Gasless Transactions: How Meta-Transactions Enable Invisible Crypto Payments

A technical explainer on meta-transactions, ERC-2771, and EIP-2612 permit flows that enable users to interact with blockchain applications without holding ETH for gas. How gasless transactions improve onboarding and what privacy trade-offs they introduce.

The first barrier a new user encounters in Web3 is not complexity, key management, or wallet installation. It is the gas fee. Before a user can do anything on Ethereum, they must acquire ETH. Acquiring ETH requires an exchange account, which requires KYC verification, which requires a bank connection, which takes days. A user who downloads MetaMask at 10 AM cannot interact with a dApp by 10:05 AM. They can interact with Google’s services in seconds because Google does not require its users to purchase infrastructure tokens before using Gmail.

Meta-transactions solve this by separating the intent to transact from the payment for the transaction. The user signs a message expressing what they want to do. A third party (the relayer) submits the actual blockchain transaction and pays the gas fee. The user’s intent is executed on-chain. The user never touches ETH.

This is not an experimental pattern. OpenSea’s Seaport protocol processes gasless order creation. Uniswap’s Permit2 system enables gasless token approvals. OpenZeppelin’s Defender relayer service handles over 2 million meta-transactions per month across production applications. ERC-4337 account abstraction, which processed over 48 million UserOperations in Q4 2025, builds gas sponsorship directly into the account model. Gasless interaction has moved from a convenience feature to a structural requirement for mainstream adoption.

How Gas Works (and Why It Is a Problem)

Every Ethereum transaction requires gas, paid in ETH. Gas is the computational cost of executing the transaction on the Ethereum Virtual Machine. The gas price fluctuates based on network demand. In 2025, Ethereum mainnet gas prices ranged from 8 gwei during quiet periods to over 200 gwei during congestion events. At 200 gwei, a simple token transfer costs approximately $15. A complex DeFi interaction can exceed $100.

On Layer 2 networks (Base, Optimism, Arbitrum), gas costs are dramatically lower, typically under $0.01 per transaction. But the requirement remains: the user’s wallet must hold the L2’s native gas token (ETH on most L2s) before any transaction can be submitted.

This creates three problems:

Onboarding friction. A new user who wants to try a Web3 application must first navigate the cryptocurrency acquisition process. This adds days of delay and requires KYC, which directly contradicts the privacy benefits of wallet-based authentication.

UX discontinuity. Users accustomed to Web2 applications, where the cost of server computation is invisible, find it disorienting to pay per-interaction fees. The mental model shift from “I use the app” to “I pay the network to process my app interaction” is a significant adoption barrier.

Privacy degradation. Acquiring ETH typically requires an exchange with KYC. The KYC-verified exchange address is linked to the user’s identity. If the user transfers ETH from that address to a new wallet for gas, the transfer creates an on-chain link between the identified address and the new wallet. The gas funding transaction becomes a deanonymization vector.

Meta-Transactions: The Architecture

A meta-transaction splits the traditional transaction model into two components: the user’s signed intent and the relayer’s on-chain submission.

The Traditional Model

User → signs transaction (includes gas payment) → submits to network → network executes

The user is both the signer and the gas payer. The msg.sender in the contract is the user’s address.

The Meta-Transaction Model

User → signs message (intent only, no gas) → sends to relayer
Relayer → wraps message in transaction (pays gas) → submits to network → network executes
Contract → extracts original signer from wrapped message → executes intent as the user

The user signs the intent. The relayer pays the gas. The contract recognizes the original signer despite the transaction coming from the relayer’s address.

ERC-2771: Trusted Forwarder Standard

ERC-2771 defines a standard interface for meta-transaction forwarding. The key components:

Forwarder contract. A trusted smart contract that verifies the user’s signature and forwards the call to the target contract. The forwarder appends the original signer’s address to the calldata.

Target contract. The application contract, which inherits from ERC2771Context. Instead of reading msg.sender (which would be the forwarder), it reads the appended address to identify the original user.

Relayer. An off-chain service that receives signed messages from users, wraps them in transactions, and submits them to the forwarder contract. The relayer pays the gas.

The trust model is critical: the target contract must trust the forwarder to correctly append the original signer’s address. If the forwarder is compromised, it could forge the appended address and impersonate any user. This is why the forwarder is a well-audited, immutable contract, not an upgradeable proxy.

EIP-2612: Permit (Gasless Token Approvals)

EIP-2612 enables gasless ERC-20 token approvals. In the traditional model, approving a contract to spend your tokens requires an on-chain transaction (and thus gas). With Permit, the user signs an off-chain message authorizing the approval, and the spender can include that signature in their own transaction.

This is the mechanism behind Uniswap’s Permit2: instead of two transactions (approve + swap), the user signs one message (permit) and the swap contract includes the permit signature in the swap transaction. One on-chain transaction instead of two. The user does not need ETH for the approval step.

Permit has been adopted across major DeFi protocols. Over 85% of tokens deployed on Ethereum in 2025 included EIP-2612 support, according to Dune Analytics data.

ERC-4337: Paymasters

ERC-4337 account abstraction introduces the Paymaster, a contract that sponsors gas fees for UserOperations. The user submits a UserOperation (the account abstraction equivalent of a transaction) to a bundler. The bundler includes the operation in a bundle and submits it on-chain. A Paymaster contract, designated by the application, pays the gas.

The Paymaster model is more flexible than ERC-2771 relaying:

Application-sponsored gas. The dApp developer deploys a Paymaster that pays gas for any user interacting with their application. The cost is absorbed by the application, similar to how Web2 applications absorb server costs.

Token-based gas payment. A Paymaster can accept payment in ERC-20 tokens (USDC, DAI) instead of ETH. The user pays for gas, but in a stablecoin they already hold rather than ETH they must acquire.

Conditional sponsorship. Paymasters can implement logic: sponsor gas for the first 10 transactions (onboarding subsidy), sponsor gas for transactions below a certain value, or sponsor gas only for specific contract interactions.

Pimlico, a major ERC-4337 infrastructure provider, reported that Paymaster-sponsored transactions accounted for 67% of all UserOperations processed through their bundler in Q4 2025. The majority of smart account interactions are now gasless from the user’s perspective.

Privacy Implications of Gasless Transactions

Gasless transactions improve privacy in some dimensions and degrade it in others. A rigorous analysis requires examining both.

Privacy Benefits

No gas funding deanonymization. In the traditional model, a user who creates a fresh wallet for privacy must fund it with ETH for gas. That funding transaction creates a link between the funding source (often a KYC exchange) and the new address. Gasless transactions eliminate this link. The user’s wallet can have zero ETH balance and still interact with the blockchain. No funding transaction means no on-chain link to a funding source.

This is significant for GhostPass authentication use cases. A user can generate a fresh Ethereum address, authenticate with SIWE (which is off-chain and requires no gas), and interact with the application without ever funding the address. The address exists on-chain only if it interacts with a contract, and gasless transactions mean even those interactions do not require a prior funding transaction.

Reduced exchange exposure. Users who do not need to acquire ETH do not need to interact with KYC-regulated exchanges. The entire on-ramp that traditionally required identity verification becomes unnecessary for users whose interactions are gasless.

Privacy Costs

Relayer visibility. The relayer sees the user’s signed intent before submitting it on-chain. Depending on the relayer implementation, this may include the user’s IP address (from the API request), the transaction details, and the timing. A centralized relayer is a privacy chokepoint analogous to the L2 sequencer problem.

Paymaster correlation. A Paymaster that sponsors transactions for a specific application can observe every user who interacts with that application. If the same Paymaster is used across multiple applications (a Paymaster-as-a-Service provider), it can correlate user activity across those applications.

On-chain attribution. The meta-transaction itself is on-chain. While the gas payer is the relayer (not the user), the function call still references the user’s address. The transaction is publicly attributable to the user. Gasless does not mean invisible.

Mitigations

Decentralized relayer networks. Projects like Gelato Network and Biconomy operate relayer pools where the specific relayer for a transaction is selected from a set. This distributes the IP-to-transaction correlation across multiple parties rather than concentrating it in one.

Application-owned relayers. Stealth Cloud operates its own relay infrastructure on Cloudflare Workers. The relayer runs at the edge, processes the meta-transaction in a V8 isolate, and does not log the request metadata. This is the same zero-log architecture used for GhostPass authentication.

Tor/VPN routing for relay submissions. Users can submit meta-transaction requests through Tor or a VPN, breaking the IP-to-intent correlation at the relayer. The relayer receives the signed intent without knowing the submitter’s network identity.

Implementation Patterns

Pattern 1: Onboarding Subsidy

The application sponsors gas for a user’s first N transactions. After the subsidy is consumed, the user must fund their wallet or switch to a token-based Paymaster.

This pattern is common in gaming and social applications where the first few interactions must be frictionless. Farcaster, the decentralized social protocol, sponsors account creation and initial frame interactions through a Paymaster. Their onboarding conversion rate improved from 12% to 47% after implementing gasless account creation, according to data shared at ETHDenver 2026.

Pattern 2: Full Gas Sponsorship

The application absorbs all gas costs permanently. The user never pays for gas. This is viable on L2 networks where gas costs are fractions of a cent. An application processing 100,000 transactions per month on Base incurs approximately $50-$200 in gas costs, comparable to a modest cloud hosting bill.

Pattern 3: Token-Based Gas Payment

The user pays for gas in USDC, DAI, or the application’s native token. The Paymaster converts the token to ETH and pays the network. The user never holds or manages ETH.

This pattern removes the ETH acquisition barrier while maintaining a user-pays model. It is appropriate for applications where absorbing all gas costs is not economically viable.

Pattern 4: Sponsored Authentication

For applications using SIWE, the authentication itself is gasless (SIWE is an off-chain signature). But subsequent on-chain interactions (session key creation, soulbound token issuance, credential verification) may require gas. Sponsored authentication covers these on-chain identity operations, ensuring the entire identity flow is gasless.

The Economics of Gasless

Gasless transactions shift the economic model from user-pays to application-pays. This mirrors the Web2 transition from paid services to ad-supported free services, but with a critical difference: in Web2, the user pays with their data. In gasless Web3, the application pays with actual money (ETH for gas).

The sustainability depends on the cost differential. On Ethereum mainnet, sponsoring gas for a high-volume application is expensive. On L2 networks, it is negligible. The economic viability of gasless transactions is directly correlated with the L2 gas cost curve, which has been declining consistently since EIP-4844 (March 2024) reduced blob data costs by approximately 90%.

Biconomy reported that the average cost to sponsor a UserOperation on Base in February 2026 was $0.0003. At this cost, sponsoring 1 million transactions costs $300. For most applications, this is a rounding error in the infrastructure budget.

Gasless and Account Abstraction Convergence

The trend is clear: gasless transactions are converging with account abstraction. ERC-4337 Paymasters are replacing bespoke relayer implementations. The reasons are standardization (Paymasters follow a defined interface), composability (any ERC-4337 wallet can interact with any Paymaster), and infrastructure maturity (bundler and Paymaster services are now production-grade).

The convergence also addresses the relayer trust problem. In the ERC-2771 model, the relayer can censor transactions (refuse to submit them). In the ERC-4337 model, the bundler market is competitive: if one bundler refuses, the user can submit to another. The censorship resistance of gasless transactions improves as the bundler market becomes more competitive.

For Stealth Cloud and similar privacy-focused applications, the ERC-4337 model enables a clean architecture: the user authenticates with GhostPass (gasless, off-chain), interacts with the application (gasless, sponsored by Paymaster), and the only on-chain footprint is the application’s contract interactions, not the user’s gas funding history.

The Stealth Cloud Perspective

Gas fees are an infrastructure concern masquerading as a user experience. Asking users to acquire ETH before they can use an application is equivalent to asking web users to purchase bandwidth credits before loading a webpage. Meta-transactions and Paymasters move the cost to where it belongs: the infrastructure layer. Stealth Cloud processes authentication gaslessly because SIWE is an off-chain signature, and application interactions gaslessly because the gas cost on L2 is a fraction of a cent per operation. The user sees none of this. That invisibility is the point.