Back to articles

Multi-Sig Setups

Advanced 10 minSelf-Custody

Multi-signature, or multi-sig, is an advanced Bitcoin security technique that requires multiple private keys to authorize a transaction. Instead of a single key controlling your Bitcoin, you can set it up so that two out of three keys, or three out of five, must sign before any funds can move. This article explains how multi-sig works, when it makes sense, and how to get started.

What Is Multi-Sig?

In a standard Bitcoin setup, one private key controls one set of addresses. Whoever has that key can spend the Bitcoin. Multi-sig changes this by requiring multiple keys to agree.

The most common notation is "m-of-n," where n is the total number of keys and m is the number required to sign a transaction. For example, 2-of-3 means three keys exist and any two of them must sign to authorize a spend.

A Real-World Analogy

Imagine a safety deposit box at a bank that requires two keys to open. You hold one key and the bank holds the other. Neither party can open the box alone. This is the principle behind multi-sig.

Now extend this to 2-of-3: you hold one key, your spouse holds another, and a trusted third party like a lawyer holds the third. Any two of the three can authorize a transaction, but no single person can act alone. If one key is lost or one party is unavailable, the other two can still access the funds.

Why Multi-Sig Is More Secure

Single-signature setups have a single point of failure. If your one key is stolen, hacked, or lost, you are either robbed or locked out. Multi-sig distributes this risk.

  • Theft resistance: a thief who steals one of your keys still cannot spend your Bitcoin. They would need to compromise multiple keys stored in different locations.
  • Loss resistance: if you lose one key, you can still access your Bitcoin using the remaining keys. In a 2-of-3 setup, you can lose any one key and recover with the other two.
  • Coercion resistance: even under duress, you cannot be forced to hand over funds if the required number of keys are not physically accessible.

Common Multi-Sig Configurations

Different setups serve different needs.

  • 2-of-3 is the most popular for individuals. You might keep one key on a hardware wallet at home, one in a bank safe deposit box, and one with a trusted service provider. Any two keys can spend, and losing any one is not catastrophic.
  • 3-of-5 is used by organizations, family trusts, or very large holdings. It provides more redundancy and allows for geographic distribution of keys across countries or jurisdictions.
  • 2-of-2 is simpler but riskier. Both keys must sign, and losing either one means permanent loss of funds. This setup is sometimes used for joint accounts where both parties must agree.

Use Cases

Multi-sig is not just for the paranoid or the ultra-wealthy. Here are practical scenarios where it makes sense.

  • Personal security: you hold significant Bitcoin savings and want protection against theft, fire, or natural disaster destroying a single backup.
  • Family inheritance: you want your family to access Bitcoin if something happens to you, but not allow any single family member to take it unilaterally.
  • Business treasury: a company holds Bitcoin reserves and wants to require multiple authorized signers, similar to how a corporate bank account requires multiple signatures for large withdrawals.
  • Couples and partners: shared Bitcoin holdings where both parties must agree before spending.

Tools and Services

Several tools and services make multi-sig accessible without deep technical expertise.

  • Unchained: a company that specializes in assisted multi-sig. They hold one key in a 2-of-3 setup, you hold the other two. They provide a user-friendly interface and can assist with key recovery.
  • Casa: offers multi-sig products with mobile app support. Their premium tiers include 3-of-5 setups with geographically distributed keys and a dedicated security advisor.
  • Nunchuk: a Bitcoin wallet with built-in multi-sig support. Open source and focused on collaborative key management.
  • Sparrow Wallet: a desktop Bitcoin wallet with advanced features including multi-sig setup. Free, open source, and aimed at users who want full control.

Setting Up a 2-of-3: The Concept

Here is a conceptual walkthrough of setting up a 2-of-3 multi-sig wallet. The exact steps vary depending on the tools you choose, but the principle is the same.

First, you create three separate private keys, each on a different device. Typically this means three hardware wallets, or two hardware wallets and one software wallet. Each device generates its own seed phrase.

Next, you use a coordinator software like Sparrow, Nunchuk, or a service like Unchained to combine the three public keys into a multi-sig wallet. This creates a new set of addresses that require two of the three private keys to spend from.

You then back up each seed phrase separately and store them in different physical locations. You also back up the wallet configuration file, sometimes called the wallet descriptor, which tells any compatible software how to reconstruct the multi-sig wallet.

To receive Bitcoin, you share one of the multi-sig wallet's addresses. To spend, you create a transaction on one device, sign it, then transfer the partially signed transaction to a second device for the second signature. Only after the second signature is the transaction valid and can be broadcast.

The Tradeoffs

Multi-sig is more secure, but it is also more complex.

  • Setup complexity: creating a multi-sig wallet requires multiple devices and careful coordination. It is not difficult but requires attention to detail.
  • Spending complexity: every transaction requires coordination between multiple keys or devices. This is intentionally slow and deliberate, which is a feature for security but an annoyance for frequent transactions.
  • Backup complexity: you must securely store multiple seed phrases plus the wallet configuration. Losing the configuration can make recovery difficult even if you have all the seed phrases.
  • Cost: you may need multiple hardware wallets, and assisted services like Unchained and Casa charge subscription fees.

When Multi-Sig Is Overkill

If you are holding a small amount of Bitcoin, the complexity of multi-sig is likely not worth it. A single hardware wallet with a properly backed-up seed phrase provides excellent security for most individuals.

Multi-sig becomes valuable when the amount at stake justifies the extra complexity, when you need to coordinate access among multiple people, or when you want to eliminate every realistic single point of failure.

Next article

Setting Up Portfolio Tracking

Heartbit Guides · 4 min

Want to keep learning?

Browse more articles or create an account to access the full video course.

All articlesCreate an account
Back to all articles
Multi-Sig Setups