Known Issues: Unchained Capital
Only Supports Older Hardware Wallets
The lack of PSBT support means that modern hardware wallets with high quality airgaps such as Keystone and Specter-DIY are not yet supported. Properly verifying a receive address is only possible for advanced users and also requires plugging your hardware wallet into your computer, adding another potential attack vector.
Unchained has complex instructions here on how to validate a receive address.
While they recently added limited address verification functionality to Trezor, this doesn’t fundamentally fix Trezor’s many known issues.
As Trezor is stateless, these steps will only confirm that
1 of your keys is part of the quorum, you must repeat these steps on at least
m (and preferably
n) of your devices.
Could Reintroduce Single Points of Failure
Proper multisig allows you to have no single points of failure (see section title Why Multisig), but it still requires you take some control of your financial sovereignty.
Users who rely on third-party services may accidentally reintroduce a single points of failure.
For example, if a
2-of-3 service holds 1 of your keys and mails you 1 (malicious) hardware wallet they are in a trusted position as they could control a majority of your keys!
More realistically, were a multisig service provider to be hacked they might be able to exploit the trust users have in them. We’ve seen similar attacks on the popular Electrum Client for many years. This might might take the form of an invalid receive address (if using a stateless hardware wallet with limited defenses) or an invalid change address (if using a hardware wallet that can’t detect change attacks).
Any third party service that can participate/coordinate multisig transactions will have access to your balance and transaction history. They may be forced to share your records with multiple government agencies, and often be legally unable to disclose their compliance with requests. Of course most bitcoiners buy their coins on exchanges that follow KYC/AML procedures, so this may or may not be a factor for your use-case.
Only Option is 2-of-3
3-of-5 would be better, especially when using a hosted service that already:
- Abstracts away a lot of multisig’s complexity
1(or more) of your seeds
Evaluate Unchained Capital in Totality
This page is about known issues, not positive attributes. No setup is 100% secure.
Hosted multisig providers make multisig much more accessible/easier for less technically savvy HODLers. They will likely continue to improve over time and have an incentive to push best practices onto their users. When performed correctly, the hosting provider is unable to censor/steal funds and can only assist you in recovering your own funds.
Some noteworthy benefits of using Unchained:
- Unchained has gone to great lengths to streamline their sovereign recovery process by releasing an open-source product called Caravan that abstracts all the steps away from end-users.
- Their key checks feature is useful for promoting best practices.
- Current estate-planning offerings are barely disclosed, but they are in a position to be extremely helpful to your heirs/estate should something happen to you.