I read once that if we really wanted to be secure, we would have a crypto library that was open source, AND all changes needed to be signed off by more than one of NSA, Mossad, FSB, China's agency, etc. This way if there is a bug they find, any agency has to assume other agencies have also found the bug.