Zeroing out is not entirely secure because at the hardware level a newly zeroed bit might be distinguishable from a bit that was already zero.