The last few years have shown that the biggest vulnerability in crypto wallets today is blind signing. This is the practice of approving raw hex strings without knowing what they actually do. However, on Tuesday, the Ethereum Foundation officially announced that this standard is going to be phased out and replaced with clear signing alongside some of the leading wallets and hardware infrastructure that actually run Ethereum for most users. This includes names like Ledger, Trezor, MetaMask, WalletConnect, Fireblocks and Cyfrin. In practice, this means users will be able to see a plain, human readable summary of what a signature authorizes. 0/ Clear signing is now live. An open standard to end blind signing, making human-readable transactions default. This effort brings a major UX and Security upgrade to transaction signing on Ethereum. pic.twitter.com/nIGRCBQh6G — Ethereum Foundation (@ethereumfndn) May 12, 2026 The reason this is happening is simple and it comes down to the recent high profile hacks that have taken place over the past two years. The $1.5 billion Bybit hack, which remains the largest hack in crypto till date, happened in part because signers approved a transaction they could not actually read. Similarly, in July 2024, the WazirX hack that saw around $235 million stolen from the Indian crypto exchange’s multi-sig wallet played out in pretty much the same way. According to the Ethereum Foundation, blind signing has been a structural flaw in the ecosystem for years and has fed into billions of dollars in cumulative losses across hacks, phishing scams and approval exploits. What Clear Signing Actually Does Authorizations and signatures currently have a specific flaw. Users interacting with smart contracts are able to view accurate data but this is usually a string of low-level data that is pretty much unreadable to anyone without a developer or technical background. Clear signing basically flips that script. Wallets that support the new standard will pull up a descriptor file that converts a contract’s function into readable text while providing a summary of it to the user before signing anything. The technical foundation comes from two existing improvement proposals. ERC-7730, which Ledger first proposed back in 2024, defines an open format for describing transactions in human-readable JSON. ERC-8176 then adds an attestation layer on top, allowing independent auditors to cryptographically vouch that a descriptor matches what the contract is actually going to do. The descriptors themselves live off-chain in a neutral registry at clearsigning.org, which means existing contracts can adopt the standard without needing any redeployment. A Coalition That Touches Where Users Actually Live This is not a single-wallet rollout. The contributor list reads like every piece of infrastructure that touches Ethereum users today, with Ledger and Trezor on hardware, MetaMask and WalletConnect on software, Fireblocks on the institutional custody side, Cyfrin on audits and Sourcify and Argot supporting tooling. Ledger originally built clear signing as an internal security feature back in 2021, formalized it as ERC-7730 in 2024, and earlier this year handed over governance to the Foundation specifically to make the standard credibly neutral and not tied to any one company. Why The Timing Lines Up With Institutional Money The timing here is also not really a coincidence. The Foundation’s Trillion Dollar Security Initiative, which is now stewarding the Clear Signing registry, was set up specifically to prepare Ethereum for the kind of institutional-scale value that is now sitting directly on-chain. Fireblocks being part of the rollout matters in particular, as it is the custody provider that most traditional finance firms actually use when they start touching crypto rails. Blind signing was always a tolerable level of risk for retail users moving small amounts. For an asset manager moving real size, however, it is essentially a non-starter, as you cannot really put a compliance signoff behind a transaction that your operations team isn’t able to read in the first place. If you're reading this, you’re already ahead. Stay there with our newsletter .