Require ephemeral encryption keys?

As per discussion on today's WG call, we should consider mandating that encryption keys are ephemeral, as that's only kind of hinted at in VP but seems like a good practice and improves security by preventing responses from one session being injected into a different session.