diff --git a/linux-5.10/rk3568/arch/arm64_defconfig b/linux-5.10/rk3568/arch/arm64_defconfig
index 902c4370254d4474f6fd21f063314bf7b8655c33..dca279f0ed39e63b3377b08d9398fd2c4806176d 100644
--- a/linux-5.10/rk3568/arch/arm64_defconfig
+++ b/linux-5.10/rk3568/arch/arm64_defconfig
@@ -6098,6 +6098,18 @@ CONFIG_BLACKBOX_ROCKCHIP=y
 CONFIG_SECURITY_XPM_DEBUG=y
 # end of executable permission manager
 
+#
+# container escape detection
+#
+CONFIG_SECURITY_CONTAINER_ESCAPE_DETECTION=y
+# end of container escape detection
+
+#
+# Enable memory protection for render process
+#
+CONFIG_MEMORY_SECURITY=y
+# end enable memory protection for render process
+
 #
 # Hide excutable memory address of process manager
 #
@@ -6105,7 +6117,7 @@ CONFIG_HIDE_MEM_ADDRESS=y
 # end hide excutable memory address of process manager
 
 #
-# container escape detection
+# jit memory control
 #
-CONFIG_SECURITY_CONTAINER_ESCAPE_DETECTION=y
-# end of container escape detection
+CONFIG_JIT_MEM_CONTROL=y
+# end of jit memory control