Utility Token btc IoT patented technology Bitcoins Bitcoin blockchain blockchain wallet litecoin ltc omisego omg aragon ant augur rep bat civic cvc dash decred drc district0x dnt eos etherclassic etc funfair gnosis gno golem gnt salt DIGITAL CURRENCY nucleus vision iost arcblock online platform for buying selling transferring
Secure Bitcoin Storage - Coinbase
×

Please note that Coinbase no longer supports this browser. We recommend upgrading to the latest Google Chrome or Firefox.

×

We use cookies to improve the functionality of our products and services, and enhance your experience on our website. If you continue without changing your cookie settings, we assume you are happy to receive all cookies on the website. However, you can change your cookie settings anytime. Read our Cookie Policy for more information..

Security for Your Peace of Mind

We take careful measures to ensure that your bitcoin is as safe as possible.

New Online Funds Are Now Covered by Insurance - Read More

98% of customer funds are stored offline

Offline storage provides an important security measure against theft or loss.
We distribute bitcoin geographically in safe deposit boxes and vaults around the world.

Sensitive data that would normally reside on our servers is disconnected entirely from the internet.

Data is then split with redundancy, AES-256 encrypted, and copied to FIPS-140 USB drives and paper backups.

Drives and paper backups are distributed geographically in safe deposit boxes and vaults around the world.

2-Step Verification on All Accounts

In addition to your username and password, you'll enter a code from your mobile phone, adding an extra layer of security for your account.

Two factor

Payment Industry Best Practices

Our website traffic runs entirely over encrypted SSL (https).

Icon best

Wallets (and private keys) are stored using AES-256 encryption.


Organization

Coinbase employees must pass a criminal background check as part of the hiring process.

We use separate passwords and two-step verification with each device and service.

Employees are required to encrypt their hard drives, utilize strong passwords, and enable screen locking.

Application

We use SQL injection filters and verify the authenticity of POST, PUT, and DELETE requests to prevent CSRF attacks.

We rate limit a variety of actions on the site (login attempts, etc).

We whitelist attributes on all models to prevent mass-assignment vulnerabilities.

Authentication

We hash passwords stored in the database (using bcrypt with a cost factor of 12).

We check for strong passwords on account creation and password reset.

Application credentials are kept separate from the database and code base.

See also

The Coinbase Bug Bounty Program


An active community of security researchers helps keep Coinbase customers safe.

Utility Token btc IoT patented technology Bitcoins Bitcoin blockchain blockchain wallet litecoin ltc omisego omg aragon ant augur rep bat civic cvc dash decred drc district0x dnt eos etherclassic etc funfair gnosis gno golem gnt salt DIGITAL CURRENCY nucleus vision iost arcblock online platform for buying selling transferring