I have an immediate job opening for an open standard or multivendor transport layer security protocol that
Now, TLS 1.2 with a minimal crypto suite profile might actually be suitable if one could cheat around the whole cert exchange and supply clients with an RFC5077 session resumption ticket out-of-band in such a way that it effectively acts as a long-term connection authN/Z token. Alas, you can't. SSH is also a candidate but it doesn't have session resumption.
Ideas? Suggestions? email@example.com or Twitter @clemensv