What she's probably referring to.
I think Mrs. Clinton is referring to the fact that it has been pointed out that real-world end-to-end encryption systems, like the Apple one, already have a front door by virtue of their design. Let me explain.
Each device (phone, tablet, PC, etc) generates a public/private key pair. The private key must never leave the device, but the public key is stored up in the cloud.
Alice sends Bob a message. Her messaging client grabs Bob's public key, encrypts the message with it, and sends it. It can only be decrypted by Bob's device. OK so far.
Now the real world intrudes. Bob has multiple devices. There is no really secure way for them to share a private key, so each device generates it's own key pair. Alice's software does not know which device Bob will use to read the message, so it must encrypt multiple copies of the message payload using Bob's several public keys. This multiple-key capability is the front door.
All that Apple (or anyone else running PKI for end-to-end encryption) has to do is quietly add an NSA-generated public key to Bob's list. The NSA can now read every message that Bob receives. They can do this to selected users or to everyone.
Of course, we can circumvent this by manually using PGP and exchanging public keys by email, but that is quite beyond the vast majority of users, who find the concepts of public key encryption hard to grasp. The automated version is what actually gets used.