It would be good that, at a certain point, the usage and definition of secret keys by users actually worked for authenticating users.

Today it is not the case.