Sarah Squire works for NIST. About as trustworthy as the NSA. Their hidden agenda is to replace password authentication with anything that personally identifies the user. They don't care what it is as long as it is not anonymous like passwords.