These steps happen every time you login, and while the secret will be different each time, your keypair from (1) is the same. So, your keypair is your identity and the signature (3) proves you “own” that identity. If you don’t have the keypair you can’t produce the same signature.
Excellent. Thank you very much. I will have to read this many times. Bitcoin is mind blowing.