A Hash Time-Locked Contract (HTLC) is a type of smart contract that facilitates conditional payments by requiring the recipient to acknowledge receipt cryptographically within a set timeframe or forfeit the ability to claim the funds. It uses two primary cryptographic primitives: a hashlock and a timelock. The hashlock requires the presentation of a cryptographic secret (preimage) that generates a known hash, while the timelock, often implemented via OP_CHECKLOCKTIMEVERIFY (CLTV) or OP_CHECKSEQUENCEVERIFY (CSV) in Bitcoin, defines an absolute or relative deadline for the transaction to be valid.
LABS
Glossary
Hash Time-Locked Contract (HTLC)
A Hash Time-Locked Contract (HTLC) is a smart contract that uses a cryptographic hash and a timelock to enable conditional, trustless payments across blockchains.
Chainscore © 2026
definition
BLOCKCHAIN PROTOCOL
What is a Hash Time-Locked Contract (HTLC)?
A smart contract mechanism enabling conditional, trust-minimized value transfer across payment channels and blockchains.
The core innovation of HTLCs is enabling atomic swaps and secure cross-chain transactions without a trusted third party. In a typical atomic swap between two parties on different blockchains, Party A locks funds in an HTLC on Chain A using a hash of a secret. Party B, seeing proof of this lock, creates a corresponding HTLC on Chain B. To claim the funds on Chain B, Party A must reveal the secret, which then allows Party B to claim the funds on Chain A using the same secret. If either party fails to act before the timelock expires, the funds are refunded to the original sender, eliminating counterparty risk.
HTLCs are the foundational building block for payment channel networks like the Lightning Network. They allow multi-hop payments where intermediaries can forward funds without taking custody, as the hashlock ensures the secret propagates backward through the network upon payment completion. This creates a secure path for routing payments, as each hop's HTLC is contingent on the next hop successfully revealing the secret before a series of decrementing timelocks expire.
While revolutionary, HTLCs have limitations. The requirement for a strict timelock decrement at each hop in a payment path introduces complex routing logic and potential for fee sniping attacks if timings are misaligned. Furthermore, the all-or-nothing nature means a single node's failure can cause the entire payment to fail. Newer protocols like Atomic Multi-Path Payments (AMP) and Point Time-Locked Contracts (PTLCs) are being developed to address these scalability and privacy constraints, offering more flexible and efficient conditional payment structures.
etymology
TERM ORIGIN
Etymology and Origin
This section traces the linguistic and conceptual roots of the Hash Time-Locked Contract (HTLC), explaining how its name precisely describes its cryptographic function.
The term Hash Time-Locked Contract (HTLC) is a compound noun where each component describes a core cryptographic primitive. A hash refers to a cryptographic hash function, a one-way algorithm that produces a unique, fixed-size fingerprint (a hash digest) from any input data. The time-lock component specifies a conditional time constraint, typically enforced by a CHECKLOCKTIMEVERIFY or CHECKSEQUENCEVERIFY opcode in Bitcoin, or similar constructs in other blockchains. Finally, a contract in this context is a deterministic script or smart contract that executes based on these predefined conditions.
The concept originated from the need to enable trust-minimized exchanges across different blockchain ledgers, a process known as atomic swaps. The seminal idea was formalized in 2013 by Tier Nolan, who described a protocol for cross-chain trading without a trusted third party. The HTLC became the fundamental building block for this, acting as a cryptographic escrow. Its design elegantly solves the double-spend problem in a cross-chain setting by making the revelation of a secret (the preimage to the published hash) the trigger for payment, with the time-lock ensuring funds can be reclaimed if the swap fails.
The 'hash' in HTLC creates the payment puzzle. The sender generates a secret (preimage) and publishes its hash. The recipient can only claim the funds by presenting the correct preimage, which proves they completed their side of the deal. The 'time-lock' acts as the safety refund mechanism. If the recipient fails to provide the preimage before a specified block height or timestamp, the funds are automatically returned to the sender. This creates the two possible, mutually exclusive outcomes that guarantee atomicity: either the swap completes successfully, or all parties get their funds back.
While strongly associated with Bitcoin's script language and the Lightning Network, the HTLC pattern is a generic cryptographic construct that has been implemented across various smart contract platforms like Ethereum. Its evolution continues in layer-2 protocols and interoperability solutions, where variations like Point Time-Locked Contracts (PTLCs) use adaptor signatures for improved privacy and efficiency. The name itself remains a perfectly descriptive technical label for one of decentralized finance's most critical trustless coordination mechanisms.
key-features
HTLC MECHANISM
Key Features
Hash Time-Locked Contracts (HTLCs) are smart contract protocols that enable conditional payments across blockchains or payment channels, using cryptographic proofs and time constraints to enforce atomicity.
01
Cryptographic Hashlock
The core security mechanism. A payment is locked with a cryptographic hash of a secret preimage. To claim the funds, the recipient must reveal the secret that produces this hash. This creates a cryptographic proof of payment that can be verified across systems without revealing the secret prematurely.
- Example: Locking funds with
H = SHA256(secret). - Function: Enforces that only the party who knows the secret can claim the funds.
02
Time-Lock (Timelock)
A deadline enforced by the blockchain. If the recipient fails to claim the funds by providing the secret before the timelock expires, the sender can refund the locked amount. This prevents funds from being locked indefinitely.
- Implemented via:
OP_CHECKLOCKTIMEVERIFY(CLTV) orOP_CHECKSEQUENCEVERIFY(CSV) in Bitcoin Script; similar constructs in other smart contract platforms. - Purpose: Provides a safety net and enforces a strict settlement window for the atomic swap.
03
Atomicity Guarantee
HTLCs enable atomic swaps, where the entire transaction sequence either completes successfully for all parties or fails entirely, with no intermediate state. This eliminates counterparty risk in cross-chain trades.
- Process: Party A locks funds for B using hash H. B must reveal the secret to claim them, which simultaneously reveals it to A, allowing A to claim funds from B on another chain.
- Result: The swap is trustless; you cannot get stuck having sent funds without receiving the counterpart.
04
Cross-Chain & Layer-2 Interoperability
HTLCs are the foundational protocol for interoperability between disparate systems. They are the primary mechanism behind:
- Cross-Chain Atomic Swaps: Direct peer-to-peer trading between different blockchains (e.g., Bitcoin for Litecoin).
- Lightning Network & Payment Channels: Enable off-chain payments by using HTLCs to route payments across a network of channels, with on-chain settlement as a fallback.
- Bridge Protocols: Early cross-chain bridges often used HTLC models for asset transfers.
05
Preimage Revelation & Routing
In payment channel networks like Lightning, HTLCs enable multi-hop payments. The secret preimage is passed backwards along the payment route, allowing each intermediary to claim funds from the previous hop.
- Routing Protocol: The final recipient generates the secret. As the preimage travels back, each node can satisfy the hashlock condition of the HTLC they offered.
- Key Property: The preimage is only revealed upon successful payment to the end destination, securing the route.
06
Limitations & Considerations
While powerful, HTLCs have specific constraints that newer protocols aim to address.
- Liquidity Lock-up: Funds are immobilized for the duration of the timelock.
- Timelock Mismatch Risk: Requires careful coordination of expiry times across chains to avoid loss.
- Privacy: The hash is public, allowing network observers to link transactions.
- Scalability: Not suitable for complex, stateful conditional logic beyond simple hash/time checks.
how-it-works
MECHANISM
How It Works: The Atomic Swap Example
A practical walkthrough of how a Hash Time-Locked Contract (HTLC) enables a trustless, cross-chain exchange of assets without intermediaries.
An atomic swap is a peer-to-peer cryptocurrency exchange executed directly between two parties on different blockchains using Hash Time-Locked Contracts (HTLCs). The process is "atomic," meaning it either completes entirely or fails completely, preventing one party from receiving an asset without sending their own. It begins when Party A, wanting to trade Bitcoin for Party B's Litecoin, generates a cryptographic secret and publishes its hash to the Bitcoin blockchain within an HTLC, offering a payment that can only be claimed by revealing the secret.
Party B sees the hash on the Bitcoin chain and creates a corresponding HTLC on the Litecoin blockchain, locking their Litecoin with the same hash. This creates the crucial link between the two contracts. To claim the Bitcoin, Party B must first reveal the secret, which is done by claiming the Litecoin from the contract they created. This action publicly discloses the secret on the Litecoin blockchain, allowing Party A to immediately use it to claim the Bitcoin, finalizing the swap.
The time-lock is the critical security mechanism enforcing the swap's atomicity. Each HTLC includes a refund clause that allows the original sender to reclaim their funds after a predefined block height. If Party B fails to claim the Bitcoin and reveal the secret before Party A's time-lock expires, the Bitcoin is refunded. Similarly, if Party A does not claim the Litecoin after the secret is revealed and before Party B's time-lock expires, the Litecoin is refunded. This ensures no funds can be permanently locked.
This mechanism enables cross-chain interoperability for assets with compatible cryptographic hash functions (like SHA-256) and scripting capabilities. While pioneering, practical HTLC-based swaps face challenges like blockchain congestion affecting time-locks and the need for both chains to support the necessary opcodes. They established the foundational principle for more advanced cross-chain communication protocols and decentralized exchange (DEX) mechanisms that operate without custodians.
visual-explainer
VISUAL EXPLAINER
Hash Time-Locked Contract (HTLC)
A technical deep dive into the smart contract mechanism that enables trustless, cross-chain atomic swaps and secure conditional payments.
A Hash Time-Locked Contract (HTLC) is a specialized smart contract that facilitates trustless transactions by using a cryptographic hash and a timelock to create a conditional payment. It is the foundational protocol for atomic swaps and secure, cross-chain asset transfers. The contract ensures that a payment is only finalized if the recipient provides a cryptographic proof (the preimage of a hash) within a specified time window. If the proof is not provided, the funds are automatically refunded to the sender. This mechanism eliminates counterparty risk without requiring a trusted third party.
The core mechanics rely on two interdependent components: the hashlock and the timelock. The initiating party creates a cryptographic hash of a secret (the preimage) and embeds it into the contract. To claim the funds, the counterparty must reveal this secret, which proves they can unlock the hash. Simultaneously, a timelock—implemented via OP_CHECKLOCKTIMEVERIFY in Bitcoin or block numbers in Ethereum—sets a strict deadline. This creates a race condition: the receiver must act before the timelock expires to claim the payment, or the sender can reclaim their funds. This elegant structure ensures the transaction is either completed in full or entirely reverted.
HTLCs are most famously used for cross-chain atomic swaps, allowing users to trade cryptocurrencies like Bitcoin for Litecoin directly between their own wallets. Beyond simple trades, they are integral to Layer 2 scaling solutions such as the Lightning Network, where they enable secure, multi-hop payment channels. In these networks, HTLCs allow funds to be routed across multiple nodes, with each hop secured by the same hashlock condition, ensuring no intermediary can steal the funds. This application is critical for enabling fast, low-cost microtransactions atop slower base-layer blockchains.
While powerful, HTLCs have limitations. The fixed timelock requires careful coordination and network timing estimates to prevent funds from being locked unnecessarily. They are also susceptible to hash exhaustion attacks if weak hash functions are used, and they require both participating blockchains to support the necessary scripting capabilities (like hash functions and timelocks). Despite these constraints, the HTLC remains a seminal innovation in cryptographic finance, providing a verifiable, on-chain blueprint for conditional logic and trust minimization that underpins much of modern decentralized finance (DeFi) infrastructure.
ecosystem-usage
HASH TIME-LOCKED CONTRACT (HTLC)
Ecosystem Usage
HTLCs are a foundational smart contract primitive enabling conditional, time-bound value transfers, primarily used to facilitate trust-minimized cross-chain and off-chain interactions.
04
Conditional Payments & Escrow
HTLCs can act as a form of cryptographic escrow for conditional payments outside of pure asset swaps. The release of funds is contingent on the revelation of specific, verifiable data.
- Use Cases:
- Oracle-Triggered Payments: Paying out a prediction market or insurance contract when an oracle attests to a real-world event by publishing the secret.
- Data Delivery Proof: Paying for a file or service only upon delivery of the decryption key (the secret).
- Advantage: Eliminates the need for a trusted third-party escrow agent, replacing it with cryptographic guarantees and a strict timeout.
06
Limitations & Security Considerations
While powerful, HTLCs have inherent limitations that dictate their design and usage.
- Timelock Racing: In routed payments, carefully decrementing timelocks are critical to prevent timelock race attacks, where an intermediary could steal funds.
- Liquidity Lockup: Funds are immobilized for the duration of the contract's timelock, creating opportunity cost.
- Privacy Leakage: The hash preimage (secret) is revealed on-chain upon completion, which can link transactions.
- Cross-Chain Complexity: For atomic swaps, they require chains that support similar hash functions and timelock opcodes, limiting universal interoperability.
security-considerations
HASH TIME-LOCKED CONTRACT (HTLC)
Security Considerations
While HTLCs are a foundational tool for secure, trust-minimized swaps, their implementation introduces specific risks that must be managed. This section details the primary security considerations for developers and users.
01
Hash Preimage Exposure
The core security of an HTLC relies on the secrecy of the preimage (the input that generates the hash). If the preimage is leaked before the intended recipient claims the funds, any party can claim the locked amount. This risk is managed by:
- Using a cryptographically secure hash function (e.g., SHA-256).
- Ensuring the preimage is generated securely and transmitted only to the intended counterparty via a private channel.
02
Timing Attacks & Griefing
The time-lock is a critical parameter. If set too short, the legitimate recipient may be unable to claim funds due to network congestion. If set too long, the locking party's capital is inefficiently tied up, and they are exposed to price volatility risk. Malicious actors can also initiate swaps with no intention to complete them, 'griefing' counterparties by locking their capital temporarily.
03
Implementation Flaws
Bugs in the HTLC smart contract code can lead to catastrophic loss. Common vulnerabilities include:
- Reentrancy attacks on the claim function.
- Improper validation of the preimage or time-lock expiry.
- Logic errors in refund pathways.
- Front-running where a network observer sees the preimage on-chain and races to claim the funds before the intended recipient.
04
Cross-Chain Bridge Risk
When HTLCs are used in cross-chain atomic swaps, security depends on the weakest chain in the pair. Considerations include:
- Chain reorganization (reorg) risk, where a transaction is reversed after a preimage is revealed.
- Different block times and finality guarantees between chains.
- The security and liveness of any relayers or watchtowers used to monitor the counterparty chain.
05
Oracle & Data Feed Reliance
Some advanced HTLC variants (e.g., for DEX swaps) may rely on external price oracles to determine swap ratios. This introduces oracle manipulation risk, where an attacker feeds incorrect data to unbalance the swap in their favor. The security of the HTLC is then only as strong as the oracle's decentralization and attack resistance.
06
Privacy Leakage
HTLCs are not private by default. On public blockchains:
- The hash value is visible on-chain, potentially allowing linkage of related transactions.
- The time-lock duration can reveal information about the parties' expected settlement speed or geographic proximity (based on latency assumptions).
- Large or repeated HTLCs can facilitate chain analysis, compromising the financial privacy of the involved addresses.
COMPARISON
HTLC vs. Other Cross-Chain Mechanisms
A feature and trade-off comparison of Hash Time-Locked Contracts against other major cross-chain interoperability approaches.
| Feature / Metric | HTLC | Atomic Swaps (via HTLC) | Lock-and-Mint Bridges | Liquidity Networks |
|---|---|---|---|---|
Core Mechanism | Hash-locked conditional payment | Peer-to-peer HTLC execution | Centralized or federated custodian | Pre-funded liquidity pools |
Trust Model | Trust-minimized (cryptographic) | Trustless (peer-to-peer) | Trusted (custodial) or federated | Trust-minimized (contract-based) |
Native Asset Transfer | ||||
Wrapped Asset Transfer | ||||
Typical Latency | 10 min - 24 hrs | 10 min - 24 hrs | ~5-30 min | < 1 min |
Capital Efficiency | High (no locked capital) | High (no locked capital) | Low (requires over-collateralization) | Medium (requires liquidity provisioning) |
Counterparty Risk | Present (must trust counterparty to claim) | Present (peer-to-peer counterparty) | Present (bridge operator risk) | Minimal (automated by smart contract) |
Primary Use Case | Conditional payments, atomic swaps | Peer-to-peer token exchange | General asset portability between chains | High-speed, low-cost transfers |
evolution
FROM LIGHTNING TO CROSS-CHAIN
Evolution and Current Role
The Hash Time-Locked Contract (HTLC) has evolved from a core mechanism for payment channels into a fundamental primitive for secure, trust-minimized transfers across blockchain networks.
The Hash Time-Locked Contract (HTLC) was originally conceived as the cryptographic engine for off-chain payment channels, most notably within the Lightning Network. Its primary role was to enable conditional, time-bound payments that could be settled on-chain only if a dispute arose, allowing for near-instant, high-volume micropayments. This solved Bitcoin's scalability limitations by moving the vast majority of transactions off the main blockchain, using HTLCs as the enforceable guarantee for each step in a payment route.
The utility of HTLCs quickly expanded beyond single-blockchain scaling. Their clever combination of a hashlock (a cryptographic condition requiring knowledge of a secret) and a timelock (a deadline for action) made them the ideal primitive for atomic swaps. This allowed for the peer-to-peer exchange of different cryptocurrencies (e.g., Bitcoin for Litecoin) without centralized intermediaries, marking HTLCs' first major foray into cross-chain interoperability. The contract ensures that either the entire swap completes atomically, or all funds are refunded, eliminating counterparty risk.
Today, the role of HTLCs is foundational in cross-chain bridges and more complex DeFi composability. While newer bridge designs often use federations or optimistic models, HTLC-based bridges provide a robust, trust-minimized option for moving assets between chains. Their predictable, code-enforced logic makes them a critical building block in decentralized finance, enabling functions like cross-chain collateralization and liquidity provisioning. However, their reliance on strict timelocks introduces challenges like liquidity provider capital being locked for predictable durations and vulnerability to griefing attacks.
The evolution continues as HTLC logic is integrated into more sophisticated protocols. Modern implementations are often abstracted within SDKs and bridge frameworks, where they function as a secure settlement layer. While not a panacea for all interoperability challenges, the HTLC remains a vital, battle-tested cryptographic primitive whose core principles of conditional and time-bound escrow continue to underpin a significant portion of secure, decentralized value transfer across the blockchain ecosystem.
HASH TIME-LOCKED CONTRACT (HTLC)
Common Misconceptions
Hash Time-Locked Contracts (HTLCs) are a fundamental cryptographic primitive enabling trust-minimized, conditional payments across blockchains and payment channels. This section clarifies widespread misunderstandings about their function, security, and limitations.
No, an HTLC is a specific, standardized conditional payment logic, not a general-purpose smart contract. An HTLC is a cryptographic script or contract template that enforces a single, specific condition: a payment can be claimed by either revealing a secret preimage that hashes to a known value (hashlock) or after a predefined time period expires (timelock). It lacks the Turing-complete functionality of a general-purpose smart contract (like those on Ethereum) which can encode complex, arbitrary business logic. HTLCs are the atomic building blocks used within broader smart contract systems or blockchain scripts to facilitate cross-chain swaps and Lightning Network payments.
HASH TIME-LOCKED CONTRACT (HTLC)
Frequently Asked Questions (FAQ)
A Hash Time-Locked Contract (HTLC) is a smart contract that enables conditional payments across blockchains or payment channels. These questions cover its core mechanics, use cases, and security considerations.
A Hash Time-Locked Contract (HTLC) is a specialized smart contract that facilitates conditional payments by requiring the recipient to acknowledge receipt with a cryptographic proof within a specified time limit. It works by locking funds with two conditions: the presentation of the cryptographic preimage (the secret data) that produces a known hash, or the expiration of a predefined timelock, which returns funds to the sender. This creates a trust-minimized escrow that is fundamental to atomic swaps and cross-chain transactions.
Core Components:
- Hashlock: Funds are locked with a cryptographic hash (e.g.,
SHA-256). To claim them, the recipient must reveal the original data (preimage) that generates this hash. - Timelock: A blockchain height or timestamp deadline. If the preimage is not revealed before this deadline, the sender can reclaim the locked funds.
This mechanism ensures that either the entire transaction completes atomically, or all parties can retrieve their funds, eliminating counterparty risk for simple value transfers.
ENQUIRY
Get In Touch
today.
Our experts will offer a free quote and a 30min call to discuss your project.
NDA Protected
Confidentiality24h Response
Time to ValueDirectly to Engineering Team
No Sales Fluff10+
Protocols Shipped
$20M+
TVL Overall