Can Eyeprint 'selfies' replace hardware tokens?

Eyeprints - of veins in the white, not the iris of an eye - captured via selfie are another biometric option for 2-factor security, but concerns about the implications of compromise remain. Biometric security vendor Solus has launched a selfie-based two factor authentication (2FA) system called Eyeprint which promises a low cost and 'hardware free' solution to the 2FA conundrum. Actually, the Eyeprint solution isn't hardware free but it does take the 2FA mantra of something you know, something you have to the next level. You will already have a smartphone, and you most likely already have eyes, which just leaves you needing to know how to take a selfie and remember a PIN number. But just how secure is all this fancy eye scanning stuff, especially if it's taking place on your phone?