Decentralized Finance — DeFi — is a collection of financial services built on public blockchains, primarily Ethereum. Lending, borrowing, trading, and earning yield are all possible without a bank, broker, or exchange acting as an intermediary. The protocols run on open-source smart contracts, meaning anyone can audit the code that holds the funds.
Why DeFi Matters
The core value proposition is permissionless access. Anyone with an internet connection and a compatible wallet can use DeFi protocols — no account approval, no KYC forms, no geographic restrictions. For the roughly 1.4 billion people globally who are unbanked or underbanked, this represents meaningful access to financial services that didn't previously exist for them.
For existing crypto holders, DeFi offers ways to put idle assets to work earning yield, often significantly higher than traditional savings accounts, though with correspondingly higher risks.
Key Concepts
Decentralized Exchanges (DEX)
A DEX allows you to swap tokens directly from your wallet without depositing to a centralized exchange. Uniswap, Curve, and SushiSwap are among the largest. Trades are executed by smart contracts that draw on pools of liquidity rather than matching buy and sell orders from individual traders.
Automated Market Makers (AMM)
Traditional exchanges use order books — lists of open buy and sell orders. AMMs replace order books with liquidity pools: reserves of two tokens locked in a smart contract. Prices are determined by a mathematical formula (typically x * y = k) that automatically adjusts the price as trades happen.
Liquidity Provision
Anyone can deposit token pairs into a liquidity pool and earn a percentage of the trading fees generated by that pool. If you deposit equal values of ETH and USDC into a pool, every trade that uses that pool pays you a small fee proportional to your share.
The primary risk here is impermanent loss — if the price ratio between the two tokens diverges significantly from when you deposited, you may end up with less value than if you'd simply held the tokens. The term is somewhat misleading: the loss only becomes permanent when you withdraw.
Lending and Borrowing
Protocols like Aave and Compound allow you to deposit crypto as collateral and borrow against it, or deposit to earn lending yield. Borrowing is always over-collateralized — you typically need to put up 130–150% of what you borrow in collateral. If your collateral value drops below the minimum threshold, your position is automatically liquidated.
Yield Farming
Yield farming involves moving assets across multiple DeFi protocols to maximize returns. Protocols often incentivize usage by distributing their governance tokens to liquidity providers, effectively paying you in additional tokens on top of trading fee revenue. Yields can look attractive — sometimes very attractive — but always reflect underlying risk.
The Real Risks
Smart contract risk is the biggest and most irreversible. Smart contract code can contain bugs. Audits reduce but never eliminate this risk. Hundreds of millions of dollars have been drained from protocols through contract exploits, and in most cases there's no recourse.
Rug pulls happen when developers of a new protocol drain the liquidity and disappear. The tell-tale signs: anonymous team, no audit, unverified contract, unrealistic APY promises. These are almost exclusively found in newer or unestablished protocols.
Oracle manipulation exploits occur when price feed data used by smart contracts is manipulated — often through flash loans — to make the protocol believe a token is worth more or less than it is, enabling an attacker to borrow against inflated collateral.
Liquidation risk when borrowing: if you're using borrowed funds to lever up your exposure, a fast market move can cascade into liquidation before you have time to react.
Getting Started Safely
Start with established protocols that have been operating for multiple years and have undergone multiple independent audits: Uniswap, Aave, and Curve have processed hundreds of billions in volume. They're not risk-free, but they have substantially longer track records than newer entrants.
Use a hardware wallet. Even if a smart contract itself is legitimate, your transaction approval process happening on a compromised computer creates exposure. Hardware wallets ensure you can verify exactly what you're signing.
Use small amounts first. The UX of DeFi — gas fees, slippage, token approvals — is unfamiliar the first time. Make your mistakes with amounts that don't hurt.
Revoke unnecessary token approvals. When you interact with a DeFi protocol, you often grant it an unlimited allowance to spend your tokens. Use tools like Revoke.cash to periodically clean these up. An approval from three months ago to a protocol you've since stopped using is a lingering attack surface.