Yubikey supports smart card signing/encrypting with PGP keys. I wonder if that could be repurposed to sign events with an nsec