First, thanks to the developers for a truly awesome product. This device has increased my digital security a million fold!
My question is what protection (other than the PIN code) does the OnlyKey offer against an attacker with physical access to the device?
Is there a way with special equipment that an attacker could use to extract the passphrase without needing to know the PIN?
I’m thinking of the analogous situation with a Trezor wallet that has an optional passphrase, not stored on the device, that protects the seed in the event that the device is stolen.
With both devices, the PIN protects the devices, whereas the optional Trezor passphrase protects the seed.
So what does OnlyKey offer in this situation?