Zero-trust security is a key component in federal IT modernization initiatives and ensures agencies can satisfy compliance demands, address authentication gaps and verify all users and devices are trusted before they can access applications Leveraging modern cryptography and embedded hardware, Vitro is offering a zero-trust IoT platform. Delivering elements to encrypt, hash and sign data from scanners, sensors, and meters allows operating data to securely and opaquely transit open networks and hosts, eliminating reliance on Trusted-Execution-Environments (TEE) and Transport Layer Security (TLS). The Vitro Crystal Gateway features hardware-based, ultra-secure key storage to ensure that the firmware it runs, the accessories it supports, and the networks with which it connects are not cloned, counterfeited, or tampered with. Vitro security is based on Elliptic Curve Cryptography (ECC), and employs keys generated by each Vitro Crystal remotely in secure, hardware-based key storage. Our IoT platform incorporates hardware-based certificate storage and automated Root of Trust (RoT) provisioning via Digicert. ECC Authentication Authenticated datasets are the crucial payload of IoT. Vitro Proof-of-Origin involves authenticating local datasets via local ECC hashes and signatures. Leveraging ECC keys across the multiple applications of Root-of-Trust and Proof-of-Origin is a patent-pending process. This approach ensures trust in data transit and data authentication while being perfectly suited to remote IoT devices.