What if we had a standard that password fields could tell you whether the input conforms to the ruleset?