Blockchain & Web3All articles

Types of Crypto Wallets: Hot, Cold, Custodial, MPC Explained

The types of crypto wallets split along two axes: where the keys live (hot vs cold) and who controls them (custodial vs non-custodial). This guide maps the full taxonomy — hardware, MPC, multisig, smart-contract — with the trade-offs that decide which one you ship.

Occasional field notes on building software — no spam

Idealogic — what are the types of digital wallets

Most confusion about wallets comes from treating "wallet" as one thing. It isn't. The types of crypto wallets differ along axes that have almost nothing to do with each other: where the private key is stored, who is allowed to sign with it, and what kind of object actually holds the funds on-chain. Get those three questions straight and the rest of the taxonomy falls into place.

A wallet does not store coins. It stores (or controls access to) the private key that authorizes spending the balance recorded on-chain. Every decision below is really a decision about that key — how exposed it is, who can use it, and what happens when it's lost. That framing is the one carried through this whole guide.

The two axes that define the types of crypto wallets

Process flow showing a wallet classified by two questions in sequence: connectivity (hot or cold) then control (custodial or non-custodial), yielding a wallet type
A wallet's category is two answers: key exposure and who may sign

Almost every wallet you'll meet sits somewhere on two independent axes.

The first is connectivity: is the signing key ever exposed to an internet-connected device? That's the hot/cold split. The second is control: who holds the key — you, or a third party signing on your behalf? That's the custodial/non-custodial split.

These are orthogonal. A custodial wallet can keep its keys cold. A non-custodial wallet can be blisteringly hot. Treating "hot" as a synonym for "risky" or "custodial" as a synonym for "safe" is where teams make expensive mistakes.

A wallet's category is two answers, not one: how exposed is the key, and who is allowed to sign with it.

Hot wallets vs cold wallets

Bar chart of illustrative key-exposure scores showing browser extensions highest and air-gapped cold storage lowest
Illustrative exposure: browser-extension highest, air-gapped cold lowest

Hot wallets

A hot wallet keeps the private key on a device that touches the network — a phone app, a browser extension like MetaMask, a desktop client, or a key sitting in a server's memory. The upside is obvious: signing is instant, which is exactly what you need for trading, DeFi interactions, paying for things, or any flow where a human is waiting.

The cost is exposure. The key exists in an environment that runs other code, renders web pages, and accepts input from the outside world. Malware, a malicious dApp prompt, a clipboard hijacker, or a compromised dependency can all reach it. Hot wallets are correct for funds you're actively moving and wrong for funds you're trying to preserve.

Cold wallets

A cold wallet keeps the key on a device that never goes online. Transactions are built on a connected machine, then signed on the offline one, and only the signed transaction crosses back. The key itself never leaves the air gap.

This is the right home for reserves, treasury balances, and anything you'd be devastated to lose. The trade-off is friction. Every spend involves a manual, deliberate step, which is a feature for cold storage and a non-starter for an exchange hot wallet serving withdrawals.

Most serious operations run both: a small hot float for daily flow, the bulk in cold storage, with a defined process for topping up the hot side. When we design custody for an exchange or trading platform, this hot/cold ratio is one of the first numbers we pin down, because it directly bounds how much can be drained in a worst-case breach.

Custodial vs non-custodial wallets

Donut chart showing a typical custody split of about 8 percent in a hot float and 92 percent in cold reserves
A typical operation keeps a small hot float and the bulk in cold reserves

The second axis is about who actually controls the key. The line everyone repeats — "not your keys, not your coins" — is a real engineering distinction, not a slogan.

Custodial wallets

In a custodial setup, a third party holds the keys and signs on your behalf. Centralized exchanges, many fintech apps, and most "buy crypto in two taps" products work this way. You authenticate with a password and 2FA; the provider holds the actual signing material.

What you get:

  • Account recovery. Forget your password, prove your identity, get back in.
  • Familiar UX with no seed phrase to safeguard.
  • Compliance, support, and fraud monitoring handled by the provider.

What you give up:

  • Counterparty risk. The provider can be hacked, frozen, mismanaged, or made insolvent. Several high-profile collapses were custodial failures, not protocol failures.
  • Permission. Withdrawals can be paused or restricted.

Custodial is the right call when your users expect bank-like recoverability and you're prepared to carry the regulatory and security weight of holding other people's funds.

Non-custodial wallets

Here the user holds the key, usually as a 12- or 24-word seed phrase. No one else can move the funds, and no one can restore access if the phrase is lost. That's the whole point and the whole danger.

Non-custodial fits self-sovereign use cases: DeFi, on-chain identity, users who refuse to trust an intermediary. The hard part isn't the cryptography, it's the human factor. A meaningful share of lost crypto traces back to misplaced seed phrases, not to broken algorithms. The newer wallet types below exist largely to soften this exact edge.

Hardware wallets

A hardware wallet is the most common form of consumer cold storage. A dedicated device — Ledger, Trezor, and similar — generates and stores the key inside a secure element and signs transactions internally. The key never touches the connected computer, even though the device plugs into one to broadcast.

The mental model that matters: the connected machine can be fully compromised and still can't extract the key. What it can do is trick you into approving a malicious transaction, which is why on-device confirmation screens exist. Always verify the destination and amount on the hardware screen, not in the browser, where a swapped address is the classic attack.

Hardware wallets are non-custodial and cold by default — a strong combination for individuals, though they don't solve the shared-control problem that organizations face.

Software wallets

Software wallets are the everyday hot, non-custodial option: a mobile app, a desktop app, or a browser extension where the key lives in the device's storage, ideally inside the OS keystore or secure enclave.

They're the workhorses of on-chain activity. Tracking the distinction within software wallets is useful:

  • Browser extension wallets plug straight into dApps and DeFi. Convenient, and the most phishing-exposed surface in the space.
  • Mobile wallets can lean on the phone's secure enclave and biometrics, which raises the floor on key protection.
  • Desktop wallets give more control and are exposed to whatever else runs on the machine.

For most users, a software wallet for daily amounts plus a hardware wallet for savings is the sensible split. The interesting custody work, though, lives in the categories that follow.

MPC wallets

Multi-party computation (MPC) wallets answer a sharper question: what if there were no single private key to steal in the first place?

With MPC, the key is never assembled in one place. It's split into shares held by different parties or devices, and signing is a joint computation across those shares. The full key is never reconstructed, not even momentarily during signing. There is no single seed phrase, no single file, no single point of compromise.

This matters for institutions and for any product holding meaningful balances:

  • No single device or person can move funds alone.
  • Signing policies — thresholds, approvers, limits — are enforced cryptographically.
  • A lost or compromised share can be rotated without moving funds to a new address.

MPC is increasingly the default for custodians, exchanges, and enterprise treasuries because it delivers shared control without exposing users to the rough edges of on-chain multisig (gas costs, contract risk, chain-specific behavior). The engineering is genuinely hard — protocol correctness, share storage, key-refresh ceremonies — and it's a core part of the custody systems our blockchain development team builds for clients moving real money.

Multisig wallets

Multisig predates MPC and solves a related problem on-chain rather than in cryptography. A multisig wallet requires M-of-N signatures to authorize a transaction — 2-of-3, 3-of-5, whatever the policy dictates.

Gnosis Safe is the reference implementation on Ethereum. The signing rule is enforced by a smart contract: the funds simply won't move without enough valid signatures.

Multisig is well suited to:

  • DAO and shared treasuries where several parties must agree.
  • Removing single-person risk from an organization's funds.
  • Setups where on-chain, auditable approval is a requirement.

The trade-offs are concrete. Approvals are recorded on-chain, so there's gas cost and reduced privacy. Behavior is chain-specific and depends on contract support, which is exactly the gap MPC closes off-chain. Many teams now run multisig for transparent governance and MPC for high-throughput operational custody.

Smart-contract wallets and account abstraction

The newest category turns the account itself into programmable code. Instead of an externally owned account controlled by one key, a smart-contract wallet is a contract, with logic you define. On Ethereum, ERC-4337 (account abstraction) standardized this without protocol changes.

Programmability unlocks features that key-pair wallets simply can't offer:

  • Social recovery — regain access through trusted guardians instead of a fragile seed phrase, directly attacking the biggest cause of permanent loss.
  • Spending limits and allowlists enforced at the account level.
  • Gas abstraction — pay fees in tokens, or let an app sponsor them, so users don't need native gas to transact.
  • Batched transactions — approve and swap in a single confirmation.
  • Session keys for games and apps that need scoped, temporary signing.

This is where consumer crypto UX is heading, because it lets a wallet feel like a normal app while staying non-custodial underneath. The cost is added complexity and a larger contract attack surface, so audited, battle-tested implementations matter more here than anywhere else.

How to choose among the types of crypto wallets

Bar chart comparing illustrative capability coverage where smart-contract and MPC wallets score highest on combined recovery, shared control, and UX
Illustrative capability coverage across the main wallet types

There's no single best wallet, only a best fit for a defined job. The questions that actually decide it:

  • How fast must signing be? Active flow wants hot; reserves want cold.
  • Who must be able to sign? One person points to a single-key wallet; an organization points to MPC or multisig.
  • What happens when access is lost? If recovery is mandatory, you need custodial, social recovery, or a threshold scheme — not a lone seed phrase.
  • How much is at stake? Larger balances justify cold storage, multi-party control, and audits.
  • What's the regulatory posture? Holding user funds custodially pulls in compliance obligations that change the whole architecture.

In practice these combine. A typical platform runs a custodial-style hot float on MPC for withdrawals, cold multisig for reserves, and offers users non-custodial smart-contract wallets on the front end. The categories aren't competitors; they're a toolkit, and the design work is matching each tool to the part of the system it's actually good at.

If you're designing custody for a product rather than a personal stash, that mapping is the whole game — and it's worth getting right before a single key is generated. The same custody questions resurface when you weigh whether to build a crypto exchange, where the hot float, cold reserves, and recovery model decide the architecture.

Build your blockchain product with a team that ships
Talk to our blockchain engineers

Frequently asked questions

  • They split along two axes. By connectivity: hot wallets (keys on an online device) and cold wallets (keys kept offline). By control: custodial (a third party holds the keys) and non-custodial (you hold them). Specific forms include hardware, software, MPC, multisig, and smart-contract wallets, and these axes combine freely.

  • In a custodial wallet, a third party such as an exchange holds the private keys and signs for you, which allows account recovery but adds counterparty risk. In a non-custodial wallet, you hold the keys yourself, usually as a seed phrase. No one else can move your funds, but no one can restore access if you lose it.

  • For storing funds, yes. A hardware wallet keeps the key offline in a secure element, so even a fully compromised computer can't extract it. Software wallets keep keys on an internet-connected device, which is convenient for daily use but more exposed. The common practice is software for spending, hardware for savings.

  • An MPC wallet splits the key into shares so the full key is never assembled, and signing is a joint computation off-chain. Multisig requires M-of-N signatures enforced by an on-chain smart contract. MPC avoids gas cost and is chain-agnostic; multisig is transparent and auditable on-chain. Many institutions use both.

  • It's a wallet that is itself a programmable smart contract rather than a single key pair. On Ethereum, ERC-4337 account abstraction enables this. It supports social recovery, spending limits, gas paid in tokens, and batched transactions, giving users a smoother experience while staying non-custodial.

  • It depends on the job. Active operational funds need a hot wallet, often on MPC for shared control; reserves belong in cold storage or multisig. If you hold user funds custodially, compliance obligations shape the architecture. Most platforms combine several wallet types rather than picking one.