I was referring to zero days as in the way to gain the ability to run the malicious code in user's device, preferably in the root account which cannot be stopped by updating the software, something like that was done in jailbreaking using browser(a long time ago), or pwn2own. I was not thinking of encryption related zero day specifically. If someone gets root access, they get access to all the contents, no matter what transport security is used.