Glossary — Security & Compliance

What is Cold Storage?

1 min read Updated

Cold storage is the practice of keeping cryptocurrency private keys completely offline and disconnected from the internet — providing maximum security against remote attacks, hacking, and malware.

WHY IT MATTERS

Cold storage is the gold standard for securing significant crypto holdings. Keys generated and stored on devices that never connect to the internet are immune to remote attacks — no malware, no phishing, no remote exploits can reach them.

Cold storage methods include hardware wallets, air-gapped computers, paper wallets, and metal seed phrase backups. Each provides offline key protection with different usability tradeoffs.

Best practice: keep the majority of holdings in cold storage, with only active trading/DeFi amounts in hot wallets. The exact split depends on your activity level and risk tolerance.

FREQUENTLY ASKED QUESTIONS

How cold is cold enough?
True cold storage means the private key has never been on an internet-connected device. Generated offline, signed offline, broadcast by a separate device. Hardware wallets provide practical cold storage.
What about institutional cold storage?
Institutions use HSMs (Hardware Security Modules), multi-signature setups, geographic distribution of key shards, and formal access control procedures. Services like Fireblocks provide institutional-grade solutions.
Is cold storage necessary for small amounts?
For small amounts, a well-secured mobile wallet with strong password and 2FA is usually sufficient. As holdings grow, the security/convenience tradeoff shifts toward cold storage.

FURTHER READING

ENFORCE POLICIES ON EVERY TOOL CALL

Intercept is the open-source MCP proxy that enforces YAML policies on AI agent tool calls. No code changes needed.

View on GitHub