The Origin of Collaborative Security
In many early collaborative custody models, the client holding two keys left the client as the operational single point of failure. Collaborative security evolved from multi sig and early collaborative custody by reducing the client as that operational single point of failure while preserving no unilateral control.
Bitcoin security matured in clear stages. Each stage solved real problems and revealed new ones. Client controlled does not mean the client must personally hold enough keys to move Bitcoin alone. It means the client remains inside the security structure while no adviser, platform, or institution can move funds unilaterally.
This page describes how the industry evolved, not a path every client needs to repeat. Serious long term holders can start with an architecture designed to address the operational continuity gaps that remained in earlier models: distributed keys, professional key agency, documented recovery, and no unilateral control.
Since 2016 · Client controlled multi sig · Key agency · No unilateral control
Key Distinction
There is no perfect solution to Bitcoin storage, only tradeoffs. Exchange custody, solo self custody, institutional custody, and collaborative security all sit on that spectrum. For meaningful long term holdings, we believe collaborative security is the best set of tradeoffs we know.
| Model | Risk profile |
|---|---|
| Exchange custody | Counterparty is the single point of failure |
| Single sig self custody | Client is the single point of failure |
| Early collaborative custody | Client often remains the operational single point of failure, especially when holding two of three keys |
| Collaborative security | Risk is distributed across client, key agent, and platform |
Compare options side by side on Comparison.
How Bitcoin Security Evolved
Single sig self custody
One person, one key, one device. Full control, but fragile for families, trustees, and long term holders managing meaningful wealth.
Multi sig
Bitcoin's native scripting allowed wallets to require multiple keys to authorise a transaction. One lost or compromised key no longer meant total loss. A powerful technical foundation, but only part of the problem.
Early collaborative custody
Early collaborative custody was an important advance. It helped Bitcoin holders move away from exchanges into shared control multi sig structures. In many common 2 of 3 implementations, however, the client holds two keys. On paper, that is strong control. Operationally, the client often becomes the centre of the system: documentation, signing, recovery, and succession still depend on one person. The keys are distributed; the operational burden is not.
Collaborative security
The client holds one key. A professional key agent holds a second under documented policy. A trusted platform provider holds the third. No single party can move Bitcoin alone. See the operational gap and shift below.
You Do Not Need To Repeat The Evolution
The history is sequential. The recommendation is not.
The stages above explain how Bitcoin security matured over time. They are not a recommended sequence for new clients.
A serious holder does not need to begin with exchange custody, then move to single sig, then discover the limits of solo key management, then rebuild later. The point of collaborative security is to start with an operating model that already reflects those lessons: distributed keys, professional key agency, documented recovery, spending protocols, inheritance planning, and no unilateral control by any party.
You do not need to make every historical mistake yourself. See Collaborative Security for how the model works today.
The Operational Gap and the Shift to Collaborative Security
The problem. Multi sig solved the technical custody problem better than exchanges. It did not always solve the operational continuity problem. In many 2 of 3 models where the client holds two keys, the client often remains the operational centre for verification, documentation, recovery, and succession, even when a single lost key should not cause total loss on paper.
Serious holders still need answers to harder questions:
- Who verifies legitimate spending requests?
- Who assists heirs, executors, or trustees who have legal authority but lack technical capability?
- Who maintains documentation, governance, and recovery support when keys, devices, or people fail?
- Who ensures the structure remains functional across death, incapacity, and decades of family change?
The shift. Collaborative security addresses these gaps by changing key distribution: one client key, one professional key agent, one platform key. No party can move Bitcoin alone. The client remains inside the structure without bearing sole operational responsibility for decades of continuity.
That adds an operating layer around multi sig: spending protocols, recovery planning, inheritance coordination, and long term governance. It is designed for holders who need security and continuity without unilateral institutional control or solo generational management. Evaluate tradeoffs on Comparison and see the live model on Collaborative Security. Documented inheritance paths connect to the Estate Plan Protocol, EPP Guide, and Estate Planning & Inheritance cluster.
The Bitcoin Adviser's Role
The Bitcoin Adviser helped develop and operationalise professional key agency within client controlled multi sig structures. This methodology was refined through multi family office Bitcoin work dating back to 2016, before being opened more broadly in 2023.
We did not invent multi sig. We helped evolve it into a professional operating model for serious long term holders who need security, continuity, and no unilateral control.
Reference facts about how we operate, not guarantees about your outcomes. No client satoshis lost to key compromise or theft in our collaborative security engagements, based on internal records. Historical information only, not a guarantee. Learn more about family office origins or scoped proof on Collaborative Security.
Where To Go Next
Collaborative Security
How the model works today: deliverables, governance, and what you receive.
Key Agent
What key agency means as a signing role, and why it is not custody.
Comparison
Side by side tradeoffs vs exchange custody, self custody, ETFs, and institutional models.
About
Company story, team, and how we work with clients worldwide.
Estate Plan Protocol
How documented inheritance and continuity fit the operating model.
EPP Guide
Step by step guide for clients completing their issued protocol.
Ready to review your structure?
See how collaborative security, key agency, and continuity planning fit serious long term holdings.
Frequently Asked Questions
What is the difference between collaborative custody and collaborative security?
Collaborative custody usually describes shared control multi sig with professional support. Collaborative security is The Bitcoin Adviser's fuller operating model: multi sig, key agency, recovery, spending protocols, inheritance planning, and long term governance.
There is no perfect Bitcoin storage model, only tradeoffs. For meaningful long term holdings, collaborative security is the best set of tradeoffs we know. See the Key Distinction table above.
Why can holding two keys still leave a client exposed as a single point of failure?
Two keys can look like strong control on paper, but the client often becomes the operational centre: documentation, recovery, succession, and day to day signing still depend on one person.
Lost keys, poor documentation, or weak inheritance planning can still produce loss or inaccessibility. Collaborative security distributes operational risk by pairing one client key with professional key agency and platform infrastructure.
Is collaborative security custodial?
Not in the traditional custodial sense. The Bitcoin Adviser does not pool client assets, does not move funds unilaterally, and is not a discretionary custodian.
Client controlled means the client remains inside the structure while no party moves Bitcoin alone. Read Key Agent and Scope & risks for boundaries.
Does the client still have control in this model?
Yes, but control means involvement and authorisation inside the structure, not unilateral ability to move all Bitcoin alone.
You hold a key, initiate spending requests, and participate in governance. No adviser, platform, or institution can move funds without the required co signatures under your documented policy.
How does this approach handle inheritance and incapacity?
Operational continuity is built in: documented paths, professional coordination, and rehearsed recovery workflows for fiduciaries.
Start with Estate Planning & Inheritance, Continuity, and the EPP Guide where you have an issued protocol.
Do clients need to start with self custody before using collaborative security?
No. The history of Bitcoin storage moved through exchange custody, single sig self custody, multi sig, and early collaborative custody, but clients do not need to repeat that path.
For meaningful long term holdings, collaborative security is often the practical starting point because it incorporates lessons from each earlier model while avoiding unilateral control by any party. Read You Do Not Need To Repeat The Evolution above.
Why did The Bitcoin Adviser move away from models where the client holds two keys?
Because continuity, recovery, and inheritance still failed when the client remained the operational centre. Professional key agency distributes that burden without surrendering client involvement or creating unilateral institutional control.
Source of Terminology
We use collaborative custody when referring to the broader industry category. We use collaborative security to describe The Bitcoin Adviser's fuller operating model: multi sig, key agency, recovery, spending protocols, inheritance planning, and long term governance. Older pages that say collaborative custody are not wrong; the term is simply less precise for what we deliver today.