Once again: WE NEED A STANDARD !!!!
Before arsing about with AMP or HTML6 or whatever nonsense the marketing guys want, for the love of God can we not have an RFC or W3C devised standard on password generation, usage and storage ? It might address some of the problems highlighted above this comment ?
1) Password length
2) Allowed characters
3) Encrypted storage
4) Lost password reset (i.e. no emailing password in plaintext !!!!!)
etc etc
all of which should have been address BEFORE we started worrying about rounded edges in CSS.