Untrusted Address

An untrusted address is any external account or contract that interacts with a protocol and whose behavior cannot be guaranteed. In smart contract security, every address must be treated as potentially malicious.

This is because anyone can deploy a contract that behaves in unexpected ways, such as triggering callbacks or attempting to exploit reentrancy. When a protocol sends funds or calls a function on an untrusted address, it exposes itself to risk.

Developers must implement strict validation and use security patterns to limit the impact of such interactions. This is especially important in derivative protocols where large amounts of capital are moved.

By assuming all external actors are untrusted, developers can build more resilient systems. This approach is central to the design of secure decentralized finance.

It forces the use of defensive programming techniques. Every external interaction is a potential point of failure that must be guarded.