In the world of digital assets, security is paramount. Using a cold wallet, also known as an offline wallet, is one of the most effective ways to protect your cryptocurrencies from online threats. This guide will walk you through the process of setting up an observation wallet and enabling offline signing with imToken for Ethereum.
Please note: imToken currently supports offline signing only for Ethereum wallets. Support for BTC and EOS is not available at this time.
Essential Preparations
Before you begin, ensure you have the following:
- Two mobile devices that you consider highly secure and that have not been rooted or jailbroken.
- Both devices should have the latest version of imToken installed, downloaded from the official token.im website or the App Store.
- One device must be completely disconnected from the internet—turn off Wi-Fi and enable airplane mode. This will serve as your cold wallet, housing your private keys.
Understanding Observation and Cold Wallets
An observation wallet allows you to monitor your holdings and prepare transactions without risking your private keys. The offline device (cold wallet) holds the private keys and is used to sign transactions securely, while the online device (hot wallet) observes the address and broadcasts signed transactions.
This setup ensures that your private keys never come into contact with an internet-connected device, drastically reducing the risk of theft.
Step-by-Step Setup Guide
Step 1: Initiate the Observation Process
On your online device (hot wallet):
- Open imToken and tap "Import Wallet."
- Select "Ethereum Wallet."
- Choose the fourth option: "Observation Wallet."
- Tap the scan icon in the top right corner to prepare to scan a QR code.
Step 2: Locate the Wallet Address
On your offline device (cold wallet):
- Unlock imToken and select the Ethereum wallet you wish to observe.
- Navigate to the screen displaying the public address QR code for that wallet.
Step 3: Scan and Generate a Signature Request
On your online device:
- Scan the QR code displayed on your cold wallet’s screen.
- Tap "Next" to generate a new QR code for "Authorization Signature."
Step 4: Authorize with the Cold Wallet
On your offline device:
- Use imToken’s "Scan" feature, but select the "Import Wallet" option at the bottom.
- Scan the authorization QR code generated by your hot wallet in Step 3.
- Tap "Next," enter your wallet password, and a new "Authorization Success" QR code will be generated.
Step 5: Complete the Authorization
On your online device:
- On the "Authorization Signature" screen, tap "Next."
- Select "Scan the QR code from the authorization wallet page to import the signature."
- Scan the "Authorization Success" QR code from your cold wallet.
- Tap "Confirm" to finalize the setup.
Your observation wallet is now active. You can view balances and create transaction drafts, but all transactions require offline signing from the cold wallet to be executed.
Best Practices for Cold Wallet Security
- Backup Your Wallet: The offline device contains your private keys. Ensure you have a secure, physical backup of your wallet’s seed phrase stored in multiple safe locations.
- Never Connect to the Internet: The cold wallet device must never be connected to any network. This is the core principle of cold storage security.
- Transaction Requirements: Remember, the observation wallet cannot send funds on its own. Every transaction must be signed offline by the cold wallet to be valid.
This setup provides a robust security model for managing your Ethereum holdings, ideal for large sums or long-term storage. For managing other digital assets, always check for the latest supported features on the official platform.
👉 Explore advanced security strategies
Frequently Asked Questions
What is the main advantage of a cold wallet?
A cold wallet keeps your private keys entirely offline, making them immune to online hacking attempts, phishing sites, and malware that targets connected devices. It is the gold standard for securing large cryptocurrency holdings.
Can I use imToken’s cold wallet feature for Bitcoin?
No, at this time, the offline signing functionality in imToken is only available for Ethereum-based assets. For Bitcoin, you would need to use a dedicated cold storage solution that supports it.
What happens if my offline phone is damaged or lost?
If you have securely backed up your seed phrase, you can recover your wallet on a new device. This is why it is critical to write down the mnemonic phrase and store it in a safe place when you first create the wallet.
Is it possible to reverse the observation setup?
Yes, you can remove the observed wallet from your online device at any time. However, the funds remain secure on the blockchain and accessible through your private keys, which are on the cold wallet device.
Why do I need two phones? Can’t I use one device?
The security model requires a complete air gap between the private keys and the internet. Using a single device for both online and offline functions defeats this purpose, as a connected device cannot be considered truly secure.
Does this method cost any gas fees?
The setup process itself does not incur fees. However, any blockchain transaction you later sign and broadcast, such as sending ETH, will require paying the appropriate network gas fees.