AT&T already does the most important parts of that. In my complex every network is named and secured uniformly because AT&T sells cable models with built-in wireless routers. They have an installation process that is totally automated and automatically configures them for WPA or WEP. The users don't even (get to) choose the network name. As a result, I couldn't leech off another network even if I wanted to.
Secure networks make perfect business sense for internet providers; otherwise, they'd end up with customers with wide-open networks that neighbors could share together (unwittingly or otherwise).
As for port forwarding, typical users never need to configure that, and when they do, UPNP usually can do it for them.
Yes, AT&T's DSL setups are a triumph of proper defaults. They come in, plug everything in, give you the password (or set up your computer), and go away once everything is working and safe. Easy setup, safe installation.
Of course, I've had WPA and WEP hacked enough times to not trust either of them. MAC address filtering is a bit safer if you want to lock down access to the internet, but at least the password has to be changed. Default router passwords put users so badly at risk, there's really no excuse.
Secure networks make perfect business sense for internet providers; otherwise, they'd end up with customers with wide-open networks that neighbors could share together (unwittingly or otherwise).
As for port forwarding, typical users never need to configure that, and when they do, UPNP usually can do it for them.