ProvenBox is a tamper-resistant hardware security appliance built on a System-on-Module (SOM) architecture based on ARM SoCs. It is designed to provide isolated, secure execution environments for critical applications in embedded and cloud contexts. The appliance uses ARM TrustZone technology to implement a Trusted Execution Environment (TEE), separating execution into a Secure World and a Normal World. The Secure World runs ProvenCore, an OS certified at CC EAL7. The overall device holds CC EAL5+ with AVA_VAN.5 and FIPS 140-2 Level 4 certifications. ProvenBox features a modular design with a customizable carrier board supporting various external connectors. Supported SOM options include Xilinx Zynq UltraScale+ and NXP i.MX8. Software security functions built into the TEE include: secure boot, secure communications, secure firmware updates (FOTA), remote administration, secure filters, and runtime integrity checks. Hardware protection mechanisms include: a secure cover, tamper detection, high-speed erase of secure memory, and battery-backed security chips. The appliance is designed to be extensible, allowing additional security modules to be integrated over time. Typical use cases include cloud edge appliances, security gateways for Industrial IoT, secure logging and monitoring devices, and VPN endpoints.