This one may be a little ambitious for a five-year plan, but the cacophony of licensing is deafening at many organizations and needs to be completely overhauled. I'm not going to pretend to have the answers here, but if we can make all our client-server applications run over TCP/IP, we can come up with a common licensing framework that any software development house could use. This was the idea behind products like FLEXlm (now FlexNet Publisher), but it needs to be a freely available service constructed by a consortium of large and small software development companies.
Imagine running a single license server that was responsible for all the commercial software in use, top to bottom. Talk about simple.
IT fix No. 5: The end of the password
The days of the alphanumeric password are already over, but nobody seems to have noticed yet. As you bounce from site to site, application to application, OS to OS, you'll find a wide variety of password strength requirements. Some are ridiculously lax, like the banking sites that refuse to accept special characters in passwords, to those requiring such a complex password that the user will almost always have to write it down to remember it. Both of these extremes result in the same problem: shamefully low security.
There's also the significant annoyance of trying to enter strong passwords on mobile devices. With or without a physical keyboard, it can present a significant challenge. No matter how you cut it, passwords are just a bad idea.
But what can replace them? Smart cards and USB keys are great for one network or one device, but the problem is bigger than that. In a world of cloud services, iPads, and the Chrome OS, tokens aren't the answer. It may be that the only "something you have" as convenient and portable as a password -- and that could conceivably be applied across many systems and devices -- is biometric authentication. But then every client device would need to be fitted with the required fingerprint or iris scanner.
Biometrics are also problematic from a user standpoint. Although I don't necessarily share this concern, I've heard several people mention that they'd rather not lose a thumb to a villain who's trying to crack into their bank account. Then there's the possibility that if your biometric code was compromised, you can't just reset it since it's, well, attached and reasonably permanent.
Voice recognition, facial recognition, or any other form of recognition will have to supplant the common password eventually -- let's hope it's sooner rather than later.
IT fix No. 6: Spam
If it were possible to redirect the time and effort poured into antispam and antimalware code over the last 10 years, we'd already have colonies on Mars and probably a new form of renewable energy.
As it stands, however, we're not much better off than we were five years ago. The volume of spam has stayed fairly consistent, at somewhere between 95 and 98 percent of all email. It's possible that the number of spam emails that actually make it into recipient's mailboxes has decreased somewhat due to enhanced filtering techniques and an army of humans employed at various antispam companies flagging common spam emails. However, the problem continues unabated.
At these volumes, spam isn't merely an annoyance -- it constitutes a legitimate reduction in available services to an organization, whether that be reduced bandwidth due to inbound spam, increased costs due to additional servers or services required to contend with the deluge, or simply the time lost when legitimate emails wind up buried in a junk mail box or lost forever.