Glossary/Infrastructure

Account Abstraction

Account abstraction is the design pattern that lets a blockchain account behave like programmable code instead of a fixed keypair, so wallets can sponsor gas, batch transactions, recover lost keys, and enforce custom rules. On Ethereum it ships via ERC-4337 and EIP-7702.

What account abstraction actually means

Ethereum has historically had two account types: externally owned accounts (EOAs), controlled by a single private key, and contract accounts, controlled by code. The split is rigid. An EOA can't enforce spending limits, can't be recovered if you lose the key, and can't let someone else pay its gas. Account abstraction collapses that distinction — it makes every account programmable, so the rules for validating a transaction become application logic rather than a fixed protocol constant.

The practical payoff is the stuff wallets have wanted for a decade: gas paid in USDC or sponsored entirely by the app, batched approvals in one signature, session keys, social recovery, and arbitrary signature schemes (passkeys, multisig, biometrics) instead of one ECDSA key.

How it works on Ethereum

There are two live mechanisms, and they solve the problem from opposite ends.

ERC-4337 does it without changing the protocol. Users sign UserOperation objects that sit in a separate mempool. Actors called bundlers package them and submit them to a singleton EntryPoint contract, which calls each smart account's validateUserOp before execution. A paymaster contract can agree to cover gas. This is why your wallet can feel gasless — someone else fronts the ETH. Per Alchemy, the standard has crossed roughly 40 million deployed smart accounts and over 100 million UserOperations, with Base, Polygon, and Optimism leading volume.

EIP-7702, shipped in Ethereum's Pectra upgrade on 7 May 2025, attacks the migration problem. Instead of asking 200 million existing EOAs to move to new smart-wallet addresses, it lets an EOA store a delegation designator pointing at a contract — so your existing address temporarily executes smart-account code during a transaction. Same address, same funds, new capabilities. In my view this is the more consequential of the two, because it meets users where they already are.

The emerging stack layers these: 7702 for legacy EOAs, 4337 for fresh smart accounts, and modular standards (ERC-7579 / ERC-6900) for plug-in account features.

Why it matters

For anyone building regulated or consumer-facing products — exchanges, RWA tokenization platforms, payment apps — the seed-phrase model has been the single biggest onboarding wall. Account abstraction lets a builder enforce KYC-gated transfer rules, allowlists, or per-session limits at the account level, which is far closer to how compliance teams actually think than bolting checks onto a UI. Combined with stablecoin gas payments, it removes the "go buy ETH first" step that kills most mainstream funnels.

The risks are real and already being exploited

This is not a free lunch. ERC-4337 introduces a multi-component pipeline — account, bundler, EntryPoint, paymaster, modules — each with its own trust assumptions, and as OpenZeppelin and others note, a bug in any one can compromise the account. Paymasters carry a specific footgun: pay the EntryPoint during validation, then have postOp revert without unwinding the payment, and you've created a drain.

EIP-7702's delegation model is the sharper edge. Because a single signed authorization tuple can hand persistent execution control to arbitrary code, it enables a new phishing class — sign once, lose everything. The data suggests this is being industrialized: drainer groups deployed automated sweeper contracts, and one arXiv analysis documents losses running into the millions, with security firm Wintermute reporting that the large majority of early 7702 delegations were tied to malicious activity. The lesson I'd draw: delegate from low-value accounts, and treat any "approve this delegation" prompt with the suspicion you'd give a hardware-wallet blind sign.

Current state (2026)

Account abstraction has moved from research to default infrastructure on most L2s. The next milestone is native, protocol-level AA at Layer 1 — work tracked under future upgrades like the proposed Hegotá set, targeted for the second half of 2026. If that lands, the EOA/contract distinction stops being a workaround and becomes a historical footnote. The open question isn't whether smart accounts win — they have — but whether wallet UX and signing standards can mature fast enough to close the phishing surface that 7702 just widened.

Frequently asked

What is the difference between ERC-4337 and EIP-7702?

ERC-4337 enables full smart-contract accounts using a separate mempool, bundlers, and an EntryPoint contract, without changing Ethereum's protocol. EIP-7702 instead lets an existing EOA delegate to contract code so it gains smart-account features without migrating to a new address. They're complementary: 7702 upgrades legacy wallets, 4337 powers purpose-built smart accounts.

Does account abstraction make transactions gasless?

It can. A paymaster contract can sponsor gas entirely or let users pay in a token like USDC instead of ETH. The gas still gets paid in ETH at the protocol level — the app or a third party just fronts it, which is what creates the gasless feel for the end user.

Is EIP-7702 safe to use?

The mechanism is sound, but its delegation model has been actively exploited via phishing — a single malicious authorization can hand persistent control of an account to attacker code, and documented drains have run into the millions. A reasonable precaution is to only delegate from accounts holding limited value and to scrutinize any delegation-signing prompt. This is not financial or security advice.

Sources

← All termsStablecoin Regulation Explorer →Read the blog →