Please accompany Unilaunch to learn “ What Is a Multisig Wallet? How does it work? Single-key vs. Multisig, Increasing security, Two-factor authentication ” through the article below. Multisig stands for multi-signature, which is a specific type of digital signature that makes it possible for two or more users to sign documents as a group. Therefore, a multi-signature is produced through the combination of multiple unique signatures. Multisig technology has been extant within the world of cryptocurrencies, but the principle is one that existed long before the creation of Bitcoin.
In the context of cryptocurrencies, the technology was first applied to Bitcoin addresses in 2012, which eventually led to the creation of multisig wallets, one year later. Multisig addresses may be used in different contexts, but most use cases are related to security concerns. Hereby we discuss their use within cryptocurrency wallets.
How does it work?
As a simple analogy, we can imagine a secure deposit box that has two locks and two keys. One key is held by Alice and the other one is held by Bob. The only way they can open the box is by providing their both keys at the same time, so one cannot open the box without the consent of the other.
Basically speaking, the funds stored on a multi-signature address can only be accessed by using 2 or more signatures. Therefore, the use of a multisig wallet enables users to create an additional layer of security to their funds. But before going further, it is important to understand the basics of a standard Bitcoin address, which relies on a single key instead of multiple (single-key address).
Related: What Is Ethereum Plasma?
Single-key vs. Multisig
Usually, Bitcoins are stored in a standard, single-key address, meaning that whoever holds the corresponding private key is able to access the funds. This means that only one key is needed to sign transactions and that anyone that has the private key, is able to transfer the coins at will, without authorization from anybody else.
While managing a single-key address is faster and easier than a multisig one, it presents a number of issues, especially in regards to security. By having a single key, the funds are protected by a single point of failure, and that is why cybercriminals are constantly developing new phishing techniques to try and steal the funds of cryptocurrency users.
Moreover, single-key addresses are not the best option for businesses involved with cryptocurrencies. Imagine the funds of a big company being stored on a standard address, which has a single corresponding private key. This would imply that the private key would be either entrusted to a single person or to multiple individuals at the same time – and that is clearly not the safest way to go.
Multisig wallets offer a potential solution to both of these problems. Unlike single-key, the funds stored on a multisig address can only be moved if multiple signatures are provided (which are generated through the use of different private keys).
According to the way a multisig address is configured, it may require a different combination of keys: 2-of-3 is the most common one, where only 2 signatures are sufficient to access the funds of a 3-signature address. However, there are many other variations, such as 2-of-2, 3-of-3, 3-of-4, etc.
There are a number of possible applications for the technology. Here are some of the most common use cases of multi-signature cryptocurrency wallets.
By using a multisig wallet, users are able to prevent the problems caused by the loss or theft of a private key. So even if one of the keys is compromised, the funds are still safe.
Imagine that Alice creates a 2-of-3 multisig address and then stores each private key into a different place or device (e.g. mobile phone, laptop, and tablet). Even if her mobile device is stolen, the thief won’t be able to access her funds using only 1 of the 3 keys. Similarly, phishing attacks and malware infections are less likely to succeed because the hacker would most likely have access to a single device and key.
Malicious attacks aside, if Alice loses one of her private keys, she can still access her funds using the other 2 keys.
By creating a multisig wallet that requires two keys, Alice is able to create a two-factor authentication mechanism to access her funds. For instance, she could have one private key stored in her laptop and the other one in her mobile device (or even on a piece of paper). This would ensure that only someone who has access to both keys is able to make a transaction.
Keep in mind, however, that using multisig technology as two-factor authentication can be dangerous – especially if it is set as a 2-of-2 multisig address. If one of the keys are lost, you won’t be able to access your funds. Therefore, using a 2-of-3 setup or a third party 2FA service that counts with backup codes would be safer. When it comes to crypto exchange trading accounts, using Google Authenticator is highly recommended.
Creating a 2-of-3 multisig wallet can allow for an escrow transaction between two parties (Alice and Bob) that includes a third party (Charlie) as a mutually trusted arbiter in case anything goes wrong.
In such a scenario, Alice would first deposit the funds, which would be locked up (neither user being able to access them on their own). Then, if Bob provides the goods or services as agreed, they can both use their keys to sign and complete the transaction.
Charlie, the arbiter, would only need to step in if there was a dispute, at which point he could use his key to create a signature that would be provided to either Alice or Bob, according to Charlie’s judgment.
A board of directors might use a multisig wallet to control access to a company’s funds. For example, by setting up a 4-of-6 wallet where each board member holds one key, no individual board member is able to misuse the funds. Therefore, only decisions that are agreed upon by the majority can be executed.
Although multisig wallets are a good solution for a range of problems, it is important to keep in mind that there are some risks and limitations involved. Setting up a multisig address requires some technical knowledge, especially if you do not want to rely on third-party providers.
Additionally, since blockchain and multisig addresses are both relatively new, it may be difficult to seek legal recourse if something goes wrong. There is no legal custodian of funds deposited into a shared wallet with multiple keyholders.
Despite having a few disadvantages, multisig wallets have numerous interesting applications, making Bitcoin and other cryptocurrencies even more useful and appealing – especially to businesses. By requiring more than one signature to transfer funds, multisig wallets provide enhanced security and allow for trustless escrow transactions, and as such, the technology is likely to see increased usage in the future.