In the key exchange, static DH is used, which reduce the security of the messages by always using the same secret.
Using an ephermeral key, signed by the long-term key would work.
NB: avoid replay attack of the exchange but potentially using a namespace
In the key exchange, static DH is used, which reduce the security of the messages by always using the same secret.
Using an ephermeral key, signed by the long-term key would work.
NB: avoid replay attack of the exchange but potentially using a namespace