Yahoo Wants To Secure Accounts With Your Friends' Pictures
Your exposure on social networks can enable a rather unusual solution for general computing applications.
For example, a future computer system may question you about who you know and who you do not and grant you access to the system based on your answers.
Yahoo has filed a patent application based on this idea and calls the technology "non-textual security using portraits." In effect, the system could take some pictures of your Facebook friends and then add some random pictures of those who you do not know. You will have to indicate which people you know and may be asked to state their names. The system could expect you to know the names of those who are social network friends and determine those that were randomly thrown into the mix, but Yahoo explicitly states that this technology would be applied when users cannot or do not want to enter text.
We have some doubt that this security approach can ever make it into a real-world implementation. Those with only three friends are screwed right off the bat and an easy target for hackers. Those who are on a mission to outfriend their peers and claim to have thousands of friends on Facebook may be completely locked out of their account when they can't remember all those pictures. Of course, we also have to hope others don't post anything else other than their face as a profile picture.

Good thing we're allergic to Yahoo! as well.
Not only that, but even on my Facebook friends list I have a few who enter completely fictional names like "Tom 'Sawyer' Phillips" or something equally as mundane. That would make entering their names correctly either extremely difficult or downright impossible.
In other words, this is completely stupid and useless. I'm usually optimistic about cool new things but this... You just can't account for human stupidity.
The only downside is that some people in Facebook tags some objects not associated with the person's face.
So if happens that an "apple" comes out as your friend's picture how will you identify that person.
The bigger security problem is how relatively public your friend list is. If it isn't outright public, friends of friends can probably still see it. Any friends you have in common or your friends themselves would be able to get by this with relative ease. In the extreme case you and your friends could be relatively well known to the public. The security is essentially 0 if your friends are famous. This is even true in a small community. Tom's Hardware staff for example. If they are all friends and their profiles are public it is much more of a security risk than benefit.
facebook vs yahoo