Cold Card MK4’s. There’s a learning curve but they’re going to eventually have to go through it anyway and these devices are awesome. No battery to worry about, very few components that can fail. Sure some people bitch about the fact that they’re not 100% open source but using them with a couple other models like the Blockstream Jade and a seed signer in a multisig you can’t go wrong.
Discussion
Thanks. I’ll probably provide a few options, with this on the more secure end of things.
Whatever you do, steer them away from Ledgers. As much as Ledger swears their hardware is secure, their firmware does leave a way of extracting keys,and they’ve said straight up that they’ll cooperate with authorities to divulge user info. Not to mention the data breach they had 3 years ago that included thousands of user emails and contact info.
Make sure newbies know not to buy signing devices from resellers. Whatever they get should come tamper sealed and verifiably legit from the manufacturer.
Ha yeah. That was the first thing I said.