This should be as standard as the confirm password by having them type it twice. Thinking the solution here is going to be to use java for the real-time match.
