New
#11
Not really, the plain form of the user's password is not used as the means for creating the public key to decrypt the private key. However, complicated (extremely is overkill) passwords are encouraged, brute force is still an option so having "cat" as the password is greatly discouraged.
There have been several ways to try and get around EFS, but none of them directly attack EFS or have been made obsolete with new versions of Windows.
Aye, for clarification for the OP.What you've just quoted is basically everything I rapped up in a nutshell.