howto/yubikey.md

@@ -1359,6 +1359,16 @@ ticket](https://gitlab.torproject.org/tpo/tpa/team/-/issues/41083).
  * [FST-01](https://www.gniibe.org/FST-01/fst-01.html): EOL, hard to find, gniibe is working on a [smartcard
    reader](https://www.gniibe.org/memo/development/ttxs/ttxs-hardware-another.html)
  * [Titan keys](https://cloud.google.com/titan-security-key/): FIDO2 only, but ships built-in with Pixel phones
+ * [Trezor Safe 3](https://trezor.io/learn/a/what-is-u2f): Crypto coin cold wallet, with built-in security key support.
+   With a screen on the device to display verify what site is actually being logging in to,
+   this device is more safe in the way that it does not require blind sign thus reducing the need to trust the host device
+   is not compromised when the key is used. 
+   It comes with some usability issue such as the need to input pin on device before any usage,
+   and when more than one key is inserted at the same time,
+   it is unable to assist the discovery of the security key associated with key handle provided, 
+   making it necessary to insert and insert only the right security key when authentication happens. 
+   More suitable to be used in unowned and unverified device like someone else's computer or 
+   device running proprietary(someone else's) software. 
 
 The New York Times Wirecutters [recommend the Yubikey](https://www.nytimes.com/wirecutter/reviews/best-security-keys/), for what
 it's worth.