Custom HD Wallet Development: BIP-32/39/44 & Multi-Chain

We design and develop full-cycle blockchain solutions: from smart contract architecture to launching DeFi protocols, NFT marketplaces and crypto exchanges. Security audits, tokenomics, integration with existing infrastructure.
Showing 1 of 1All 1305 services
Custom HD Wallet Development: BIP-32/39/44 & Multi-Chain
Medium
~1-2 weeks
Frequently Asked Questions

Blockchain Development Services

Blockchain Development Stages

Latest works

  • image_website-b2b-advance_0.webp
    B2B ADVANCE company website development
    1349
  • image_web-applications_feedme_466_0.webp
    Development of a web application for FEEDME
    1247
  • image_websites_belfingroup_462_0.webp
    Website development for BELFINGROUP
    949
  • image_ecommerce_furnoro_435_0.webp
    Development of an online store for the company FURNORO
    1183
  • image_logo-advance_0.webp
    B2B Advance company logo design
    642
  • image_crm_enviok_479_0.webp
    Development of a web application for Enviok
    921

Custom HD Wallet Development for Business: Secure Multi-Chain Solutions

Businesses that need to manage multiple crypto assets across various blockchains often hit the limits of off-the-shelf wallets. You require a custom HD wallet with hierarchical deterministic key generation, multi-chain support, and robust security - without relying on third-party APIs. We build such wallets from scratch, ensuring full control and scalability.

What Problems We Solve

Standard wallets fail when you need:

  • Non-standard derivation paths for custom DeFi protocols or NFT custody.
  • Multi-chain support without bridging or external services.
  • Hardware-backed key storage integrated with your application.
  • Audited, production-grade code that passes strict compliance checks.

We address these with a proven architecture based on BIP-32, BIP-39, and BIP-44.

How We Build HD Wallets: Technical Depth

We are a team of blockchain engineers with 12+ years of combined production experience (Ethereum, Solana, Polygon, Arbitrum, Optimism). Over 5 years, we have built over 50 custom wallets for DeFi protocols, centralized exchanges, NFT marketplaces, and enterprise solutions. Our specialists are authors of open-source libraries for BIP-32 and BIP-39, certified in OWASP security standards. Each wallet undergoes a full audit cycle: static analysis (Slither), fuzzing (Echidna), and BIP-44 compliance checks. Professional custom cryptocurrency wallet development can save your project up to 60% on integration costs compared to off-the-shelf solutions.

Hierarchical Deterministic Key Generation

HD wallets rely on three key standards:

  • BIP-39 – converts entropy into a mnemonic phrase (12 or 24 words).
  • BIP-32 – builds a key tree using CKD function; hardened derivation (with apostrophe in path) protects the master key – even if an attacker obtains a child private key, they cannot recover the parent.
  • BIP-44 – defines unified path format: m / purpose' / coin_type' / account' / change / index. For example, first Ethereum address: m/44'/60'/0'/0/0.

We use official test vectors from the BIP-39 repository to confirm implementation correctness.

import * as bip39 from "bip39";
import { HDKey } from "@scure/bip32";
import { keccak256 } from "ethereum-cryptography/keccak";
import { secp256k1 } from "ethereum-cryptography/secp256k1";

function generateMnemonic(strength: 128 | 256 = 128): string {
  return bip39.generateMnemonic(strength);
}

async function mnemonicToSeed(mnemonic: string, passphrase: string = ""): Promise<Uint8Array> {
  if (!bip39.validateMnemonic(mnemonic)) {
    throw new Error("Invalid mnemonic");
  }
  return bip39.mnemonicToSeed(mnemonic, passphrase);
}
Property Hardened derivation (') Non-hardened derivation
Master key protection Yes (via HMAC-SHA512 with private key) No (exposing child key allows computing parent public key)
Indices >2^31 0..2^31-1
Typical use Coin type, account Change, address index

Multi-Chain Support

Our wallets support Ethereum, Polygon, Arbitrum, Optimism, Base, BNB Chain, and Solana. CoinType follows BIP-44 (60 for Ethereum, 501 for Solana, etc.). We easily add any EVM-compatible or custom chain by adjusting coin_type and configuring RPC.

interface DerivedAccount {
  path: string;
  privateKey: Uint8Array;
  publicKey: Uint8Array;
  address: string;
  xpub: string;
}

function deriveAccount(seed: Uint8Array, accountIndex: number = 0, addressIndex: number = 0, coinType: number = 60): DerivedAccount {
  const hdKey = HDKey.fromMasterSeed(seed);
  const path = `m/44'/${coinType}'/${accountIndex}'/0/${addressIndex}`;
  const derived = hdKey.derive(path);
  if (!derived.privateKey) throw new Error("Failed to derive private key");
  const publicKey = secp256k1.getPublicKey(derived.privateKey, false);
  const address = publicKeyToAddress(publicKey);
  return { path, privateKey: derived.privateKey, publicKey, address, xpub: derived.publicExtendedKey };
}

Hardware-Grade Key Security

We implement hardware encryption: Secure Enclave (iOS) and Android Keystore. For web versions, we use Web Crypto API with PBKDF2 (600,000 iterations) and AES-256-GCM, meeting current NIST recommendations.

async function encryptKeystore(privateKey: Uint8Array, password: string): Promise<EncryptedKeystore> {
  const salt = crypto.getRandomValues(new Uint8Array(32));
  const iv = crypto.getRandomValues(new Uint8Array(16));
  const passwordKey = await crypto.subtle.importKey("raw", new TextEncoder().encode(password), "PBKDF2", false, ["deriveBits", "deriveKey"]);
  const encryptionKey = await crypto.subtle.deriveKey({ name: "PBKDF2", salt, iterations: 600_000, hash: "SHA-256" }, passwordKey, { name: "AES-GCM", length: 256 }, false, ["encrypt", "decrypt"]);
  const encrypted = await crypto.subtle.encrypt({ name: "AES-GCM", iv }, encryptionKey, privateKey);
  return { version: 3, crypto: { ciphertext: Buffer.from(encrypted).toString("hex"), cipher: "aes-256-gcm", kdf: "pbkdf2", kdfparams: { dklen: 32, salt: Buffer.from(salt).toString("hex"), c: 600_000, prf: "hmac-sha256" }, iv: Buffer.from(iv).toString("hex"), mac: "" } };
}

Multi-account and watch-only modes: our wallet supports multiple BIP-44 accounts (by varying account index) and watch-only access via xpub. This allows balance display without private keys – perfect for cold storage monitoring.

class HDWalletManager {
  private hdKey: HDKey;
  constructor(seed: Uint8Array) { this.hdKey = HDKey.fromMasterSeed(seed); }
  getAccount(accountIndex: number): DerivedAccount { /* ... */ }
  getAccountXpub(accountIndex: number): string { return this.hdKey.derive(`m/44'/60'/${accountIndex}'`).publicExtendedKey; }
  static deriveAddressFromXpub(xpub: string, addressIndex: number): string {
    const hdKey = HDKey.fromExtendedKey(xpub);
    const derived = hdKey.derive(`m/0/${addressIndex}`);
    return publicKeyToAddress(derived.publicKey!);
  }
}

Transaction signing: we support EIP-1559 (Ethereum) and legacy transactions, using viem for signing.

async function signTransaction(privateKey: Uint8Array, txParams: { to: string; value: bigint; data: string; chainId: number; nonce: number; maxFeePerGas: bigint; maxPriorityFeePerGas: bigint; gas: bigint }): Promise<string> {
  const account = privateKeyToAccount(`0x${Buffer.from(privateKey).toString("hex")}`);
  return await account.signTransaction({ type: "eip1559", ...txParams });
}

Real-World Case Study

For one client, we built a wallet supporting 15 networks with custom gas management – delivered in 3 weeks. The solution allowed seamless interaction with all major L2s without external bridges, and the gas optimization reduced transaction costs by 25% on average.

When Do You Need Custom HD Wallet Development?

If your project requires non-standard crypto paths (e.g., for NFT custodial storage or a DeFi aggregator), multi-chain support without external bridges, or hardware integration – off-the-shelf wallets are ineffective. We build the architecture from scratch: you get code that works on all L2s, is library-version independent, and easily extensible.

Our Development Process

  1. Requirements analysis – determine necessary networks, transaction types, security level (cold/hot storage).
  2. Architecture design – choose BIP paths, stack (Foundry/Hardhat), encryption scheme.
  3. Core implementation – mnemonic generation, key derivation, transaction signing.
  4. Network integration – RPC configuration, EIP-1559 support, multi-chain routing.
  5. Security & audit – static analysis, fuzzing, OWASP top10 checks.
  6. Testing – test vector validation, MetaMask/Ledger import, E2E tests.
  7. Deployment & documentation – CI/CD, API docs, team training.

What’s Included in the Work

When you order custom HD wallet development, you receive:

  • Annotated source code (TypeScript / React Native)
  • Integration and API documentation
  • Access to private repository and CI/CD
  • Test suite (unit, integration, e2e)
  • Consulting support during integration
  • Code warranty (6 months of free adjustments per specification)

Compatibility & Testing

Before release, we run official test vectors from BIP-39 and BIP-32. We verify mnemonic import in MetaMask, Ledger Live, and Trust Wallet.

Test Check
Import in MetaMask Same mnemonic → same addresses
Import in Ledger Live Via standard BIP-44 path
Import in Trust Wallet 12/24 words, first address matches
BIP-39 test vectors Official vectors from repository

Timeline Estimates

Development ranges from 2 weeks for a basic web wallet to 2 months for a multi-platform solution with hardware integration. The exact timeline depends on complexity and feature set – we provide a detailed estimate after our initial analysis.

Ready to Build Your Custom HD Wallet?

Contact us for a consultation – we will prepare the architecture and accurate cost estimate within 2 working days. Order HD wallet development and get a ready product that scales to any blockchain challenge.

We develop crypto wallets turnkey — from custodial solutions for fintech to smart contract accounts on EIP-4337. 5+ years in blockchain development, 40+ projects implemented. Let's examine which architecture to choose for your task and why MPC or Account Abstraction solve the private key problem that MetaMask and classic HD wallets could not close.

Why are classic wallets dangerous for business?

A seed phrase in a browser extension is the only way to restore access. For retail users, this is a barrier to entry (lost phrase = lost money). For corporate treasuries, it is incompatible with compliance (KYC/AML, role model, multisignature). Any single key leak compromises all funds. These risks are built into the architecture, not poor UX.

We eliminate them at the protocol level: MPC wallets (key never fully assembled), smart contract wallets (authorization logic in code), hardware HSM for institutional storage. Details below.

What is the real difference between custodial and non-custodial?

Custodial — the provider stores the private key. User authenticates via email/password/OAuth. Recovery is trivial, KYC/AML built-in. For centralized financial applications, often the only regulatory acceptable option. Risk: single point of failure (e.g., Bitfinex hack — $72M, FTX — $600M+ client funds).

Non-custodial — keys are with the user. Provider has no access to funds. Storage responsibility falls on the user. For 99% of people, this model is unworkable without additional protection — hence MPC.

MPC wallets: the key that doesn't exist

Multi-Party Computation (MPC) is a cryptographic protocol that allows multiple parties to jointly sign a transaction without revealing their partial secrets. The private key never exists in its assembled form.

Standard scheme: 2-of-3 MPC between user (share on device), provider server, and backup cloud storage. Transaction is signed by any two of three parties. Lost phone — recovery via server + cloud. Server compromised — attacker holds only one share, signing impossible.

TSS (Threshold Signature Scheme) is a concrete implementation of MPC for ECDSA/EdDSA. Algorithms: GG18, GG20, CGGMP21 (the latter is faster and has better security proofs). Libraries: tss-lib (Go, from Binance), multi-party-sig (Go, from Coinbase), ZenGo-X/multi-party-ecdsa (Rust).

MPC requires no on-chain changes — to the blockchain, the signature looks like a normal single-key signature. This saves gas and keeps the key management scheme confidential (not published in chain) — unlike multisig.

Account Abstraction (EIP-4337): smart contract as wallet

EIP-4337 completely changes the model: instead of EOA (Externally Owned Account), a smart contract Account is used. Authorization logic is in contract code, not in protocol cryptography. This opens up arbitrary signing logic, social recovery, session keys, sponsored transactions, and batch operations.

How the EIP-4337 stack works:

User → UserOperation → Bundler → EntryPoint contract → Account contract
                                          ↑
                                    Paymaster (optional, pays gas)

UserOperation — a new type of object (not an L1 transaction). Bundler collects UserOps from an alternative mempool, packs them into one transaction, and sends to EntryPoint. EntryPoint calls validateUserOp on the Account contract — Account decides if the signature is valid.

Practical capabilities:

Social recovery. The contract stores a list of guardians (other addresses or a service). Lost key — guardians vote for replacement. Argent has used this scheme since 2020.

Session keys. A temporary key with limited rights: interaction only with a specific contract, until a certain date, up to a certain amount. For GameFi and dApps — user does not sign every micro-transaction.

Paymaster. A third-party contract pays gas for the user. Onboarding pattern: user does not hold ETH, gas is sponsored by dApp or taken from ERC-20 tokens.

Implementations: Safe{Core} Protocol, Biconomy SDK (Stackup), ZeroDev (Kernel), Alchemy (Rundler bundler). EntryPoint v0.6/v0.7 is deployed and active on Ethereum mainnet, Polygon, Arbitrum, Optimism. We guarantee compatibility with the latest contract versions.

What is a Hardware Security Module for corporate wallets?

For treasuries and institutional storage: HSM (Hardware Security Module). The key is generated and never leaves the secure chip. Signing happens inside the HSM. Hardware attestation is supported. Solutions used: AWS CloudHSM, Azure Dedicated HSM, Thales Luna, YubiHSM 2 (for small volumes). Integration via PKCS#11 or cloud-specific API.

A combination of HSM + MPC is optimal for institutional use: key shares are stored in HSMs on different servers/jurisdictions, signing via TSS. This ensures compliance with regulatory requirements (e.g., for crypto custodians).

Integration with dApps: WalletConnect and standards

Any wallet must be able to interact with dApps. Standard: WalletConnect v2 (Sign API): QR code or deep link, peer-to-peer encrypted channel via relay server. For browser extensions: EIP-1193 (Ethereum Provider API).

On the frontend, we use wagmi + viem — one interface for MetaMask, WalletConnect, Coinbase Wallet, injected providers. For Account Abstraction: EIP-5792 (wallet capabilities) and EIP-7677 (paymaster service).

Development process

  1. Threat model — who is the user (B2C, B2B, institutional), what operations, what is the acceptable risk model. Architecture depends on this.
  2. Selection and design of key storage scheme — MPC, HSM, multisig, or a combination.
  3. Development of Account contract (if EIP-4337) or integration of MPC library.
  4. Backend — MPC coordination, session management, paymaster service (if needed).
  5. Mobile/browser application — UI with WalletConnect integration, biometrics, QR.
  6. Integration with dApps — EIP-1193, WalletConnect v2.
  7. Audit of contracts and cryptographic implementations — mandatory step. MPC libraries have known vulnerabilities (GG18 susceptible to attack with malicious participant without abort protocol). We use libraries with up-to-date security reviews (CGGMP21). Experience passing audits with Certik, Hacken, Trail of Bits — we have certificates.

What is included in the work (deliverables)

  • Source code of smart contracts (Solidity/Rust) with documentation
  • Backend MPC coordination service (Go or Rust) with API
  • Mobile application (iOS/Android) or browser extension
  • Integration with WalletConnect, Ledger/Trezor (if required)
  • Preparation for security audit (vulnerability report)
  • Administrator and user documentation
  • Access to repository, CI/CD, monitoring (Tenderly, Etherscan API)
  • Training of your team (2-3 sessions)
  • Post-launch support — 1 month

Timeline and cost

Solution type Timeline (working weeks)
Custodial with basic UI 4–8
Non-custodial with MPC integration 8–16
EIP-4337 Account with paymaster 6–12
Institutional (HSM + MPC + compliance) from 16

Cost is calculated individually for your project. We will estimate within one day — contact us by email or Telegram. We provide a guarantee on code and timeline.

Typical mistakes in crypto wallet development (and how to avoid them)

  • Using outdated MPC libraries — GG18 without abort protocol. Choose CGGMP21 or tss-lib with up-to-date audit reports.
  • Tight coupling to a single blockchain — not abstracting for L2/sidechains. Use viem/wagmi for cross-chain.
  • Ignoring MEV attacks — when using multisig without timelocks. Add tx simulation (Tenderly) and sandwiching protection.
  • Lack of fallback recovery mechanism — for Account Abstraction, not setting up social recovery. Include from the first release.

We eliminate these pitfalls at the design stage — for each project, we create a threat model and security checklist.

Need a reliable wallet with no compromises? Get a consultation from our architect — we will analyze your task and propose an architecture with a precise estimate. Leave a request — we will respond within a day.