If this is true...
Encryption is not some magic dust you sprinkle on an application and it magically becomes secure. If you can come up with a wallet encryption scheme that has more upsides than downsides, there's a good chance it will be implemented.
IMO, that's just inviting disaster. The client should only be running on machines that are inherently secure. Doing this will encourage people to run the client on insecure machines, which will compromise their wallets even if they are encrypted. Strong passwords will be forgotten, leading to lost BitCoins. Weak passwords will be brute forced, accomplishing nothing.
Emphasis mine.
Then why do we not simply force the use of the windows security center into all windows builds of bitcoin by default (or enforce the windows security center to be running unless the user is "advanced" and clicks otherwise)...
The
windows security center for those are are not aware is a notification nag system on windows that constantly nags the user to download the latest virus scanner, make sure their firewall is up, to enable the virus scanner and all updates, etc...
If every "basic" windows user was forced to do this by default, I think we could cut down on 90% of the possible thefts by trojan at least - all without much work on our part.
Linux systems would be considered safe for now from trojans and would not require the default security settings.