[sigmar]

My opinion on this is that physical security is paramount. Your threat model can't possibly eliminate all threats from an adversary that has physical access.

No hardware is 100% secure and for Yubico to say this issue is about "Secure Hardware vs. Open Source" seems like a red herring. Perhaps they are just trying to protect their business model? After all, there isn't anything particularly unique about the hardware.

[nickpsecurity]

Physical security is a moving target and a spectrum. Basic mechanisms can protect my computer if I leave it unattended in front of common hackers for a few minutes to take a leak at a restaurant. Another level of security is necessary for people with more access or tooling. At some point, basically nothing I do will help given enough resources by pro's.

So, it's not so simple. Otherwise, all buildings containing valuable protected by locks and stuff would be compromise because enemies had potential of physical access. They aren't. That's telling you something.