The passwords in the Persona system
are strongly encrypted within each users browser.
When you login, the software checks the verified email address with the password in the browser, and proceeds to setup the session.
This means that any attack (to extract the password) would have to be focussed on an individual browser, hence the reason why, when using a mobile platform it is recommended to choose 'remember password for a single session' (which means re-entering the password each time a new browsing session is setup).
On a home PC one has the option to choose remember for 3 months.
If you wish to try this, you can visit the site
and sign in.
If it is your first time, you will nominate an email address, which will be sent an email, in which is the confirm link.
You will then have a Persona account setup in which you can add more email addresses if you wish.
I believe at the moment, when you close the persona account popup, you are already signed in (an improvement over the previous version whereby you had to then sign in yourself).
The script packs are in 'downloads'
The original pack referring to BrowserID (the old name) and the authors original doc pack; and v1.01 where I have updated the branding, and moved the script code from the login page to a .js file.
The principal at the moment, is that the folder can simply be transferred to your root, and then linked to, allowing your own testing.
The system only works online, not launched from a local disk.