What is a non-custodial MCP architecture and why should I care?
Category:Blockchain & Web3
Quick Answer
In non-custodial MCP, the AI crafts transactions but never holds the private key. The user or embedded wallet handles signing. The biggest risk isn't a wrong trade — it's the AI having the ability to make any trade without consent. Combined with AA session keys, this is production-grade for 2026.
Detailed Answer
Custodial vs Non-Custodial MCP
| Aspect | Custodial | Non-Custodial |
|---|---|---|
| Key access | Agent holds private key | Agent never sees key |
| Transaction flow | Agent signs autonomously | Agent proposes, user/wallet signs |
| Risk level | High | Low |
| Automation | Full | Requires approval step |
| Best for | Small automated tasks | Production environments |
Why Non-Custodial Matters
The biggest risk in crypto MCP isn't the AI making a wrong trade — it's the AI having the ability to make any trade at all without user consent.
Google Cloud's Recommendation
Google Cloud's December 2025 research specifically recommended:
- Unsigned transaction preparation for secure use cases
- Delegated signing only for small, clearly defined automated tasks
Production Architecture (2026)
User Request → AI Agent (crafts transaction) ↓ Unsigned Transaction ↓ Embedded Wallet (MPC signing) + Account Abstraction (session keys) + Spending limits + Whitelists ↓ Signed & Broadcast
This combination of non-custodial MCP + embedded wallets + Account Abstraction session keys is the production-grade architecture for 2026.
Comments
Loading comments...