Future release · QCIM RoT

All-in-one hardware Root-of-Trust.

Maximum physical security · Crypto-agile · Defense + secure elements

All-in-one Hardware Root-of-Trust for applications requiring maximum security against physical attacks. Robust secure boot chain, strong PUF, anti-tamper mechanisms, and selectable masking logic for defense, secure elements, and export-controlled systems.

Status: Future release
Cert path: EAL5+
Resource scale: High
Detailed specs: On NDA

Configuration overview

Three things QCIM RoT does no other secure element does.

Physical attack resistance.

Selectable masking logic, anti-tamper mechanisms, and hardware-isolated key storage.

Prevents physical extraction and side-channel attacks through hardware-anchored countermeasures designed for hostile-environment deployment.

EAL5+Cert path

Complete secure enclave.

Robust secure boot chain, strong PUF, ECC integrity checks, carefully designed API.

All-in-one RoT package with attention to API design that prevents misuse. Hardware-anchored chain of trust from boot through runtime.

All-in-oneRoT package

Maximum resources available.

QCIM Core engine enables more memory, compute, and features in smallest package.

Compute-in-memory architecture maximizes available resources for certificate lifecycle management, intensive attestation, and large-payload PQC workloads.

More resourcesSmallest package

Target applications

Where QCIM RoT ships.

Defense & Government

Export-controlled chips and classified systems requiring maximum physical security and anti-tamper protection.

· Export-controlled processors
· Classified communication systems
· Military-grade secure processors

Secure Elements & Industrial

Mobile secure elements, hardware wallets, and industrial PLCs vulnerable to physical attacks in field deployments.

· Mobile secure elements
· Hardware cryptocurrency wallets
· Industrial PLCs & SCADA

Key features

Hardware security, cryptographic capability, performance, platform — all in one.

Hardware Security Features

Robust secure boot chain
Strong PUF integration
ECC integrity checks over bus
Anti-tamper mechanisms
Selectable masking logic levels

Cryptographic Capabilities

QCIM Core crypto engine
ML-KEM, ML-DSA support
Legacy asymmetric crypto
Carefully designed secure API
Hardware key derivation

Performance Features

Parallel crypto engines
Hardware accelerated PQ ops
Configurable throughput scaling
Zero-copy DMA transfers

Platform Features

Multi-tenant isolation
Attestation as a service
Key management infrastructure
Crypto service API

Estimated performance

High-performance configuration targets.

Throughput (Target)

RSA-4096 Sign: 500+ ops/sec
ECDSA P-521: 2,000+ ops/sec
Dilithium-3: 1,000+ ops/sec

Resource usage (Est.)

LUTs: ~25,000
BRAM: 512 KB
Power: <500 mW

Latency (Target)

RSA-4096: ~2 ms
ECDSA P-521: ~0.5 ms
Dilithium-3: ~1 ms

· Target specifications for high-performance configuration. Detailed benchmarks under NDA.

Primary use cases

How QCIM RoT gets deployed.

PQC migration infrastructure

Enable gradual transition from classical to post-quantum cryptography without replacing hardware. Support hybrid modes during transition periods.

Long-lifecycle asset protection

Digital asset protection that evolves with cryptographic standards over 15+ year lifecycles. Firmware-updateable algorithms protect investments.

Multi-protocol security services

Platforms supporting diverse cryptographic requirements across multiple protocols and standards simultaneously.

Target certifications

Standards path · Pending validation

FIPS 140-3
Level 3-4 with PQ algorithm support
Common Criteria
EAL5+ for secure element use cases
TCG TPM 2.0
Trusted Platform Module compatibility

Future-proof your infrastructure.

Learn about the crypto-agile platform development roadmap and early-access opportunities.

Contact engineering Compare configurations