Air-gapped Bitcoin signing is the practice of authorizing a Bitcoin transaction on a device that has never connected to the internet, then transferring only the signed transaction data back to an online device for broadcast. The signing device holds your private keys in permanent isolation. Transaction data crosses the "air gap" through a physical medium such as a QR code scanned by a camera or a file saved to a microSD card. The protocol that makes this workflow possible is BIP-174, which defines the Partially Signed Bitcoin Transaction (PSBT) format. This guide covers how the signing process works at each step, which hardware supports it, the specific security boundaries it creates, what it does not protect against, and how to evaluate whether air-gapped signing fits your custody needs. Technical references are current as of April 2026.
What is air-gapped Bitcoin signing?
Air-gapped Bitcoin signing means constructing a transaction on one device and signing it on a separate device that has no network connection, no Wi-Fi radio, no Bluetooth, and no USB data link. Private keys exist only on the offline signer and never touch a networked machine at any point in the transaction lifecycle.
The "air gap" is the physical separation between the online environment where the transaction is built and the offline environment where the cryptographic signature is produced. Crossing that gap requires a deliberate physical action by the user: scanning a QR code, inserting a memory card, or in some implementations tapping an NFC chip. Each method transfers only the minimum data needed for the signer to verify and approve the transaction.
This separation matters because most attacks against Bitcoin wallets require network access to the signing device. Malware must reach the device holding the keys to extract them or alter a transaction before signing. An air-gapped signer eliminates that network path entirely. The attacker would need physical possession of the device itself, which shifts the threat model from remote exploitation to physical theft.
How does the PSBT workflow enable air-gapped signing?
The technical foundation is BIP-174, authored by Ava Chow and deployed in Bitcoin Core since version 0.17 in October 2018 (source: Bips). BIP-174 defines a standardized container called a Partially Signed Bitcoin Transaction that can be passed between devices and signed incrementally without any device needing full network access.
The six roles in BIP-174
BIP-174 separates the transaction lifecycle into six distinct roles. In a typical air-gapped setup, the online wallet handles most roles while the offline signer handles only the signing step.
Creator. Selects which unspent transaction outputs (UTXOs) to spend, sets the recipient addresses and amounts, and produces a raw unsigned transaction. This role runs on the online wallet software, such as Sparrow Wallet or Bitcoin Core.
Updater. Adds metadata the signer needs for verification: BIP-32 derivation paths, previous transaction outputs, redeem scripts, and witness scripts. In practice the Creator and Updater are usually the same software.
Signer. Receives the PSBT, verifies the transaction details on its own screen, and applies cryptographic signatures using the stored private keys. This is the only role that requires key access, and it is the role the air-gapped device performs. The BIP-174 specification explicitly states: "This transaction format will allow offline signers such as air-gapped wallets and hardware wallets to be able to sign transactions without needing direct access to the UTXO set and without risk of being defrauded."
Combiner. Merges signatures when multiple signers are involved, as in a multisig wallets configuration. Not needed for single-signature wallets.
Finalizer. Constructs the complete scriptSig and witness data from the collected signatures.
Extractor. Converts the finalized PSBT into a standard network-serialized transaction ready for broadcast.
Step-by-step signing flow
Here is the concrete sequence when you send Bitcoin using an air-gapped signer with QR codes:
Open your watch-only wallet on a networked computer or phone. A watch-only wallet can display balances and build transactions but cannot sign because it does not hold private keys.
Create the transaction: specify the recipient address, amount, and fee rate. The wallet produces a PSBT.
The wallet displays the PSBT as one or more QR codes on screen. For larger transactions the data is split across animated QR frames using the UR (Uniform Resource) encoding standard from Blockchain Commons (source: GitHub).
Hold the air-gapped signing device up to the screen. Its built-in camera scans the QR codes.
The signing device parses the PSBT and displays the transaction details on its own screen: recipient address, amount, fee, and change output. You verify these details match your intent.
Press the physical confirmation button on the device. The signer applies the private key to produce a cryptographic signature.
The device displays a new QR code containing the signed PSBT.
Your watch-only wallet scans this QR code, extracts the finalized transaction, and broadcasts it to the Bitcoin network.
At no point did the private key leave the signing device, and at no point did the signing device connect to any network.
What hardware supports air-gapped signing?
Several dedicated hardware wallets are designed for fully air-gapped operation. The three most established Bitcoin-focused options as of April 2026 are described below.
COLDCARD (Coinkite). A Bitcoin-only signing device produced since 2018. The COLDCARD Mk4 supports microSD card transfer. The newer COLDCARD Q adds QR code scanning via built-in camera and NFC tap, making it the only current device offering three independent air-gapped transfer methods. Private keys are stored in dual secure-element chips (source: Coldcard). Firmware is open-source and verifiable.
Foundation Passport. A Bitcoin-only hardware wallet with a built-in camera for QR code scanning and a microSD slot for file-based PSBT transfer. No Wi-Fi, no Bluetooth, no USB data connection. Firmware and hardware designs are fully open-source under the Foundation Devices GitHub repository (source: GitHub).
Keystone 3 Pro. Supports QR code and microSD transfer with no USB data capability, no Bluetooth, no Wi-Fi, and no NFC. Uses three independent secure-element chips. Firmware is open-source (source: GitHub). The device displays transaction details including output addresses and fee amounts on a touchscreen before requiring physical confirmation.
Each device pairs with watch-only wallet software on the online side. Common companion wallets include Sparrow Wallet (desktop), BlueWallet (mobile), and Nunchuk (mobile and desktop). The pairing exports the wallet's extended public key (xpub) to the companion software so it can track balances and build transactions without holding signing capability.
What does air-gapped signing protect against?
Understanding the specific threat boundaries helps you evaluate whether this approach matches your custody needs.
Remote malware
If malware compromises your computer, it can see your transaction details and attempt to swap the recipient address. But it cannot extract your private keys because the keys are not on the computer. The signing device displays the true recipient address on its own screen before you confirm. Verifying the address on the device screen, not the computer screen, is the critical security step.
Supply-chain firmware attacks on network-connected devices
A compromised firmware update delivered over the internet could exfiltrate keys from a connected hardware wallet. An air-gapped device never receives firmware over a network connection. Firmware updates are loaded via microSD card, and the device verifies the update signature cryptographically before applying it. This does not eliminate supply-chain risk entirely, but it removes the remote delivery vector.
Man-in-the-middle network attacks
Attacks that intercept communication between a wallet and a Bitcoin node cannot reach the signing device. The air gap makes network-level interception irrelevant to key security.
Clipboard hijacking
Malware that monitors the clipboard and swaps Bitcoin addresses when you copy-paste cannot alter what the signing device displays. You verify the address on the device's own screen, which the malware cannot reach.
What does air-gapped signing not protect against?
No security measure is absolute. Air-gapped signing has specific limitations that you should understand before relying on it.
Physical theft of the device
If someone steals your signing device and knows your PIN, they can sign transactions. Hardware wallets mitigate this with PIN lockouts, anti-tamper mechanisms, and seed phrase backup procedures, but physical security remains your responsibility. COLDCARD implements a "brick me" PIN that permanently erases the secure element if entered, and a login countdown that adds delays after failed attempts.
Compromised QR code or SD card data
While the signing device verifies transaction details before signing, a sophisticated attack could theoretically craft a PSBT that appears legitimate on the device screen but actually sends funds elsewhere. This would require compromising the PSBT creation software on the online device. The defense is verifying the recipient address on the signing device screen matches the address you obtained independently from the recipient. Do not trust the computer screen alone.
Hardware supply-chain compromise before purchase
If the device was tampered with during manufacturing or shipping, the secure elements could be pre-loaded with a known seed. Reputable manufacturers address this with factory-sealed packaging, tamper-evident bags, attestation certificates, and open-source firmware that can be independently compiled and verified against the installed version.
Social engineering
Air-gapped signing protects keys from remote extraction but cannot stop you from voluntarily signing a transaction to a common Bitcoin scams address. Phishing attacks that trick you into believing a fraudulent address is legitimate bypass every technical safeguard. Always verify addresses through an independent channel.
How does air-gapped signing compare to USB-connected hardware wallets?
Standard hardware wallets like the Ledger Nano series connect to a computer via USB. The USB connection transfers transaction data and receives signed transactions back. The private keys still remain on the device and are not exposed through USB, but the connection creates an attack surface that does not exist in an air-gapped setup.
The practical differences are as follows. USB-connected wallets have a potential firmware attack vector through the USB interface. Air-gapped wallets eliminate that vector. USB wallets offer a simpler user experience because transaction data transfers automatically. Air-gapped wallets require an extra physical step (scanning QR codes or moving a memory card). For most holders with moderate amounts, USB hardware wallets provide strong security. For holders prioritizing maximum key isolation, particularly in self-custody wallets setups protecting larger positions, air-gapped signing adds a meaningful additional layer.
Blofin's security team evaluates custody infrastructure across both approaches. From an operational perspective, the tradeoff is real: the extra steps in air-gapped signing reduce convenience but also reduce the total number of electronic interfaces an attacker can probe. For institutional-grade custody or long-term cold storage, that tradeoff typically favors the air-gapped model.
How do you set up an air-gapped signing workflow?
The general setup process is similar across devices. The specifics below use Sparrow Wallet as the companion software because it supports all major air-gapped signers and is widely used in the Bitcoin self-custody community.
Step 1: Initialize the signing device
Power on the device using a battery or USB power adapter (power only, no data). Generate a new seed phrase on the device. Write the seed phrase on paper or stamp it on metal. Never enter it into any computer, phone, or online form. Set a PIN.
Step 2: Export the public key to the watch-only wallet
The signing device displays its extended public key (xpub) as a QR code. Open Sparrow Wallet on your computer, select "New Wallet," choose your device type, and scan the QR code. Sparrow now has enough information to generate receiving addresses, display balances, and construct transactions, but it cannot sign because it does not have the private key.
Step 3: Verify an address round-trip
Generate a receiving address in Sparrow. On the signing device, navigate to the address explorer and confirm the same address appears. This verifies the watch-only wallet and the signing device are synchronized and no address substitution has occurred.
Step 4: Test with a small transaction
Send a small amount of Bitcoin to the wallet. Then send it back using the full air-gapped signing flow: build the PSBT in Sparrow, scan with the device, confirm on the device screen, scan the signed PSBT back, broadcast. This end-to-end test confirms the entire workflow functions before you rely on it for larger amounts.
What role does air-gapped signing play in multisig setups?
PSBT was designed to support multiple signers. In a 2-of-3 multisig configuration, a transaction requires signatures from any two of three independent keys. Each key can be held on a separate air-gapped device in a separate physical location. The PSBT travels between signers, collecting signatures incrementally until the threshold is met.
This is where the Combiner role in BIP-174 becomes relevant. After two signers independently sign the same PSBT, the Combiner merges both partially signed versions into a single fully signed transaction. Software like Sparrow or Nunchuk handles the Combiner, Finalizer, and Extractor roles automatically.
Multisig plus air-gapped signing is the current standard for high-security Bitcoin custody. Unchained and Casa, two major collaborative custody providers, both support workflows where clients hold air-gapped signing devices as their personal keys within a multisig quorum (source: Unchained).
Frequently asked questions
Can I use an air-gapped wallet without any special hardware?
You can run an air-gapped signing setup on any computer that is permanently disconnected from all networks. Install a Bitcoin wallet like Electrum on an offline laptop, generate keys there, and transfer PSBTs via USB drive or QR code. However, a general-purpose computer lacks the secure-element chip, anti-tamper protections, and minimal firmware attack surface that dedicated hardware wallets provide. For most people, a purpose-built signing device offers stronger guarantees with less operational risk than maintaining a permanently offline laptop.
Does air-gapped signing work with the Lightning Network?
Air-gapped signing is designed for on-chain Bitcoin transactions. The Lightning Network requires signing devices to be online and responsive in real time because channel state updates happen continuously and must be countersigned within time-limited windows. You cannot air-gap a Lightning node. The common approach is to keep on-chain cold storage in an air-gapped setup and fund Lightning channels with smaller amounts from a separate hot wallet.
What happens if my air-gapped signing device breaks?
The device is a key-storage and signing tool, not a vault. Your Bitcoin is on the blockchain, not inside the device. If the device breaks, you recover your wallet by importing your seed phrase into a new device of the same type or any BIP-39-compatible hardware wallet. This is why the seed phrase backup is the critical piece of your security setup, not the device itself.
Is NFC on a COLDCARD Q a break in the air gap?
NFC (Near Field Communication) operates at a range of a few centimeters and transfers only PSBT data, not private keys. The COLDCARD Q treats NFC as a convenient alternative to QR codes for moving transaction data across the gap. Coinkite's documentation states that private keys never transit via NFC. If you prefer maximum isolation, you can disable NFC entirely in the device settings and use only microSD or QR codes.
How do I verify that my signing device firmware has not been tampered with?
Download the firmware binary and its PGP signature from the manufacturer's official repository. Verify the signature against the manufacturer's published public key using GPG on a separate computer. COLDCARD, Foundation Passport, and Keystone all publish their firmware source code on GitHub, allowing independent compilation and comparison against the installed binary hash. Some devices also display firmware hashes on-screen during boot for manual verification.
Researched and written by the BloFin Academy editorial team with AI-assisted drafting. Primary sources include BIP-174 (Partially Signed Bitcoin Transaction Format, Ava Chow, deployed January 2021), BIP-370 (PSBTv2), Blockchain Commons UR encoding specification, COLDCARD technical documentation and firmware source (Coinkite), Foundation Passport open-source hardware designs, Keystone 3 Pro secure-element architecture documentation, and Sparrow Wallet PSBT implementation guides. All protocol-level claims verified against BIP specifications and device manufacturer source code repositories as of April 2026.
Disclaimer: This content is for educational purposes only and does not constitute financial, investment, legal, or tax advice. Crypto assets are highly volatile and carry significant risk of loss. Always verify local regulations and consult a qualified professional before making financial decisions.