I think an even better solution would be to remove the password completely, allowing users to login with only an email address. Each time a user needs to login, they enter their email address and receive a login link via email.
Clever idea. Proprietary identity hubs like Facebook, Google and Twitter will always stay relevant because of the benefits they provide through their systems (social graph, traffic via newsfeed entries, etc.). But Browns email idea could become plan b for startups that want to go completely password free for their logins.