Ang wrote: |
---|
So, since there exist people who can crack this app's encryption easily we would welcome it and you will have the opportunity to throw it in my face. |
Alas, therein lies the problem. I do not have the skills to crack your app. (Probably.) I don’t know whether any forum member here does. And even if I did, I am not interested in cracking your app.
See, the people who do this stuff are a fairly closed society, and they spend almost all their free time doing it.
And, frankly, they are not interested in messing with your closed-source application. They do not care about your financial interests. Unless you are willing to
pay one of them a good sum of money to crack your program, it won’t happen.
These experts do it for
fun, see, and you have not provided them with any useful incentive to do it.
That said, they have also given the world a lot of knowledge about this stuff, and how hard it is to get it right. Failed crypto is regularly in the news. In fact, over on stackexchange (where you should have started this thread) are regular questions about rolling your own crypto, and the answers are typically about the same:
don’t, because you
will screw up.
Extant, safe crypto algorithms exist because hundreds of experts from around the world have spend countless hours cracking at it and
fixing its weaknesses. Those algorithms that stand stay. Those
thousands of algorithms that don’t stand get tossed, never to be heard from again...
…except in software claiming private, in-house security, because the developer thinks he is smarter than hundreds of experts from around the world that eat, drink, and breathe this stuff.
You’ve been had.
Whether you want to believe it or not. It is the very definition of hubris.
You would be better to use one of the existing cryptographic protocols for your application, and
advertise that fact, than to claim magic, in-house, no-one-knows-how-it-works-but-you security. To people who know anything about basic cryptography, that just outs you as a noob.
Sorry I cannot give you what you want to hear.