All messages should be encrypted whenever possible.

Every message should say what it means, its interpretation should only depend on its content.

One should be clear on how the timeliness of messages is proven.

Any implicit assumptions in the protocol should be clearly spelled out.

...establish a shared secret between parties.

...prevent replay attacks by ensuring message freshness.

..encrypt the session key securely.

...ensure the confidentiality of the communication.