ClearCrypto (CC) is an unusual cryptographic project. In contrast to common cryptographic wisdom, one of the primary goals of CC is to encourage developers to "roll their own" implementations -- or, at least, understand fully the cryptographic algorithms they are using and the level of security they provide.

Unlike modern cryptographic protocols, CC requires only a basic mathematical background: some understanding of statistics, introductory linear algebra, and familiarity with cryptographically-secure pseudo-random number generators (CSPRNG) and cryptographic hash functions. With some study, all of the security claims made by the CC cryptosystem can be understood and assessed by the developer putting them to use.

We encourage users and developers to understand the complexities of exactly what kinds of guarantees are made by security claims. Your favorite product uses state-of-the-art end-to-end encryption, great -- but who can see your data once it's at one of those ends? Maybe it's encrypted-at-rest, good -- but who has access to the decryption keys? You know you have an encrypted SSL connection, but what PRNG was used to initialize the parameters?

CC also aims to provide a plausible alternative to the nearly ubiquitous use of DLP-based cryptographic techniques. Although it is unlikely that DLP will soon be (or has been) seriously challenged, and unlikely that the engineering challenges inherent in large-scale quantum computers will soon be (or have been) overcome, it is nonetheless a good idea to have alternative algorithms when possible. CC represents one alternative.

ClearCrypto is in active development. More soon, including algorithmic details and C source code.