Permanent reencryption: how to survive generations of cryptanalysts to come

Marcus Völp, Francisco Rocha, Jeremie Decouchant, Jiangshan Yu, Paulo Esteves-Verissimo

Research output: Chapter in Book/Report/Conference proceedingConference PaperResearch

1 Citation (Scopus)


The protection of long-lived sensitive information puts enormous stress on traditional ciphers, to survive generations of cryptanalysts. In addition, there is a continued risk of adversaries penetrating and attacking the systems in which these ciphers are implemented. In this paper, we present our work-in-progress on an approach to survive both cryptanalysis and intrusion attacks for extended periods of time. A prime objective of any similar work is to prevent the leakage of plaintexts. However, given the long lifespan of sensitive information, during which cryptanalysts could focus on breaking the cipher, it is equally important to prevent leakage of unduly high amounts of ciphertext. Our approach consists in an enclave-based architectural set-up bringing in primary resilience against attacks, seconded by permanently reencrypting portions of the confidential or privacy-sensitive data with fresh keys and combining ciphers in a threshold-based encryption scheme.

Original languageEnglish
Title of host publicationSecurity Protocols XXV
Subtitle of host publication25th International Workshop Cambridge, UK, March 20–22, 2017 Revised Selected Papers
EditorsFrank Stajano, Jonathan Anderson, Bruce Christianson, Vashek Matyas
Place of PublicationCham Switzerland
Number of pages6
ISBN (Electronic)9783319710754
ISBN (Print)9783319710747
Publication statusPublished - 2017
Externally publishedYes
EventInternational Workshop on Security Protocols 2017 - Cambridge, United Kingdom
Duration: 20 Mar 201722 Mar 2017
Conference number: 25th

Publication series

NameLecture Notes in Computer Science
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349


ConferenceInternational Workshop on Security Protocols 2017
Abbreviated titleIWSP 2017
Country/TerritoryUnited Kingdom
Internet address

Cite this