From 326b25cc3f978033b38c7e4cd225bf5cc4953b29 Mon Sep 17 00:00:00 2001
From: Gururaj Shetty <gururaj.shetty@huawei.com>
Date: Wed, 30 Dec 2020 04:55:57 +0000
Subject: [PATCH] Update System Security.rst

---
 docs/overview/System Security.rst | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/docs/overview/System Security.rst b/docs/overview/System Security.rst
index bfbf097..fedb035 100644
--- a/docs/overview/System Security.rst	
+++ b/docs/overview/System Security.rst	
@@ -28,6 +28,8 @@ In the distributed scenario, the right person using the right device is the prer
 
 - **Device certificate authentication**: HarmonyOS preconfigures a public key infrastructure (PKI) device certificate in the TEE of a device so that the device can prove its security capabilities to other virtual devices. The device certificate ensures that the device is one that was manufactured legally. The certification is preconfigured during device production and proves that the device was manufactured legally. The private key of the certification is written and securely stored in the TEE and can only be used in the TEE. When sensitive user data (such as keys and encrypted biometrics) needs to be transmitted between devices, a secure channel is established between their TEEs only after the device security has been proven using the device certificate. Figure 1 shows how the device certificate is used.
 
+.. figure:: figures/system_security.jpg
+
 Right Data
 ----------
 
-- 
GitLab