Journal · Field notes

Blog & news.

Stories from the ZeroRISC team — product announcements, research, partnerships, and perspectives on open-silicon security.

2026 · 06 · 16Engineering

Hardened PQC on Pavona – Part II: Masking ML-DSA

In this episode of our blog post series on hardening PQC for Pavona's asymmetric cryptography coprocessor (ACC), we describe our DPA-hardened implementation of the post-quantum signature scheme ML-DSA supporting all parameter sets (44, 65, and 87).

Read post →
2026 · 06 · 04Engineering

Hardened PQC on Pavona – Masking ML-KEM

In this blog post on hardening PQC for Pavona's Asymmetric Cryptography Coprocessor (ACC), we cover why masking is needed, how it applies to the post-quantum key-encapsulation mechanism ML-KEM, and what our implementation looks like. We build on Pavona's pre-existing ML-KEM implementation.

Read post →
2026 · 04 · 30Engineering

Efficiently Measuring ML-DSA Signing Performance

In this post, we’ll explain a new method to benchmark ML-DSA signing with relatively few test inputs. We can get a better measurement from as few as 1 or 2 specially-selected test inputs as we would get from 100 random tests. You can find the code here .

Read post →
2026 · 01 · 20Engineering

RSA with CRT Part 2: Implementing Fast RSA

This post is the second in a two-part series about recently implemented optimizations to speed up performance of our open-source, embedded RSA implementation. Read part one here . This post will cover the actual implementation of RSA CRT key generation and modular exponentiation. Our implementation focuses on…

Read post →
2025 · 11 · 05Engineering

Tidying Up: FIPS-Compliant Secure Zeroization for OTP

This blog post covers ZeroRISC’s recent contributions implementing one-time programmable (OTP) memory zeroization to achieve FIPS 140-3 compliance. We did this in partnership with Rivos Inc , using the code at git hash 032df24 , as part of our commitment to aligning open silicon with important industry security…

Read post →
2025 · 08 · 19Engineering

ZeroRISC and Tock OS Team Present Tutorial at ACM MobiSys 2025

On July 4th, ZeroRISC and the Tock secure embedded OS development team jointly presented a full-day tutorial on secure firmware design for hardware roots of trust (HWRoTs) using Tock. This tutorial spotlighted Tock's memory protection, process management, and compiler-derived kernel isolation guarantees, providing…

Read post →
2024 · 12 · 12Engineering

Future of PQC on OpenTitan

This is part 3 of 3 in an experience report about implementing SPHINCS+ (aka SLH-DSA) for secure boot in OpenTitan root of trust (RoT) chips. SPHINCS+ is a post-quantum secure signature algorithm and one of the four winners of NIST’s post-quantum cryptography competition; the final standard was recently released as…

Read post →
2024 · 09 · 03Engineering

Landing SPHINCS+ on OpenTitan

This is part 2 of 3 in an experience report about implementing SPHINCS+ (aka SLH-DSA) for secure boot in OpenTitan root of trust (RoT) chips. SPHINCS+ is a post-quantum secure signature algorithm and one of the four winners of NIST’s post-quantum cryptography competition; the final standard was recently released as…

Read post →
2024 · 08 · 14Engineering

Post-Quantum Secure Boot on OpenTitan

This is part 1 of 3 in an experience report about implementing SPHINCS+ (aka SLH-DSA) for secure boot in OpenTitan root of trust (RoT) chips. SPHINCS+ is a post-quantum secure signature algorithm and one of the four winners of NIST’s post-quantum…

Read post →
Subscribe

Field notes, every few weeks.

Research, engineering write-ups, and the occasional product update. No marketing.