[JonSolworth]

Borando is correct. MinimaLT (our TLS replacement) will use some sort of PKI, and eventually SayI. SayI is completely distributed, and enables the relying party (the entity doing the authentication) to choose which parts of the PKI to trust. And it will scale to the Internet; efficiency has been a problem with choose-who-you-trust PKIs.

We are working to release a Research Prototype for MinimaLT, which can be used for open source prototyping while simultaneously hardening our implementation.

There are a number of projects, open source and academic which are looking at MinimaLT. Some are implementing or providing interfaces for other languages (e.g., JavaScript/Erlang). Others are analyzing the security.

Most of all, we are focused on a small, tight codebase. Everything needed for security but not one iota of extra code. This is one of the ways we are engineering MinimaLT to avoid the problems that plague TLS.