Is it because they need a known throat to choke? I worked in KYC for two years, and that seemed to be the primary reason. Assuming the fear is that people can KYC a wallet, then sell the wallet/pass the private keys to someone? Can't you do that with usernames and passwords as well though?