A 2007 study (link below) found that most people (58 out of 60 studied) don’t notice (or care) when the “site-authentication images” common on banking websites are absent, and proceed to log in anyway. Wouldn’t a similar effect occur with Ctrl-Alt-Delete?

SiteKey study: http://www.nytimes.com/2007/02/05/technology/05secure.html