I have a hanful of suggestion for making smart phones more secure.
First, I understand why Apple and Samsung manufactore their phones in cheap overseas sweatshops; it's all about economics. However, that's all they should be offshoring, just the hardware fabrication. The programming, configuration, and device installation of the software should be done in a more tightly controlled environment, not by some assembly line worker earning $2 an hour.
Also what I would like to see is a builtin feature within Android and iOS that allows the device owner to deny each application access to specific resources. For example, when installing a new app, we are informed by the OS that the app has requested usage of DeviceID, GPS location, Contacts, etc. This makes sense for something like Google Maps, becuase of the range of functions that the app must perform. But it doesn't make sense for a Flashlight app or video game. There are some 3rd party utlilities that will do this type of ganular permission denial, but they actually require one to root their phone and run as Admin, which also makes the phone less secure in general. Also the OS should be designed in such a way that when an app makes a request to a blocked resource, it will gracefully degrade without locking up or crashing.
Thirdly, conspicuously missing from smart phone operating systems is an owner configurable internet firewall. It's almost as if Apple and Samsung consider spammers and hackers to be strategic business partners. But if I dont' want my phone to broadcast my location and web browsing history, then it should be my right to block it.
"Do not seek to follow in the footsteps of the wise. Instead, seek what they sought." - Matsuo Basho