Monero Academy
Watch-Only Wallets & Auditing

Watch-Only Wallets & Auditing

Advanced Coin Control & Advanced Wallet Use · 4 views
#how-it-works #keys #coin-control

Using view keys and watch-only wallets to audit funds without exposing spend ability.

Sometimes you need to see what's in a wallet without being able to spend from it. An accountant verifying a company's income, a donation campaign proving how much it raised, or a cautious holder checking a cold wallet's balance from an everyday laptop — all want visibility without risk. Monero makes this possible through the view key and the watch-only wallet built on it. Understanding this split between seeing and spending is one of the most practically useful ideas in all of Monero.

Two Keys, Two Powers

As covered in Public and Private Keys, a Monero wallet has two private keys with very different powers:

  • The view key can detect and display incoming transactions to the wallet — it lets you see funds arriving and read the balance.
  • The spend key is what authorizes outgoing transactions — it lets you move funds.

The crucial point: these are separate. Possessing the view key gives you visibility and nothing more. You cannot construct or sign a spend with it. This separation is what makes safe auditing possible.

What a Watch-Only Wallet Is

A watch-only wallet is created from your public address and your view key only — the spend key is deliberately left out. The result is a wallet that can scan the blockchain, recognize the payments meant for you (since incoming funds land at stealth addresses that the view key can identify), and report your balance and transaction history. But because it has no spend key, it physically cannot send anything. Even if that watch-only wallet is fully compromised, an attacker gains insight, not access to your coins.

Why This Is So Useful

  • Monitoring cold storage. Pair a watch-only wallet on your daily machine with an offline cold wallet that holds the spend key. You watch incoming funds online while the spend key never leaves the air-gapped device.
  • Auditing and accounting. You can hand the view key to an auditor or bookkeeper so they can verify all incoming funds, confident that they can never spend a satoshi's worth of XMR.
  • Transparency on your terms. An organization can prove its receipts to a specific party by sharing the view key, without surrendering control of the money.
  • Reduced exposure. Day-to-day balance checks don't require exposing the spend key at all.

The Privacy Trade-Off of Sharing a View Key

Here's the important nuance: the view key is a privacy credential, not just a convenience. Anyone you give it to can see all incoming transactions to that wallet, indefinitely. So while sharing it is safe for your funds, it is a meaningful disclosure of your financial activity. Treat handing out a view key as a deliberate privacy decision:

  • Share it only with parties you intend to grant full incoming visibility.
  • Consider using a dedicated wallet or account for funds you may need audited, so you don't expose unrelated activity.
  • Remember that view-key disclosure can't be undone for past transactions once someone has it.

For proving a single payment rather than your whole history, a targeted payment proof is usually the better, more surgical tool — it reveals one transaction instead of everything.

View-Only Visibility Has Limits

A subtle point: a view key reliably reveals incoming funds, but determining the precise spent/outgoing state of a wallet from the view key alone can be incomplete, since spending involves the spend key's activity. In practice, watch-only wallets are excellent for tracking what came in and the current balance; for full outgoing detail you generally rely on the complete wallet. For everyday monitoring and income auditing, this limitation rarely matters.

Putting It Together

  • Use a watch-only wallet to monitor cold storage without risk.
  • Share a view key only when you intend to grant full incoming visibility, ideally on a dedicated account.
  • Prefer a payment proof when you only need to demonstrate one transaction.
  • Remember: view key = sees, spend key = spends. They are never the same power.

The view-key model is one of Monero's quietly elegant features: it lets you separate transparency from control, so you can audit, monitor, and prove receipts without ever putting your funds at risk. Use it to watch cold storage and to share visibility deliberately, and you've mastered a capability most cryptocurrencies can't cleanly offer. You've now completed the course — lock it in with the coin control quiz.

Comments

Log in or create a free account to comment.

No comments yet — be the first.