Bitcoin multisig requires multiple private keys to authorize transactions — eliminating single points of failure. This guide explains 2-of-3 and 3-of-5 setups, PSBT signing workflows, the best hardware wallets for multisig, and whether to DIY or use Unchained or Casa.
Bitcoin multisig (multi-signature) requires multiple private keys to authorize a transaction. Instead of one key controlling your bitcoin, you distribute control across two, three, or five keys — and require a threshold of those keys to sign before any funds move.
The result: no single point of failure. Lose one key? Your bitcoin is safe. One key gets stolen? The thief can't move funds without the others. Multisig is how serious bitcoiners protect life-changing amounts of money. If you hold more than $100,000 in bitcoin, you should understand this setup.
A 2-of-3 multisig wallet has three keys. Any two of the three can sign a transaction. This means:
A 3-of-5 multisig wallet has five keys, any three of which can sign. More redundancy — you can lose two keys and still recover — but setup and ongoing management is more complex.
For a 2-of-3 setup, a common configuration:
Key 1: Hardware wallet at home (primary signing device) Key 2: Hardware wallet in a bank safe deposit box or second location Key 3: Hardware wallet with a trusted family member, attorney, or institution
You need any two to transact. If your house burns down (Key 1 lost), use Key 2 + Key 3. If you lose the safe deposit box (Key 2 lost), use Key 1 + Key 3.
Unchained offers collaborative custody where they hold one of your three keys. Casa does the same. Both hold 1 of 3 keys, with the other two in your hands — you always retain majority control.
For a 3-of-5 setup:
Key 1: Primary hardware wallet (home) Key 2: Second hardware wallet (home, different room or safe) Key 3: Safe deposit box hardware wallet Key 4: Trusted family member Key 5: Institutional key holder (Unchained or Casa)
You can lose any two keys and still recover with three.
PSBT (Partially Signed Bitcoin Transaction) is the standard protocol for coordinating multisig. Here's how a transaction gets signed:
The critical step: each hardware wallet independently shows you the destination address and amount. Always verify both match what you intended before signing. This is why air-gapped signing via QR codes is preferred over USB — no physical connection means no firmware exploit risk from a compromised computer.
Not all hardware wallets are equal for multisig. What matters: air-gapped signing, PSBT via QR, and reliable xpub export.
| Wallet | Air-Gapped | PSBT QR | Multisig Quality | Best Role |
|---|---|---|---|---|
| Coldcard Mk4 | Yes | Yes | Excellent | Primary or backup key |
| Coldcard Q | Yes | Yes (large screen) | Excellent | Primary key, multisig focused |
| Foundation Passport | Yes | Yes | Excellent | Primary key |
| BitBox02 Bitcoin-Only | No | USB only | Good | Home key (convenience) |
| Blockstream Jade Plus | Yes | Yes | Good | Backup key |
Recommendation: For 2-of-3, use Coldcard Mk4 or Foundation Passport for your primary keys. Their air-gapped QR signing workflow is the most secure option available to consumers. BitBox02 works well as a third key where USB connectivity is acceptable.
The Coldcard Q has a large built-in QR code display purpose-built for multisig workflows — worth the extra cost if you'll be signing PSBTs regularly.
Your coordinator software manages the multisig wallet descriptor, constructs transactions, and collects signatures. It does not hold private keys.
Sparrow Wallet — Desktop (Mac/Windows/Linux), free, open-source, the best multisig coordinator available. Full coin control, transaction analysis, hardware wallet integration. Requires some technical comfort.
Bitcoin Safe — Desktop, focused on making multisig accessible. Cleaner UI than Sparrow, excellent for first-time multisig users. Free and open-source.
Nunchuk — Mobile + desktop, designed for collaborative multisig across teams or families. Offers optional key backup service. Good for non-technical co-signers.
Unchained Vault — Web-based, Unchained holds one of your three keys. Easiest onboarding path to 2-of-3. Requires trusting Unchained with one key.
Casa — Mobile-first, Casa holds one key. Best for people who want a guided experience through the whole setup.
| DIY (Sparrow) | Unchained | Casa | |
|---|---|---|---|
| Keys you control | 3 of 3 | 2 of 3 | 2 of 3 |
| Institution holds key | No | Yes (1 of 3) | Yes (1 of 3) |
| Annual fee | $0 | $250–$400/yr | $250–$350/yr |
| Setup complexity | High | Medium | Low |
| Recovery complexity | High | Low (call them) | Low (app) |
| Inheritance support | Manual | Yes (built-in) | Yes (built-in) |
| Best for | Technical bitcoiners | $500k+ serious users | Mainstream self-custody |
Go DIY if you understand Bitcoin deeply, want zero third-party involvement, and have the time to learn PSBT workflows and wallet descriptor management.
Go Unchained if you want institutional-grade security without giving up majority control. They hold 1 of 3 keys, help you recover if needed, and offer formal inheritance planning. See our Unchained vs. Casa comparison for a deep-dive.
Go Casa if you want the simplest path to multisig. Their app guides you through setup, they hold 1 key as backup, and they support your heirs.
Most people back up their seed phrases. With multisig, that's not enough.
You also need the wallet descriptor — a file that describes which public keys (xpubs) form the multisig quorum, the required threshold, and the derivation paths used. Without the descriptor, even with all three seed phrases, you cannot recreate the multisig wallet.
The good news: the descriptor contains no private keys. It's safe to store anywhere — email, cloud storage, printed copies, with your attorney.
Back up all three:
Steel seed backup options in our directory include Billfodl and BlockPlate — both corrosion and fire-resistant.
The fastest path to a working 2-of-3 setup:
How much bitcoin should I have before using multisig? Any amount worth protecting. Most practitioners recommend multisig above $100,000, but there's no hard rule. The complexity cost is real — weigh it against your risk.
Can I use the same hardware wallet brand for all three keys? Technically yes, but using different brands or models is better. If a firmware vulnerability is discovered in one brand, your other keys are unaffected.
What happens if one of my hardware wallets breaks? Nothing, as long as you have the seed phrase. Buy a new device, restore from seed, and you're back in business. Your multisig setup is unaffected.
Is multisig better than a passphrase on a single hardware wallet? For most people, yes. A passphrase on a single key is still a single point of failure. Multisig distributes risk across physically separate locations.
Do I need the coordinator software to spend funds? Yes — you need coordinator software to construct the PSBT. Back up Sparrow (or your coordinator of choice) and know how to reinstall it. The software is free and widely available.
Get our free Beginners Guide to Buying Bitcoin plus weekly insights for long-term holders.
Bitcoin custody in 2026: self-custody with hardware wallets, collaborative multisig with Unchained or Casa, or qualified third-party custodians. How to choose based on your holdings and situation.
Evaluating a Bitcoin custodian? Ask these 7 questions about key control, proof of reserves, cold storage, insurance, and withdrawal terms before trusting anyone with your BTC.
Unchained vs Casa: two leading managed Bitcoin multisig custody services compared on key model, pricing, UX, inheritance planning, and additional services.