Skip to content
View systemslibrarian's full-sized avatar

Highlights

  • Pro

Block or report systemslibrarian

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
systemslibrarian/README.md

Paul Clark

Google Data Analytics LinkedIn Website NuGet

🏛️ The Cryptography Ecosystem

I build systems where trust has to be earned by design — not assumed.

The arc: history → analysis → selection → experimentation → secure application.

# Project Role in the arc
1 Cipher Museum · repo Learn the history. 3,900 years of cryptography across 140 exhibits — 84 browser-runnable cipher engines, 13 exhibit halls, live demos, and cryptanalysis tools.
2 Cipher Detective AI · repo Analyze intelligently. AI-assisted cipher identification and cryptanalysis exploration — connecting classical cipher patterns with modern machine-learning techniques.
3 Crypto Compare · repo Choose wisely. Side-by-side comparisons of 97 algorithms across 17 categories with misuse-resistant recommendations.
4 Gold Winner Crypto Lab · repo · 2026 Cybersecurity Excellence Awards — Gold Winner Experiment deeply. 120+ browser-based demos — post-quantum cryptography, ZK proofs, homomorphic encryption, MPC, threshold schemes, attacks, and steganography. Browser-constrained. Educational by design. No accounts. Just the math.
5 Meow Decoder · repo Apply securely. Everything above, put to work in an applied security engineering project focused on optical air-gap data transfer and modern encrypted-transfer experiments.

📦 Post-Quantum .NET Packages

The PostQuantum.* ecosystem is a post-quantum cryptography toolkit for .NET: primitives, framework integrations, analyzers, infrastructure, and governance tools under one package family.

It is not one package trying to do everything. It is a migration path — from cryptographic engines, to application integrations, to misuse-prevention guardrails, to production infrastructure and cryptographic inventory.

Current scale: 54+ published NuGet packages · 44K+ total downloads
Links: NuGet profile · PostQuantum.FileFormat repo

The package layers

Layer What it provides Representative packages
Engines Core cryptographic building blocks: ML-KEM, ML-DSA, hybrid encryption, Argon2id, secret sharing, secure channels, and file encryption. PostQuantum.Cryptography · PostQuantum.Hybrid · PostQuantum.FileEncryption · PostQuantum.FileEncryption.Hybrid · Argon2id.PasswordHasher
Integrations Packages that bring PQC into places .NET developers already work: ASP.NET Core, Identity, EF Core, Data Protection, JWT/authentication, and dependency injection. PostQuantum.Jwt.AspNetCore · PostQuantum.Identity · PostQuantum.EntityFrameworkCore · PostQuantum.DataProtection · PostQuantum.FileEncryption.Extensions.DependencyInjection
Guardrails Roslyn analyzers, templates, and testing packages that help developers avoid common cryptographic misuse before it reaches production. PostQuantum.Jwt.Analyzers · PostQuantum.Jwt.Templates · PostQuantum.SecureChannel.Testing
Infrastructure Production-oriented support for cloud key storage, Redis, OpenTelemetry, CLI tooling, signing, replay protection, and key lifecycle management. PostQuantum.FileEncryption.Cli · PostQuantum.FileEncryption.Signing · PostQuantum.DataProtection.Redis · PostQuantum.DataProtection.OpenTelemetry
Governance Inventory, configuration, and key-management tooling for teams that need to know what crypto they run, where it lives, and whether it is ready for migration. cryptographic inventory · configuration tooling · key-management packages

The goal is not to pretend post-quantum migration is finished. The goal is to make it understandable, testable, reviewable, and usable in real .NET applications.

ML-KEM · ML-DSA · X-Wing · X25519 · Ed25519 · AES-256-GCM · Argon2id


🛡️ Applied Security Engineering

Secure File Upload Pipeline (.NET) · repo

Most real-world breaches don’t break cryptography — they exploit file uploads and input validation failures.

This project demonstrates a hardened ASP.NET Core upload pipeline with a live demo:

  • spoofed file rejection (extension vs content mismatch)
  • magic number validation (file signature verification)
  • strict allowlisting and fail-closed behavior
  • size and abuse protections

A real attack surface — and what it takes to defend it correctly.


🔒 Production Library Systems (Private — institutional)

Live systems serving a public library institution and its community. This is where the discipline meets the daily work.

Patron Registration Platform + Staff Admin Dashboard

Replaced a vendor-managed legacy Perl system that had become a single point of failure. Built a modern ASP.NET Core 8 platform integrated with SirsiDynix Symphony Web Services — with a security-first document pipeline (AES-256-GCM encryption, ClamAV malware scanning, deep file content validation), automated patron creation, billing, and barcode lifecycle management.

Outcome: staff own the registration workflow for the first time. No vendor dependency for day-to-day operations.

ASP.NET Core MVC C# AES-256-GCM SirsiDynix

SwipeWatcher — Real-Time Access Control Monitor

Before this system, staff had no live view of who was entering or exiting the building. SwipeWatcher monitors C•CURE 9000 door events via HMAC-validated webhooks and delivers immediate alerting and structured logging.

Outcome: operational visibility staff had never had before.

C# .NET 8 Victor Web Services C•CURE 9000

LibCal ↔ C•CURE 9000 Integration · 🏆 I² Innovator/Inspirator Award

Patrons now unlock meeting rooms with their library cards at the scheduled time — automatic provisioning and revocation driven entirely by LibCal reservation data.

Outcome: no staff intervention, no manual access grants, no friction.

C# LibCal APIs Victor Web Services

LibCal ↔ SirsiDynix Integration

Circulation transactions trigger automatically from LibCal reservation events for Library of Things equipment.

Outcome: eliminated a manual checkout step previously required on every loan.

C# LibCal APIs SirsiDynix Symphony Web Services


✝️ Scripture & Ministry — The Same Discipline

The same way of building — intentional architecture, honest design, long-term thinking — applied to something eternal. Structured as a path, not a collection.

Stage Project What it does
Understand Scripture Journey Maps 200+ OT messianic prophecies to NT fulfillments across 7 categories. Scripture as one unified story, with Jesus at the center.
Remember Hide in Heart Daily companion for Scripture memorization. Rooted in Psalm 119:11.
Discern HisWillGuide A 10-step biblical framework for finding God's will through Scripture, prayer, and community wisdom.
Intercede PrayerWarriors Mobile-first platform for organizing prayer requests and tracking intercession. Live mockup at prayerwarriors.mobi — in active design. Long-term ministry goal.

🤖 AI as Architecture, Not Autocomplete

I use AI the way I use any other powerful primitive: with an explicit model of what it's good at, what it fails at, and where the guardrails belong.

AI Conversation Platform is the most visible example — async orchestration of autonomous conversations between Claude, ChatGPT, Gemini, Grok, and Perplexity. The point isn't novelty. It's stress-testing reasoning by putting competing models against the same problem and watching what holds up.

Circuit breakers · Prometheus + Grafana observability · LLM Guard · 90%+ test coverage.


What I believe about systems

Security is a posture — not a layer.

Define the threat model first. Build fail-closed. Document honestly where guarantees end.

Understand the primitive before you trust it — at implementation depth.

Systems should be reliable, observable, and self-sustaining in production.


Engineering Focus

Languages — C# · TypeScript · JavaScript · Python · Dart · Rust · SQL

Frameworks — .NET 10 (native ML-KEM / ML-DSA BCL types) · .NET 8 · ASP.NET Core MVC · Next.js · Node.js · Vite · Flutter · Firebase

Security — AES-256-GCM · Argon2id · HMAC · HKDF · BIP-39 · ML-KEM · ML-DSA · X-Wing (X25519 + ML-KEM) · Ed25519 · HQC · multivariate & ZK schemes · E2EE · forward secrecy · threat modeling · fail-closed design

Cryptography Education — crypto-lab (110+ browser demos) · Cipher Museum (140 exhibits) · crypto-compare (97 algorithms across 17 categories) · real-primitive demos · KNOWN-GAPS documentation

Library Systems — SirsiDynix Symphony · LibCal · C•CURE 9000 · Victor Web Services

Practices — TDD · CI-proven invariants · ADR-driven design · security reviews · WCAG accessibility · explicit threat models · honest capability documentation


Recognition

National and industry recognition for leadership, advocacy, and public impact in library systems and community access:

  • 🏆 Crypto Lab — Gold Winner (2026) — Cybersecurity Excellence Awards
  • 🏆 Florida Librarian of the Year (2011)
  • 🌍 Library Journal Mover & Shaker — Global Leadership (2012)
  • ❤️ I Love My Librarian Award (2010) — Carnegie Corporation of New York, The New York Times, American Library Association
  • 🗣️ Advocate of the Year (2010) — Florida Association of Counties
  • 🏅 I² Innovator/Inspirator Award (2024, 2025) — LibCal ↔ C•CURE Integration

These recognitions reflect earlier work in advocacy and community leadership — the same focus on public impact now carried forward through system design, security, and infrastructure.


If what I've described sounds like the way you think — public infrastructure, applied cryptography, AI systems that have to be responsible — let's talk.

LinkedIn


"So whether you eat or drink or whatever you do, do it all for the glory of God."
— 1 Corinthians 10:31 (NIV)

Pinned Loading

  1. postquantum-file-encryption postquantum-file-encryption Public

    Simple, high-security post-quantum file encryption library for .NET 10. Built on PostQuantum.FileFormat with passphrase and hybrid support.

    C#

  2. meow-decoder meow-decoder Public

    Secure Optical Air-Gap File Transfer via QR-Code GIFs Hiss secrets into yarn balls 😼 — cat-meme QR GIFs built for camera loss (fountain codes) and fail-closed crypto.

    Python 2 1

  3. cipher-museum cipher-museum Public

    Cipher Museum is an open-source, interactive cryptography-history museum where visitors learn ciphers by using them, attacking them, and seeing how each failure shaped modern security.

    HTML

  4. crypto-lab crypto-lab Public

    A full-spectrum, browser-based cryptography laboratory covering modern, classical, and post-quantum systems.

    HTML 3

  5. scripture-journey scripture-journey Public

    Scripture Journey — Mapping 200 messianic prophecies from the Old Testament to their fulfillment in Jesus

    TypeScript

  6. PostQuantum.FileFormat PostQuantum.FileFormat Public

    Draft specification for a hybrid post-quantum file encryption format. X25519+ML-KEM-1024 + Ed25519+ML-DSA-87. EXPERIMENTAL — seeking review.

    C# 1