Trusted products and services for embedded security. Join-us on Linkedin

ProvenRun at CES 2023

ProvenRun will be exhibiting on the French Tech Automotive pavilion. We will showcase our solutions addressing embedded security challenges in multiple sectors such as Automotive, Consumer/IoT, Defense/Aerospace & Industrial.

Come and meet us:

Vehicle Technology – Tech East
Las Vegas Convention and World Trade Center – West hall
booth #5400 Business France Automotive

Let’s discuss the biggest challenge of digitization at CES 2023!

Cybersecurity is a hot topic right now, and it’s not just for the tech-minded folks out there. In fact, cybersecurity is a critical aspect of how we live our lives in the 21st century.

The digitalization of the world is touching several markets, with industries from avionics to supply chain management and more embracing the advantages of digital technology. But these industries are also subject to cybersecurity threats. For example, an attack on a hospital could lead to data breaches or medical records being compromised. A cyberattack on manufacturing could lead to production delays or product recalls. And so on.

As a result, secure by design is becoming a solution for industries across the board—although it is not yet widely adopted.

The automotive industry for example includes self-driving cars and features connected to the internet. These technologies affect drivers’ safety, so it’s important for them to be secure. Your car can be hacked to change its location or speed, and if you think about it, every feature of your car is connected to the internet! That’s why cybersecurity has become such an important part of automotive technology.

If you’re interested in learning more about embedded cybersecurity and how it affects everyday life, stop by the French Tech Automotive Pavilion, booth #5400, and let’s discuss how we can help solve the security challenge that arise in your market.

Digital Rights Managements Demonstration

This demonstration is the world’s first implementation of the new GlobalPlatform Secure Media Path Protection Profile. It leverages on Cinemo’s award-wining media streaming and playback engine using ProvenRun’s ultra secure TEE ProvenCore and Cinemo’s Widewine DRM implementation.

Within this SMP PP framework, ProvenRun has a DRM solution ready to be certified on any chip or ECU. The secure media path is also entirely protected by ProvenCore itself.

Hardware description




  • NXP i.MX 8
  • 2x Cortex-A72 @ up to 1.6 GHz
  • 4x Cortex-A53 @ up to 1.2 GHz
  • 1 MB L2 cache
  • 2x Cortex-M4 @ 266 MHz

Power Management

  • NXP MMPF8100/8200 PMIC


  • LPDDR4 memory, x64
  • 32 GB eMMC 5.1
  • 64 MB Octal SPI Flash


  • 1x full-size SD/MMC card slot
  • 10/100/1000 Ethernet port
  • 1x USB 3.0 Type C


  • JTAG connector
  • Serial to USB connector

Software description

TEE / Secure OS

Rich OS

  • Yocto branch: imx-linux-warrior
  • Linux v4.19.35
  • Weston v6.0.1

Media player

  • Cinemo’s media streaming and playback engine
  • Widewine DRM

Secure Media Path data flow

  1. At boot time, the memory regions for the Protected Media Pipeline (PMP) are reserved.
  2. The DRM plugin interacts with the DRM agent and the external DRM server to exchange crypto materials and start a DRM session with valid credentials.
  3. The Protected Media Manager (PMM) configures the firewall infrastructure to constrain the PMP actors (VPU, GPU, DPU) to access the selected protected buffers only. The PMP is entirely secured by ProvenCore itself.
  4. Once a DRM session has been established, the corresponding DRM plug-in takes care of copying the incoming encrypted video stream into the public shared memory area.
  5. The Decryptor starts decrypting from the shared memory area into protected buffers.
  6. When the crypto operations are completed, the encoded stream stored inside the protected buffers is ready to be processed.
  7. The protected buffers are also accessible by the GPU. This allows the rich OS to perform composition (UI, video controls, etc.) without having access to the decrypted media content.

Your contacts for the CES

Thierry Chesnais


Benjamin Mouchard

Field Application Engineer