WSTA brings together leading exchanges, custodians and wallet providers to define the first unified security standard for institutional digital assets — aligned with regulators, built for scale.
We provide the framework for institutions to achieve credible, practitioner-validated wallet security — aligned with evolving global regulation.
Co-create the Wallet Security Standard (WSS) alongside 24 founding members across exchanges, custodians, and independent security specialists. Be part of defining the framework, not just adopting it.
Build verifiable, practitioner-validated security credibility. WSTA members demonstrate conformance to the WSS framework — a transparent, open standard visible to regulators, institutional clients, and counterparties.
Multi-stakeholder governance with fair representation. Working groups, monthly co-creation sessions, and a structured two-year path to WSS v1.0 publication and regulatory outreach.
Institutional digital asset operations demand rigorous security — yet no unified, practitioner-validated standard exists for wallet infrastructure at scale.
The Wallet Security Trust Alliance (WSTA) was established to address this gap. We convene leading exchanges, custodians, wallet infrastructure providers, and independent security specialists to co-create the Wallet Security Standard (WSS).
WSS is a purpose-built framework covering modern architectures including MPC/TSS, smart contract wallets, AI-assisted monitoring, and regulatory reporting — designed to be adopted by regulators globally.
The Wallet Security Standard covers the full spectrum of institutional digital asset security, from key management architecture to regulatory reporting.
WSS-STD-001 · Version 1.0
Public draft targeted December 2026 upon finalisation of all 15 domains through member co-creation sessions.
MPC/TSS, multi-sig, hot/warm/cold storage, smart contract wallets, AI-assisted monitoring, and regulatory reporting.
Designed for adoption by VARA (UAE), SFC/HKMA (Hong Kong), MAS (Singapore), and other digital asset regulators globally.
WAA audit authorisation to launch post-publication, allowing institutions to demonstrate WSS conformance to clients and counterparties.
All WSTA governance, legal, and standard documents are made available to members and the public in accordance with the Alliance's commitment to transparency and open co-creation.
1.1 Name — The Alliance is formally named the Wallet Security Trust Alliance, operating under the abbreviation WSTA and the domain WSTA.WORLD.
1.2 Purpose — WSTA exists to:
1.3 Phase Scope — This Charter governs the Alliance exclusively during Phase 1 — the Standard Co-Creation Phase — culminating in the publication of WSS v1.0.
1.4 Non-Certification Principle — WSTA does not, in Phase 1, certify, assess, rate, or endorse the security posture of any member or third party. This principle is foundational and may not be overridden without formal amendment of this Charter.
| Body | Composition | Primary Authority |
|---|---|---|
| Governance Committee | 5 elected representatives (Tier 1 majority) | Strategic decisions, charter amendments, member admission/removal |
| Working Groups | Subject-matter leads + participating members | WSS content drafting, revision, and technical decisions |
| Secretariat | Appointed administrative function | Operational administration, record-keeping, communications |
3.1 Composition — The Governance Committee comprises five (5) seats allocated as follows:
The Founding Sponsor (Binance) holds one permanent Tier 1 seat on the Governance Committee for the duration of Phase 1. The remaining two Tier 1 seats are subject to election as described in Article 3.2.
3.2 Elections — Nominations open 45 days before each election; secret ballot among eligible tier members; results announced within 3 business days.
3.3 Terms — 12-month terms; max 2 consecutive terms, then a mandatory one-term break.
3.4 Chair & Deputy Chair — Elected by simple majority at the first post-election meeting.
3.5 Removal — By 4/5 vote: 3 consecutive absences, material breach, no longer affiliated with a WSTA member, or unmanageable conflict of interest.
3.6 Conflicts of Interest — Must be declared before relevant votes; mandatory recusal applies.
3.7 Authorities — Member admissions/removals, charter amendments, budget approval, Secretariat appointment, Phase 2 transition approval.
4.1 Frequency — Monthly via video conference; in-person at least twice per year.
4.2 Quorum — 4 of 5 members. If not met, adjourned up to 7 days; 3 members suffice at reconvened meeting.
4.3 Agenda — Circulated 5 business days in advance. Emergency items require Chair approval + 24-hour notice.
Phase 1 founding, core, and associate members co-creating the Wallet Security Standard. Member logos and details will be published upon completion of membership agreements.
Member names and logos will be published upon execution of membership agreements.
Total confirmed: 28 members across Founding, Core, and Associate tiers.
Phase 1 founding positions are limited. All tiers participate directly in WSS co-creation.
These terms govern the relationship between WSTA and its members. Effective Date: 2026.05.05 · Version 1.0 · Issuing Entity: Infozone Technologies Pte. Ltd.
(a) The Wallet Security Trust Alliance ("WSTA") is an industry-led initiative administered by Infozone Technologies Pte. Ltd. ("Administrator"), established to promote and uphold common security standards among custodial wallet operators in the digital asset ecosystem.
(b) WSTA operates as a voluntary coalition of Virtual Asset Service Providers (VASPs), custodians, technology service providers and other relevant stakeholders ("Members") who commit to work towards creating a wallet security framework.
(c) These Terms and Conditions ("Terms") govern the relationship between WSTA and each Member and apply to all participants who have submitted a signed Membership Form.
"Alliance" means the Wallet Security Trust Alliance (WSTA).
"Administrator" means Infozone Technologies Pte. Ltd., and its successors or permitted assigns.
"Confidential Information" means any non-public information disclosed in connection with Alliance activities, including internal working documents, Member data, and security protocols.
"Member" means any VASP, custodian, technology service provider, or other relevant stakeholder, that has been admitted to the Alliance pursuant to these Terms.
"Membership Form" means the signed onboarding form submitted by the Member upon joining WSTA.
(a) Admission — Membership becomes effective upon the Administrator's written confirmation of admission. The Administrator reserves the right to accept or decline applications at its reasonable discretion without obligation to provide reasons.
(b) No Membership Fee — Participation in WSTA is offered at no charge. There are no membership fees, subscription fees, or financial commitments required of Members.
By becoming a Member, each entity agrees to:
(a) Alliance IP — All standards (including the Wallet Security Standard (WSS)), frameworks, drafts, working documents, methodologies, and other materials developed through WSTA working groups or activities ("Alliance IP") are and shall remain the exclusive property of Infozone Technologies Pte. Ltd. as the administrator of WSTA. WSTA hereby grants to each Member a royalty-free and worldwide license to use, reproduce, and publish the final published versions of the WSS for non-commercial industry purposes.
(b) Member Contributions — By submitting feedback, comments, or materials to WSTA working groups, Member grants WSTA an irrevocable, non-exclusive, perpetual, royalty-free, worldwide license to use, incorporate, and publish such Contributions in Alliance IP.
(c) Member shall not submit system logs, configuration screenshots, proprietary security architectures, or other sensitive technical materials as Contributions.
(d) Reservation of Rights — Member retains all rights in its own pre-existing intellectual property.
(e) Use of Marks — Member consents to WSTA using or displaying Member's name, logo, or a description of Member's participation on WSTA's website or promotional materials. Member may revoke this consent at any time by written notice.
(a) Members agree to keep Confidential Information obtained through Alliance participation strictly confidential and not to disclose it to any third party without prior written consent of the Administrator.
(b) Confidentiality obligations do not apply to information that: (i) is or becomes publicly available other than through breach of these Terms; (ii) was already known to the Member prior to disclosure; or (iii) is independently developed by the Member without use of Confidential Information.
(c) Confidentiality obligations shall survive termination of membership for a period of three (3) years.
(a) Each Member is responsible for ensuring that its participation in WSTA, including any data shared with the Alliance, complies with applicable data protection and privacy laws.
(b) Members shall not share personal data of their customers or end users with the Alliance.
Each Member represents and warrants that:
(a) Voluntary Withdrawal — A Member may terminate its membership at any time by giving thirty (30) days' written notice to the Administrator.
(b) Termination by Administrator — The Administrator may suspend or terminate a Member's membership with immediate effect upon written notice if:
(c) Effect of Termination — Upon termination, all rights and licences granted to the Member shall cease; the Member shall immediately cease all use of WSTA branding. Sections 5, 6, 8 and 11 survive termination.
(a) The Administrator may amend these Terms at any time. Members will be notified of material changes at least thirty (30) days in advance via the email address registered in their Membership Form or through the WSTA website.
(b) A Member's continued participation following the effective date of any amendment constitutes acceptance of the revised Terms.
(a) Governing Law — These Terms shall be governed by and construed in accordance with the laws of Singapore. Any unresolved dispute shall be submitted to the exclusive jurisdiction of the courts of Singapore.
(b) Relationship of Parties — Nothing in these Terms creates a partnership, joint venture, agency, employment, or franchise relationship. No Member has authority to bind the Alliance or the Administrator.
(c) Entire Agreement — These Terms, together with the Membership Form, Governance Charter and any policies or guidelines incorporated by reference, constitute the entire agreement between the Administrator and the Member.
The Wallet Security Trust Alliance is an open, industry-led alliance co-creating the Wallet Security Standard (WSS) — a purpose-built framework for institutional digital asset wallet security.
WSS is a comprehensive security framework covering 15 domains of institutional wallet operations, from key management and access control to AI monitoring and regulatory reporting.
Exchanges, custodians, wallet infrastructure providers, independent security specialists, and organisations seeking to shape the global standard for digital asset wallet security.
Applications go through a 6-stage admission process defined in WSTA-ADM-001. An internal recommendation or direct alliance invitation is required for Phase 1 positions.
The WSTA Trust Mark (WAA programme) enables organisations to demonstrate conformance to WSS through independent audit, providing credibility signals to regulators, clients, and counterparties.
No. Phase 1 membership does not constitute any form of security certification, compliance endorsement, or audit outcome. The Trust Mark programme launches post-WSS v1.0 publication.
Applications are open for Phase 1 founding membership. Positions are limited and require an internal recommendation or direct alliance invitation.