattern: protocol prices an asset from a single AMM's spot reserves, attacker uses a flash loan to temporarily move those reserves, protocol values collateral at the inflated price, attacker borrows against it and exits. Defences include time-weighted average prices (TWAPs), multi-source aggregation (Chainlink, Pyth), staleness checks, and circuit breakers. Mango Markets, Inverse Finance, Cream Finance, bZx, and many others have lost funds to this pattern.

A real-time list of all open buy and sell orders for a trading pair on an exchange, organized by price level. The order book shows market depth — how much volume is available at each price — and is fundamental to how centralized exchanges match trades.

Methods for executing trades. Market orders execute immediately at the best price (fast but may have slippage). Limit orders execute only at your price or better (precise but may not fill). Stop-loss triggers a sell when price drops to your threshold. On DEXs, most swaps are effectively market orders with slippage tolerance.

A lending mechanism where the borrower must deposit collateral worth more than the loan amount, typically 120-200% of the borrowed value. Over-collateralization is the standard model in DeFi lending (Aave, Compound, MakerDAO) because there is no credit scoring or legal recourse for default. If the collateral ratio drops below the liquidation threshold, the position is automatically liquidated.

Crypto slang for someone who sells at the first sign of a price decline. While mocked in crypto communities, selling to protect against losses is a legitimate risk management strategy used by professional traders.

A form of cold storage where the private key and public address are printed or written on a physical piece of paper. While fully offline, paper wallets are fragile, difficult to use securely, and have largely been replaced by hardware wallets as the preferred cold storage method.

A cryptographic authentication credential based on the FIDO2/WebAuthn standard that uses biometrics (fingerprint, face) or device PINs instead of passwords. In the context of crypto, passkeys are being integrated into smart contract wallets to enable secure, seedless wallet authentication. Users can sign transactions with a fingerprint or face scan instead of managing private keys or seed phrases.

An optional user-chosen string combined with a BIP-39 seed (as the PBKDF2 salt) to derive an entirely different wallet. Sometimes called the '25th word.' A passphrase enables hidden / decoy wallets and adds a factor an attacker must obtain on top of the seed. If forgotten, the funds derived under it are unrecoverable — the passphrase is not stored anywhere.

Short for Payment Finance, PayFi describes the emerging convergence of traditional payment systems and decentralized finance protocols. PayFi encompasses stablecoin-based payment rails, programmable payments via smart contracts, yield-bearing merchant settlement accounts, and the broader trend of embedding DeFi functionality into everyday payment flows. The concept gained significant traction in 2025-2026 as companies like Stripe, PayPal, and Square integrated stablecoin payment acceptance alongside traditional card processing.

A token standard allowing approvals via off-chain signatures instead of on-chain transactions. Gas-efficient, but exploited in phishing — victims sign what looks harmless but authorizes token transfers. Never sign Permit messages from untrusted sources.

A type of derivatives contract that allows traders to speculate on an asset's price without an expiration date, unlike traditional futures. Perpetual futures use a funding rate mechanism to keep the contract price anchored to the spot price. They are the most traded instrument in crypto, with daily volumes often exceeding spot markets.

Derivative contracts that let traders speculate on cryptocurrency prices with leverage but have no expiration date, unlike traditional futures. Traders pay or receive 'funding rates' to keep the contract price aligned with the spot price. Perpetuals are the most traded crypto instrument by volume, available on both centralized (Binance, Bybit) and decentralized (GMX, dYdX, Hyperliquid) exchanges.

A social engineering attack in which a scammer impersonates a legitimate entity — via fake websites, emails, or messages — to trick victims into revealing private keys, seed phrases, or login credentials. Phishing is the single most common attack vector in crypto and has become increasingly sophisticated with AI-generated content.

A long-running social-engineering fraud where the attacker builds a weeks-or-months romantic or friendship relationship with the victim before introducing a fake crypto-investment opportunity. The victim is shown small fabricated 'profits' to build trust, encouraged to deposit progressively larger amounts on a controlled platform, then locked out once the deposits stop. The FBI's IC3 reports billions of US dollars in annual losses from this single pattern, mostly run by organised teams operating from Southeast Asia. The crucial defensive cue is that no genuine investment opportunity arrives via unsolicited contact and an unsolicited platform.

The property that an attacker who compels a user to unlock a wallet cannot prove a hidden wallet exists behind a BIP-39 passphrase. Useful against attackers who do not already know hidden wallets are possible. Less useful against attackers who do, because they can simply demand 'the next one' until the victim runs out of credible answers.

Off-chain loyalty scores awarded by protocols to incentivize early usage before a token launch. Points typically signal a future airdrop allocation, though conversion ratios are rarely guaranteed. The points meta has driven significant TVL growth but also created mercenary capital that exits after token distribution.

The process of determining how much capital to allocate to a single investment or trade relative to your total portfolio. Proper position sizing ensures that no single losing trade or failed investment can cause catastrophic damage to overall wealth. A common framework allocates larger positions (50-70%) to high-conviction, established assets and smaller positions (5-15%) to speculative bets. The core principle: never size a position so large that its total loss would meaningfully impact your financial well-being.

A secret cryptographic string that proves ownership of a blockchain address and authorizes transactions. Anyone with access to a private key has complete control over the associated funds. Private keys must never be shared, stored in plain text, or transmitted over the internet.

A transaction submission channel that bypasses the public mempool, sending transactions directly to block builders or validators to prevent front-running and sandwich attacks. Services like Flashbots Protect, MEV Blocker, and various RPC endpoints offer private mempool access, shielding users from MEV extraction. By keeping transactions invisible until they are included in a block, private mempools significantly reduce the value leaked to searchers and bots.

A consensus mechanism where validators lock up cryptocurrency as collateral to participate in block production. Validators are selected based on their stake amount and earn rewards for honest behavior. Malicious validators have their stake slashed (confiscated). PoS uses 99.95% less energy than Proof of Work and is now used by Ethereum, Solana, Cardano, and most modern blockchains.

A consensus mechanism where miners compete to solve complex mathematical puzzles to validate transactions and create new blocks. The first miner to solve the puzzle earns the block reward. PoW is extremely secure but energy-intensive — Bitcoin's network consumes more electricity than many countries. Ethereum used PoW until transitioning to Proof of Stake in September 2022.

An Ethereum protocol design separating block proposing (validators) from block building (specialized builders). Prevents validators from extracting MEV directly and creates a competitive market for block construction, making the network fairer for regular users.

An Ethereum upgrade (EIP-4844) that introduced blob-carrying transactions as a stepping stone toward full danksharding. Proto-danksharding creates a new transaction type that carries large data blobs with a separate fee market, dramatically reducing the cost for Layer 2 rollups to post data to Ethereum. It went live in Ethereum's Dencun upgrade in March 2024 and reduced L2 fees by 90-99%.

A DeFi model where protocols own their own trading liquidity instead of renting it from liquidity providers through token emission incentives. Pioneered by OlympusDAO in 2021, POL uses bonding mechanisms to acquire LP tokens from users at a discount. This gives protocols permanent liquidity that does not disappear when incentives dry up, solving the mercenary capital problem that plagued early DeFi liquidity mining.

A contract that forwards (delegates) calls to a separate implementation contract, allowing the underlying logic to be upgraded without changing the address users interact with. Common patterns include OpenZeppelin's Transparent Proxy and UUPS (Universal Upgradeable Proxy Standard). The user-facing address holds the proxy; the actual logic lives at an implementation address that can be replaced by an admin. Etherscan's 'verified contract' label on a proxy means the proxy code is verified — not necessarily the implementation. Always check both the proxy and the current implementation when evaluating any upgradeable contract.

An architectural pattern for upgradeable smart contracts. A 'proxy' contract holds the storage and is the address users interact with; it forwards every call via `delegatecall` to an 'implementation' contract that holds the code. Upgrading means deploying a new implementation and pointing the proxy at it — storage is preserved. Common variants are transparent proxies (older OpenZeppelin default) and UUPS proxies (modern default). Introduces a new bug class: storage layout collisions across versions.

A cryptographic key derived from a private key that can be freely shared. Public keys are used to generate wallet addresses and verify digital signatures. While public keys are visible to everyone, they cannot be reverse-engineered to reveal the private key.

The pattern where a token rises sharply in the hours or days before a major exchange (Coinbase, Binance, etc.) lists it, then collapses after listing as insiders distribute to the influx of new buyers. Sometimes called the 'Coinbase effect' or 'listing pump.' The dynamic is partially driven by leaked or inferred listing knowledge and partially by retail anticipation. Listings on a Tier-1 exchange remain structurally different from listings on a Tier-3 exchange — the latter often has the opposite effect because pre-listing trading concentrated demand that disperses at listing.

The minimum level of participation (measured in votes or voting power) required for a governance vote to be considered valid. Quorum prevents small groups of token holders from passing proposals when the broader community is not paying attention. For example, if a DAO requires a 4% quorum and the total token supply is 1 billion, at least 40 million tokens must participate in the vote for the result to be binding. Setting the right quorum is a governance design challenge — too high and proposals never pass, too low and the protocol becomes vulnerable to minority capture.

A physical or traditional financial asset — such as real estate, government bonds, commodities, or art — that has been tokenized on a blockchain for trading, fractionalization, or use as DeFi collateral. RWA tokenization is one of the fastest-growing sectors in crypto, with major institutions like BlackRock and Franklin Templeton launching tokenized Treasury funds on Ethereum.

The process of periodically adjusting a portfolio's asset allocation back to its target percentages by selling overweight positions and buying underweight ones. For example, if a target allocation is 60% BTC / 40% ETH but market movements shift it to 75% BTC / 25% ETH, rebalancing involves selling some BTC and buying ETH. This enforces a disciplined 'sell high, buy low' approach and can be done on a time-based (monthly, quarterly) or threshold-based (when drift exceeds 5-10%) schedule.

A secondary fraud targeting people who have already lost crypto to a primary scam. Attackers monitor public reporting channels, social-media complaints, and breach databases for fresh victims, then contact them offering 'asset recovery' for an upfront fee — sometimes posing as private investigators, sometimes as 'reformed hackers,' sometimes as 'cyber-recovery firms.' No legitimate recovery service requires an upfront retainer from the victim. Real recovery, where it exists, is exchange compliance and law-enforcement work that takes months and is never paid for in crypto by the victim.

The process by which a stablecoin holder converts tokens back to the reference asset (usually fiat). For centralized fiat-backed stablecoins, redemption is a direct claim against the issuer — typically restricted to accredited or institutional accounts with minimum sizes ($100K+ for USDC institutional redemption, much higher for USDT). Retail holders almost always exit via secondary markets (DEXs, CEXs) rather than primary redemption, which means in stress events the secondary-market price can deviate from the issuer's redemption rate. The strength of the redemption mechanism — who can use it, at what cost, on what timeline — is the load-bearing element of any peg.

A class of smart-contract bug in which an external call from a contract to another address allows the called address to re-enter the original contract before the first call's state changes have completed. The canonical exploit is the 2016 DAO hack ($60 million at the time), where the attacker's contract repeatedly withdrew from the DAO before its balance was decremented. The defensive pattern is checks-effects-interactions (validate inputs, update state, then call external addresses) and OpenZeppelin's ReentrancyGuard modifier. Despite being well-understood since 2016, reentrancy variants — including read-only reentrancy and cross-function reentrancy — continue to cause major exploits (Cream Finance, Fei, Curve).

A mechanism pioneered by EigenLayer that allows already-staked ETH (or liquid staking tokens) to be re-pledged as security for additional protocols and services. Restaking extends Ethereum's economic security to oracles, bridges, data availability layers, and other infrastructure without requiring each service to bootstrap its own validator set. It creates additional yield opportunities but also introduces compounded slashing risk.

A Layer 2 scaling technique that bundles ("rolls up") hundreds of transactions into a single batch that is submitted to the Layer 1 chain. Optimistic rollups assume transactions are valid and allow fraud proofs; zero-knowledge rollups use cryptographic proofs to verify correctness. Both dramatically reduce per-transaction costs.

Platforms that allow developers to deploy their own custom rollup chains without building the infrastructure from scratch. Providers like Caldera, Conduit, and AltLayer handle sequencing, data availability, and settlement so teams can focus on their application. RaaS is accelerating the trend toward app-specific rollups.

Automatic payments to an NFT's original creator each time the NFT is resold on a secondary market. Royalties are typically set at 2.5-10% of the sale price and are enforced either by marketplace policy or on-chain mechanisms. Royalty enforcement has been a contentious topic, with some marketplaces making them optional.

A type of crypto scam where project developers suddenly withdraw all liquidity or abandon a project after raising funds, leaving investors with worthless tokens. Warning signs include anonymous teams, locked selling, and unrealistic yield promises. Rug pulls are most common on DEXs with permissionless token listing.

A specific type of MEV exploit where an attacker places one transaction immediately before (front-run) and one immediately after (back-run) a victim's trade, profiting from the price movement caused by the victim's swap. Sandwich attacks are common on decentralized exchanges and can cost victims significant slippage beyond their expected trade price.

Securities and Exchange Commission — the U.S. federal agency responsible for regulating securities markets. The SEC has played a central role in crypto regulation by pursuing enforcement actions against token issuers and exchanges, and in 2024 approved the first spot Bitcoin and Ethereum ETFs.

The UK's pooled cost-basis rule for shares and cryptoassets under HMRC's Capital Gains Tax framework. Rather than tracking each individual acquisition lot, all units of the same asset are pooled, and disposals are matched against the average cost of the pool. Special 'matching rules' apply for disposals within 30 days of an acquisition (the 'bed-and-breakfasting' rules) and for same-day acquisitions and disposals. The HMRC Cryptoassets Manual explicitly applies Section 104 pooling to crypto holdings.

A tamper-resistant chip designed to store cryptographic secrets and perform signing operations without exposing the private key, even to the rest of the host device. Hardware wallets vary widely in whether they use a certified secure element (e.g., CC EAL5+ rated chips) versus a general-purpose microcontroller — the trade-off is typically between attestation guarantees and firmware open-sourceability.

A sequence of 12 or 24 words generated when creating a crypto wallet, serving as a human-readable backup of all the private keys in that wallet. A seed phrase can restore an entire wallet on any compatible device. It should be stored offline in a secure, physical location — never digitally.

A sequence of 12 or 24 random words generated when creating a wallet, serving as the master backup for all accounts. If you lose your device, entering the seed phrase into a new wallet restores full access. Anyone who obtains your seed phrase has complete control of your assets — store it offline on paper or metal, never digitally, and never share it with anyone for any reason.

A specialized node in Layer 2 rollups responsible for ordering, batching, and submitting transactions to the Layer 1 chain. Sequencers receive user transactions, execute them locally for fast confirmation, and then post compressed transaction data to Ethereum. Most L2s currently operate centralized sequencers controlled by the rollup team, though decentralizing sequencers is a major research and development priority.

A temporary, limited-permission cryptographic key generated by a smart contract wallet that allows dApps to execute specific transactions on the user's behalf without requiring approval for each action. Session keys are time-limited and scope-limited (e.g., allowing only swaps up to $100 on a specific DEX for 1 hour), dramatically improving the user experience for gaming and frequent DeFi interactions.

A scalability technique that divides a blockchain's state and transaction processing into multiple parallel segments called 'shards,' each capable of processing transactions independently. Instead of every node processing every transaction, different groups of validators handle different shards, dramatically increasing overall throughput. Ethereum's long-term roadmap includes danksharding, which focuses specifically on creating abundant, cheap data availability for rollups rather than execution sharding. Near Protocol is an example of a live sharded blockchain.

An independent blockchain that runs parallel to a main chain (the 'parent chain') and is connected to it via a two-way bridge, allowing assets to move between both chains. Sidechains have their own consensus mechanisms and validators, offering different performance and cost trade-offs than the parent chain. Unlike Layer 2 rollups, sidechains do not inherit the parent chain's security — they are responsible for their own security guarantees. Polygon PoS (before its transition to a ZK validium) was a well-known Ethereum sidechain.

A targeted attack where a fraudster convinces (or bribes) your mobile carrier to transfer your phone number to a SIM they control. With your number they receive SMS 2FA codes and password-reset texts, allowing them to take over exchange accounts, email, and social media. SMS-based 2FA is highly vulnerable to SIM swaps; authenticator apps and hardware security keys are not. The FBI's IC3 has reported millions of dollars in annual losses to this single attack pattern.

A penalty mechanism in Proof of Stake networks where a portion of a validator's staked tokens is destroyed (burned) for misbehavior such as double-signing blocks, prolonged downtime, or attempting to attack the network. Slashing creates strong economic incentives for validators to operate honestly and maintain high uptime, securing the network against malicious actors.

SatoshiLabs Improvement Proposal 39 — a Shamir Secret Sharing scheme that splits a master seed into M-of-N shares, each encoded as a word list. Any M shares can reconstruct the seed; fewer than M reveal nothing. SLIP-39 is supported by Trezor Model T and a few open-source tools. It is a different format from BIP-39 — the two are not interchangeable.

The difference between the expected price of a trade and the actual execution price. Slippage occurs when there is not enough liquidity at the desired price, so the order fills at progressively worse prices. Slippage tolerance settings on DEXs let users control how much price deviation they accept.

A user-defined setting on decentralized exchanges that specifies the maximum acceptable difference between the expected price and the executed price of a swap. If the price moves beyond the tolerance during execution, the transaction reverts. Setting slippage tolerance too low causes frequent failed transactions, while setting it too high exposes users to sandwich attacks and unfavorable fills.

The maximum acceptable price difference between the expected and executed trade price when swapping tokens on a decentralized exchange. Users set slippage tolerance as a percentage (e.g., 0.5%) to protect against price movement between submitting and confirming a transaction. Setting it too low causes failed transactions; setting it too high exposes you to sandwich attacks and front-running bots that exploit the wider acceptable range.

Self-executing code stored on a blockchain that automatically enforces the terms of an agreement when predefined conditions are met. Smart contracts power DeFi protocols, NFT mints, DAOs, and token standards. They run exactly as programmed, with no downtime or third-party interference.

A professional security review of a smart contract's source code conducted by specialized firms or independent auditors to identify vulnerabilities, logic errors, and potential exploits before deployment. Leading audit firms include Trail of Bits, OpenZeppelin, and Certora. While audits significantly reduce risk, they do not guarantee a contract is exploit-proof.

The non-technical side of an attack — manipulating a person rather than a system. Common patterns: fake support staff requesting credentials, fake 'admins' in Telegram or Discord, urgency-based pressure ('act in five minutes or lose access'), authority impersonation, and the long-running relationship-building used in pig butchering. Social engineering is the entry vector for the majority of successful crypto thefts, far more than software exploits.

A backward-compatible blockchain upgrade where old nodes can still validate new blocks. Soft forks don't create chain splits — non-upgraded nodes continue on the same chain. Bitcoin's SegWit (2017) was a soft fork. Less disruptive than hard forks but offer less flexibility for protocol changes.

A cryptocurrency wallet that exists as a desktop, mobile, or browser extension application. Software wallets are hot wallets that store private keys on the user's device. They are convenient for daily use but less secure than hardware wallets against malware and device compromise.

The dominant programming language for writing smart contracts on Ethereum and EVM-compatible chains. Statically typed, object-oriented, and influenced by C++/JavaScript/Python. Compiles down to EVM bytecode. Solidity 0.8.0 (December 2020) made integer overflow checks default, eliminating a major bug class. Reading existing Solidity contracts is the foundation of any DeFi security review.

A specialized off-chain agent that fills user intents by finding optimal execution paths across liquidity sources, chains, and protocols. Solvers compete in auctions to provide the best price, and they bear the execution risk. Protocols like CoW Swap, UniswapX, and Across use solver networks to improve trade execution.

A non-transferable NFT permanently bound to a specific wallet address, representing credentials, achievements, or identity attributes. Proposed by Ethereum co-founder Vitalik Buterin in 2022, SBTs are designed for use cases where transferability would defeat the purpose — such as university degrees, professional certifications, proof of attendance, or reputation scores.

A rollup that uses another blockchain (like Celestia) only for data availability while handling its own execution and settlement independently. Unlike traditional rollups that settle on Ethereum, sovereign rollups define their own fork-choice rules and can upgrade without permission from a settlement layer.

The token standard on Solana, equivalent to Ethereum's ERC-20. SPL (Solana Program Library) tokens are created using Solana's native token program. USDC on Solana, Bonk, and Jupiter (JUP) are all SPL tokens, benefiting from Solana's sub-cent fees and sub-second finality.

Articles, videos, podcasts, or social-media posts paid for by a project, exchange, or third party. In crypto media, sponsored content frequently appears without clear disclosure — a project pays a 'news' site $5-50K for an article that reads like editorial coverage. FTC and FCA guidance requires conspicuous disclosure of paid material, but enforcement against crypto-specific publishers has been limited. Defensive habit: assume any positive coverage of a token on a publication that accepts crypto-project advertising is either sponsored or written by someone who hopes it will become sponsored.

The difference between the highest price a buyer is willing to pay (bid) and the lowest price a seller is willing to accept (ask) for an asset on an exchange. A narrow spread indicates high liquidity and active trading, while a wide spread indicates low liquidity and higher trading costs. On decentralized exchanges using AMMs, the equivalent concept is slippage — the difference between expected and actual execution price.

A cryptocurrency designed to maintain a stable value relative to a reference asset — almost always a fiat currency such as the US dollar. The three structural designs are fiat-backed (USDC, USDT — each token redeemable 1:1 against reserves held by the issuer), crypto-collateralized (DAI — minted against over-collateralized crypto deposits enforced by smart contracts), and algorithmic (the now-largely-defunct UST design — peg maintained by mint/burn mechanics against a sister token with no external reserve). Each design has different failure modes; conflating them is a common analytical mistake.

The emerging legal frameworks governing stablecoins, including reserve requirements, audit mandates, and issuer licensing. In the U.S., proposed legislation requires stablecoin issuers to hold 1:1 reserves in cash or treasuries. MiCA in Europe already mandates reserve transparency for euro-denominated stablecoins.

The process of locking cryptocurrency in a Proof of Stake network to support block validation and earn rewards. Stakers delegate or lock their tokens with validators and receive staking yields, typically ranging from 3-15% annually. Staked assets may be subject to a lock-up or unbonding period.

A Layer 2 scaling technique where two parties conduct unlimited off-chain transactions and only submit the final state to the blockchain. Bitcoin's Lightning Network is the most prominent implementation. State channels offer instant finality and near-zero fees but require both parties to be online.

A proposed Ethereum upgrade removing old, unused account state from active storage to reduce disk space for full nodes. Accounts not accessed for a defined period would be archived but revivable with a witness proof. Part of Ethereum's 'The Purge' roadmap.

Lido's liquid staking token representing staked Ethereum. When you stake ETH through Lido, you receive stETH which accrues staking rewards daily via rebasing. stETH can be used across DeFi as collateral, traded, or provided as liquidity — giving staking rewards AND DeFi composability simultaneously.

An order type that automatically sells an asset when its price drops to a specified level, designed to limit potential losses on a position. Stop-losses are a fundamental risk management tool in both traditional and crypto trading. In volatile crypto markets, slippage can cause execution at a price worse than the stop level.

The exchange of one cryptocurrency token for another, typically executed through a decentralized exchange or automated market maker. Unlike traditional order book trading, DEX swaps are executed against liquidity pools using a pricing algorithm. Swap fees (usually 0.05-1%) are distributed to liquidity providers as compensation for their capital.

An attack in which a single entity creates a large number of fake identities or accounts to gain disproportionate influence over a network, governance vote, or airdrop distribution. Sybil attacks are a fundamental challenge in permissionless systems. Protocols combat them using proof of work, staking requirements, identity verification, or on-chain reputation systems.

Mechanisms that prevent a single entity from creating many fake identities to unfairly capture rewards, governance votes, or airdrop allocations. Common techniques include on-chain activity analysis, wallet clustering, Gitcoin Passport scores, and proof-of-humanity checks. Sybil attacks are a persistent challenge for fair token distributions.

A transaction or occurrence that triggers a tax obligation in your jurisdiction. In most jurisdictions, taxable crypto events include: selling crypto for fiat, swapping one crypto for another, spending crypto on goods or services, and (often) receiving staking rewards, airdrops, or hard-fork tokens. Transferring crypto between wallets you control is typically *not* a taxable event. Definitions vary materially by jurisdiction — the same DeFi action can be taxable in one country and non-taxable in another. This is informational reference, not tax advice; consult a qualified tax professional in your jurisdiction.

A separate blockchain network used by developers for testing smart contracts and protocol upgrades without risking real funds. Testnet tokens have no monetary value. Most major blockchains maintain active testnets — for example, Ethereum's Sepolia and Solana's Devnet.

A smart contract mechanism that delays execution of a transaction or function call by a predetermined period. Timelocks are critical security features in DeFi governance — they give users time to review and potentially exit before controversial changes take effect. A 48-hour timelock means the community has 2 days to react to any proposed change before it executes.

A digital asset created on an existing blockchain using a smart contract, rather than having its own native blockchain. Tokens can represent anything — currency, voting rights, real-world assets, or access to services. ERC-20 on Ethereum and SPL on Solana are the most common token standards.

Permission you grant a smart contract to spend tokens from your wallet. DeFi protocols require approval before they can move your tokens. Many request unlimited approval for convenience, but a compromised protocol could drain all approved tokens. Use Revoke.cash regularly to check and revoke unnecessary approvals.

The permanent removal of tokens from circulation by sending them to an unrecoverable address (a 'burn address'). Token burns reduce total supply, which can create deflationary pressure and increase scarcity. Ethereum's EIP-1559 burns a portion of gas fees with every transaction, and Binance conducts quarterly BNB burns based on trading volume.

A set of rules defining how tokens behave on a blockchain, including functions for transferring, approving, and querying balances. Standards ensure interoperability across wallets, DEXs, and DeFi. Major standards: ERC-20 (fungible), ERC-721 (NFTs), ERC-1155 (multi-tokens), BEP-20 (BSC), SPL (Solana).

A scheduled release of locked or vested tokens that increases the circulating supply of a cryptocurrency. Token unlocks are defined in a project's tokenomics and typically affect team allocations, investor shares, and ecosystem funds. Large unlocks can create significant sell pressure as newly unlocked holders take profits. Tracking unlock schedules (via tools like Token Unlocks or CoinGecko) is essential for understanding potential supply-side price impacts.

The economic design and monetary policy of a cryptocurrency, encompassing supply mechanics (fixed vs. inflationary), distribution schedules, utility functions, burn mechanisms, staking incentives, and governance rights. Well-designed tokenomics align the incentives of users, developers, and investors to create a sustainable ecosystem. Poorly designed tokenomics often lead to sell pressure and value erosion.

Total supply is all tokens currently in existence (including locked/vested). Max supply is the absolute maximum that will ever exist. Circulating supply is what's actually tradeable. Example: Bitcoin has max supply 21M, total supply ~19.6M (mined), circulating slightly less (some lost). Check all three when evaluating tokenomics.

A security feature that previews the exact outcome of a blockchain transaction before it is signed and submitted, showing the user precisely which tokens will leave and enter their wallet. Transaction simulation helps users detect malicious smart contract interactions, wallet drainer attacks, and unexpected token approvals. Tools like Blocknative, Tenderly, and wallet-integrated simulators provide this functionality.

Total Value Locked — the aggregate dollar value of all assets deposited into a DeFi protocol's smart contracts. TVL is the primary metric for measuring a DeFi protocol's adoption and size. DeFi Llama is the most widely used TVL tracker.

Time-Weighted Average Price — an oracle design that smooths the reported price of an asset over a defined window (typically 10 minutes to several hours) by averaging prices across many blocks. TWAPs are harder to manipulate than spot prices because an attacker would need to sustain the manipulation across the entire window, but they are not immune: documented exploits against bZx (2020), Mango (2022), and Inverse Finance (2022) succeeded by using flash loans to push price beyond the TWAP's smoothing capacity, sometimes combined with multi-block manipulation. The longer the TWAP window, the more resistant — but the slower to react in legitimate price moves.

Universal Upgradeable Proxy Standard (EIP-1822) — a proxy pattern where the upgrade authorisation logic lives in the implementation contract itself, rather than in the proxy. Lower gas per call than transparent proxies, but a bug in any implementation's upgrade-authorisation logic can permanently break upgradeability. Modern OpenZeppelin default. Implementations must call `_disableInitializers()` in their constructor to prevent the implementation itself from being initialised and bricked.

A node operator in a Proof of Stake network responsible for proposing and attesting to new blocks. Validators must stake a minimum amount of the native token (e.g., 32 ETH for Ethereum) as collateral, which can be partially slashed as a penalty for misbehavior or prolonged downtime.

Compensation earned by Proof of Stake validators for proposing and attesting to blocks. Rewards come from newly issued tokens (inflation) and transaction fees. Ethereum validators earn approximately 3-5% APR on staked ETH, varying with network participation. Validators risk slashing penalties for misbehavior.

The group of active validators currently responsible for proposing blocks, attesting to the chain's state, and securing a Proof of Stake network. Validator sets can be fixed (as in some permissioned chains) or dynamic (changing each epoch based on staking deposits and withdrawals). Ethereum's validator set includes over 900,000 validators as of 2026. The size and distribution of the validator set directly impacts decentralization and censorship resistance — a larger, more geographically diverse set is harder to coerce or attack.

A data structure proposed to replace Merkle trees in Ethereum, enabling stateless clients that verify data without storing entire state. Uses polynomial commitments for much smaller proofs. Part of Ethereum's 'The Verge' upgrade roadmap.

A time-based plan that controls when allocated tokens are released to team members, investors, or advisors. Vesting schedules typically include a cliff period (during which no tokens are released) followed by a linear or staged unlock over months or years. They are designed to prevent early holders from dumping tokens immediately after launch and to align long-term incentives.

The total amount of a cryptocurrency traded within a specific time period, usually 24 hours. High volume indicates strong market interest and generally means tighter spreads and better liquidity. Low volume can signal disinterest or make an asset vulnerable to price manipulation.

Acronym for 'We're All Gonna Make It' — a rallying cry of optimism and community solidarity in the crypto space. Often used during bull markets. The bearish counterpart is NGMI ('Not Gonna Make It').

Malicious smart contracts and signature requests designed to drain a connected wallet's tokens once a user signs a fraudulent approval or Permit message. Drainers are deployed behind fake airdrop sites, fake mint pages, and fake support tools. Often packaged as drainer-as-a-service kits sold to less-technical attackers. Defence: never sign transactions you don't understand, simulate transactions before signing, and run a weekly revoke routine on the approvals you've granted.

The practice of simultaneously buying and selling the same asset to create the illusion of high trading volume and market activity. In crypto, wash trading is prevalent on unregulated exchanges and NFT marketplaces, where entities trade with themselves using multiple wallets to inflate volume metrics, manipulate token rankings, or qualify for airdrops. Studies have estimated that a significant portion of reported crypto trading volume is wash trading, making it essential to verify unique buyer/seller counts and use analytics tools that filter for genuine activity.

A vision for the next evolution of the internet built on decentralized protocols, blockchain technology, and token-based economics. Web3 aims to give users ownership of their data, identity, and digital assets — in contrast to Web2, where centralized platforms control user data and monetize attention.

An individual or entity holding a very large amount of cryptocurrency — enough that their trades can significantly move the market price. Bitcoin whales typically hold 1,000+ BTC. Whale movements are tracked because large sells can trigger cascading liquidations.

A technical document published by a blockchain project outlining its purpose, technology, consensus mechanism, tokenomics, and roadmap. Bitcoin's whitepaper, published by Satoshi Nakamoto in 2008, is the most famous example. Whitepapers are a key resource for evaluating a project's legitimacy and vision.

An ERC-20 token on Ethereum backed 1:1 by Bitcoin held in custody. WBTC allows Bitcoin holders to participate in Ethereum DeFi — using BTC as collateral, providing liquidity, or trading on DEXs. The wrapping process involves depositing BTC with a custodian who mints equivalent WBTC.

A tokenized representation of a cryptocurrency from one blockchain that can be used on another blockchain. The original asset is locked in a smart contract, and an equivalent wrapped version is minted on the destination chain. Wrapped Bitcoin (WBTC) on Ethereum is the most well-known example, allowing BTC to be used in Ethereum DeFi protocols.

The practice of depositing crypto assets into DeFi protocols to earn rewards, typically in the form of interest, fees, or governance tokens. Yield farmers often move assets between protocols to maximize returns, but higher yields usually come with higher smart contract and impermanent loss risk.

A cryptographic method that allows one party (the prover) to demonstrate to another party (the verifier) that a statement is true without revealing any additional information beyond the statement's validity. In blockchain, ZK proofs power privacy-preserving transactions, ZK rollups for scalability, and identity verification without exposing personal data. zk-SNARKs and zk-STARKs are the two main variants.