Why should the phone need this stuff?
The phone should have MOST of its protection provided by the carriers. Messages and attachments definitely should be scanned on THEIR hardware when it is not peer-to-peer transmission or not local such as USB/Bluetooth/W-Fi.
An IDS (Intrusino Detection System) with a firewall is definitely needed to alert the device owner to attempted sniffing. Even if a firewall blocks attempts, the mobile user may want to "but out" of the dodgey area in case the attack is sophisticated enough to increase its power and speed to crack the device. At the very least, the owner can yank the battery and nix intrustions right there.
The SD cards ... Uhhh, why are these boneheads obstructing the data card with the battery or sticking it into places that are deliberately non-hot-remove? Oh, they worry about static and lost data? Heck, i want to be able to remove and change cards without powercycling (whether or not battery removal is requred) without turning off the phone, and without gimmickery. If i sense my phone is about to be imperilled, i could eject my card with the push of a fingernail and leave it in my pocket in case i am about to be robbed (or otherwise "relieved) of my phone.
Also, if my phone had an IDS and it were being hacked/cracked, it might be useful to swap data cards and put the phone into a forensics record mode so that i can either out the intruder or assist law enforcement, or out them, too, if they are the real culprits.
We need protection BEFORE sophisticated attacks become mainstream. And, we need it mostly at the carrier's iron. Symantec et al are going to rake in a ton of dough because Google and the carriers are not educating and empowering users with knowledge and tools.