WebRTC wraps SCTP in DTLS, so the "great challenge of encryption" has never been a problem there.
It just uses self-signed certificates, which is maybe conceptually slightly clunky compared to "pure" anonymous TOFU, but allows reusing existing stacks.