In cryptography, a feature of certain key agreement protocols. A unique temporary private key is created to encrypt each session initiated by the user. The compromise of a single session key will not affect other sessions. Past sessions are also not affected if the secret key used by the server for authentication is later compromised.