Crypto Agility

Rot provides future proof cryptographic primitives

Categories:

Feature

Rot is designed to prevent cryptographic key “rot”:

Constantly decrypting leading to leakage
Encryption algorithms become insecure

Instead of generating secrets once, Rot encourages users to rekey encrypted values and reissue keys by making the process as easy as possible:

$ rot key-add-pub server1 ed25519public:MCowBQYDK2VwAyEAAYkJzjQGb+4I7bfcaq6TnkI6nWJXolUdYSQDKSZIDZU=:AVvPeIzIHg
$ rot -x algorithms_asymmetric=rsa2048oaepsha256 -x algorithms_symmetric=aes128gcm keyring-rekey mykeyring