Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method for measuring completeness of credible virtual field start-up files supporting non-delaying machine

An integrity measurement and startup file technology, applied in the direction of platform integrity maintenance, program loading/starting, computer security devices, etc., can solve problems such as security risks, lack of flexibility of the system, reducing the advantages of Xen virtualization technology, etc., to shorten the interval time, the effect of enhancing security

Inactive Publication Date: 2009-07-22
BEIJING JIAOTONG UNIV
View PDF0 Cites 19 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

This method has the following defects: (1) potential safety hazard, (2) trusted virtual domain deployment must be completed before the computer starts, and any modification of the trusted virtual domain kernel after the computer starts needs to restart the computer before it can take effect. It affects the operation of other virtual domains, making the entire system inflexible and reducing the advantages of Xen virtualization technology

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method for measuring completeness of credible virtual field start-up files supporting non-delaying machine
  • Method for measuring completeness of credible virtual field start-up files supporting non-delaying machine
  • Method for measuring completeness of credible virtual field start-up files supporting non-delaying machine

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0029]By modifying the virtual domain management tool and the virtual domain boot manager, the invention realizes the completeness measurement of the credible virtual domain system startup file only when the virtual domain system is started. The startup file includes a virtual domain configuration file, a virtual domain boot configuration file, and the files specified by the file that need to be measured.

[0030] The process of starting the integrity measurement of the file is as follows:

[0031] (1) The virtual domain management tool starts the customer virtual domain.

[0032] (2) The virtual domain management tool measures the virtual domain configuration file and saves the result.

[0033] (3) The virtual domain management tool invokes the virtual domain system boot manager.

[0034] (4) The virtual domain system boot manager reads and parses the boot configuration file, measures the integrity of the file specified by the measure keyword and saves the result, and simul...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a method for supporting the integrity measurement of boot files in trusted virtual domain of a zero-downtime machine. Management tool and boot manager of the virtual domain in privilege domain are modified to realize that the integrity measurement of the system boot files in the trusted virtual domain is just carried out when the system boot files are loaded, therefore, the safety and extensible problems for carrying out the integrity measurement of the system boot files in the trusted virtual domain when booting computer are overcome and the system flexibility are improved, and the arrangement of the trusted virtual domain including re-customizing or updating kernel system of virtual domain can be carried out dynamically during running process of computer, and data service of other virtual domain in the same hardware platform is not interrupted when booting trusted virtual domain. The measurable boot files comprise configuration files of virtual domain, boot configuration files of virtual domain and the files that are needed to be measured are designated by the boot configuration files of virtual domain. The method can cooperate with other trusted computing technology in virtual environment to build a complete virtual domain boot trusted chain.

Description

technical field [0001] The invention relates to the field of trusted computing for computer information security, in particular to a method for measuring the integrity of startup files in a trusted virtual domain supporting zero downtime. By enhancing the functions of the customer virtual domain management tool and the virtual domain boot manager in the Xen virtual machine environment, the integrity measurement is performed only when the boot file of the trusted virtual domain system is loaded. Background technique [0002] The virtual machine technology applies the concept of virtualization of the whole machine, which removes the constraints of the compatibility of the physical machine and hardware resources on the application program, and realizes the parallel operation of multiple operating systems on the same hardware platform. Xen virtual machine is a mature open source virtualization product, Xen virtual machine includes a virtual machine monitor, a privileged virtual ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F21/00G06F9/445G06F9/455G06F21/50
Inventor 刘吉强韩臻常晓林邢彬刘博何帆
Owner BEIJING JIAOTONG UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com