We are currently looking at options for improving the security of logins for our organisation and I found about Nitrokey through its mention in this article. Report picks holes in the Linux kernel release signing process • The Register
Is the comment about the lack of physical intervention in the use of ssh-keys stored in Nitrokey valid? Specifically I am referring to this quote "“Other devices can be configured to require the user to touch the device before the smart card operations occur. As a result, the Nitrokey is protected only by a passphrase while inserted into a workstation.”
Are there any plans to enable this functionality?