Thanks for everybody's responses about my query regarding how to<br>
justify an option for users to remove their original password. Sorry<br>
about taking so long to reply.<br>
<br>
Shade: my co-designer's counter-argument would be that there is no<br>
backdoor if the user just stops using their original password since<br>
that would make it practically 100% secure.<br>
<br>
Andrew: my co-designer would say that you are insane. Do you have any<br>
specific arguments to defend yourself from this accusation?<br>
<br>
Martin: so you think there is probably no point in the remove-password option?<br>
<br>
Eric: there would be no requirement. It would be optional.<br>
<br>
Santosh: Shade said everything (and more) which I would say in reply<br>
to those points.