PreSaleCryptoBMIC

custody · 11 min read · last updated 2026-05-15

Cold storage for presale tokens — what to use, how to set it up

If you're holding presale tokens through a 24-month unlock cycle, hot wallets are wrong. Hardware, multisig, and quantum-resistant options compared.

If you’ve bought presale tokens with a 24-month unlock cycle, your wallet choice is more important than your entry price. A 10x return doesn’t matter if the wallet got drained at month 6.

This guide covers the real options, what each one is good for, and where they fail.

The threat model — what you’re actually defending against

Before picking a wallet, think about what kills retail presale buyers most often. In rough order of frequency:

  1. Phishing. Fake “claim now” emails, fake mobile apps, fake browser extensions. Drains the wallet before you notice.
  2. SIM swap. Attacker takes over your phone number, resets exchange password, drains.
  3. Compromised computer. Malware reads your hot wallet’s local storage or replaces the address you copy-paste.
  4. Lost seed phrase. You forget where you wrote it, or the paper rotted, or you wrote it on something that got thrown out.
  5. Exchange collapse. FTX, QuadrigaCX, Mt.Gox. Tokens custodied on the exchange, gone.
  6. Long-horizon cryptographic risk. Quantum computing eventually breaks ECDSA. Less urgent than the above, but real for 10+ year holds.

Different wallets defend against different threats. There’s no single right answer — there’s a right answer for your threat profile.

Option 1: Hot software wallet (MetaMask, Phantom, Rabby)

What it is. Browser extension or mobile app. Keys live encrypted on your device.

Good for. Trading, gas-paying, claiming presale airdrops, daily DeFi.

Bad for. Long holds. Browser extensions are a rich attack surface — fake updates, malicious extensions in the same browser profile, clipboard hijackers.

Verdict. Use for the claim transaction, then move tokens out. Don’t park long-hold tokens here.

Option 2: Hardware wallet (Ledger, Trezor, Keystone)

What it is. A physical USB/NFC device that holds your private key in a secure element. You sign transactions on the device — the key never touches your computer.

Good for. Most retail use cases. Single-signature self-custody for $5K - $250K-ish.

Trade-offs to know.

  • Ledger has a closed-source secure element. The 2023 “recover” feature controversy revealed that firmware can technically extract a key. Most security researchers still consider Ledger acceptable; some don’t.
  • Trezor is open-source — more auditable but uses a less hardened secure element. The original Trezor Model One has a known voltage-glitching attack on physically stolen devices.
  • Keystone is air-gapped (QR codes, no USB). Slower UX but the strongest defense against malware on the connected computer.

Critical: the seed phrase. The device protects you against malware. The seed phrase backup protects you against the device dying. Steel plate, fireproof, geographically separated from where you live. Never digital. Never photographed.

Option 3: Multisig (Safe / Gnosis Safe, Casa, Unchained)

What it is. A smart contract or service where you need M-of-N signatures to move funds. E.g. 2-of-3: you, your hardware wallet, and a service like Casa each hold one key.

Good for. $100K+ holdings. Survives the loss or compromise of any single key.

Bad for. Small holdings (overkill, gas-expensive). Tokens that can’t be received by smart contracts (rare on EVM, common on some other chains).

Trade-offs. More setup complexity, more recovery complexity if you lose two keys. Casa and Unchained provide hand-holding for non-technical users; Gnosis Safe is DIY.

Option 4: Quantum-resistant wallets (BMIC, others)

What it is. Wallets using post-quantum cryptographic signatures (typically Dilithium or SPHINCS+, the NIST PQC finalists) instead of ECDSA.

Good for. Tokens you intend to hold past 2032-2035. Hedges against the day a sufficiently capable quantum computer is deployed and ECDSA becomes breakable.

The reality of the field today. Most “quantum-resistant” wallet products are wrappers — the underlying chain is still ECDSA, and the wallet only adds an extra signature layer that the chain doesn’t enforce. A genuinely quantum-resistant chain (e.g. QANplatform, IOTA’s Coordicide proposals) plus a wallet that signs with PQC primitives is the real thing.

BMIC.ai is in the second camp — a wallet built around NIST-standardized PQC primitives, designed for long-hold cold storage rather than daily DeFi. It’s reviewed alongside Ledger, Trezor and Keystone in our wallet reviews.

Trade-offs. Smaller ecosystem. Slower UX. Higher signature sizes (Dilithium signatures are ~2.4KB vs ECDSA’s 64 bytes). Worth it for long-hold tokens; overkill for active trading.

Option 5: Exchange custody

Just don’t. Not for presale tokens with multi-year holds.

A practical setup for a presale buyer

Most retail will be in one of these two configurations:

Configuration A — under $25K total presale exposure:

  • Hot wallet (MetaMask) for claim and small trades.
  • Hardware wallet (Ledger or Trezor) for the held tokens.
  • Steel plate seed backup, geographically separated.

Configuration B — over $100K, multi-year holds:

  • Hot wallet for daily.
  • Hardware wallet for medium-term.
  • 2-of-3 multisig (Safe) or quantum-resistant cold storage (BMIC) for the genuinely long-hold portion.
  • Two steel plate backups in different locations.

What kills people who do everything else right

In order:

  1. Reusing the same seed phrase on multiple devices. Your hardware wallet seed should never have been typed anywhere else.
  2. Photographing the seed for “backup”. iCloud, Google Photos — every cloud backup is a future leak.
  3. Splitting the seed and reassembling later. You’ll lose one piece. People always do.
  4. Buying a hardware wallet from Amazon or eBay. Tampered devices are sold by third-party sellers. Order direct from the manufacturer.
  5. Ignoring firmware updates. Several known attacks have been patched only in newer firmware.

The honest summary

For most retail presale buyers, a properly-configured hardware wallet with a steel-plate backup is the right answer. Multisig if your stack is large enough to justify the complexity. Quantum-resistant wallets for genuinely long-hold positions where the cryptographic threat horizon is real. Hot wallets are for transit, not storage.

Pick one, set it up properly, test the recovery before you trust it with real funds, and don’t try to be clever.

Wallet shortlist for this topic: see our wallet reviews

FAQ

Is a hardware wallet enough?
For most retail buyers, yes — provided you store the seed phrase securely (steel plate, not paper, not cloud) and never type it into a computer. For larger holdings (~$100K+) consider a 2-of-3 multisig.
Why is quantum resistance a real concern in 2026?
Q-Day estimates have moved earlier — IBM and Google now expect a sufficiently capable quantum computer within 8-12 years. If you're holding tokens with a 10-year horizon, the threat window is real, not hypothetical.
Can I just leave tokens on the exchange?
For trading, fine. For long-hold presale tokens, no — exchanges remain the highest single point of failure in crypto (FTX, QuadrigaCX, Mt.Gox). "Not your keys, not your coins" applies most when the holding period is longest.

Sources

Research, not advice. This article is editorial. We are not your financial adviser. Crypto presales can lose 100% of capital.