Any traffic transmitted should be encrypted with a temp auth key

[habnabit]

Using an ephemeral temp auth key for all traffic instead of the permanent auth key means that traffic can't be captured and decrypted after the fact if the auth key is later leaked or stolen. This is a very common mitigation used in modern TLS suites. (TLS 1.3 only supports ephemeral key exchange groups.)