Authentication using gesture passwords

What is claimed is: 1. In a smart device, a method of providing user authentication, the method comprising: displaying, by processing circuitry of the smart device, a password prompt on a touch screen of the smart device, the password prompt including a motion video of touch screen gestures to prompt a user of the smart device to enter a gesture password; receiving, by the processing circuitry, a trial gesture password entered by the user via the touch screen, the trial gesture password including a user-entered sequence of touch screen gestures; and performing, by the processing circuitry, multiple gesture password confirmation operations to verify that the user is able to re-enter the trial gesture password via the touch screen over time to authenticate the user to the smart device; wherein displaying the password prompt on the touch screen of the smart device includes: generating, by the processing circuitry, a random gesture password which includes a random sequence of touch screen gestures, and outputting, by the processing circuitry, the random gesture password on the touch screen, the random gesture password including the random sequence of touch screen gestures to enable the user to securely use the random sequence of touch screen gestures as the trial gesture password; wherein performing the multiple gesture password confirmation operations includes: re-prompting the user to enter the trial gesture password via the touch screen, in response to re-prompting the user to enter the trial gesture password, acquiring user input as the user attempts to re-enter the trial gesture password via the touch screen in response to re-prompting, and based on the user input, assessing ability of the user to re-enter the trial gesture password; wherein assessing the ability of the user to re-enter the gesture password includes: detecting a graduation event in which the user satisfies a set of gesture password entrance criteria, and converting the trial gesture password into an actual gesture password of the user in response to detection of the graduation event. 2. A method as in claim 1 wherein receiving the trial gesture password entered by the user via the touch screen includes: re-playing the random sequence of touch screen gestures on the touch screen, and sampling the trial gesture password from the touch screen over multiple iterations to train the user to enter the trial gesture password. 3. A method as in claim 1 wherein detecting the graduation event in which the user satisfies the set of gesture password entrance criteria includes: ascertaining that (i) the user has correctly re-entered the trial gesture password a predefined number of times, and (ii) the user has correctly re-entered the trial gesture password after a predefined amount of time has elapsed. 4. A method as in claim 1 wherein converting the trial gesture password into the actual gesture password of the user includes: generating a gesture password cryptographic key based on the actual gesture password, and after the gesture password cryptographic key is generated, imposing a need for the gesture password cryptographic key to access a set of protected resources. 5. A method as in claim 4 wherein, prior to displaying the password prompt on the touch screen of the smart device, the smart device temporarily saves a standard password cryptographic key used to unlock access to the set of protected resources, and wherein imposing the need for the gesture password cryptographic key to access the set of protected resources includes: unlocking access to the set of protected resources using the standard password cryptographic key, locking access to the set of protected resources using the gesture password cryptographic key, and deleting the standard password cryptographic key from the smart device. 6. A method as in claim 1 wherein, prior to displaying the password prompt on the touch screen of the smart device, the smart device temporarily saves a standard password cryptographic key used to unlock access to a set of protected resources, and wherein the method further comprises: receiving a cancellation command from the user, the cancellation command indicating that the user no longer wishes to switch to using the trial gesture password to authenticate, and in response to the cancellation command, re-instating use of the standard password cryptographic key to unlock access to the set of protected resources. 7. A method as in claim 1 wherein displaying the password prompt includes displaying a set of color segments on the touch screen, and rendering multiple shapes within each color segment displayed on the touch screen; and wherein receiving the trial gesture password includes: obtaining a series of color-shape pairings in response to the user touching touch screen locations over particular shapes residing in particular color segments. 8. A method as in claim 1 wherein displaying the password prompt includes (i) rendering a color palette on the touch screen, the color palette including multiple selectable colors, and (ii) rendering a shape menu on the touch screen, the shape menu including multiple selectable shapes; and wherein receiving the trial gesture password includes: obtaining a series of color-shape pairings in response to the user providing drag and drop gestures over touch screen locations to associate particular colors with particular shapes. 9. A method as in claim 1 wherein displaying the password prompt includes rendering an array of markers on the touch screen; and wherein receiving the trial gesture password includes: obtaining a series of user gestures in response to the user moving a finger relative to the array of markers. 10. A method as in claim 1 wherein performing the multiple password confirmation operations further includes: imposing a requirement that the user correctly enter the trial gesture password multiple times in a row during a trial time period before allowing the user to commit to using the trial gesture password for protected resource access control. 11. A method as in claim 10 wherein imposing the requirement includes: increasing an amount of time in the trial time period in response to an extend time period command provided by the user. 12. A smart device, comprising: a touch screen; memory; and control circuitry coupled to the touch screen and the memory, the memory storing instructions which, when carried out by the control circuitry, cause the control circuitry to: display a password prompt on the touch screen, the password prompt including a motion video of touch screen gestures to prompt a user of the smart device to enter a gesture password, receive a trial gesture password entered by the user via the touch screen, the trial gesture password including a user-entered sequence of touch screen gestures, and perform multiple gesture password confirmation operations to verify that the user is able to re-enter the trial gesture password via the touch screen over time to authenticate the user to the smart device; wherein the control circuitry, when displaying the password prompt on the touch screen of the smart device, is constructed and arranged to: generate a random gesture password which includes a random sequence of touch screen gestures, and output the random gesture password on the touch screen, the random gesture password including the random sequence of touch screen gestures to enable the user to securely use the random sequence of touch screen gestures as the trial gesture password; wherein the control circuitry, when performing the multiple gesture password confirmation operatio