Open your banking app, send $500 to a friend, and the money feels like it moves. It doesn't. Your bank edits a row in its private database, talks to another bank's database, and the two update each other's books. You are trusting several institutions to keep their rows honest. DeFi is the attempt to replace those rows — and the institutions that own them — with public code that anyone can read and no one can quietly rewrite.
DeFi in one sentence, and why the sentence matters
DeFi stands for decentralised finance. It means financial services — lending, trading, saving, insurance — delivered by public smart contracts instead of banks or brokers. Ethereum.org calls it "a global, open alternative to the current financial system," built to be permissionless, transparent, non-custodial, and composable. The Bank for International Settlements puts it more precisely: "a competitive, contestable, composable and non-custodial financial ecosystem built on technology that does not require a central organisation to operate."
The single load-bearing move is removing the trusted intermediary: no bank, no broker, no custodian sitting between you and the ledger. Everything else DeFi does differently cascades from that one change, and the rest of this series unpacks the cascade.
The primitives: what the DeFi stack is actually made of
Think of DeFi as four stacked layers.
Settlement layer. The blockchain itself — typically Ethereum — is the final record of who owns what and which contracts exist. It is where disputes end.
Smart contracts. These are "if this then that" programs stored on-chain. They execute deterministically and, once deployed, the rules in their code cannot be changed.
Protocols. Clusters of smart contracts that do one financial job. A decentralised exchange like Uniswap swaps tokens. A lending market like Aave matches borrowers and lenders. A stablecoin system like MakerDAO/Sky issues a dollar-pegged token against collateral.
Interface. The website or crypto wallet you click through is a front end talking to the contracts. The interface is replaceable; the contracts are what holds the funds.
The glue is composability: any contract can call any other contract. A lending protocol can plug into a DEX can plug into an insurance contract, without anyone asking permission. The BIS describes this as the settlement / application / interface layering of DeFi, and it is what lets the ecosystem evolve without central coordination.
A bank wire, step by step — who actually moves what
You enter a recipient and an amount in your bank app. The bank checks your balance in its internal database. It debits your row and credits the receiving bank through a correspondent relationship or a network like SWIFT or Fedwire. The receiving bank then credits the recipient's row.
Nothing physical moves. Your "money" at the bank is a liability the bank owes you — an IOU — and the wire is the two banks updating their private books. Each hop is a trusted intermediary that could freeze, reverse, delay, or deny the transaction under its policies, its regulator, or a court order. Settlement can take hours or days, and reconciliation happens on a schedule the banks set, not you.
An on-chain transfer, step by step — who actually moves what
You sign a transaction in your wallet with your private key. Nobody else can produce that signature, so nobody else can authorise the transfer.
The signed blockchain transaction is broadcast to a peer-to-peer network of nodes, enters the mempool, and a validator includes it in the next block. Once included, the ledger update is final: the balance at your address goes down, the balance at the recipient's address goes up, visible to anyone.
There is no internal database sitting between you and the outcome. The blockchain itself is the database, and thousands of nodes hold identical copies. Fees pay the validators, not a bank. No institution has a row it can freeze; only the holder of the private key can spend from the address.
The symmetry with the bank wire is the point. Both stories move value. One does it by asking private companies to agree on their private rows. The other does it by asking a public network to agree on a public row. The mechanics are where the politics lives.
What a smart contract "holds" versus what a custodian "holds"
A custodian holds an entry in its private ledger that says it owes you X. The actual assets sit in the custodian's own accounts, and you rely on its solvency and honesty. FTX and Mt. Gox are the canonical lessons in what happens when that trust is misplaced.
A smart contract, by contrast, holds a real on-chain balance at a public address whose spending conditions are hard-coded in its deployed code — for example, "return this ETH only when the caller repays the loan." Anyone can read the contract's balance and the rules governing it block by block. No back office can quietly re-hypothecate the funds to cover a shortfall elsewhere.
The tradeoff is sharp. The contract executes exactly what was written, including bugs. There is no customer service to reverse a mistake. Risk shifts from institutional solvency to code quality. This is the practical meaning of non-custodial: you are the only signer, and the contract is the only other thing that can touch your funds — not a company.
What DeFi is not — and risks to understand before you participate
Not everything marketed as "DeFi" actually is. A centralised yield product with a slick UI is still CeFi; if one company can freeze withdrawals, it is not DeFi. The label matters because the risk shape changes completely.
The scale is real but not enormous. As of early 2026, DeFi total value locked — TVL, the dollar value of assets held in DeFi smart contracts — sits around $105 billion across thousands of protocols, with Ethereum hosting roughly 68% of it. That is a meaningful pool of capital, not a fringe experiment, but it is still small next to traditional banking.
More importantly, DeFi does not remove risk. It changes the shape of risk. Instead of bank-run risk you get smart-contract-bug risk. Instead of an insolvent custodian you get a mispriced oracle feeding bad data to a lending market. Instead of a rogue employee you get a governance attack where an attacker buys enough voting tokens to pass a malicious proposal.
And DeFi does not remove regulation. It just means the regulator's lever works differently when the "company" is open-source code running on thousands of nodes. Knowing where the levers are — and where they aren't — is the whole point of learning this material.
Key takeaways
- DeFi is financial services delivered by public smart contracts instead of by banks, brokers, or custodians.
- The single load-bearing change is removing the trusted intermediary; every other DeFi property cascades from that.
- A smart contract holds actual on-chain value under hard-coded rules; a custodian holds an IOU in its private database.
- DeFi does not remove risk — it swaps solvency and policy risk for code, oracle, and governance risk.
- The rest of this 8-part series walks the stack: wallets and gas, AMMs, lending, stablecoins, impermanent loss, oracles, and systemic risk.
