1990s: alternative authentication methods

Some of these are an improvement, but they are susceptible to offline password guessing attacks on certain authentication material anyway:
Challenge/response pairs
What may be worse, common protocols such as POP3 APOP and CRAM-MD5 are poorly defined, requiring that plaintext-equivalents be stored on the server, even though this was easy to avoid (like it is done in SCRAM, which took 13 years - from an RFC draft in 1997 - to become RFC 5802 in 2010, finally)
Kerberos: TGTs, AFS user database
S/Key, OPIE: skeykeys file
SSH: passphrase on private key
SRP: verifiers
Thus, passwords (or passphrases) are not going away, and proper password hashing or key derivation remains relevant even if as a component of other authentication schemes