Password Authentication needs to Die

I think it is crazy that we trust a little string that is probably either easy to guess or written down somewhere with so much power. Why don't we use widly availible Public-Key Cryptography to authenticat ourselfs to websites?