I feel like I have had my head in a bucket as this technology is not something I have come across before. I think the idea behind it is very interesting and potentially very useful. As well as the extra level of authentication (although arguably not much extra) you also get the added anti-phishing protection.
It is common knowledge that the brain can remember images better than anything else. If you have ever done any memory management training courses, you will testify to this.