Pronto Networks introduces USB key to allow secure login without passwords: Pronto's Internet Key lets a user plug in this small device into a USB port to authenticate themselves over a Pronto-based network. The release doesn't mention what software is required to use the system, which was co-developed with Sweet Spot Solutions.
While this is an idea that's been churning for a while--Microsoft is working on something of this sort, for instance--it's problematic when it's a single-vendor solution. Think about the grocery store affinity programs: how many cards do you have to carry to get the best price if a single store isn't convenient to you? My mother-in-law has a dangly array of those, which are capable of being managed, but not ideal.
So, too, would a USB-based authentication system quickly get out of hand if you needed to carry a separate key for each system you might use. The best solution will be something akin to a SIM card as used in GSM phones, which has already been successfully tested as a method of secure authentication across a Wi-Fi network to a back-end cellular accounting system.
Instead of a single key for each system, carry a USB key with either biometric (fingerprint) or password-based strong encrypted for mounting that contains a variety of certificates for use with an 802.1X EAP-TLS system. Even better, embed Secure ID into the USB key so that its ever-changing number is visible. This would provide yet another level of security: stealing the certificate and the username/password doesn't gain access without the Secure ID number.
These kinds of authentication systems don't need to be baroque, and different networks might require different levels of security. But there should be checks and balances so that the theft of a string of data (like a certificate) or a piece of hardware (like a USB key) doesn't jeopardize the integrity of network.