THe convention on cybercrime allows for the law to require a minimum of security features implemented by users as a pre-condition to prosecute for hacking... So that for WI-FI, users are required to be cautious could hardly be surprising. However, two things trouble me here: first, it's not the Government which set up the requirements, but the ISPs; certaintly consumers have a contract with ISPs but I find this unilateral change problematic given the indirect consequences it can have on criminal law, even if those consequences are unwanted. Second, to which extend the ISPs are refusing to engage into providing security features, I wonder? because I suspect it is easier to pass the burden of building good security that doing it themselves.
UK ISP Claims It Will Disconnect Any Customers With Open WiFi (3 November 2008)