In light of Nielsen's new article seen here: http://www.useit.com/alertbox/passwords.html along with other user
frustration feedback, my team and I started looking at other
solutions to masking passwords on creation. Although I know the
simplest and best answer is probably not to mask the password at all,
it is highly doubtful that that answer will fly with our client.
One team member mentioned the way masking is done in iPhone seen
here: http://rc3.org/2008/07/13/iphone-20-password-masking/ as an
interesting solution. Does anyone know if this can be done in web
browsers? Are there other solutions or research items that anyone out
there has seen?