Towards Fresh and Hybrid Re-Keying Schemes with Beyond Birthday Security