What is a centralized exchange (CEX)?
A centralized exchange (CEX) is a cryptocurrency trading platform operated by a company that acts as an intermediary between buyers and sellers — holding custody of user funds, maintaining an order book, matching trades, and providing the infrastructure for converting cryptocurrency to fiat currency or trading between digital assets. Unlike decentralized exchanges (DEXs), which execute trades directly between users via smart contracts with no custodial intermediary, CEXs hold assets on their users’ behalf, offering a familiar account-based trading experience in exchange for counterparty risk. Centralized exchanges are the primary regulated entry and exit points for cryptocurrency — required under FATF Recommendation 15 to implement KYC identity verification and AML transaction monitoring, and the chokepoint where law enforcement most frequently obtains records, freezes funds, and recovers illicit proceeds.
How does a centralized exchange work?
Every centralized exchange follows the same fundamental model: verify the user’s identity, accept deposits, match trades through an order book, and process withdrawals back to fiat or external wallets. Each step has operational and compliance implications that distinguish CEXs from every other part of the cryptocurrency ecosystem.
Account Creation and KYC Verification
Using a CEX begins with account creation — providing an email address, creating a password, and completing Know Your Customer (KYC) identity verification. KYC requires submission of government-issued identification, proof of address, and in some cases a selfie or video verification. This identity verification step is what distinguishes CEXs from decentralized exchanges: there is no anonymous access. KYC is both a regulatory requirement under FATF and national AML frameworks and the foundational data layer that law enforcement relies on when requesting records from exchanges. When investigators trace illicit funds to a CEX account, the KYC records attached to that account are what convert a pseudonymous wallet address into an identifiable person.
Depositing Funds
Once verified, users deposit funds — either fiat currency (USD, EUR, GBP via bank transfer, debit card, or wire) or cryptocurrency transferred from an external wallet. Fiat deposits are converted at the platform’s prevailing rate; crypto deposits are credited to the user’s custodial account on the exchange. The user does not hold private keys — the exchange does. This is the defining custodial characteristic of a CEX: the exchange holds assets on the user’s behalf, creating both the convenience of a managed account and the counterparty risk of an institutional custodian.
Trading — The Order Book Model
CEXs match buyers and sellers through an order book — a continuously updated record of open buy and sell orders at specified prices. When a user places a market order, the exchange fills it immediately at the best available price. Limit orders execute only when the market reaches a specified price. Market makers — traders who post limit orders — provide liquidity to the exchange; takers execute against those orders and pay a taker fee. High liquidity on major CEXs like Coinbase, Kraken, and Binance means large orders fill quickly with minimal slippage, making centralized exchanges more efficient for high-volume crypto trading than lower-liquidity alternatives.
Withdrawing Funds
Users can withdraw fiat to a linked bank account or withdraw cryptocurrency to an external wallet address. Withdrawal processes trigger compliance checks — including sanctions screening of destination wallet addresses and transaction monitoring alerts for withdrawal patterns inconsistent with the user’s risk profile. Withdrawal to a self-hosted wallet transfers custody from the exchange to the user; the user’s private keys then govern those assets. Withdrawal limits, processing times, and fees vary by platform and jurisdiction.
CEX vs. DEX: What’s the difference?
The choice between a centralized exchange and a decentralized exchange is not merely a user experience preference — it has significant AML, compliance, and enforcement implications.
| Dimension | Centralized Exchange (CEX) | Decentralized Exchange (DEX) |
|---|---|---|
| Custody | Exchange holds user funds and private keys | Users retain custody; non-custodial throughout |
| Identity | KYC required; identity verification at onboarding | Permissionless; no identity verification required |
| Trade Execution | Order book matching by exchange infrastructure | Smart contracts execute trades automatically on-chain |
| Liquidity | Typically higher; institutional and retail market makers | Automated market maker (AMM) liquidity pools |
| Fiat Access | Direct fiat on/off ramps (bank transfer, card) | No native fiat; crypto-to-crypto only |
| Regulatory Status | Regulated VASPs; AML/KYC obligations | Regulatory status contested; no central operator |
| Counterparty Risk | Exchange insolvency or hack (e.g., FTX collapse) | Smart contract vulnerability; no operator recourse |
| Compliance Utility | Primary records source for law enforcement | Pseudonymous; blockchain analytics required for tracing |
| Best For | Beginners, fiat on-ramps, high-volume crypto trading | DeFi access, crypto-native traders, permissionless transactions |
CEXs are the regulated chokepoints in the cryptocurrency ecosystem: where identity is verified, where fiat moves in and out, and where law enforcement most frequently obtains records and freezes assets. DEXs offer permissionless access but no fiat conversion and no KYC — making them a compliance gap for organizations monitoring customer crypto activity at the transaction level.
Key features of centralized exchanges
Trading Products and Functionality
Most major CEXs offer spot trading (immediate buy/sell at current market price), margin trading (leveraged positions with borrowed funds), derivatives (futures and options on crypto assets), staking (earning yield by locking assets in proof-of-stake validation), and in some cases NFT marketplaces. Advanced trading tools — charting interfaces, API access for algorithmic trading, and real-time market data — are standard on CEXs and largely inaccessible on DEXs. This breadth of functionality makes centralized exchanges the platform of choice for both beginners entering the market and professional traders executing sophisticated strategies.
Fiat On-Ramps and Off-Ramps
The ability to convert fiat currency to cryptocurrency — and back again — is one of the defining advantages of CEXs over DEXs. Centralized exchanges accept bank transfers, debit cards, credit cards, and wire transfers for fiat deposits. Fiat off-ramps — the ability to sell cryptocurrency for USD, EUR, or other currencies and withdraw to a bank account — make CEXs the endpoint where most cryptocurrency value eventually reaches the traditional financial system. From a compliance and law enforcement perspective, fiat off-ramps are the most consequential infrastructure on any CEX: they are where illicit proceeds must ultimately appear, making exchange transaction monitoring records the critical evidence layer in most major cryptocurrency investigations.
Custody and Security Infrastructure
CEXs hold user funds in centralized custody — typically a combination of hot wallets (internet-connected, for active trading liquidity) and cold storage (offline, hardware-secured, for the majority of assets). Leading exchanges store 90–95% of user funds in cold storage to minimize hack exposure. Security measures include two-factor authentication, withdrawal address whitelisting, device management, and in some cases insurance coverage for hot wallet losses.
Despite these measures, centralized exchanges represent a significant honeypot target. Exchange hacks have resulted in billions in losses: the Mt. Gox hack (2014, approximately $450 million), the Bitfinex hack (2016, $72 million at the time), and the FTX collapse (2022, approximately $8 billion in customer funds misappropriated) are landmark cases. The concentration of user funds in a single custodial entity is the fundamental security trade-off of the CEX model — and the primary argument for distributing assets across multiple custody solutions rather than relying on any single platform.
User Experience and Customer Support
CEXs provide the user experience infrastructure that DEXs do not: account dashboards, portfolio tracking, fiat payment processing, tax reporting exports, and customer support via chat, email, and phone. For beginners, the account-based interface mirrors familiar financial services applications; there is no requirement to manage private keys, understand blockchain gas fees, or interact with smart contracts directly. This accessibility makes CEXs the dominant on-ramp for new cryptocurrency users globally. The trade-off is custody: the exchange holds the assets, not the user.
Centralized exchanges, compliance, and law enforcement
CEXs as Regulated Virtual Asset Service Providers
Under FATF Recommendation 15 and national implementing regulations, centralized exchanges qualify as Virtual Asset Service Providers (VASPs) and are required to maintain AML compliance programs equivalent to those of traditional financial institutions. This means: KYC identity verification at onboarding, ongoing transaction monitoring, sanctions screening of customer addresses and transactions, Travel Rule compliance (sharing originator and beneficiary information on qualifying transfers between VASPs), and Suspicious Activity Report (SAR) filing when monitoring identifies suspicious activity.
In the United States, CEXs must register with FinCEN as Money Services Businesses and comply with Bank Secrecy Act requirements. In the EU, MiCA extends comprehensive financial regulation to crypto-asset service providers. Non-compliance carries severe regulatory and criminal liability — as the Binance settlement demonstrated. The $4.3 billion resolution reflected years of inadequate transaction monitoring, sanctions screening failures, and the deliberate processing of transactions for customers in sanctioned jurisdictions.
CEXs as the Primary Law Enforcement Chokepoint
When investigators trace illicit cryptocurrency to a centralized exchange account, the legal process for obtaining records is well-established and highly productive. Subpoenas, court orders, and international Mutual Legal Assistance Treaty (MLAT) requests compel CEXs to produce KYC records, transaction histories, IP addresses, device identifiers, and full account activity — converting a pseudonymous blockchain address into the complete profile of an identifiable account holder. CEXs are also capable of freezing funds at law enforcement request before withdrawal occurs, enabling asset recovery in time-sensitive investigations.
This capability — to freeze funds, produce records, and cooperate with prosecution — makes centralized exchanges the infrastructure layer where most successful cryptocurrency enforcement actions conclude. The Bitfinex hack recovery ($3.6 billion seized in 2022) and the Colonial Pipeline ransom recovery ($2.3 million, 2021) both ended at centralized exchanges where investigators traced on-chain funds to KYC-verified accounts. For law enforcement, the CEX is not a dead end — it is the destination.
Transaction Monitoring at CEXs
Effective AML compliance at a CEX requires substantially more than KYC at onboarding. Ongoing transaction monitoring must screen deposits and withdrawals for exposure to sanctioned addresses, darknet markets, mixing services, ransomware operators, and other high-risk entities — using blockchain analytics to assess the on-chain history of incoming funds, not just the identity of the depositing account holder. Funds received from a wallet with documented darknet market exposure or links to a sanctioned entity carry compliance risk regardless of whether the depositing account holder passed KYC.
Identity verification tells you who your customer is. Transaction monitoring tells you what their money has touched. Both are required. CEX compliance programs that rely on Chainalysis KYT for transaction-level blockchain analytics represent the current regulatory standard — and the benchmark regulators apply when examining exchange AML programs.
Risks of using a centralized exchange
Counterparty and Custody Risk
The defining risk of a CEX is counterparty risk — the possibility that the exchange fails, is hacked, or misappropriates customer funds. FTX’s November 2022 collapse is the most dramatic illustration: approximately $8 billion in customer funds were misappropriated, withdrawals were frozen, and customers lost access to their assets with no recourse. Mt. Gox’s 2014 hack and BitConnect’s collapse are earlier precedents. The CEX custody model means users are exposed to the solvency, security practices, and ethical behavior of the exchange operator — risks absent in non-custodial DEX interactions where users retain direct control of their private keys.
Regulatory and Jurisdiction Risk
CEX users in jurisdictions where the exchange lacks regulatory authorization face the risk that the platform is operating illegally, has inadequate AML controls, or may become subject to enforcement action that freezes or seizes user assets. Users depositing funds with exchanges subsequently sanctioned or shut down by regulators may find their assets frozen pending legal proceedings. Understanding an exchange’s regulatory status, licensing jurisdiction, and enforcement history before depositing significant funds is a basic due diligence requirement.
Hacking and Security Risk
Centralized exchanges are high-value targets for hackers. The concentration of billions in user funds in centralized infrastructure — with hot wallet exposure required to service active trading — creates persistent security risk that decentralized protocols do not share in the same way. Cold storage practices, insurance coverage, security audit history, and bug bounty programs are the primary indicators of exchange security posture. No CEX is immune to hack risk; the question is whether security practices and insurance coverage are proportionate to the value of assets held.
Examples of centralized exchanges
Several centralized exchanges have established significant market positions and regulatory track records. Chainalysis does not endorse specific exchanges; users should verify an exchange’s licensing status in their jurisdiction before depositing funds.
- Coinbase — U.S.-regulated, publicly listed on NASDAQ, with a strong retail focus and significant institutional infrastructure. One of the most closely regulated exchanges in the United States.
- Kraken — U.S.-based, with a strong security reputation, advanced trading features, and regulatory presence across multiple jurisdictions.
- Binance — The largest global cryptocurrency exchange by trading volume. In 2023, Binance and its former CEO pleaded guilty in a $4.3 billion settlement with the DOJ, FinCEN, and OFAC over AML and sanctions compliance failures.
- Gemini — New York State Department of Financial Services-chartered, with a strong institutional compliance focus and SOC 2 Type 2 certification.
How Chainalysis supports centralized exchange compliance
For centralized exchanges, compliance infrastructure is not a checkbox — it is an existential operational requirement. Chainalysis provides the blockchain analytics layer that enables CEXs to meet their AML obligations and support law enforcement investigation when their platform is used to process illicit funds.
Chainalysis KYT (Know Your Transaction): The real-time transaction monitoring solution used by centralized exchanges globally to screen deposits and withdrawals for on-chain risk — sanctions exposure, darknet market links, mixer interactions, and ransomware wallet associations. KYT provides the blockchain analytics layer that KYC identity verification alone cannot deliver, automatically generating risk alerts for compliance team review and SAR filing.
Chainalysis Address Screening: Pre-deposit screening of incoming wallet addresses, enabling exchanges to assess on-chain risk before accepting funds from new counterparties. Address screening is the first gate in a layered compliance program — catching high-risk wallets before their transactions enter the exchange’s transaction monitoring workflow.
Chainalysis Reactor: Investigation platform for law enforcement and exchange compliance teams tracing illicit funds through CEX account activity. Reactor builds the evidence record required for SAR filings, law enforcement cooperation, fund seizure requests, and regulatory examination. Used by law enforcement agencies in over 100 countries to trace funds to the exchange accounts where recovery action is possible.
Chainalysis Data Solutions (DS): The attribution database powering KYT risk scoring — continuously updated entity-level blockchain data that determines whether an incoming transaction carries sanctions, darknet market, or ransomware exposure. The quality of exchange compliance screening is bounded directly by the quality of the underlying attribution data.
Frequently asked questions about centralized exchanges
Q: What is a centralized exchange (CEX)?
A: A centralized exchange (CEX) is a cryptocurrency trading platform run by a company that acts as an intermediary — holding user funds in custody, maintaining an order book that matches buyers and sellers, and providing fiat on/off ramps for converting between dollars or euros and digital assets. CEXs require KYC identity verification and operate under AML regulatory obligations as Virtual Asset Service Providers. Examples include Coinbase, Kraken, Binance, and Gemini.
Q: What is the difference between a CEX and a DEX?
A: A centralized exchange (CEX) is operated by a company that holds user funds in custody, requires KYC, and matches trades through an order book. A decentralized exchange (DEX) executes trades directly between users via smart contracts on the blockchain, with no custodial intermediary and no identity verification. CEXs offer fiat on/off ramps, high liquidity, and customer support; DEXs offer permissionless access, non-custodial trading, and DeFi integration. CEXs are subject to AML regulation; DEXs’ regulatory status remains contested in most jurisdictions.
Q: Is Coinbase a centralized exchange?
A: Yes. Coinbase is a centralized cryptocurrency exchange — a publicly listed U.S. company that holds user funds in custody, requires KYC identity verification, and operates as a regulated Money Services Business registered with FinCEN. Coinbase is one of the most closely regulated centralized exchanges operating in the United States.
Q: Are CEXs safe to use?
A: Centralized exchanges carry inherent counterparty risk: the exchange holds user funds, and users are exposed to the exchange’s solvency, security practices, and regulatory compliance. Major hacks (Mt. Gox, Bitfinex) and exchange failures (FTX) have resulted in billions in user losses. Reputable CEXs with strong cold storage practices, regulatory licensing, and insurance coverage are meaningfully safer than unregulated alternatives — but no CEX eliminates custody risk. Users holding significant long-term holdings should consider whether self-custody in a non-custodial wallet is more appropriate than exchange custody.
Q: Can I trade anonymously on a centralized exchange?
A: No. Centralized exchanges require KYC identity verification as a regulatory obligation under FATF and national AML frameworks. Users must provide government-issued identification before trading. CEXs are also required to maintain transaction records and produce them to law enforcement on valid legal process — subpoenas, court orders, and MLAT requests. The KYC records and transaction history held by a CEX are the evidence that converts a pseudonymous blockchain address into an identifiable account holder in criminal investigations. If you are using a platform that does not require identity verification, you are likely using an unregulated service that carries significant legal and financial risk.
Q: How do centralized exchanges make money?
A: CEXs generate revenue primarily through trading fees (a percentage of each transaction, typically 0.1–0.5% depending on volume tier and order type), withdrawal fees (flat or percentage fees on fiat and crypto withdrawals), spread on fiat conversions (the difference between buy and sell rates on fiat-to-crypto transactions), and in some cases staking revenue, lending interest, and margin trading fees. Listing fees charged to token projects for exchange listing are an additional revenue stream on some platforms.
Centralized exchanges are the regulated foundation of the cryptocurrency ecosystem.
Chainalysis gives exchanges, financial institutions, and investigators the tools to monitor, investigate, and stay compliant across every major CEX network. Request a demo to see how Chainalysis KYT and Reactor can support your exchange compliance program or investigation workflow.
Learn how Chainalysis KYT screens CEX transactions for AML compliance
Explore Chainalysis Reactor for exchange investigation support