A device-specific "owner password" would be fine. Physical access is not proof of ownership, so there is no need to open the device up to trivial "evil maid"-style attacks. Of course some owners will lose their passwords, so some provision would need to be made to ensure that owner-access is not permanently lost.
