What is a multisig?

A multisig — short for multi-signature — is a wallet that requires multiple independent signers to approve a transaction before it executes. A 2-of-3 multisig needs any two of three designated keys to sign. A 3-of-5 needs three of five. The setup eliminates the single-point-of-failure problem that plagues ordinary wallets: lose one key, lose access; get one key stolen, lose everything. Multisig turns that binary into a threshold.

Why it exists

A regular wallet, whether hot or hardware, is backed by exactly one seed phrase. If that seed phrase is lost, the wallet is dead. If it is stolen, the funds are gone. For individuals holding small amounts, the tradeoff is acceptable. For a DAO holding a treasury, a company holding customer deposits, or an individual holding a retirement-sized amount, a single point of failure is unacceptable.

Multisig replaces one key with a threshold of keys. A 2-of-3 setup might put one key on a hardware wallet at home, one at a bank deposit box, one with a trusted family member. Any two can spend. Any one can be lost without losing access to the funds. Any one can be stolen without the thief being able to steal the funds.

This is both better security (no single key grants access) and better continuity (no single key's loss is fatal). Those two properties are why multisig has become the standard for serious holdings.

Safe (formerly Gnosis Safe)

The dominant multisig implementation is Safe, a smart-contract wallet deployed on Ethereum and most EVM chains. A Safe is a contract at its own address; the "signers" are individual Ethereum addresses (usually hardware wallets) whose combined approvals authorize the Safe to do things. The Safe holds the assets; the signers' keys hold the authority.

A Safe transaction is proposed by one signer, then signed off-chain by the required threshold of co-signers, and executed by anyone (usually the last signer or a relayer). Every action is visible on-chain via Safe's UI, Etherscan, or block explorers specifically for Safe wallets.

Safe is used by MakerDAO, Optimism Foundation, Uniswap Labs, nearly every serious DAO, most L2 sequencer multisigs, and individual HNW users. As of 2025, Safes collectively hold over 100 billion dollars in assets.

Bitcoin multisig

Bitcoin had multisig before Ethereum existed. Bitcoin's script language supports M-of-N signature schemes natively. Unchained Capital, Casa, and Nunchuk build user-friendly multisig services on top of native Bitcoin multisig, usually with 2-of-3 setups where the user holds two keys and the service holds the third (as a recovery backup, not a unilateral signer).

Compared to Ethereum's smart-contract multisig, Bitcoin multisig is more minimal. There is no contract; the multisig is a script embedded directly in the transaction. It is also less flexible: changing the signer set usually means moving funds to a new multisig address rather than updating the existing one.

Threshold signatures

A newer approach uses multi-party computation (MPC) to generate a single signature from multiple parties, without ever assembling a single private key. Fireblocks, Copper, and Coinbase's Smart Wallet use MPC variants. To the outside world, the wallet looks like an ordinary single-signer wallet — there is only one public key on chain. Internally, the signing operation requires a threshold of parties.

MPC is more gas-efficient than on-chain multisig (no multi-step approval, just a normal transaction) and provides better privacy (the signer set is not visible on-chain). It is also more complex, requires specialized software, and the failure modes are different. For institutions, MPC is the dominant model. For DAOs and individual advanced users, on-chain multisig like Safe is still the default because it is transparent and auditable.

Operational considerations

A multisig is only as good as the independence of its signers. If three signers all use the same seed phrase stored in the same Google Drive, the multisig is effectively a 1-of-3. The point is to have distinct keys, ideally on distinct hardware, ideally in distinct physical locations, ideally held by people who will not all be offline or compromised at the same time.

Coordinating signatures is also non-trivial. For a DAO multisig with signers across time zones, collecting three signatures on an urgent transaction can take hours. This is one reason DAOs increasingly combine multisigs with on-chain governance — routine operations through multisig, contentious decisions through token voting — rather than putting every action through signer approval.

Signing safety is a daily practice. Safe signers have been compromised by sophisticated phishing (the Ronin hack was a multisig compromise), by approving transactions without fully reading them, and by internal collusion. No technical setup replaces signer discipline.

Recovery and inheritance

One underrated benefit of multisig is that it makes inheritance tractable. A single-key wallet inherited means the heir gets the seed, full stop. Either they have perfect operational security or they do not. With multisig, the deceased can hold one or two of the keys; trusted parties (a lawyer, a relative) can hold the others, with instructions about when and how to combine them. The setup is more complex but also more recoverable without creating moments of full vulnerability.

Why it matters

Multisig turns crypto self-custody from a hobby into a profession. For any serious balance — a DAO treasury, a corporate holding, an individual's long-term retirement pile — the difference between a single-signer setup and a well-designed multisig is the difference between a risky position and a durable one. Most of the biggest catastrophic losses in crypto history, from individual users to exchange operational failures, would have been prevented by a competent multisig. The tool is available. Using it is a discipline.