Security ideas
The following might help with end user security:
- Giving the authenticated user access to information about previous login attempts (sucesss/location/date-time/connection type)
- allow for a read only user name and password to the account
- email a daily summary of actions (or no actions)