2-of-3 Multisig Escrow
CoinExchange.Cash uses 2-of-3 multisig escrow to secure every trade, gig, and mart transaction. This means three cryptographic keys are created for each trade, and any two of the three must agree to release the funds.
The Three Keys
Key 1 — Buyer: Generated when the buyer enters the tradeKey 2 — Seller: Generated when the seller enters the tradeKey 3 — Platform Arbitrator: Held by the CoinExchange.Cash arbitration teamHow It Works
When a trade begins, a unique escrow address is generated from all three public keysThe seller sends crypto to this escrow addressTo release funds, two of the three keyholders must sign the release transactionRelease Scenarios
Normal trade: Buyer + Seller agree → funds released to buyerDispute (seller wins): Seller + Arbitrator agree → funds returned to sellerDispute (buyer wins): Buyer + Arbitrator agree → funds sent to buyerWhy 2-of-3?
No unilateral spend path: Under the intended script, no single signer can move escrow funds aloneNon-custodial: CoinExchange.Cash never has sole control of your cryptoFair disputes: The arbitrator can only act alongside one of the trading partiesSupported Chains
Native 2-of-3 P2WSH multisig is implemented for Bitcoin and Litecoin. EVM contract source is published but no production address is currently published; other chain engines remain in development. See the public Security page for current maturity and verification evidence.
Security Notes
Escrow keys are encrypted with your trade password and never stored in plaintextThe platform arbitrator key uses software key custody: AES-256-GCM encrypted storage in PostgreSQL, with plaintext present in process memory during signingHardware HSM integration (such as CloudHSM or YubiHSM) remains future workEscrow actions are recorded in the platform audit log; this is not an immutable public ledger