Killling the password via total surveillance
Google/Alphabet planning on a total surveillance approach to replacing your password.
Prior to seeing this, we've had discussions at work about how there is "ambient" security in the physical world. For instance, my coworkers know me. It would be very difficult for somebody to impersonate me in the work place. So one of the people at work has suggested that his phone or his computer could know him in a similar way. This might actually be acceptable as long as the data that is used to create the knowledge remained strictly confined to the device. Of course, I doubt that is the model that will be pursued.
I've working on a slightly different approach based on password-less cross-domain decentralised authentication. But this is Google and they want all your data and they've got the support of the US government so I reckon that will probably win against any ethical solution.