Wallet

Self-Custody Without Seed Phrases: How Vaultr Uses ERC-4337 and Shamir Secret Sharing

How Vaultr replaces fragile seed phrases with ERC-4337 smart contract wallets, Shamir Secret Sharing, and independent transaction 2FA for real self-custody.

The Vaultr Team·May 20, 2026

For a decade, “self-custody” meant a seed phrase: twelve or twenty-four words you were supposed to write on paper and never lose, never photograph, never let anyone see. Get it wrong and your money is gone forever. No reset, no support line, no recourse.

That isn’t freedom. It’s a trap with extra steps. Vaultr replaces it with two technologies working together.

ERC-4337: your wallet is a program, not a secret

ERC-4337 — account abstraction — makes your wallet a smart contract instead of a single private key. That unlocks things a key-based wallet simply can’t do: no seed phrase to lose, counterfactual addresses that exist before they’re deployed on-chain, gas sponsorship so you can transact without first owning the native token, and batched atomic operations. Vaultr implements the ERC-4337 v0.7 UserOperation flow and submits through a bundler with paymaster support for sponsorship.

Shamir Secret Sharing: the server can’t steal your money

The most important property of Vaultr’s key management is simple: the server never holds enough to move your funds.

Vaultr uses Shamir’s Secret Sharing over GF(256) to split your master key into three shares, where any two of three reconstruct it: a device share on your phone, a server share held by Vaultr, and a recovery share encrypted in your hands. Compromise the server? That’s one share. Useless. Steal the phone? One share. Useless. Only a valid pair reconstructs the key — and the pairing you control lets you recover without Vaultr’s cooperation at all.

Defense in depth: independent transaction 2FA

Logging in is not the same as spending. Every significant transaction passes through a separate verification layer: a 64-byte one-time challenge, verification by OTP or device biometric, and a one-time-use token consumed atomically to prevent replay. This 2FA is signed with its own key, independent of your session. Stealing your login does not give an attacker the ability to move your money.

What this adds up to

No paper to lose. No single server that can rob you. A separate lock on every transaction. That’s what self-custody should have meant all along.

self-custodyERC-4337account abstractionShamir Secret Sharingwallet security2FAkey management

Related reading

Account abstraction, explained: how ERC-4337 makes crypto usableAccount abstraction, explained: how ERC-4337 v0.7 UserOperations via a Pimlico bundler and paymaster make a self-custody crypto wallet genuinely usable.Never lose access: a complete guide to social recovery, backups and device migrationA complete guide to never losing crypto access: Shamir 2-of-3 keys, guardian social recovery, encrypted backups, and atomic device migration.One wallet, nine chains: how Vaultr does multi-chain across EVM, Bitcoin and SolanaOne self-custody wallet across nine chains: how Vaultr derives EVM, Bitcoin (UTXO) and Solana (SVM) addresses from one HD BIP32/44 key tree.

Stop reading about ownership.
Start owning.

Your vault. Your keys. Your messages. Your money. Your identity. Your rules. Get it on every platform — and if they’ve blocked the stores where you live, install the PWA and walk right in.

iOSApp StoreAndroidGoogle PlayInstall PWABlocked in your country? Install it anyway.Open on WebUse it in any browser