I use a Trezor to store my PGP key. I never have access to the private key, it's generated by a seed which I backup in a cryptosteel protected by a password in my brain (to prevent physical theft). The device only provides an interface to sign and decrypt. This keeps the key safe even if your computer is compromised. See: https://github.com/romanz/trezor-agent
all of these need a false/fake entry so when adversaries compel information and you give it to them the result is useless and they have "the truth" and nothing at the same time.
You can do this with Trezor. It allows you to enter a 25th word to your seed when you unlock it (it looks like you're just entering your password, but you could enter any password), generating a whole new set of private keys. Although this makes less sense in the context of a PGP key...
