However, it is my contention (actually the contention of many security experts) that one cannot assure security, but that rather it must be proven over time.
It's not cryptographical security, so "security thru obscurity" argument is not applicable here.