I like coldcard, but if you're going multsig, the common thought is to use different vendors to generate the quorum's seed. Hardware I use Start9 but im agnostic so long as its a device you control. Software I like Sparrow Wallet
Discussion
Which model cold card do you run? Is the new blackberry style any good?
Well, it depends on what your trying to do. For me, I've used a lot of devices for a lot of different purposes. For long term storage, it doesn't really matter because you probably wont be signing transactions that often and just need to generate a secure key/quorum, preferably without connecting any devices to any computers and then just generate addresses and put the hardware away. In any case, I like the Q because Im a dork and like to play with the features, but some of the best features like the password generator and other things in it (keyboard emulator) require connecting it to the computer which I wont do with any device that will or might touch my private key even if this is over paranoid, i like to keep it tight
Frankly, I dont see any good reason to keep private keys loaded on any hardware for long term storage since you can always load the key into another signing device later from your seed words , properly and securely stored offline in a durable medium
Iβm not sure how you generate addresses without the device? Can you explain what you mean there donβt you need the hardware software to generate addresses?
Well what I mean is you could pre generate a few addresses and store them elsewhere if you wanted, you dont have to. But if you did, you wouldn't need your key loaded on the device if you didnt want to. Or for example, you could use a public key watch only wallet on Sparrow to generate addresses without your private key being exposed at all since addresses are derived from the public key, not the private key.