Blackberry did always support "decrypt at the BES" which meant essentially corporate key escrow. It did mean the system owner (company) had full control of everything, but it meant governments/carriers/etc. didn't.
It's a great security model for businesses. For consumers, allowing "3 of 5 trusted friends" to do key recovery for you, with a 7 day delay, might also be a good model.
I actually have no problem with key recovery/key repository type systems (reluctant to say "key escrow" when it's not mandatory) -- as long as the users are explicitly informed and given a choice. For 99% of users, some kind of key recovery usually is the right choice.
It's a great security model for businesses. For consumers, allowing "3 of 5 trusted friends" to do key recovery for you, with a 7 day delay, might also be a good model.
I actually have no problem with key recovery/key repository type systems (reluctant to say "key escrow" when it's not mandatory) -- as long as the users are explicitly informed and given a choice. For 99% of users, some kind of key recovery usually is the right choice.