A multisig (multi-signature) wallet requires multiple private keys to sign and authorize a transaction. Instead of one key controlling a wallet, you define a threshold — for example, 2-of-3 means any 2 of 3 designated keys must sign.
This eliminates the single point of failure that makes standard crypto wallets vulnerable.
Why Multisig Matters
With a standard wallet: if your private key or seed phrase is compromised, all funds are immediately at risk. One phishing attack, one malware infection, one stolen device — funds gone.
With multisig (2-of-3):
- An attacker would need to compromise 2 separate keys simultaneously
- A lost key doesn't mean lost funds (remaining keys still meet threshold)
- No single person can act unilaterally — critical for teams and DAOs
How It Works
You set up a multisig with:
- N keys: Total number of signing keys (e.g., 3)
- M threshold: Minimum signatures required (e.g., 2)
A 2-of-3 multisig is the most common setup for teams: you need 2 signers to move funds, and can tolerate losing 1 key without losing access.
For maximum personal security: a 2-of-3 with keys on separate devices in separate locations.
Multisig on Solana: Squads
Squads (squads.so) is the standard multisig protocol on Solana. Used by most Solana protocol treasuries and development teams.
Setup:
- Go to app.squads.so
- Create a vault — choose member wallets and threshold
- Add members by Solana address
- Funds sent to the vault address require M-of-N signatures
Squads supports program upgrades (critical for protocol security — prevents a single key from pushing malicious code), treasury management, and token vesting.
Multisig on Ethereum/Base: Safe
Safe (formerly Gnosis Safe) is the Ethereum standard. Secures tens of billions in protocol treasuries.
Same M-of-N logic as Squads. Supports EVM chains including Base, Arbitrum, and Polygon.
Use Cases
Protocol treasuries: DeFi protocols hold millions in reserves. A multisig ensures no single team member can drain funds. Industry standard — any protocol without a multisig treasury is a red flag.
Team wallets: Startup teams sharing a crypto wallet for payroll, expenses, or token vesting. Multisig prevents any individual from unilaterally taking funds.
Personal security at scale: If you hold >$50K in crypto, a personal 2-of-3 multisig with keys stored separately is worth the setup complexity.
DAO governance: Multisig as an execution layer for governance votes — proposals pass, then M-of-N signers execute the on-chain action.
Limitations
Speed: Transactions require coordination between signers. Not suitable for wallets you need instant access to for active trading.
Complexity: Setup and key management require more care than standard wallets.
Gas costs (EVM): Each additional signature adds gas. On Ethereum, multisig transactions are meaningfully more expensive than single-sig.
On Solana, Squads multisig transactions cost roughly the same as standard transactions due to low base fees.
Evaluating Protocol Safety
When assessing a DeFi protocol's security:
- Is the treasury controlled by a multisig? (check on-chain — Squads on Solana, Safe on EVM)
- How many signers? What's the threshold?
- Are the signers identifiable and credible?
- Is there a timelock on large treasury movements?
A protocol with admin keys in a single EOA (externally owned account) is a rug-pull risk regardless of audit status.