in the update record behavior, you are storing an encrypted random string, using the random password generator and encrypting it.
you should be storing the encrypted version of the SV_newPassword session variable.
in the update record behavior, bind the password column to the SV_newPassword session variable and set the formation to use encryption.