This article takes about 6 minutes to read
Conclusion - The Principle of Not Your Keys, Not Your Coins and Practical Trade-offs
Ownership of crypto assets ultimately comes down to private key management. Managing your own keys eliminates exchange bankruptcy risk but means bearing the risk of key loss or theft yourself. Depositing at an exchange offers convenience but carries the risk of total loss from hacking or insolvency. The optimal storage method varies by asset size, usage frequency, and technical literacy, with no single correct answer.
Exchange Custody Risks
When depositing crypto assets at an exchange, users are entrusting their private keys to the exchange. Major past hacking and insolvency incidents include: Mt.Gox (2014, approximately 850,000 BTC lost), Bitfinex (2016, approximately 120,000 BTC stolen), Coincheck (2018, approximately JPY 58 billion worth of NEM stolen), and FTX (2022, approximately USD 8 billion in customer assets misappropriated leading to bankruptcy). Common factors across these incidents were: (1) large amounts stored in hot wallets (online-connected), (2) lack of internal controls (FTX did not even segregate customer and company assets), and (3) inadequate auditing. When using exchanges, the basic principle is to choose those publishing Proof of Reserves and deposit only the minimum amount needed for trading.
Self-custody - Hardware Wallets
Hardware wallets (Ledger, Trezor, etc.) store private keys within an offline device and complete transaction signing entirely within the device. Since private keys are never exposed to internet-connected computers, the risk of key theft via malware or phishing is substantially reduced. However, risks remain: (1) the seed phrase (12-24 word backup) requires physical storage, and loss means permanent loss of assets, (2) firmware bugs in the device itself can create vulnerabilities (the 2023 Ledger Connect Kit incident), and (3) approving a signature on a phishing site can still result in asset loss even with a hardware wallet (the blind signing problem).
Multisig and Social Recovery
Multisig (Multi-Signature) requires multiple private key signatures to execute a transaction. For example, a 2-of-3 multisig requires signatures from 2 of 3 keys to execute. If one key is stolen, it alone cannot move assets; if one key is lost, the remaining two can recover access. Gnosis Safe (now Safe) is the leading multisig wallet on Ethereum, managing over USD 100 billion in assets as of 2025 (per Safe official data). Social recovery sets up multiple trusted guardians (friends, family, institutions) who can restore wallet access by majority vote if keys are lost. Proposed by Vitalik Buterin, it is implemented in smart contract wallets such as Argent.
Key Management Best Practices
A tiered storage strategy based on asset size and usage is recommended: (1) Daily trading (5-10% of assets): small amounts in hot wallets (MetaMask, etc.) or exchanges. (2) Medium-term storage (20-30% of assets): managed with hardware wallets. (3) Long-term storage (60-70% of assets): distributed across multisig or multiple hardware wallets. For seed phrase storage: (1) written on paper in a fireproof safe, (2) engraved on metal plates (fire and flood protection), (3) split across geographically distributed locations (Shamir's Secret Sharing). Digital backups (cloud, email) must be avoided entirely.
Disclaimer
No storage method for crypto assets offers complete security. Self-custody eliminates exchange risk but carries the risk of total loss from self-management failures (key loss, phishing). Exchange custody offers convenience but carries hacking and insolvency risk. The appropriate balance must be chosen based on your technical literacy and asset size. This article provides technical information about crypto asset storage methods and does not recommend any specific service or product. Storage decisions are made at your own risk.