💡 The Plain-English Definition
Multi-signature — multisig — is a Bitcoin security configuration where a transaction requires signatures from multiple private keys to be valid. Instead of one key holding all the power, control is distributed across several — so no single key loss or theft can result in total loss.
🤔 But Why Though?
Standard Bitcoin security has a single point of failure: the private key (the secret code that proves Bitcoin ownership). Lose the key, lose the Bitcoin. Someone steals the key, they steal the Bitcoin. There’s no “undo.” Multisig distributes this risk by requiring M of N keys to sign — any M from a set of N can authorise a transaction. The “2-of-3” configuration (any 2 from 3 keys) is most common for individuals: you can lose one key entirely and still access your Bitcoin using the other two, but a thief who steals just one key gets nothing.
The range of configurations serves different use cases. A 1-of-2 setup provides redundancy: either key can spend, so losing one doesn’t lock you out. A 2-of-3 provides the individual holder’s sweet spot of security and recovery. A 3-of-5 is common for business treasuries where multiple officers must authorise significant transactions. A 15-of-20 might secure a large institutional fund with multiple geographic key holders. Before the Taproot (a 2021 Bitcoin upgrade) upgrade, multisig transactions were visibly different on the blockchain — their inputs were larger and their structure clearly indicated multiple signatories. This was a privacy issue: anyone scanning the blockchain could identify multisig wallets as likely containing larger amounts, making them targets. After Taproot, key aggregation (the mathematical combining of multiple public keys into one, so the combined key looks indistinguishable from a single key) means a 2-of-3 multisig transaction looks identical to a single-signature transaction on-chain. Privacy and efficiency improved simultaneously. The coordination complexity is the honest tradeoff: with multisig, signing a transaction requires coordinating multiple devices and potentially multiple people, backup requires preserving wallet descriptor files (records of exactly how the keys were configured together) in addition to seed phrases, and recovery is more involved than with a single-key wallet.
🌍 The Real-World Analogy
Think of multisig like a bank vault that requires two managers to turn their keys simultaneously to open. Neither manager alone can access the vault — which protects against a rogue employee stealing everything. But two managers together can always open it, which protects against losing access if one manager leaves the company. Different multisig configurations are different key arrangements: some require more managers, some fewer, depending on how much security versus convenience is needed.
⚡ So What?
Single-signature custody is appropriate for most people up to the amounts they’d call significant savings. Once holdings become genuinely meaningful — amounts that would materially change your life to lose — multisig is worth the added setup complexity. The 2-of-3 configuration is the practical starting point for most self-custodying individuals. If you use multisig, the wallet descriptor backup is as important as the seed phrase backup — don’t overlook it.