It's not that it's hard, it's that keyloggers and other attack vectors exist. It's why the FIDO alliance is looking to eventually get rid of passwords.
Wen biometrics compromised?
Please Login to reply.
Locally stored, encrypted, and managed on your own device.
Still, in case of disaster I'd rather rotate keypairs than my fingerprints or my irises.
