It sounds like you want to create custom versions of the sign-in page and the Users administration screen, is that correct?
To create a custom version of the sign-in page, you could create a custom login.aspx page that handles authenticating the user. Once the user is authenticated it can then redirect to the LightSwitch app's XAP file. Currently, there's a bug in
Beta 1 that prevents the LightSwitch app from recognizing that the user was authenticated outside of the app. This has since been fixed though so expect to see a blog post describing how to do this once the next public release is available.
Creating your own screen to administer the UserRegistration and other security entities is a little tricky. These entities are currently not referenceable from your application model. So you can't design a screen that references those entities.
Instead, you can follow the technique I describe in my blog post here:
http://blogs.msdn.com/b/mthalman/archive/2010/09/20/how-to-reference-security-entities-in-lightswitch.aspx. This allows you to create proxy entities to work around this.
As far as securing the password, this would be necessary anyway regardless of whether you created your own custom screens. This would be done by configuring the IIS website to use SSL.
