It is true that desktop machines are easily compromised. However, we are not searching for the holy grail here, just something practical and acceptable to all parties involved. Also, I don't see the point of trying to solve everything with technology when there are other means such as social, legal, and business means to control the risk.
Practically entire web is currently protected with just passwords yet the web is healthy and thriving despite constant attacks at all points. Everyone knows that DNS is a weak chain, yet billions use it everyday. Best, Don Park