No black boxes. Open RTL, a reproducible bootloader, and non-destructive optical die verification let you confirm what is really on the chip, trust by evidence, not assertion.
License-free, fork-able silicon that can be re-fabricated at a trusted foundry. No vendor lock-in, no foreign single point of failure, no royalty or export entanglements.
Identity, attestation, secure boot, key custody, and anti-tamper anchored in tamper-resistant silicon, an active security mesh, glitch and fault sensors, a true RNG, a hardware key store, and monotonic counters.
On-chip accelerators and crypto-agility for the post-quantum standards, ML-KEM, ML-DSA, and SLH-DSA, so deployed systems stay secure as the standards evolve.
Machine-to-machine payments and hardware-enforced spending limits and allowlists, on the same root of trust, value and guardrails a compromised agent can't bypass.
The same inspectable, sovereign root of trust, matched to the platform, from soldier-worn sensors to over-the-horizon comms.
Hardware-rooted identity and attestation, so a platform proves it is genuine and unmodified before it is trusted or armed.
Tamper-resistant identity, secure boot, and key custody for fielded ground, air, and maritime robots.
Sovereign, inspectable crypto for radios, seekers, munitions, avionics, and weapon controllers.
Verifiable execution, machine-to-machine payments, and on-chip spending policy a jailbroken agent cannot bypass.
End-to-end, quantum-resistant encryption over LoRa, VHF/UHF, HF skywave, or SATCOM, independent of the transport.
Low-cost, low-power authentication and data protection for wearables, trackers, and unattended ground sensors.
From transistors to firmware, the design is open and reproducible. Ledgerless for direct machine-to-machine payments; Covenant for hardware-enforced policy. Both open source, both running on the same secure element.
Read our writing →Ledgerless is building a verifiable, sovereign hardware root of trust for autonomous systems, an open, inspectable secure element that drones, robots, defence platforms, and AI agents can use to prove what they are, secure what they do, and transact and enforce policy on-chip. Trust rests on evidence you can inspect, not on a vendor's word.
Conventional secure elements are black boxes: you cannot read the design, reproduce the firmware, or confirm that a delivered part is genuine rather than counterfeit or maliciously altered. Ledgerless inverts this. The design RTL is open for logical inspection, the bootloader is fully open and bit-for-bit reproducible from a documented toolchain, and the silicon can be verified non-destructively with infra-red optical die inspection. That is a continuous chain of inspectable evidence from transistors to firmware.
The design is license-free and fork-able, with no NDA on the core logic and no single-vendor lock-in. It can be inspected, forked, and in principle re-fabricated at a trusted domestic foundry, giving governments and primes a path to manufacture under their own control rather than depending indefinitely on a foreign commercial supplier, free of recurring royalty and export-control entanglements.
The core high-assurance workloads: cryptographic key generation and custody, hardware-rooted platform identity and attestation, secure and measured boot, anti-tamper, anti-counterfeit verification, and end-to-end encrypted communications, plus machine-to-machine payments and on-chip spending policy.
If you are building autonomous systems, in defence, robotics, drones, or agentic software, and need a root of trust you can actually verify, we would like to hear from you.
ledgerless@sureshotlabs.io