diff --git a/docs/overview/System Security.rst b/docs/overview/System Security.rst
index 14e3167de9679f3cb434b0e8bdfdd9fcd9e43c88..5ef38e0595d62b40fa165913a6189ad3b2008cf4 100644
--- a/docs/overview/System Security.rst	
+++ b/docs/overview/System Security.rst	
@@ -29,6 +29,8 @@ In the distributed scenario, the right person using the right device is the prer
 - **Device certificate authentication**: HarmonyOS preconfigures a public key infrastructure (PKI) device certificate in the TEE of a device so that the device can prove its security capabilities to other virtual devices. The device certificate ensures that the device is one that was manufactured legally. The certification is preconfigured during device production and proves that the device was manufactured legally. The private key of the certification is written and securely stored in the TEE and can only be used in the TEE. When sensitive user data (such as keys and encrypted biometrics) needs to be transmitted between devices, a secure channel is established between their TEEs only after the device security has been proven using the device certificate. The below figure shows how the device certificate is used.
 
 .. figure:: figures/system_security.jpg
+   :scale: 50
+   :align: center
 
    Figure 1 Using the device certificate