2) Their new model ("Trezor Safe 3") does have a secure element chip. Not having one is okay if you don't expect anyone to get physical access to your Trezor, otherwise it isn't. Hence the new model.
4) Yes, theirs will shut down on June 1. See this: https://twitter.com/Trezor/status/1786126207924252979 .
Thanks, very helpful! Could you explain (or point me toward documentation for) the argument against a need for the chip?
I can't find the link right now, but their reasoning was that most secure element chips use proprietary code, and one has to sign an NDA to even access the documentation, which goes against the whole idea of open source. They also said they evaluated a few chips and found vulnerabilities, but were unable to disclose because of those NDAs. Apparently they found a fully open source chip. They reference the openness concerns in this article: https://trezor.io/learn/a/secure-element-in-trezor-safe-3 .
Thank you, that’s incredibly helpful! Always curious to know more about these different decisions and their tradeoffs (especially when recommending one device over another to someone). Thanks again!
