The aim of all governments is to make encryption work perfectly for everyone but them.
Thus, if anyone actually does make encryption perfect, then it will be circumvented. So it's only worth even discussing encryption.
I therefore have had the view that since I cannot prevent the decryption of data by my government, that I should just make it work at sub government level, and make it easy enough so law enforcement can get in without having to ask, so they can exclude me/my systems/etc from their enquiries and focus on catch who they're really after.
Does anyone really believe that if wanted to know the trade secrets of Downunder Joe Public Software incorporated of Sydney, their data would be safe in a cloud or SAAS service such as Salesforce, even if they encrypted their disks?
It's not safe in the building either, but at least governments have to get physical if you've an inhouse offline system.