
Keycard Shell Review
Best for: Open-source + air-gapped
$135
Buy Keycard Shell →Affiliate link · No extra cost to you
Compare all hardware walletsScore Breakdown
Quick Specs
Pros & Cons
Pros
- Fully open-source hardware and software (everything auditable on GitHub)
- Truly air-gapped with QR code communication only
- Modular and repairable design (replaceable battery, swappable Keycards)
- Keys never leave the EAL6+ secure element on the Keycard
- Stateless Shell design — all security lives on the Keycards
- Works with the software wallets you already use (MetaMask, Rabby, Sparrow, etc.)
- Clear signing on a proper screen (easy to verify transactions)
- Duress PIN feature for physical security scenarios
- Future-proof and community-supported if the company disappears
- Replaceable standard battery (not proprietary)
- Good value at ~$135 for Shell + 2 Keycards
- 5% discount available with code nordic
Cons
- QR code workflow takes a little getting used to at first
- No native Solana support yet (big limitation if you use Phantom or Solflare heavily)
- Plastic build feels functional rather than premium
- Newer product with limited long-term track record
- Requires a compatible software wallet that supports QR-based hardware wallets (Keystone-style)
- Physical buttons instead of touchscreen (some users prefer touch)
Watch: Keycard Shell Review
Hands-on video review of the Keycard Shell
The Keycard Shell sits in an interesting spot in the hardware wallet market. It is fully open-source, genuinely air-gapped, and lets you keep using the software wallets you already know. Here is my full take after a week of daily use.
What the Keycard Shell actually is
The Keycard Shell is a modular, fully open-source, air-gapped hardware signing device. The important word there is modular. The wallet is made up of two separate parts: the Shell (a device with a 2-inch screen, physical buttons, a camera, and a replaceable battery) and the Keycards (small smart cards that hold your private keys).
The Shell itself is stateless. It stores nothing sensitive. All security lives on the Keycards. When you need to sign a transaction, you slide a Keycard in, scan the transaction QR code, confirm on screen, and the signed QR goes back to your software wallet. When you are done, the Keycard comes out and the Shell knows nothing.
Air-gapped means the device never connects to anything via USB data, Bluetooth, or WiFi. It only communicates through QR codes. The built-in camera reads them in, the screen displays them out. The keys never leave the EAL6+ secure element chip on the Keycard, which is the same certification standard used in passports and bank cards.
Compatibility and how signing works
The Keycard Shell works with software wallets through QR code signing. It emulates the Keystone-style QR flow, so any wallet that supports Keystone QR-based hardware wallets will work with it. On the EVM side that includes MetaMask, Rabby, imToken, Backpack, Bitget, and others. For Bitcoin it works with BlueWallet, Sparrow, Specter, Nunchuk, and more.
The flow with MetaMask is straightforward once you have done it once. Select QR-based hardware wallet in MetaMask, scan the QR shown on the Shell, and your accounts are imported. From that point, every transaction requires you to scan the transaction QR from MetaMask to the Shell, review the details on the screen, enter your PIN, confirm, and scan the signed QR back to MetaMask. Remote drains become basically impossible as long as you physically control the device.
The one notable gap right now is Solana. There is no native Solana support yet, which is a real limitation if you use Phantom or Solflare heavily.
My take after a week of use
What I like about this approach is that it turns your existing software wallet into something much closer to cold storage without forcing you to change your workflow. You keep MetaMask or Rabby as your interface and just add a physical signing step. The security model is solid: keys never leave the EAL6+ card, the code is fully auditable on GitHub, and the clear signing screen makes it easy to verify what you are actually approving before you confirm.
The modular and future-proof design is a genuine standout. The replaceable battery and stateless Shell mean this device can last a long time without wearing out. Because everything is open-source, the community can continue supporting it even if the company disappears. That matters more than most people think when choosing a wallet you plan to use for years.
The QR workflow takes a session or two to feel natural. It is not slow, just different from what most people are used to. After a few transactions it becomes second nature. The bigger limitation is the shorter track record compared to Ledger or Trezor, which have been around for years. The Keycard Shell is a newer product and that long-term history is still being built.
Verdict
The Keycard Shell is a well-thought-out hardware signing device that offers strong open-source, air-gapped, and modular security while letting you continue using the software wallets you already know. The duress PIN feature (decoy wallet), replaceable battery, and stateless design are all nice touches that show real attention to practical security. At $135 for the starter kit with 5% off using code nordic, the value is solid. If you mainly use Ethereum, L2s, or Bitcoin through MetaMask, Rabby, or Sparrow, this is one of the more interesting options available right now.
Ready to buy the Keycard Shell?
Starting at $135. Check current price before you buy.
Buy Keycard Shell →Affiliate link · No extra cost to you
Other Hardware Wallets
This page contains affiliate links. If you buy through them, I may earn a small commission at no extra cost to you. I only review products I have personally tested.









