TLDR: although it can be implemented to use a local authentication method, but that would easily cause bricking. Plus the limited thief deterrence potential it provides (Probably given the currently limited user base of graphene) hence it is low priority.