A key ceremony is a controlled process used to support important cryptographic key lifecycle events.
In institutional custody, key ceremonies help ensure that sensitive key-related activities are performed in a structured, authorised, and auditable way. They are typically used for exceptional or high-control processes rather than day-to-day user activity.
Why are key ceremonies used?
Key ceremonies support governance and operational assurance around sensitive cryptographic processes.
They can help organisations ensure that:
- Key lifecycle activities follow an approved process
- The right authorised participants are involved
- Responsibilities are clearly separated
- Evidence and records are retained where required
- Sensitive actions are performed under controlled conditions
- Operational and security requirements are followed
The exact ceremony process depends on the custody model, service configuration, and agreed operational setup.
When might a key ceremony be required?
A key ceremony may be relevant for activities such as:
- Initial custody setup
- Key generation or initialisation
- Key rotation
- Key recovery-related procedures
- Key destruction
- Changes to key lifecycle arrangements
- Other controlled cryptographic lifecycle events
Not every organisation or custody model will follow the same key ceremony process.
Who is involved in a key ceremony?
The participants depend on the organisation’s custody setup and the type of ceremony.
A key ceremony may involve authorised operational, technical, security, compliance, or governance stakeholders. Roles such as Cluster Manager or Cohort Manager may be relevant where those responsibilities form part of the organisation’s BE Custody setup.
Participants should follow the approved process for the relevant ceremony and should not perform key lifecycle activities outside authorised procedures.
Is a key ceremony the same as transaction approval?
No. A key ceremony is not the same as a normal transaction approval workflow.
Transaction approval is used to review and authorise custody actions such as withdrawals or transfers, depending on the organisation’s configuration.
A key ceremony relates to controlled cryptographic lifecycle activity and is generally subject to a separate process, governance model, and set of participants.
Are key ceremony details published publicly?
No. Detailed key ceremony procedures are not published in the Help Centre.
Information about key lifecycle procedures, participant controls, evidence requirements, infrastructure, logistics, or signing architecture may be sensitive. Public articles provide high-level guidance only.
Where appropriate, Bitpanda Enterprise Custody can provide additional information through approved commercial, legal, security, compliance, or due diligence review channels.
What should organisations consider?
Organisations should ensure that key ceremony responsibilities are understood by the relevant internal stakeholders.
This may include considering:
- Who is authorised to participate
- Which internal approvals are required
- What evidence or records must be retained
- Which teams need to be consulted or informed
- How ceremony-related activity fits into internal governance
- How exceptions or issues should be escalated
What should I do if I am asked to participate?
If you are asked to participate in a key ceremony, make sure you understand your role, the approved process, and your organisation’s internal requirements before taking any action.
Do not share passwords, PINs, private keys, seed phrases, API keys, API secrets, or other sensitive authentication information.
If something appears unexpected or inconsistent with the approved process, stop and escalate through your organisation’s internal process or approved Bitpanda Enterprise Custody contact.