There is a simple fix for this problem
Most password hacking relies on having a system that allows continuous retries until a password works. ALL password systems should work on the basis of an incorrect entry equaling a wait time for each retry with the wait time increasing exponentially for each incorrect entry. First inccorect entry. 30 seconds. Second 5 minutes. Third 30 minutes and so on.