- Ledger has unveiled an always-offline “Recovery Key” smart card for its Flex and Stax hardware wallets
- The firm has replaced cloud-based shard storage with a PIN-protected, NFC-enabled card that never leaves the user’s possession
- The Recovery Key has sparked debate about balancing self-custody with convenient recovery
Ledger has introduced a new offline recovery key that replaces cloud backups with a PIN-protected smart card, offering users a more secure and convenient way to recover their wallets. The card communicates with Ledger devices via encrypted NFC and stores the master secret entirely offline, removing the need for identity checks or internet access. The launch marks a shift in response to criticism of Ledger’s previous shard-based recovery service, aiming to balance usability with self-custody, and while the design has been well received by many security researchers, some experts caution that even local backups introduce potential vulnerabilities.
Born From Ledger Recover Disaster
In many ways, we can trace the development of the Recovery Key to Ledger’s disastrous 2023 launch of its cloud-based Ledger Recover service, which drew fire for fragmenting seed phrases on remote servers behind a KYC wall. This prompted the firm to promise transparency, and the Recovery Key is its answer: a physical card that stores the master secret inside the same tamper-resistant Secure Element found in its wallets and is fully open-sourced and audited by security firm Synacktiv.
The Recovery Key works by tapping the card and entering a secondary PIN on the wallet’s touchscreen, which instantly rebuilds the 24-word seed without ever touching the internet. Because the secret never leaves the card, no personal data or identification process is required, and owners can create multiple spare keys for redundancy. Charles Guillemet, Ledger’s chief technology officer, talked up the development:
We’ve received extremely positive feedback from security researchers and industry leaders, and we’re excited to reveal it to the world for even more feedback ahead of its launch soon.
Guillemet revealed the key aspects of the Recovery Key in an X thread:
🚨I’m excited to announce a huge technical milestone in @Ledger’s mission to simplify self-custody.
Ledger Recovery Key—a PIN-protected physical card enabling storage & recovery of your 24 words with just a few taps.
No KYC, no subscription fee, just peace of mind: 👇🧵 pic.twitter.com/rqy2XcPeFJ
— Charles Guillemet (@P3b7_) June 24, 2025
Not Everyone is Convinced
Whenever Ledger brings out products like this, it is trying to thread a needle: keep hardcore self-custody purists onside while offering newcomers a recovery path that is convenient but secure. Ian Rogers, the company’s chief experience officer, framed the product as a usability breakthrough, saying, “With Ledger Recovery Key we are making secure self-custody easy-to-use for everyone… we are proud to offer a recovery solution for every category of user.”
Not everyone is convinced, however:
I still find this scary, what happens if it breaks or wipes.
— LiτBro (@bittybitbit86) June 24, 2025
Sounds like another path to exploit
— jpgflippa (@jpgflippa) June 24, 2025
For investors who have watched billion-dollar hacks and exchange failures, the Recovery Key could make hardware wallets less intimidating, yet it also shifts responsibility back onto individuals to protect a physical card. Ledger says the tool, which is only available for Flex and Stax devices, is optional and will coexist with both the traditional 24-word seed and the still-available Ledger Recover service.
