The passphrase only buys you time in a brute force attack dependent on the complexity and entropy used. Relying only on the passphrase is not enough. My opinion (like a belly button we all have one) is that for the money you can get better hardware. If you are not leaving the Trezor lying around the likelihood of the hardware vulnerability found being exploited is quite low but not non zero. It’s a good product that requires a hardware refresh to remain competitive.
Discussion
Which one are you going with?
Depends on your budget and level of paranoia. The majority of the secure elements likely have NSA backdoors unless you add additional entropy during seed creation. High end budget the nGrave zero is designed to do this. Low end budget get a seedsigner (google it) and it only holds your seed temporarily. You manually write down your seed and a QR code to load the seed on the seed signer. Use casino grade dice (it supports dice seeds) and the entropy is completely secure and offline. The seedsigner allows all this for $80. Power down the seedsigber and the seed is gone. It’s on steel (they sell steel QR plates) in a safe place. Need to use it? Leave the seedsigner in the bathroom it doesn’t have your seed until you scan the QR code. It doesn’t matter where you leave it. Problem solved.
Ok! Thx 🙏
You will always need a passphrase, it is the password of your seed, otherwise if they find your seed a hardware wallet is of little use and since as I follow it is necessary that it has enough complexity requirement, in the case of trezor it solves the bug.
If you want a solution to the trezor problems that I don't see as problems, you have jade.