Why does Proof of Reserves matter?

Proof of Reserves became critically important after the collapse of FTX in 2022, which revealed that the exchange had been misappropriating customer funds. PoR provides transparency and accountability, helping users verify that an exchange or custodian actually holds the assets they claim to hold, reducing the risk of fractional reserve practices and misuse of customer deposits.

How does Proof of Reserves work technically?

Most PoR systems work in two parts. First, the platform proves its total liabilities (what it owes to customers) using a Merkle tree — a cryptographic data structure that includes every customer balance while allowing individual users to verify their inclusion without seeing others' data. Second, the platform proves its reserves (what it holds) by signing messages from known wallet addresses or providing attestation from independent auditors.

Does Proof of Reserves guarantee an exchange is safe?

No. Standard Proof of Reserves only proves that assets exist at a specific point in time — it does not reveal hidden liabilities, off-balance-sheet obligations, or whether the reserves are encumbered (e.g., pledged as collateral elsewhere). A complete solvency proof would require Proof of Reserves combined with Proof of Liabilities, which is technically and legally more challenging.

Do DeFi protocols need Proof of Reserves?

DeFi protocols operating on public blockchains are inherently transparent — their reserves are verifiable on-chain in real time. However, DeFi protocols that interact with off-chain assets (like wrapped Bitcoin bridges or RWA protocols) do need Proof of Reserves to verify that the on-chain tokens are properly backed by off-chain assets. Chainlink's Proof of Reserve feeds provide this service for several protocols.

What Is Proof of Reserves?

Learn what Proof of Reserves is, how it works using cryptographic and on-chain methods, and why it matters for trust and transparency in crypto exchanges and DeFi.

What Is Proof of Reserves?

The collapse of FTX in November 2022 exposed a fundamental vulnerability in the crypto ecosystem: users had no reliable way to verify that the exchange actually held their assets. Billions of dollars vanished because customer deposits had been secretly misappropriated. This catastrophic failure made Proof of Reserves (PoR) one of the most important concepts in crypto — and understanding it is essential for anyone entrusting their assets to a centralized platform.

Proof of Reserves is a verification method that allows a centralized exchange or custodial platform to cryptographically demonstrate that it holds enough assets to cover all customer deposits. When done properly, it provides transparency without compromising user privacy, giving customers and the broader market confidence that funds are not being misused.

Why Proof of Reserves Matters

The Problem: Opaque Custodians

When you deposit Bitcoin or other assets on a centralized exchange, you are trusting that exchange to hold your assets safely. Unlike a bank, which is subject to regular regulatory examinations and deposit insurance, most crypto exchanges operate with limited oversight. Without verification, an exchange could:

Operate on fractional reserves — Holding only a portion of customer deposits and using the rest for trading, lending, or other activities.
Misappropriate funds — Using customer deposits for corporate expenses, executive compensation, or risky investments.
Overstate holdings — Claiming to hold assets that do not exist or are encumbered.

FTX did all three. The exchange's collapse destroyed approximately $8 billion in customer assets.

The Solution: Cryptographic Verification

Proof of Reserves uses cryptography and blockchain transparency to address this trust gap. Instead of relying on promises or unverified claims, exchanges can provide mathematical proof that they hold what they owe.

How Proof of Reserves Works

A complete Proof of Reserves system has two components: proving what the platform holds (reserves) and proving what it owes (liabilities).

Proving Reserves (Asset Side)

On-Chain Wallet Verification

For crypto assets held on public blockchains, proving reserves is relatively straightforward:

The exchange publishes a list of wallet addresses it controls.
Anyone can verify the balances of these addresses on the blockchain.
The exchange signs a cryptographic message from each address to prove ownership (rather than merely publishing an address that someone else controls).

This provides a real-time, independently verifiable proof of asset holdings.

Third-Party Attestations

Some exchanges supplement on-chain verification with attestations from independent accounting firms. These firms examine the exchange's holdings — including off-chain assets, bank accounts, and custodied assets — and issue a report confirming the total. However, attestations are point-in-time snapshots and depend on the rigor and independence of the attesting firm.

Proving Liabilities (What Is Owed)

This is the harder side of the equation. The exchange must prove the total amount it owes to all customers without revealing individual account balances.

Merkle Tree Approach

The most common method uses a Merkle tree — a cryptographic data structure that aggregates all customer balances into a single hash (the Merkle root):

Each customer's balance is placed as a "leaf" in the tree.
Pairs of leaves are hashed together, creating parent nodes, until a single root hash remains.
The root hash represents the total of all liabilities.
Individual customers can verify that their balance is included in the tree by checking their Merkle proof — a small set of hashes that connects their leaf to the root.

This allows each customer to independently verify their inclusion without seeing anyone else's balance.

Limitations of Merkle Trees

Standard Merkle tree PoR has known weaknesses:

Negative balances — An exchange could include negative balances (fake liabilities that offset real ones) to reduce the apparent total. Solutions like "sum trees" that prove all balances are non-negative address this.
Point-in-time snapshots — The proof covers a single moment. An exchange could temporarily move assets to pass verification and then move them away afterward.
Excluded accounts — The exchange controls which accounts are included. Omitting large liability accounts could make the books appear balanced.

Advanced Approaches: Zero-Knowledge Proofs

Some platforms are implementing zero-knowledge proofs for more robust liability verification. ZK proofs can mathematically prove that:

Total reserves exceed total liabilities.
All individual balances are non-negative.
No accounts have been excluded.

...all without revealing any individual balance or even the total amounts. This represents the gold standard for privacy-preserving solvency verification.

Proof of Reserves in Practice

Exchange Implementations

After FTX's collapse, several major exchanges rushed to implement PoR:

Binance — Publishes Merkle tree-based PoR with third-party verification. Users can verify their balances through the platform.
Kraken — Has conducted PoR audits since 2014, working with third-party firms to verify reserves across all supported assets.
OKX — Implements monthly PoR reports with Merkle tree verification and published wallet addresses.
Bitget, Gate.io, and others — Have adopted various PoR implementations with different levels of rigor.

Chainlink Proof of Reserve

Chainlink provides automated, on-chain Proof of Reserve feeds for DeFi protocols. These are particularly important for:

Wrapped assets — Verifying that wBTC is backed 1:1 by Bitcoin held by the custodian (BitGo).
Stablecoins — Verifying that a stablecoin's on-chain supply matches the reserves reported by the issuer.
Cross-chain tokens — Ensuring that bridged assets are properly backed on the source chain.

These feeds operate continuously, providing real-time reserve monitoring rather than periodic snapshots.

The Role of Auditors

Traditional accounting firms (Mazars, Armanino) initially provided PoR attestation services for crypto exchanges but several withdrew from the space due to reputational concerns after FTX. This highlighted a gap: the crypto industry needs purpose-built verification standards, not adapted versions of traditional audit frameworks.

Proof of Reserves vs. Proof of Solvency

An important distinction: Proof of Reserves only covers one side of the balance sheet. A platform could hold 100% of customer deposits in Bitcoin while also owing billions in loans, legal liabilities, or corporate debts.

Proof of Solvency would require proving that total assets exceed total liabilities — including off-chain, fiat, and contingent liabilities. This is dramatically more difficult because:

Off-chain liabilities cannot be verified cryptographically.
Legal obligations (lawsuits, regulatory penalties) are uncertain.
Affiliated entities may have complex intercompany claims.

True solvency verification likely requires a combination of cryptographic PoR, traditional auditing, and regulatory oversight.

Proof of Reserves and Self-Custody

The entire discussion around Proof of Reserves underscores a fundamental principle: if you hold your own keys, you do not need to trust anyone else with your assets. Self-custody eliminates counterparty risk entirely.

This is one of the core value propositions of DeFi lending. When you borrow against your Bitcoin through a non-custodial protocol, your collateral is held in auditable smart contracts on a public blockchain. The "Proof of Reserves" is simply the blockchain itself — anyone can verify the contract's holdings at any time.

Platforms like Borrow aggregate non-custodial lending protocols, where collateral is verifiable on-chain in real time.

Borrow takes a related approach: every lender it lists is labeled as custodial or non-custodial before you commit, so the trust assumption you're accepting is visible up front rather than buried in a quarterly snapshot. For Aave v3 and Morpho Blue offers, the proof is the chain itself. This is fundamentally different from — and arguably safer than — trusting a centralized exchange's periodic Proof of Reserves snapshots.

Evaluating Proof of Reserves Quality

Not all PoR implementations are equal. When assessing a platform's PoR, consider:

Completeness

Does the PoR cover all supported assets, or only select ones?
Does it include fiat reserves, or only crypto?
Are all customer accounts included in the liability proof?

Frequency

Is the PoR a one-time snapshot, or conducted regularly?
Are there automated, real-time monitoring systems (like Chainlink PoR feeds)?

Methodology

Is the Merkle tree implementation robust (e.g., preventing negative balances)?
Are wallet signatures provided to prove ownership?
Is the attestation from a reputable, independent firm?

Transparency

Are the full reserve addresses published for independent verification?
Is the PoR report detailed enough to be meaningful?
Can individual users verify their inclusion?

The Future of Proof of Reserves

Regulatory Mandates

Several jurisdictions are moving toward requiring Proof of Reserves or similar transparency measures for crypto custodians. As regulation matures, PoR may become a baseline compliance requirement rather than a voluntary practice.

Real-Time, Continuous Verification

The industry is moving away from periodic snapshots toward real-time, continuous reserve monitoring. On-chain oracle networks like Chainlink are leading this transition, providing automated feeds that constantly verify reserve backing.

Integration with DeFi

As more traditional financial assets are tokenized and brought on-chain, Proof of Reserves becomes essential for verifying that on-chain tokens are properly backed by off-chain assets. This bridges the transparency gap between DeFi's native verifiability and the opacity of traditional financial systems.

Key Takeaways

Proof of Reserves is a verification method proving that a platform holds assets matching customer deposits.
It combines cryptographic techniques (Merkle trees, signatures) with independent attestations to provide transparency.
PoR is not a complete solvency proof — it does not account for hidden liabilities or off-balance-sheet obligations.
DeFi protocols on public blockchains offer inherent transparency that surpasses periodic PoR snapshots.
Self-custody eliminates the need for PoR entirely by removing the custodial counterparty.
When using Borrow to access Bitcoin-backed loans, non-custodial protocols provide on-chain, real-time verifiability of your collateral — a stronger guarantee than any Proof of Reserves report.

And because Borrow itself never holds your BTC — it sits in a self-custodial Privy wallet, supplied straight to the lender's contracts — there is no Borrow balance sheet for anyone to attest to in the first place.

The future points toward real-time, continuous verification as a standard requirement for all custodial platforms.

Common Questions

Proof of Reserves (PoR) is a verification method used by crypto exchanges and custodial platforms to demonstrate that they hold sufficient assets to cover all customer deposits. It typically combines cryptographic techniques (like Merkle trees) with independent attestations or on-chain verification to prove that customer funds are fully backed without exposing individual account details.

What Are Smart Contract Audits?

Learn what smart contract audits are, how they work, what auditors look for, and why they matter for DeFi security and protecting your crypto assets.

Advanced Topics

What Is Rehypothecation in DeFi?

Learn what rehypothecation means in DeFi, how it differs from traditional finance, and the risks and benefits of collateral reuse in crypto lending protocols.

Borrow by Sats Terminal

Is Borrow Safe to Use?

Understand the safety measures, risk management, and security architecture behind Borrow by Sats Terminal. Learn how self-custody, audited protocols, and transparent operations protect your Bitcoin.

Crypto Borrowing

What Are Custodial vs Non-Custodial Crypto Loans?

Understand the difference between custodial and non-custodial crypto loans, their trade-offs in security, control, and convenience, and which type suits your needs.