Better security & authentication systems are on the top of
my list. But this is an extremely slippery topic for a
number of reasons--primarily, I think, because operating
systems and applications are commercial endeavors, and
therefore market driven.
I think that as long as the Internet, and more importantly
connectivity to it, remains in the commercial realm, these
particular issues are difficult to acheive, regardless of
even the standards processes, IMO.
Not that I don't think it is not able to be achieved, just
that it's commercial nature makes it more difficult.