Crypto Wallet SDK Landscape: Build vs Buy
Compare wallet SDKs and infrastructure for developers: Spark, Privy, Dynamic, Web3Auth, Fireblocks, Turnkey, and more. Chain support, custody, pricing.
Wallet SDK Landscape Overview
Every crypto application needs a wallet layer. The question for developers is whether to build that layer from scratch or integrate an existing SDK. Building gives full control over key management, UX, and chain-specific logic, but requires deep cryptographic expertise and ongoing maintenance. Buying (integrating a third-party SDK) gets you to production faster, but introduces vendor dependencies and recurring costs.
The wallet SDK market consolidated rapidly in 2025: Stripe acquired Privy, ConsenSys (MetaMask) acquired Web3Auth, and Fireblocks acquired Dynamic. These acquisitions signal that wallet infrastructure is becoming a core layer of larger platforms rather than a standalone product category.
The following table summarizes the major wallet SDK and infrastructure providers available to developers today. Each is covered in detail throughout this guide.
| Provider | Primary Chains | Custody Model | Target User | Starting Price | Open Source |
|---|---|---|---|---|---|
| Spark SDK | Bitcoin (L1, Spark L2, Lightning) | Self-custodial | Bitcoin app developers | Free | Yes (Apache) |
| Privy (Stripe) | EVM, Solana, Bitcoin | TEE-sharded | Consumer apps | Free (499 MAU) | No |
| Dynamic (Fireblocks) | EVM (100+), Solana, Bitcoin, Cosmos, Sui | TSS-MPC | Multi-chain apps | Free (1,000 MAU) | No |
| Web3Auth (ConsenSys) | EVM, Solana, Bitcoin, Cosmos, TON, Sui | MPC + Shamir | High-volume dApps | Free (1,000 MAW) | Partial |
| Fireblocks | 150+ chains | MPC-CMP | Institutions, exchanges | ~$699/mo | No |
| Turnkey | Chain-agnostic (raw signing) | TEE (non-custodial) | Infra-first developers | Free (100 wallets) | Yes |
| Magic | 30+ (EVM, Solana) | Delegated Key Mgmt | Web2-to-Web3 apps | Free (1,000 MAW) | No |
| Para (ex-Capsule) | EVM, Solana, Cosmos | MPC + DKG | Cross-app portability | Free (1,200 MAU) | No |
For a deeper comparison focused specifically on Bitcoin wallet SDKs, see the wallet SDK comparison tool.
Custody Models Explained
The custody model determines who controls private keys and what security guarantees your users get. This is arguably the most important architectural decision when choosing wallet infrastructure. Each approach trades off between security, recovery, and user experience.
Self-Custodial
The user holds the full private key or seed phrase. No third party can access funds or censor transactions. The Spark SDK follows this model: users generate keys locally and can perform unilateral exit to Bitcoin L1 without cooperation from any counterparty. The tradeoff is that if the user loses their seed phrase, funds are unrecoverable.
MPC (Multi-Party Computation)
The private key is split into shares distributed across multiple parties. No single party ever holds the full key. Web3Auth uses MPC with Shamir Secret Sharing (2-of-n threshold). Dynamic uses TSS-MPC with threshold signatures. Fireblocks uses MPC-CMP, a proprietary single-round protocol that is roughly 8x faster than the older GG18 standard. The tradeoff: MPC introduces infrastructure complexity and usually requires the SDK vendor to operate signing infrastructure.
TEE (Trusted Execution Environment)
Keys are generated and used inside hardware-isolated enclaves that prevent even the infrastructure operator from accessing them. Privy uses TEE-based key sharding. Turnkey runs its entire key management stack inside TEEs with cryptographic attestation. The tradeoff: TEE security depends on hardware vendor trust (Intel SGX, AWS Nitro) and is susceptible to side-channel attacks in theory, though no major exploit has affected wallet TEEs in production.
Delegated Key Management
The provider manages keys on behalf of the user, with varying degrees of user control. Magic offers three configurations: Magic-managed, self-hosted, or hybrid. This model is closest to traditional custodial wallets but with programmable access controls. The tradeoff: users trust the provider not to lose or misuse their keys.
Pricing Comparison
Wallet SDK pricing varies dramatically. Most providers use MAU (monthly active users) or MAW (monthly active wallets) as the billing metric, with per-signature fees at scale. The following table compares published pricing tiers as of early 2026.
| Provider | Free Tier | Mid Tier | Enterprise | Billing Metric |
|---|---|---|---|---|
| Spark SDK | Unlimited (open source) | N/A | N/A | None (on-chain fees only) |
| Privy | 499 MAU | $299/mo (2,499 MAU) | Custom (per-signature) | MAU + signatures |
| Dynamic | 1,000 MAU | $249/mo (5,000 MAU) | Custom (volume discounts) | MAU |
| Web3Auth | 1,000 MAW | $69/mo (3,000 MAW) | Custom (volume discounts) | MAW |
| Fireblocks | None | ~$699/mo (introductory) | Custom | Transaction volume |
| Turnkey | 100 wallets, 25 sigs/mo | $99/mo ($0.05/sig) | Custom ($0.0015/sig) | Signatures + wallets |
| Magic | 1,000 MAW | $99/mo (2,500 MAW) | Custom ($0.001/tx) | MAW |
| Para | 1,200 MAU | $500/mo (10,000 MAU) | Custom (unlimited) | MAU |
Note: Pricing reflects published rates as of early 2026. Post-acquisition pricing for Privy (Stripe), Dynamic (Fireblocks), and Web3Auth (ConsenSys) may change as these products are integrated into their parent platforms.
When to Build Your Own Wallet
Building custom wallet infrastructure makes sense in specific scenarios. If your application requires a unique signing scheme, a proprietary key derivation path, or deep protocol-level integration that no SDK supports, building may be necessary. Exchanges with regulatory requirements around key custody often build in-house to maintain full audit trails.
The cost is significant: a competent wallet engineering team needs expertise in cryptography, secure enclave operations, and chain-specific transaction construction. Expect 3 to 6 months for a production-ready implementation with proper key backup, recovery flows, and security audits. Ongoing maintenance includes monitoring for protocol changes, applying security patches, and managing infrastructure.
For Bitcoin-specific applications, the Spark SDK can reduce build-from-scratch effort substantially. As an open-source protocol with no usage fees, it provides the self-custody guarantees of building your own wallet while abstracting away Lightning channel management, liquidity operations, and UTXO handling. Developers can scaffold a project with npx @buildonspark/create-spark-app and have a working Bitcoin wallet prototype running in minutes.
When to Buy (Integrate an SDK)
For most applications, integrating an existing SDK is the pragmatic choice. Wallet SDKs have matured significantly: most support social login, email-based onboarding, gas sponsorship, and multi-chain connectivity out of the box. Integration time is typically measured in days rather than months.
Use cases where buying makes clear sense:
- Consumer apps where onboarding friction must be minimal (email/social login, no seed phrase)
- Multi-chain applications that need to support EVM, Solana, and other ecosystems simultaneously
- Teams without dedicated cryptography or security engineering expertise
- Startups optimizing for speed to market over infrastructure control
The key risk is vendor lock-in. The 2025 acquisition wave demonstrated how quickly the landscape can shift: if your wallet provider gets acquired, sunset, or changes pricing, migration can be painful. Choosing providers with key export capabilities and open standards (like BIP-32 derivation paths) mitigates this risk.
Chain-Specific Considerations
Bitcoin Applications
Bitcoin wallet development differs fundamentally from EVM development. Bitcoin uses the UTXO model instead of account balances, requires Script-based transaction construction, and has multiple address formats (Legacy, SegWit, Taproot). Most multi-chain wallet SDKs treat Bitcoin as a secondary chain with limited functionality: basic send/receive only, no Lightning, no Taproot, no token support.
The Spark SDK is purpose-built for Bitcoin. It handles Lightning interoperability natively, supports stablecoin issuance and transfers on Bitcoin, and provides instant settlement without channel management. For applications targeting the Bitcoin ecosystem specifically, a Bitcoin-native SDK eliminates the abstraction mismatches that multi-chain SDKs introduce.
EVM Applications
EVM chains have the richest SDK ecosystem. Privy, Dynamic, Web3Auth, and Magic all provide deep EVM integration with smart wallet support (ERC-4337 account abstraction, ERC-7702), gas sponsorship, and transaction batching. The choice between providers comes down to pricing, auth options, and whether you need embedded wallets or external wallet connections (MetaMask, Coinbase Wallet).
Multi-Chain Applications
If your application spans multiple ecosystems, Dynamic offers the broadest chain support (100+ EVM chains plus Solana, Bitcoin, Cosmos, Sui, Starknet, and more) with a unified API. Web3Auth supports both secp256k1 and ed25519 curves, covering most major chains. Turnkey provides chain-agnostic raw signing, giving maximum flexibility at the cost of more integration work per chain.
2025 Acquisition Impact
Three major acquisitions reshaped the wallet SDK landscape in 2025:
- Stripe acquired Privy (June 2025), integrating embedded wallets with Stripe Connect and Bridge stablecoin infrastructure
- ConsenSys acquired Web3Auth (June 2025), bringing MPC onboarding to MetaMask to address seed phrase drop-off
- Fireblocks acquired Dynamic (October 2025), creating a full-stack offering from institutional custody to consumer-facing embedded wallets
For developers, these acquisitions mean tighter integrations with parent platforms but also uncertainty around independent roadmaps. Teams evaluating these SDKs should assess how acquisition affects pricing stability, feature development, and the risk that their wallet provider becomes a loss-leader bundled with other services.
Open-source alternatives like the Spark SDK and Turnkey are less exposed to this dynamic because their core code can be self-hosted or forked if the maintainer changes direction.
Decision Framework
Choosing wallet infrastructure comes down to four questions:
- Which chains does your application need? If Bitcoin-only, use the Spark SDK. If EVM-only, Privy or Dynamic. If multi-chain, Dynamic or Turnkey.
- What custody model do your users expect? Consumer apps benefit from MPC or TEE-based wallets that hide key management. Bitcoin-native and power-user apps may prefer full self-custody.
- What is your scale and budget? Open-source options (Spark, Turnkey) have no usage fees. SaaS SDKs start free but scale to hundreds or thousands per month at production volumes.
- How much vendor risk can you accept? Acquisitions can change pricing, features, or availability. Open source and key-exportable solutions reduce lock-in.
For a broader look at Bitcoin wallet SDK options and how they compare on technical dimensions, see our detailed research article.
Frequently Asked Questions
What is an embedded wallet SDK?
An embedded wallet SDK creates and manages crypto wallets inside your application without requiring users to install a browser extension or external app. Users authenticate with familiar methods (email, social login, passkeys) and the SDK handles key generation, storage, and signing behind the scenes. Privy, Dynamic, Web3Auth, and Magic all provide embedded wallet functionality for EVM and Solana chains.
What is the difference between MPC and TEE wallets?
MPC (Multi-Party Computation) splits the private key into shares distributed across multiple parties, where signing happens through a cryptographic protocol without ever reconstructing the full key. TEE (Trusted Execution Environment) keeps the full key inside a hardware-isolated enclave that prevents access even by the infrastructure operator. MPC distributes trust across parties; TEE concentrates trust in hardware security. Both prevent single points of compromise, but through different mechanisms.
How much does it cost to integrate a wallet SDK?
Most wallet SDKs offer free tiers for development and early production (typically 500 to 1,200 monthly active users). At scale, costs range from $69/month (Web3Auth Growth) to $699+/month (Fireblocks). Per-user costs at enterprise scale range from $0.001 to $0.05 per signature or active user. The Spark SDK is free and open source with no usage-based pricing: developers only pay Bitcoin network fees for L1 transactions.
Can I switch wallet SDK providers later?
Switching providers is possible but costly. The difficulty depends on whether the SDK supports key export and uses standard derivation paths (BIP-32, standard derivation paths). Turnkey and Spark both support key import/export. MPC-based providers vary: some allow key reconstruction for export, others lock keys to their infrastructure. Evaluate exit paths before committing to a provider.
Which wallet SDK is best for Bitcoin applications?
For Bitcoin-native applications, the Spark SDK is the most complete option. It provides self-custodial Bitcoin wallets with native Lightning interoperability, instant Spark L2 transfers, and stablecoin support, all without channel or liquidity management. Multi-chain SDKs like Privy and Dynamic support Bitcoin for basic send/receive but lack Lightning, Taproot, or token capabilities.
What is Wallet-as-a-Service?
Wallet-as-a-Service (WaaS) is the umbrella term for managed wallet infrastructure that developers integrate via API rather than building from scratch. It encompasses embedded wallet SDKs, MPC signing services, and institutional custody APIs. Fireblocks WaaS targets enterprises and has created over 130 million wallets. For a deeper exploration, see our research on embedded wallets and how they work.
Is it safe to use a third-party wallet SDK?
Reputable wallet SDKs undergo regular security audits and hold certifications like SOC 2 Type II (Fireblocks, Privy). The primary risk is vendor dependency: if the provider is compromised, acquired, or shuts down, your users' wallet access may be affected. MPC and TEE designs mitigate this by ensuring no single party (including the vendor) can access user keys. For maximum security guarantees, self-custodial solutions like the Spark SDK eliminate vendor trust entirely.
This tool is for informational purposes only and does not constitute financial advice. Pricing, chain support, and product details are based on publicly available information as of early 2026 and may have changed since publication. Post-acquisition product roadmaps for Privy (Stripe), Dynamic (Fireblocks), and Web3Auth (ConsenSys) are subject to change. Always verify current details directly with providers before making infrastructure decisions.
Build with Spark
Integrate bitcoin, Lightning, and stablecoins into your app with a few lines of code.
Read the docs →