IBM Quietly Enters Crypto Custody Market With Tech Designed for Banks

IBM and Shuttle Holdings will launch a digital asset custody service this month for banks and enterprises that want to store crypto for their clients.

AccessTimeIconMar 12, 2019 at 4:30 p.m. UTC
Updated May 9, 2023 at 3:03 a.m. UTC
10 Years of Decentralizing the Future
May 29-31, 2024 - Austin, TexasThe biggest and most established global hub for everything crypto, blockchain and Web3.Register Now

IBM is coming to the crypto custody space.

Later this month, Shuttle Holdings, a New York investment firm, will launch the beta version of a custody solution for digital assets built on IBM's private cloud and encryption technologies. The companies won’t be storing cryptocurrencies and tokens themselves, but offering tools for others to do so.

  • Ledger Removes 'Malicious Version' of Connect Kit; Why Is Meme Coin BONK Surging?
    01:48
    Ledger Removes 'Malicious Version' of Connect Kit; Why Is Meme Coin BONK Surging?
  • Ledger Didn't See Sales Uptick Significantly Following Binance's $4.3B Fine, CEO Says
    00:48
    Ledger Didn't See Sales Uptick Significantly Following Binance's $4.3B Fine, CEO Says
  • Ledger CEO on 2024 Expectations, Future of Wallet Recovery Service
    12:52
    Ledger CEO on 2024 Expectations, Future of Wallet Recovery Service
  • Sam Bankman-Fried Will Testify; Crypto Wallet Maker Ledger Officially Rolls Out 'Recover'
    02:20
    Sam Bankman-Fried Will Testify; Crypto Wallet Maker Ledger Officially Rolls Out 'Recover'
  • Potential users include banks, brokers, custodians, funds, family offices and high net worth investors who want to do self-custody, as well as exchanges, Brad Chun, Shuttle's chief investment officer, told CoinDesk.

    "We have a list of selected clients that we are launching limited service with this month," Chun said. The service is "not open to the public yet and there is a wait list to get into our beta." 

    IBM showcased the solution at its “Think 2019” conference last month in San Francisco, where Nataraj Nagaratnam, the tech giant's CTO and director of cloud security, called storage of crypto a prime use case for Big Blue's cloud. 

    “What better example than taking a financial technology that is changing the world. Look at digital assets; how do you secure the data? ... [This is] top of mind for a lot of people in the financial industry,” Nagaratnam said, before welcoming Chun onstage.

    When contacted by CoinDesk, IBM referred most questions to Chun. But Rohit Badlaney, director of IBM's "Z As a Service" cloud solution, talked up IBM's involvement in the forthcoming Digital Asset Custody Service (DACS).

    "For DACS, the on-premise pervasive encryption capabilities offered by IBM LinuxONE was a key differentiator in choosing IBM as the most secure platform for their offering," Bedlaney told CoinDesk through a spokeswoman.

     Slide from Brad Chun's presentation at IBM's Think conference in February
    Slide from Brad Chun's presentation at IBM's Think conference in February

    The move suggests IBM is wading deeper into the digital asset space, after developing the Hyperledger Fabric private blockchain for enterprises and more recently getting involved with cryptocurrency through its work with the Stellar Foundation.

    While crypto custody was once the preserve of wallet providers and crypto exchanges, the promise of institutional investment entering the digital assets space has prompted a race to come up with safe, industrial-grade solutions that are also familiar in terms of usage to these large players.

    Not cold storage

    The custody service that Shuttle and IBM are offering differs greatly from the cold storage solutions used by most crypto custodians, where the private keys are held in a device not connected to a network.

    While these air-gapped arrangements have traditionally been thought of as the best way to reduce attack vectors, “from a technology standpoint, it sounds a little oxymoronic,” Chun in his presentation.

    Enterprises, he noted, want to be able to connect to their customers and to have data and assets held in a readily available, yet secure setting. (Getting assets out of cold storage can be something of a headache.)  

    Instead, Chun said IBM Cloud has created some interesting features that enabled Shuttle to build a system that is "just as secure, if not more secure" than a simplistic cold storage wallet solution. 

    As such, the solution is built on a hardware security module (HSM), a kind of lockbox that safeguards and manages digital keys in a tamper-proof environment.

    He later elaborated to CoinDesk:

    "There are always trade-offs between security and efficiency, but we do not utilize a traditional cold storage system. Instead, we keep keys at rest encrypted in multiple layers as data blobs so that an organization can store these backups using their pre-existing disaster recovery and backup processes and media."

    During his presentation, Chun said this combination of availability and security means the IBM Cloud solution is better equipped for a digital asset-laden future.

    “Once we have this critical layer that’s highly available and secure, then all businesses can start custodying digital assets – not just cryptocurrencies; we mentioned real estate, we mentioned identity,” he said.

    As far as what flavor of HSM Shuttle uses, Chun told CoinDesk the solution was HSM-agnostic.

    We focus on the entire solution, not just the HSM. If the HSM offering from Gemalto is better than what we are using, I would be happy to talk to them and incorporate them into our plans. IBM has an HSM we are using but we can easily switch it based on customer needs and demands,” he said.

    Cold storage vs. HSMs

    Stepping back, opinions differ over HSMs versus traditional cold storage and the putative trade-offs between security and efficiency, in relation to managing crypto assets.

    With cold storage solutions, a human has to be involved to access the assets, which can take anywhere from an hour or two to as long as 48 hours. HSMs, by contrast, rely on a purely electronic process and are therefore much faster.

    IBM would not be alone in providing HSM solutions for digital assets. Last week, Switzerland’s Crypto Storage AG announced its customized HSM-solution would be rolled out to online bank Swissquote.

    Other high-profile HSM initiatives include the Komainu project involving hardware wallet provider Ledger, Gemalto, Global Advisors Holdings and Japanese bank Nomura, slated for launch in early Q2. Demetrios Skalkotos, global head of Ledger Vault, pointed out that Komainu uniquely has been granted access to integrate its software directly into the Gemalto HSM blueprint.  

    “Only banks and governments have that to my knowledge,” he said.

    Trustology, backed by ethereum design studio Consensys, is also making strides with an HSM crypto custody solution. Alex Batlin, the CEO of Trustology, said people like the sound of cold storage because it’s offline, but it’s really just replacing a network with a human, who can still be influenced to behave in nefarious ways. 

    “All cold storage does is give you a false sense of security and also very high latency for instruction execution,” Batlin said.

    However, Mike Belshe, CEO of crypto custody pioneer BitGo, has argued that the latency and human involvement are a small price to pay for the security afforded by cold storage. He told CoinDesk last year:

    “If you put the keys online, or if you put the keys so close to being online that you can move money within 15 minutes, that means you don't have very tight control on it. The customers we talk to appreciate this point of view.”

    IBM image from Construct 2017 via CoinDesk archives.

    Disclosure

    Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.

    CoinDesk is an award-winning media outlet that covers the cryptocurrency industry. Its journalists abide by a strict set of editorial policies. In November 2023, CoinDesk was acquired by the Bullish group, owner of Bullish, a regulated, digital assets exchange. The Bullish group is majority-owned by Block.one; both companies have interests in a variety of blockchain and digital asset businesses and significant holdings of digital assets, including bitcoin. CoinDesk operates as an independent subsidiary with an editorial committee to protect journalistic independence. CoinDesk employees, including journalists, may receive options in the Bullish group as part of their compensation.


    Learn more about Consensus 2024, CoinDesk's longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to consensus.coindesk.com to register and buy your pass now.