Computers can now brute-force most human-generated passwords. It is becoming overly complicated for humans to create a good password. Passwords will remain a backup authentication option. Logging in with a password will be an exception, triggering an alert.
The vast majority of systems will adapt their authentication methods, depending on the user's security footprint. If you log in from your usual area and within your usual activity period, simple biometrics will be enough. If you log in from some unusual area and outside your usual activity timeframe, an extra authentication factor will be requested.
Delete comment?
