Hmm, In my experience, trying to stop a sufficiently motivated 'kid' is an exercise in futility. Here are some possible scenarios, in decreasing order of plausiblity:<p>1. At the surface level, you have to assume that the password mechanism is secure. I'm sure many of us remember the Windows 95 login, for instance.<p>2. But even making the assumption that the password is secure, social engineering will typically work against the parent.<p>3. Even if the parent is cautious, one can bypass Edge Kids Mode by simply not using Edge.<p>4. Even if no other browser is installed, this can be bypassed by copying a portable version from a friends.<p>5. Say the parent blacklists certain executables via GPedit. Typically, renaming the executable to a whitelisted one (e.g. calc.exe) will suffice.<p>6. Suppose the parent chooses to enable S mode, so that only Edge and UWP packages from the Microsoft Store can be enabled. The child creates a Linux live USB (at a friends house) and modifies the Windows filesystem directly (or ignores it entirely).<p>7. What if USB is disabled in BIOS, and the parent enables a BIOS password, and Windows has full disk encryption enabled? Disconnect the CMOS battery for a bit, I guess?<p>8. Say the parent gives up, welds the device shut, and cancels the internet service. Can't browse the Inter-webs without internet service, right? Wrong. Go to the friend's/neighbor's/public library and do it anyway.<p>In summary, Kids Mode is about as effective as transparent schoolbags or the Great Firewall. You are probably better of finding something interesting and productive for the kid to do (not to say learning to abuse poor infosec is a waste of time), so that they have better things to do than explore double-plus-ungood web sites.