Multisig Account

Multisig accounts require additional signatures to initiate actions/transfers.

Cosignatories

Symbol accounts can be converted to multisig. The cosignatories—other accounts—of the multisig will become the account managers.

From that moment on, the multisig account cannot announce transactions by itself. A multisig cosignatory has to propose a transaction involving the multisig, wrapping it in an AggregateTransaction.

To record the transaction in the block, the other cosignatories will have to agree.

Minimum approval and removal

It is not always necessary to require all cosignatories to cosign transactions associated with the multisig account. Symbol allows to set up the minimum number of cosignatory agreements. These properties can be edited afterward to suit almost all needs.

../_images/multisig-2-of-3.png

2-of-3 multisignature account

Symbol’s current implementation of multisig is “M-of-N”, where M is the number of cosignatories required to announce a transaction and N is the total amount of cosignatories for that particular multisig account. This means that M can be any number equal to or less than N, i.e., 1-of-4, 2-of-2, 4-of-9, 9-of-10 and so on.

Similarly, cosignatories can invite other accounts to take part in the multisig, or propose to remove others when the defined conditions are fulfilled.

Note

Multisig accounts are a powerful tool, but please use this tool with caution. If the cosignatories keys get lost and minimum approval is not reached, it would result in the permanent loss of access to the funds held by the multisig account. Choose minimum removal parameter wisely to avoid this situation.

Constraints

The public network defines the following constraints for multisig accounts, being the values presented configurable per network.

  • Multisig accounts can have up to 25 cosignatories.
  • An account can be cosigner of up to 25 multisig accounts.
  • Multisig account can be a cosigner for another multisig account, up to 3 levels. Multi-level multisig accounts add “AND/OR” logic to multi-signature transactions.
  • Multisig modification transactions must be wrapped in an AggregateTransaction. New cosignatories added to the multisig must opt-in by cosigning the aggregate.

Examples

There is a broad range of useful applications for multisig accounts. Let’s take a look at some of the most common use cases.

Shared accounts

Several families are members of the local philatelist society and use a shared account to buy stamps.

To ensure that all agree on which old stamps they should buy and on the right price, they use a multisig account. This way, all members of the society need to approve the transaction before it is included on the blockchain.

Multi-factor authorization

Alice wants to make sure her funds are not compromised in any way. Therefore she sets up a multisig account with her funds and attaches two accounts (signer accounts) to control her multisig account as a form of 2-factor authentication.

Both of her signer accounts need to approve the transaction, and her signer accounts are located on different computer platforms with different passwords. This means that even if an evil hacker or virus should compromise one of her accounts, the funds are still kept secure.

../_images/multisig-multifactor-auth.png

Multi-factor authorization using multisig accounts

Assets ownership

Multisig accounts can be used to represent the ownership of assets.

A company could create a 1-of-1 multisig account for each of their products, adding themselves as the cosignatory. When the company sells the product to Alice, she becomes the owner through the action of being added as the cosigner, and the company is removed in the same transaction.

../_images/multisig-asset-ownership.png

Transferring an account

Manufacturing and supply chains

In this example, a manufacturer is shipping a pharmaceutical product.

The product receives its quality approval mosaic only when its blockchain record shows it has a production date, safety inspection, and was shipped at the correct temperature.

Sensors in the shipping container report temperature data every 5 minutes and consolidate it into a daily report.

../_images/mlma-supply-chain.png

Manufacturing and Supply Chains

Fraud Detection

This example shows how a high-security account can be made easier to use.

Transactions are only approved from a hardware wallet OR your phone AND a fraud detection AI. MLMA allows a variety of security configurations at the protocol level to keep businesses and their customers hack-free.

../_images/mlma-fraud-detection.png

Fraud Detection

Guides

Continue: Cross-Chain Swaps.