Bitcoin separates three jobs that traditional finance combines into one institution: wallets authorize spending by managing private keys, nodes verify that every transaction and block follows consensus rules, and miners produce new blocks through proof of work competition. No single party runs Bitcoin because these three roles check each other continuously. Understanding the division is the first step toward using Bitcoin with clear eyes about what you actually control, and what you are trusting to others.
What is the difference between a Bitcoin node, miner, and wallet?
A wallet manages private keys and creates signed transactions. It cannot validate the blockchain on its own and connects to a node to broadcast what it signs.
A node is a computer running Bitcoin software that independently validates every transaction and block against consensus rules, then relays valid data across the peer-to-peer network.
A miner is specialized hardware (combined with node software) that collects transactions, assembles them into a candidate block, and performs proof-of-work to compete for block rewards.
Three quick ways to remember the split:
Role | Primary job | What it controls |
|---|---|---|
Wallet | Sign transactions with your key | Your spending authority |
Node | Validate blocks and transactions | Rule enforcement |
Miner | Produce new blocks via proof-of-work | Block ordering |
Three persistent misconceptions this guide clears up:
"My wallet stores my bitcoin": your wallet stores your key. Bitcoin is recorded on the blockchain, which nodes verify.
"Miners decide Bitcoin's rules": miners propose blocks; nodes enforce rules by rejecting any block that violates them.
"Running a node earns rewards": nodes receive no protocol payments. The benefit is self-verification and privacy.
How does a Bitcoin transaction flow through all three roles?
When you press "Send," all three roles participate before your transaction reaches finality.
Step 1: Wallet builds and signs
Your wallet identifies which unspent outputs (UTXOs) cover the amount, constructs a transaction, and produces a cryptographic signature using your private key. That signature proves you authorized the spend without revealing the key itself. For more on how UTXOs work, see what UTXOs are and how they work.
Step 2: Transaction is broadcast to a node
Your wallet sends the signed transaction to a node, either one you run or a remote server your wallet connects to. Mobile wallets typically connect to a publicly accessible full node operated by the wallet provider or a trusted third party.
Step 3: Nodes validate and relay
Each node receiving the transaction checks it independently: is the signature valid? Are the UTXOs unspent? Does the fee meet the minimum? Is the script correct? A transaction passing all checks gets relayed to the node's peers, propagating across thousands of full nodes worldwide. A transaction that fails any check gets dropped.
Step 4: Transaction enters the mempool
Each node maintains a local pool of unconfirmed transactions waiting to be included in a block. During congestion, the Bitcoin mempool can hold tens of thousands of transactions; miners typically select those offering the highest fee per unit of block space (sat/vB). As of May 2026, mempool.space shows the minimum fee at 0.1 sat/vB and high-priority fees near 2 sat/vB during low-congestion periods (source: mempool.space).
Step 5: Miners select and assemble
A miner selects transactions from its mempool copy, assembles them into a candidate block, includes a coinbase transaction paying itself the block subsidy (3.125 BTC since the April 2024 halving) plus collected fees, and begins hashing.
Step 6: Proof of work
The miner hashes the block header repeatedly, changing a nonce value, searching for a hash below the current difficulty target. At the May 2026 network hashrate of roughly 936 EH/s and difficulty of 132.47T, this requires enormous computational effort. For a deeper look at the mechanism, see what proof of work is.
Step 7: Block broadcast and node verification
The winning miner broadcasts the new block to the network. Each node independently verifies the block: valid proof-of-work, valid transactions, correct format, no supply-cap violation. Valid blocks are added to the chain and relayed; invalid ones are discarded. The miner earns nothing from a rejected block regardless of computational effort spent.
Step 8: Confirmations accumulate
Each block added on top of the block containing your transaction adds one confirmation. For context on how many confirmations different scenarios warrant, see Bitcoin confirmations.
Common failure points to watch:
Wrong recipient address: transactions cannot be reversed; verify the first and last several characters
Fee too low: your transaction may sit unconfirmed for hours during high-congestion periods
Wallet server outage: if your wallet connects to a remote node that goes offline, you cannot broadcast until it recovers or you switch to a different node
What do Bitcoin full nodes actually do, and how do they work?
A full node downloads every block from the genesis block onward and independently validates each one against Bitcoin's consensus rules. "Trustless" is the precise term: you do not need to trust any third party's claim about the state of the blockchain because your node computed that state itself.
What a full node validates on every block:
Every transaction signature is mathematically valid
No coins are spent twice (double-spend prevention)
The block's proof-of-work hash meets the current difficulty target
The block structure conforms to the protocol format
The coinbase transaction does not exceed the allowed subsidy
The 21 million coin supply cap is not violated
All transaction scripts execute correctly
Full nodes vs pruned nodes vs SPV clients
A full archival node stores the entire blockchain history. As of May 2026, this requires over 600 GB of disk space. A pruned full node validates the complete chain during initial sync but discards old block data, keeping only recent blocks and the current UTXO set, so storage stays manageable without sacrificing the validation security of a full sync. Both pruned and archival full nodes provide the same consensus enforcement; they differ only in storage footprint.
A lightweight or SPV (Simplified Payment Verification) client stores only block headers, not full block data. It verifies that a transaction was included in a block by checking a Merkle proof rather than independently validating every transaction. SPV clients must trust full nodes to serve them accurate data. They offer lower storage and bandwidth requirements, which is why most mobile wallets use them, but provide weaker guarantees than a full node. For a detailed comparison, see full-node wallet vs SPV wallet.
The separation of powers
Miners can assemble any block they want, but nodes decide whether it's accepted. If a miner produces a block creating more than 3.125 BTC of new supply, or includes an invalid signature, every full node on the network rejects it. The miner burned electricity and earned nothing. This happened during the 2017 SegWit activation: miners signaling without upgrading had their non-compliant blocks orphaned by the node network enforcing updated rules. For the fork mechanics behind this, see Bitcoin forks explained.
How many nodes are there?
As of early May 2026, Newhedge tracked approximately 8,409 reachable full nodes globally (source: Newhedge). This figure counts only publicly reachable nodes; many nodes operate behind firewalls or NAT and are not counted in that number. Geographic concentration is significant: the US, Germany, France, and Finland host the largest shares, though nodes operate in over 100 countries.
Why run your own node?
The three practical reasons:
Independent verification: you confirm your own transactions are valid rather than trusting a server operated by someone else
Address privacy: your own node does not report your wallet addresses to any external service; a third-party node server can see every address and transaction you query
Sovereignty: if your wallet's remote server misrepresents balances or withholds transaction data, you have no way to detect it without your own node
A Raspberry Pi 4 with a 1 TB SSD handles a full Bitcoin node adequately. Tools like Umbrel, RaspiBlitz, and MyNode have made node setup accessible to non-technical users. For a complete walkthrough, see how to run a Bitcoin node.
The ongoing bandwidth commitment is roughly 1-5 GB received per month and potentially over 200 GB uploaded per month if your node is fully reachable with inbound connections open, a relevant consideration if your ISP imposes data caps.
What do Bitcoin miners do, and how does mining actually work?
Miners solve Bitcoin's ordering problem: how does a decentralized network agree on transaction sequence without a trusted coordinator? Proof of work provides the answer by requiring miners to spend real energy and computational work to propose blocks. Attacking the history requires re-doing that work, making dishonest mining economically irrational at scale. For deeper coverage of the mechanism, see what Bitcoin mining is.
The hash search: A miner takes a block header, containing the previous block's hash, a Merkle root of included transactions, a timestamp, the current difficulty target, and a nonce, and hashes it repeatedly. The goal is finding a nonce producing a hash below the target. This requires on average trillions of hashes per block. There is no shortcut; hashing is the only path.
Difficulty adjustment recalibrates every 2,016 blocks (roughly two weeks) to maintain a 10-minute average block interval regardless of the total network hashrate. At May 2026's 936 EH/s, the difficulty of 132.47T reflects the adjustment needed to sustain that interval at current total compute. For more on how difficulty works, see bitcoin difficulty adjustment.
Mining pools. An individual miner running a single ASIC has an astronomically small probability of finding a block independently. Mining pools combine hash rate from many participants, find blocks more frequently, and distribute rewards proportionally. As of May 2026, Foundry USA leads with approximately 29.87% of network hashrate, followed by AntPool at roughly 15.49% (source: Hashrate Index). These two pools combined account for nearly half of all blocks mined. This concentration is a legitimate concern for decentralization advocates: a coalition controlling over 50% of hash rate could theoretically execute a double-spend attack, though the economic disincentives against doing so are substantial. For more on mining pools, see what bitcoin mining pools are.
ASIC hardware: Modern Bitcoin mining uses Application-Specific Integrated Circuit (ASIC) machines purpose-built for SHA-256 hashing. General-purpose CPUs and GPUs became economically uncompetitive years ago. Current-generation ASICs like the Antminer S21 Pro achieve over 200 TH/s while consuming roughly 3500W. For a breakdown of hardware, see Bitcoin mining ASICs.
What miners cannot do is as important as what they can:
They cannot spend your coins: that requires your private key
They cannot create an invalid block that nodes will accept: every full node independently rejects violations
They cannot unilaterally change consensus rules: that requires node operators to upgrade their software
They cannot reverse confirmed transactions without re-mining an entire chain segment with more proof-of-work than the honest chain accumulated
How do Bitcoin wallets work, and what does custody actually mean?
A Bitcoin wallet is a key manager and transaction signer, not a balance database, not a coin storage vault. Bitcoin does not exist inside your wallet app. It exists as entries in the blockchain (specifically, as unspent transaction outputs) that your private key can authorize spending. Lose the key with no backup, and those UTXOs become permanently inaccessible to anyone.
Keys and seed phrases
A seed phrase, typically 12 or 24 words drawn from a standardized wordlist, is the master secret that generates your private keys deterministically. Every address in your wallet derives from this seed. The seed phrase is not a password; it is the key itself. Anyone who has it controls your funds completely, without any additional authentication. Never share it, never photograph it, never type it into any website. Store it offline on paper or metal and verify your backup can actually restore your wallet before depositing significant funds. For more on keys and addresses, see Bitcoin public key vs private key.
Hardware vs software wallets
A software wallet runs as an app on your phone or desktop. It manages keys in device memory and signs transactions using device software. A hardware wallet stores the private key on a dedicated signing device that never exposes the key to your computer or mobile OS directly: the device signs the transaction internally and only outputs the signed result. Hardware wallets provide substantially stronger protection against malware. For a comparison, see what a hardware wallet is.
Hot wallet vs cold wallet
A hot wallet maintains a live internet connection. A cold wallet (hardware device kept offline, paper wallet, or air-gapped signing setup) does not. The distinction matters for security: malware targeting an internet-connected device cannot extract a key stored on an offline device. For practical guidance, see hot wallet vs cold wallet.
Custodial vs non-custodial
A non-custodial wallet means you control the private keys. A custodial wallet means someone else, typically an exchange, controls the keys and you have a claim against their balance database. The practical difference became stark in November 2022 when FTX collapsed: customers who held coins on the exchange lost access because FTX controlled the keys, not the customers. "Not your keys, not your coins" is not a slogan; it is a description of how Bitcoin custody actually works. For a thorough comparison, see custodial wallet vs self-custody.
What signing means technically
When your wallet "signs" a transaction, it applies your private key to a cryptographic algorithm (ECDSA or Schnorr on Bitcoin) that produces a signature unique to that transaction data and that key. Any node on the network can verify the signature's validity using only your public key: they never see the private key. This is asymmetric cryptography: signing requires the private key; verification does not.
Watch-only wallets contain a public key or extended public key (xpub) but no private key. They can display balances and track addresses but cannot sign transactions. They are used by hardware wallets for the monitoring side: the watch-only app on your phone, the hardware device signs when you actually want to spend.
Exchanges and services like BloFin operate full nodes to validate incoming deposits independently rather than relying on third-party block explorers, because trust assumptions about node infrastructure ripple into custody risk. From a custodial perspective, the node-vs-miner-vs-wallet distinction matters because exchanges occupy multiple roles simultaneously: they run nodes for deposit validation, custodial wallets for user balances, and may settle internally between users without touching the chain.
Who actually enforces Bitcoin's rules?
The trust model is the single most important thing to understand about Bitcoin's architecture. It differs radically from traditional finance, where trust flows upward to institutions.
Nodes hold the final word
Every full node operator independently runs the same rule set. A block that violates consensus rules is rejected by every node running the current software, it does not matter how much hash rate the miner commands, who runs the exchange, or what any company announces. There is no override mechanism. The network's rules are whatever the software run by the global population of nodes enforces.
Miners' power is specific and limited
Miners control which valid transactions get included in a block and in what order. They do not control whether the block is accepted. A miner with 30% of network hash rate finds roughly 30% of blocks. That miner has no elevated authority to produce blocks that nodes will accept if those blocks violate rules.
A 51% attack requires controlling more than half of the network's hash rate and allows a miner to reorganize recent blocks, reversing recent transactions or double-spending. It does not allow the attacker to steal anyone's coins arbitrarily, create new coins beyond the protocol limit, or permanently alter consensus rules without nodes cooperating. At May 2026's 936 EH/s total network hash rate, acquiring 51% would require assembling hundreds of billions of dollars worth of hardware and energy, making it economically implausible for most practical attack scenarios. For more on what this attack can and cannot do, see what a 51% attack is.
The wallet user's trust choices
When you use a mobile wallet backed by a third-party node, you are trusting that node to report your balance accurately and relay your transactions faithfully. The node operator knows your addresses and can see all your queries. Running your own node eliminates this trust requirement. Using a custodial exchange account introduces a different trust requirement: that the exchange is solvent, not hacked, and not frozen by regulators.
Decision spectrum:
Maximum trust, minimum control: custodial exchange account
Key custody, some node trust: non-custodial wallet using a third-party node
Key custody, independent verification: non-custodial wallet connected to your own full node
Maximum sovereignty: full node + hardware wallet + coin control + privacy practices
For most holders of meaningful amounts, the middle two options represent a practical balance between security and complexity. For a practical storage guide, see how to store Bitcoin safely.
What are the most common misunderstandings about nodes, miners, and wallets?
These myths appear regularly in Bitcoin discussions and cause real mistakes.
"Miners approve transactions."
Miners include transactions in blocks. Nodes approve them by verifying the block. The workflow is: nodes validate before relaying to the mempool, miners select from the mempool, nodes validate again when the block arrives. The miner cannot force an invalid transaction past nodes.
"More hash rate = more protocol control."
Hash rate determines probability of finding the next block, not authority over rules. The 2017 SegWit activation demonstrated this: miner signaling was interpreted by some as a vote on the rules. But when New York Agreement miners threatened to activate SegWit2x (a rule change), node operators running Bitcoin Core enforced SegWit without the block-size increase. Miners who did not upgrade found their blocks orphaned. Nodes prevailed.
"Light wallets are secure enough for significant holdings."
SPV wallets verify Merkle proofs but can be deceived by malicious nodes serving them fabricated proof data in certain attack scenarios. For small amounts this risk is acceptable. For large holdings, connecting your wallet to your own full node removes this trust assumption entirely.
"Running a node is expensive and technical."
Entry-level node setups cost $150-400 in hardware. Umbrel and RaspiBlitz run on Raspberry Pi. Setup takes a few hours. The larger ongoing cost is bandwidth and storage growth over time.
"Bitcoin nodes and miners are the same thing."
All miners run node software to validate and build on the current chain. But the reverse is not true: the roughly 21,000 reachable full nodes vastly outnumber the mining operations. Running a node does not require ASIC hardware or significant electricity, any modest computer with adequate storage will do.
"An exchange wallet is the same as a Bitcoin wallet."
An exchange account is a liability on the exchange's balance sheet. The exchange holds the Bitcoin; you hold a claim. This is exactly analogous to a bank account: you trust the institution's solvency. The exchange can restrict your access, be hacked, or fail. A Bitcoin wallet where you hold the private key cannot be frozen by any third party.
Practical setup: what do you need, and what can you skip?
You do not need to mine or run a full node to use Bitcoin safely. Here is a sensible starting point and a realistic upgrade path.
Minimum baseline for a beginner:
Use a non-custodial wallet (not an exchange account for storage)
Write your seed phrase on paper or metal, not in a screenshot, note app, or cloud document
Store the backup in a physically secure, offline location, fire-rated storage or a safety deposit box for large amounts
Test your recovery: restore from the seed phrase before depositing a significant amount
Send a test transaction of a small amount before transferring a large sum
Verify the recipient address fully before confirming, clipboard malware replaces addresses silently
Download wallet software only from the official project website; verify signatures where possible
When a hardware wallet makes sense:
When your holdings reach an amount you would be seriously upset to lose, a hardware wallet changes the security model. The private key never touches your internet-connected device. Consider one as soon as you hold more than a few hundred dollars. See the hardware wallet guide for how to choose one. For seed phrase backup, see what a seed phrase is.
When running your own full node makes sense:
You hold a meaningful amount and want independent transaction verification
You want address privacy and do not want any server to track your Bitcoin activity
You want to contribute to network decentralization
Hardware: Raspberry Pi 4 or equivalent x86 mini-PC, 1 TB SSD (2 TB for multi-year margin), stable broadband. Storage grows by roughly 50-60 GB per year at current chain growth. A fully reachable node with open inbound connections uses over 200 GB upload per month; a node behind NAT uses significantly less.
For everything beyond basics: the how-to-store-bitcoin guide covers hardware wallets, multisig, and backup strategies in full.
Frequently asked questions about Bitcoin nodes, miners, and wallets
Does my wallet talk directly to miners?
No. Your wallet broadcasts a signed transaction to a node: either your own or a remote one your wallet connects to. The node relays it to the peer-to-peer network. Miners receive it when their node software picks it up from the mempool. Your wallet has no direct connection to mining pools.
Can miners steal my bitcoin?
No. Spending your coins requires your private key. Miners cannot create valid cryptographic signatures for your funds without that key, and no amount of hash rate provides a substitute. What miners can do is censor specific transactions (choose not to include them) or, with majority hash rate, double-spend coins they themselves own. They cannot redirect coins belonging to other key holders.
What happens if I send bitcoin to the wrong address?
The transaction is confirmed and irreversible. Nodes and miners have no mechanism to reverse a valid transaction based on its destination: they only check that the transaction is structurally valid and properly signed. This is why address verification before sending is critical. For help with common errors, see pending Bitcoin transactions.
Is an SPV wallet safe for everyday use?
For small amounts and typical payments, yes. SPV wallets verify block header proof of work and Merkle inclusion proofs: they are not trivially deceived. The meaningful security gap versus full nodes arises in specific adversarial scenarios (malicious node serving fake confirmations). For holdings you would not want to lose, running your own node or using a wallet that connects to your own node closes this gap.
Why do some transactions confirm quickly and others take hours?
Miners prioritize transactions paying higher fee rates (satoshis per virtual byte). When the mempool fills during high-activity periods, low-fee transactions wait. The fee rate at which your transaction gets confirmed depends on network demand at submission time, not absolute fee amount. A transaction paying 1 sat/vB during quiet periods may confirm faster than one paying 5 sat/vB during congestion. See the Bitcoin confirmations article for practical guidance on confirmation times.
What is replay protection and when does it matter?
When a hard fork creates two chains (like Bitcoin and Bitcoin Cash in 2017), a transaction valid on one chain may also be valid on the other, potentially moving coins on both simultaneously without the user intending to. Replay protection is a protocol-level change that makes transactions chain-specific so they cannot be unintentionally replayed. This is relevant to wallet users during contentious hard forks. For background on how hard forks create chain splits, see the Bitcoin forks explained article.
Do I need to keep my node running constantly?
A full node that goes offline will re-sync when it comes back online by downloading blocks it missed. You do not need 100% uptime, but the longer it's offline, the longer it takes to catch up. For wallets connected to your own node, your wallet is effectively offline while your node is. Nodes set to start automatically on boot maintain higher uptime with minimal effort.
What is the difference between a hot wallet and a cold wallet?
A hot wallet has an active internet connection. A cold wallet (hardware device kept unplugged, paper wallet, or air-gapped machine) does not. Cold storage eliminates the risk of remote key extraction via malware. See the hot wallet vs cold wallet article for a full comparison of storage options.
Summary: Three roles, one network
Bitcoin separates authorization (wallet), verification (node), and ordering (miner) across independent participants who check each other. Wallets sign but cannot validate. Nodes validate but cannot spend or produce blocks. Miners produce blocks but cannot override the rules that nodes enforce. This structure removes the single point of failure that every traditional financial institution represents.
For you as a user, the practical summary:
Secure your seed phrase: it is the root of your custody
Understand whether you are using custodial or non-custodial storage
Know whether your wallet is trusting a third-party node
Consider running your own node when your holdings warrant it
Researched and written by the BloFin Academy editorial team with AI-assisted drafting. All facts independently verified.
Disclaimer: This content is for educational purposes only and does not constitute financial, investment, legal, or tax advice. Crypto assets are highly volatile and carry significant risk of loss. Always verify local regulations and consult a qualified professional before making financial decisions.