I am not sure, if user service updates are a good idea. This would open a path to other risks. Anyway, I agree, there is currently no good solution for updates.
Other risks sure, but other benefits as well. Modern ECUs are pretty flexible and can be reflashed through the ODB-II port with extended functionality. cf. EMCS: http://www.goapr.com/products/ecu_upgrade_s4.html
Something I use, along a similar line: www.evoscan.com
Don't mind the wall of text website: I think it appeals to the revheads or something. The software is really quite clever (it can monitor and display variables from the ecu, along with allowing you to tinker with the software).
