Assuming SOX doesn’t prevent it, that is.

To answer your questions, the size of the grid can be changed. the demo showed a 3×3 grid, while on myvidoop it’s a 3×4 grid. you can also customize whether or not sequencing matters; you can turn on case sensitivity, adding numbers, or even have more than 1 alphanumeric character per image.

Now, onto statistics:

On a 3×4 grid, where you have 3 secret categories and sequencing isn’t enforced, the probability of someone guessing your secrets is 1 in 73 attempts. When sequencing matters, it is 1 in 440 attempts.

On a 4×4 grid, it increases to 1 in 187 attempts when sequencing doesn’t matter, and 1 in 607 attempts when sequencing matters. (assuming 3 secret categories needed).

On myVidoop, we allow 3 failures before an account lockout.

The above scenario also assumes that someone actually uses computers that you have activated. if they are trying to see your grid on an unactivated computer, they’d have to have access to your email address or your phone.

Please let me know if you have any more questions or feedbacks. I would be happy to give you an invitation code if you’d like to try myVidoop out.

Based on talking to a couple of people at the booth it appears that the demo only scratches the surface and you can scale up in terms of categories and images. They have a team made up of people from the Navy, Microsoft, and a number of other hard core organizations so if they are not SOX compliant at this second I’m sure they are on the way. Considering banks are one of their target markets and all.

They did stress that they are a security company that leverages the goodness adn freshness of web 2.0 and not the other way around.