Passwords have been used as the main method of authentication since the WWW was born. Their biggest flaw is that their effectiveness depends on their entropy, and humans are a bad source of entropy. Progress has been made at this time as multiple factors for authentication are now more and more common. This talk is about the Web Authentication API that is being worked on, how it fits in the current ecosystem of web apps and why it's important for users.
