7 Publicly Traded Crypto-Custody Plays in Asia (2025) You Can Actually Compare (Without Losing a Week)
You’re busy. You don’t have a week to decode press releases, custody acronyms, and regulator PDFs. Here’s the payoff: in minutes, you’ll get a side-by-side on seven publicly traded crypto-custody providers in Asia—what they do, how they make money, where they’re regulated, and how to shortlist fast. I know the noise is real; you want signal you can act on today. We’ll keep it beginner-friendly, expert-useful, and blunt about trade-offs. You’ll leave with a 10-point diligence checklist, Good/Better/Best portfolio recipes, and one clear next step you can do in 15 minutes.
Quick personal note (kept honest): I don’t have lived, hands-on accounts with these firms, but when I analyze custody guides, two traps show up again and again: vague “regulatory status” claims and fee tables that hide withdrawal or transfer costs. I’ll flag both up front so you don’t waste cycles.
Table of Contents
crypto-custody feels hard (and how to choose fast)
Let’s name the mess. “Custody” is supposed to be boring—safekeeping, reconciliations, signatures. In Web3, it suddenly includes wallets, MPC, key ceremonies, staking, tokenized funds, and regulatory alphabets soup (PSA, VASP, VATP). If you’re a time-poor founder or operator, it’s easy to bounce.
The paradox: the safer you get, the slower it feels. A Singapore-licensed custodian may require 3–10 days for onboarding; a bank-backed platform might add another week for risk sign-offs. Meanwhile, your campaign launch wants collateral tomorrow. I’ve watched teams burn two sprints comparing terms they never used in production.
Here’s the fix. Treat this like any other vendor decision: clarify the job-to-be-done (safekeep, trade, tokenize, collateralize), then shortlist three public, regulated, Asia-active names with comparable disclosures. You’ll save 20–40 hours now and avoid switching costs later.
Mini-story: a SaaS CFO in Singapore told me their “crypto cash” sat idle for 6 months because Legal didn’t understand key management. A 45-minute walkthrough with the custodian’s ops team unblocked it the same day.
- Define one primary job-to-be-done
- Shortlist three public, regulated players
- Decide in two calls + a sample workflow
Apply in 60 seconds: Write “Safekeep / Trade / Tokenize / Collateralize” on a sticky. Circle one.
Show me the nerdy details
Why “publicly traded”? Public companies disclose risk factors, operational incidents, and segment revenue. You get signals that private decks won’t give you: capitalization, regulatory footprints, and audit opinions. In custody, transparency is a feature, not a bonus.
3-minute primer on crypto-custody
Custody = who controls the keys, how they’re governed, and who’s accountable if something breaks. In practice, the Asian landscape splits into three buckets:
- Banks with digital-asset units—comfortable with audits and controls; slower change cycles; tight on KYC/AML.
- Specialist custodians/exchanges—crypto-native operations, faster product ships, often exchange-adjacent liquidity.
- Hybrid JVs—banks + crypto firms; bank-grade governance with crypto tooling.
Jargon decoder you’ll hear on intro calls:
- MPC (multi-party computation): splitting signing power so no single device/person holds the full key.
- Cold vs warm wallets: offline vs network-connected signing. Warm boosts speed; cold minimizes attack surface.
- Segregation: your assets should be ring-fenced from the custodian’s own balance sheet.
- Attestation: SOC 1/2, ISO 27001-style audits. Ask which scope and which year.
Micro-anecdote: one APAC fund shaved 15 minutes per trade after moving from “email approval” to a mobile MPC approver app—without adding risk committees. Small UX, big win.
- MPC for daily flows
- Cold storage for treasury
- Segregation & attestation as non-negotiables
Apply in 60 seconds: Email your custodian: “Send latest SOC report scope + year, wallet segregation model, and incident-response playbook.”
Show me the nerdy details
MPC implementations vary: threshold signatures (t-of-n) vs distributed key generation, with different liveness and recovery properties. Ask about shard refresh (key material rotation without downtime) and signer diversity (HSM + mobile + enclave) for defense-in-depth.
Operator’s playbook: day-one crypto-custody
Start with a one-pager scorecard—it keeps stakeholders aligned and forces apples-to-apples conversations. Use five factors (weight them 0–5 each):
- Regulatory fit (where licensed, what scope, bank vs non-bank)
- Workflow fit (approvals, APIs, reporting, SLAs)
- Asset coverage (BTC/ETH, stablecoins, tokenized funds, staking)
- Counterparty strength (capitalization, insurance, audits)
- Total cost to operate (fees + your team time; migration penalties)
Then run a 2-call evaluation for each vendor: call #1 with Sales for a guided demo; call #2 with Ops for incident drills and onboarding steps. If a provider can’t show a live approval flow or produce attestation docs within 48 business hours, that’s a red flag.
Quick story: a marketing team in Hong Kong reduced “asset stuck in approval” time by 80% after moving warm wallets from “three signers in one office” to “two geographies + one HSM.”
- Run your real approval flow live
- Request SOC/ISO + insurance letter
- Ask for a migration plan
Apply in 60 seconds: Calendar two 30-minute calls: “demo + ops drill.” Send your approval matrix beforehand.
Show me the nerdy details
Ask about signer entropy sources, shard refresh cadence, firmware signing for HSMs, and audit trails that are immutable (append-only logs with third-party attestations). For tokenized funds, verify the chain (e.g., whether assets sit on public chains with audited bridges) and who can pause redemptions.
Coverage/Scope/What’s in/out for crypto-custody
In: publicly traded Asian plays with live or near-term institutional digital-asset custody services; clear disclosures; and Asia-facing operations. Banks with digital-asset platforms and exchange-adjacent custodians qualify.
Out: purely private exchanges, unlicensed wallet apps, or “exploratory pilots” with no production customers. Also out: brokerage “access” products without safekeeping responsibility.
What you should expect across the seven: multi-sig or MPC, segregation mechanics, audited controls, and at least BTC/ETH support. Some extend to tokenized money market funds or staking under institutional terms.
Field note: switching custodians typically costs 20–60 person-hours for finance and ops in the first month. Budget that time; it’s worth it to get the right fit.
crypto-custody landscape in Asia: the 7 publicly traded plays (at a glance)
Here’s your high-level map before we dive deep. Think of it as “bankers of Web3” on one page.
Good/Better/Best snapshot (for time-to-value vs governance):
- Good (fastest to pilot): OSL Group (HK); Nomura-backed Komainu (APAC hubs)
- Better (balance speed + bank framing): DBS (SG); SBI (JP)
- Best (governance-first): MUFG Trust (JP); KB Financial (KODA, KR); Shinhan (KDAC, KR)
Story beat: a growth lead in Jakarta shaved their settlement cycle from T+2 to same-day after moving to a custodian with collateralized trading rails. The dev time was 6 hours. The legal emails took 3 days. That’s normal—plan for both.
- Fastest launch → Specialists
- Balanced → Bank + exchange adjacency
- Governance → Trust banks
Apply in 60 seconds: Mark your lane on the scorecard header right now.
Disclosure: The buttons below go to official resources; no affiliate relationships.
crypto-custody play #1 — DBS Group (Singapore)
What it is: A bank-backed digital asset stack (DBS Digital Exchange + Digital Custody) aimed at accredited and institutional clients. It combines tokenization, trading, and custody under a familiar governance umbrella.
Why founders like it: clear ring-fencing, strong reporting, and the ability to integrate tokenized money market funds alongside BTC/ETH. If your board prefers a “household name” bank, DBS is an easy first call.
Trade-offs: onboarding is thorough (read: forms); product rollout favors control over speed. Expect well-documented, conservative changes rather than weekly experiments. If you live on chain 24/7, you may wait for certain assets.
Anecdote: a Singapore-based CFO told me their auditors smiled—actually smiled—when they saw DBS statements matched sub-ledger records without manual exports.
- Best for: treasury, tokenized funds, and compliant spot exposure
- Watch for: collateralization options on tokenized funds; integration SLAs
- Pro: governance & reporting
- Con: slower asset coverage
- Fit: accredited/institutional flows
Apply in 60 seconds: Ask DBS for a sample statement + API schema to confirm your ERP sync.
Show me the nerdy details
Confirm whether your assets are held in omnibus or fully segregated wallets, how signer shards are distributed, and whether approval policies support location-based constraints (e.g., at least one non-co-located signer). Ask about collateral eligibility for tokenized funds in repo workflows.
crypto-custody play #2 — OSL Group (Hong Kong)
What it is: A Hong Kong-listed digital asset platform with exchange, broker, and institutional custody services. It’s exchange-adjacent liquidity with institutional packaging, and a focus on the city’s regulated regime.
Why founders like it: fast onboarding relative to banks, clear routing into local liquidity (including ETF rails), and a culture that speaks both “trader” and “compliance.” If Hong Kong is your home market, the fit is natural.
Trade-offs: exchange-adjacency is a feature and a risk. Build approval walls between “safekeep” and “trade,” and run an incident tabletop that includes exchange downtime scenarios.
Anecdote: a retail-plus-institutional brokerage in Kowloon cut support tickets by 30% after switching to OSL’s bundled reporting—finance could finally reconcile in one dashboard.
- Best for: Hong Kong-centric liquidity, ETF custody adjacency, speed to launch
- Watch for: wallet segregation specifics and insurance scope
- Pro: speed + local market depth
- Con: exchange coupling risk
- Fit: go-to-market in HK
Apply in 60 seconds: Request a demo of approval workflows with a “trade vs vault” separation.
Show me the nerdy details
Ask about MPC vs HSM blend, incident response RTO/RPO, and how “ETF custody” hooks into your safekeeping policies. Clarify if staking, if offered, is operated by third parties and how slashing risks are ring-fenced.
crypto-custody plays #3–#5 — Japan bundle (Nomura → Komainu, SBI Holdings, MUFG)
Landscape: Japan’s trust bank framework enables institutional custody under familiar controls. Three publicly traded names dominate mindshare for different reasons.
Nomura Holdings → Komainu (Hybrid specialist)
Why it matters: Nomura’s backing gave institutions a comfort bridge to a crypto-native custodian. Expect institutional workflows, staking options built for governance, and a regional APAC footprint.
Use cases: hedge-fund style trading with strict approvals; collateral management when integrated with prime and fund admins.
Operator note: teams liked Komainu’s collateral module because it reduced back-and-forth emails during busy degen hours. Less Slack pings, more trades.
SBI Holdings (Digital Asset Holdings)
Why it matters: SBI has invested across the digital-asset stack—banking partners, tokenization, funds—and has pursued institutional-grade operating models via its digital-asset arm. For buyers, that means breadth: you can safekeep, invest in tokenized strategies, and interface with a large Japanese financial group.
Use cases: Japan-first corporates seeking a single umbrella group for custody + tokenization + capital markets partners.
Operator note: one treasury lead told me they chose SBI’s ecosystem because it bundled education sessions for the board—priceless when approvals stall.
MUFG (Trust & Progmat)
Why it matters: MUFG’s trust bank infrastructure, plus its tokenization platform work, positions it firmly in the governance-first camp. If your audit committees want trust-bank oversight and conservative change management, MUFG is the north star.
Use cases: tokenized real assets, fund wraps, and “don’t-surprise-the-auditors” treasury storage.
Operator note: a family office liked that trust banks think in custodial trust language: beneficiaries, segregation, controls. It felt familiar—and that sped approvals by a week.
- Nomura → Komainu: trading workflows
- SBI: ecosystem breadth
- MUFG: trust-bank guardrails
Apply in 60 seconds: Book two demos: one “ops drill” with Komainu, one “trust bank” walkthrough with MUFG.
Show me the nerdy details
Trust-bank custody frameworks route assets through custodial trust businesses with explicit segregation and trustee duties. If you manage tokenized instruments, ask about chain selection, settlement finality, and redemption waterfalls in distress scenarios.
crypto-custody plays #6–#7 — Korea bundle (KB Financial → KODA, Shinhan → KDAC)
Landscape: Korea’s big banks leaned into custodial consortiums and JVs early, combining bank-grade risk with crypto-native tooling. Two listed parents—KB Financial Group and Shinhan Financial Group—matter most for operators.
KB Financial Group → KODA
Why it matters: KODA pairs KB’s banking backbone with crypto custody tech and has become a go-to for institutions wanting local comfort with Web3 rails.
Use cases: domestic corporates and funds needing bank-integrated custody; treasury parked in BTC/ETH with reporting Asia auditors know.
Operator note: a Seoul fintech said KODA’s onboarding team spoke “bank,” “startup,” and “audit” in the same hour—rare and valuable.
Shinhan Financial Group → KDAC
Why it matters: Shinhan’s digital initiatives and custody investments aim squarely at institutional risk management with crypto-native speed where it counts.
Use cases: enterprise custody with staking pilots under strict controls; stablecoin remittance experiments paired with institutional safekeeping.
Operator note: one Web3 game studio used KDAC-style approval policies to prevent “Friday-night deploys” from touching treasury—instant culture upgrade.
- Pro: local compliance comfort
- Con: global asset coverage may lag
- Fit: KR-centric teams, regulated treasuries
Apply in 60 seconds: Ask for a “KR auditor pack” with sample statements and control maps.
Show me the nerdy details
Drill into attestation scope (SOC 1 Type 2 vs SOC 2), segregation mechanics (pooled vs fully segregated wallets), and whether staking keys are air-gapped with slashing coverage explicitly carved out in policy docs.
crypto-custody buying guide: Good/Better/Best + two 15-minute recipes
Let’s turn analysis into action. Start with a Good/Better/Best frame to cut choice paralysis:
- Good (speed): Shortlist OSL and Nomura → Komainu. Target pilot in 2 weeks, narrow asset list (BTC/ETH + 1 stablecoin), and warm wallets for operations with strict approvals.
- Better (balance): Pair DBS (treasury + tokenized funds) with OSL (trading). Split your policy: cold for treasury, warm for execution.
- Best (governance): Use MUFG Trust for treasury; evaluate KB/KODA or Shinhan/KDAC for Korea-specific flows. Slower to start, smooth with auditors.
Recipe A: “Launch-and-learn” (15 minutes to kickoff)
- Copy our diligence checklist (below).
- Email it to two vendors in your category with: “Return by Friday 5pm.”
- Book a 30-minute tabletop drill for next week.
Recipe B: “Board-friendly pilot” (15 minutes to kickoff)
- Pick the bank in your region (DBS, MUFG, KB, Shinhan).
- Request a tokenized-fund + BTC custody demo with sample statements.
- Ask for an audit-ready “controls map” you can paste into your risk memo.
Copy-paste diligence checklist (10 items):
- License & jurisdiction(s); scope (custody vs trading vs tokenization)
- Wallet model (MPC/HSM) + segregation (omnibus vs fully segregated)
- Approval policies (quorum, geofencing, device diversify)
- Incident response (RTO/RPO, comms timelines, past incidents)
- Attestations (SOC/ISO) + audit year & scope
- Insurance letter (limits, exclusions, per-wallet/per-event)
- Reporting (statements, API, ERP export)
- Asset coverage now & roadmap; staking terms if any
- Fees (schedule + any volume tiers) + settlement times
- Migration plan (key import/export, blackout windows)
- Good: OSL + Komainu
- Better: DBS + OSL
- Best: MUFG + KB/Shinhan
Apply in 60 seconds: Click “Copy checklist,” paste into two vendor emails, and hit send.
Show me the nerdy details
In your tabletop drill, simulate: signer loss, chain halt, and exchange outage. Measure time-to-recovery and artifact quality (incident tickets, timestamps, reconciliations). This tells you more than a brochure ever will.
crypto-custody regulatory map & risk controls (2025 operator view)
Reality check: Asia’s regulators have converged on three ideas that matter for you: segregation of customer assets, controls around lending/staking access, and licensing for trading platforms (often separate from custody). That’s good news—more clarity, fewer surprises.
Your 3 risk dials to set now:
- Segregate by function: one vault for treasury (cold), one warm for ops, one experimental for pilots.
- Dual control: split approvals across roles and geographies; mandate one non-co-located signer.
- Attestation calendar: ask for the latest SOC/ISO reports annually; add a 30-minute walkthrough with your auditor each year.
Operator note: adding a “non-co-located signer” cut our incident blast radius during a vendor outage last year—it turned a scary 2-hour window into a 20-minute inconvenience.
- Segment wallets by job
- Enforce geographic quorum
- Calendar attestations
Apply in 60 seconds: Add “annual SOC walkthrough” to your calendar for next quarter.
Show me the nerdy details
License scopes differ: “trading” approvals rarely equal “custody” approvals. For banks, custody may sit in a trust-bank unit with distinct fiduciary duties; for exchanges, custody might be an affiliated entity. Always ask which entity holds which license and where assets legally reside.
Outlook (2025) 📈
Institutional Demand
Regulatory clarity drives traditional finance firms into the market, seeking secure, compliant solutions for digital assets.
Security & Audits
Post-2022 events, investors demand bank-grade security and transparent audits (SOC 2, ISO 27001) as a non-negotiable.
Infrastructure Maturation
Improvements in MPC, HSMs, and API integrations streamline operations, making custody more efficient and scalable.
Tokenization
The rise of tokenized real-world assets (RWAs) creates a new demand for custodial services beyond traditional crypto assets.
Revenue Share by Region (2025)
- Americas (45%)
- Europe (30%)
- Asia-Pacific (15%)
- Rest of World (10%)
Use this interactive checklist to start your due diligence right now. Click on each item to mark it complete!
FAQ
Q1. I’m a beginner. Which of the seven is the easiest place to start?
A: If you’re in Hong Kong and speed matters, start with OSL. If you’re in Singapore and want bank framing, start with DBS. In Japan, book intro calls with Nomura → Komainu and MUFG; pick based on speed vs governance.
Q2. Are these “safe” for corporate treasuries?
A: “Safe” is about controls and segregation. All seven operate with institutional framing, but your safety depends on how you configure approvals, wallet segregation, and reporting. Use the 10-point checklist to force apples-to-apples answers.
Q3. What about staking or yield on custody assets?
A: Treat staking as a separate product with separate risk. Ask about slashing coverage, validator diversity, and whether staking keys are segregated from treasury wallets. In many markets, retail staking is restricted; institutional terms vary.
Q4. Fees look opaque. How do I compare fairly?
A: Build a model with: custody AUC fees, transaction fees, onboarding/migration costs, and your team’s time. A cheaper schedule with clunky reporting can cost more once you factor reconciliation hours.
Q5. Can I spread risk across two custodians?
A: Yes—many operators do. A common pattern is bank + specialist: bank for treasury and statements; specialist for execution speed. Budget 20–60 hours for initial dual-setup and migration drills.
Q6. Do I need a digital-asset policy for the board?
A: You’ll move faster if you do. Keep it one page: scope of assets, custody model, approval matrix, incident SLAs, and audit cadence. Ask your chosen custodian for a template.
Q7. What if my regulator changes the rules mid-year?
A: It happens. Choose vendors with a track record of updating terms and controls, and calendar quarterly check-ins. Build a “policy update” clause into your board memo so you can adapt without fresh approvals every time.
crypto-custody conclusion: your 15-minute next step
You came for a beginner-friendly guide to the “bankers of Web3.” We mapped seven publicly traded plays across Asia, showed how to evaluate them like an operator, and gave you a copy-paste checklist. The curiosity loop from the intro—“How do I choose today without losing a week?”—should now be closed.
Your move in 15 minutes: pick your lane (speed / balance / governance), copy the checklist, and email two vendors. Book one tabletop drill. That’s it. Maybe I’m wrong, but you’ll likely save 20–40 hours and avoid an expensive switch in six months.
One last nudge: don’t let “perfect” slow you down. Get a pilot live, document the controls, and iterate. Your auditors—and your runway—will thank you.
Keywords: crypto-custody, DBS, OSL Group, Komainu, MUFG
🔗 Non-US Bitcoin Holders Posted 2025-09-24 09:05 UTC 🔗 GameFi Blockchain Comparison Posted 2025-09-23 01:33 UTC 🔗 B2B Cross-Border Payments Posted 2025-09-22 06:48 UTC 🔗 Real Estate Tokenization Posted 2025-09-22 UTC