Xapo Launches Suite of New Security Features; Announces Xapo Vault Now Free of Charge

January 15, 2015

Xapo Vault Now Free of Charge.  Since Xapo’s launch last year, we have invested millions of dollars and leveraged many of the world’s best security engineers to develop the most secure storage service in the bitcoin industry. We believe that all bitcoin holders deserve access to this level of protection, so we are excited to begin offering our world-class Xapo Vault storage service for free. Existing customers who have previously paid an annual storage fee will receive a prorated refund (details will be provided in a separate email).

Deep Cold Storage.  Xapo is also pleased to announce enhancements to our industry-leading suite of physical and technological security features. Xapo’s architecture offers unparalleled, multi-layer bitcoin protection, utilizing a variety of technologies including deep cold-storage servers and multi-signature transaction authorization.

Xapo architecture is built on the guiding principle that in order to achieve the highest levels of bitcoin storage security, private keys should never touch the Internet. Private keys traveling over the Internet or stored in browsers or other Internet-connected endpoints are vulnerable to compromise.

Today, Xapo is the world’s only bitcoin company to offer deep cold storage, a security architecture in which users’ private keys are never exposed to the internet. Xapo’s deep cold storage security architecture means that private keys are created, stored, and maintained offline, in servers that have never and will never touch a network, even when used to sign transactions.

For added protection, our deep cold storage servers are housed in radio wave-blocking Faraday cages and secured behind military-grade security controls deep within reinforced underground bunkers. Our primary deep cold storage vault is located in Switzerland, with additional secure sites deployed around the globe.

Multi-Signature Authorization.  All Xapo Vaults now utilize multi-signature transaction authorization, a security protocol in which multiple validations from our deep cold storage servers are required to approve each vault withdrawal request. Xapo Vault withdrawals must be signed by at least 3 of 5 deep cold storage sites around the world, to help ensure that your bitcoins are impervious to theft at any one location.

Satellite-Based Security.  Xapo has partnered with Satellogic to locate specific elements of our security architecture within Satellogic’s constellation of satellites. Although we do not disclose the function of any particular aspect of our storage network for security reasons, our relationship with Satellogic enables us to leverage their cutting-edge satellite technology to assure we maintain data immutability and ongoing physical and jurisdictional security.

Completion of SOC2 Audit.  We are pleased to report that in August 2014, Xapo became the first bitcoin services company to complete a Service Organization Control 2 (SOC2) Type I audit, conducted by Burr, Pilger & Mayer LLP, a leading US accounting and consulting firm. SOC2 is a widely recognized auditing standard against which service providers are able to report and validate their internal security controls and processes with their auditors and customers.

Looking ahead, in 2015 we’ll be making further enhancements to Xapo’s already industry-leading security architecture, with the goal of continuing to offer our customers the most technologically advanced, secure and seamless way to store bitcoins.

Wences Casares

By Xapo Founder and CEO


Article published on January 15, 2015

, , ,

Why Own Bitcoin

People often ask me if they should invest in Bitcoin and later how to invest. I have watched a lot of friends make and lose money on Bitcoin, so I have a strong point of view. I want to share my perspective to help people understand Bitcoin as an investment. All of these numbers and…

By Wences Casares

Bitcoin needs both unregulated and regulated network nodes

At Xapo, we believe that Bitcoin’s permissionlessness, censor-resistance and unseizability are its most important features, without which Bitcoin would not be of much value. The only way to ensure that Bitcoin can remain permissionless, censor-resistant and unseizable is by making sure that anyone can get some bitcoin, store it, and send it without any intermediaries…

By Wences Casares

Beware of extraordinary claims

For those of us who love Bitcoin, and especially for me as the Head of Growth at Xapo, it is always great news when we see more and more people adopting Bitcoin every day with almost magical organic growth that helps the bitcoin price rally. So I should be happy every time I see that, right?…

By Tiburcio de la Carcova