XEN cloud platform virtual machine isolation method based on memory isolation

Abstract

The invention discloses an XEN cloud platform virtual machine isolation method based on memory isolation, and belongs to the field of information safety. The XEN cloud platform virtual machine isolation method based on memory isolation comprises the following steps of S1, carrying out interception on an authorization list operation, S2, extending the ACM mechanism, achieving validity verification of the authorization list operation, letting the authorization list operation pass when the validity verification of the authorization list operation gets through, and S3, carrying out control execution on the passed authorization list operation. The XEN cloud platform virtual machine isolation method based on memory isolation has the advantages that the authorization list operation of an XEN memory is intercepted to carry out analysis on the memory mapping relation between virtual machines, the validity verification of the authorization list operation is accomplished through an extended ACM, the authorization list operation is let pass after the validity verification of the authorization list operation gets through, memory safety isolation between the virtual machines is accomplished through control over an authorization list, and the XEN cloud platform virtual machine isolation method based on memory isolation belongs to the field of Hypervisor safety research, can achieve safe isolation of a memory resource, and improves safety of the XEN cloud environment.

Description

technical field [0001] The invention relates to a method for isolating a virtual machine of a XEN cloud platform based on memory isolation, and belongs to the field of information security. Background technique [0002] The concept of cloud was first proposed by American John McCarthy in the 1990s, when he pointed out that computer resources can be provided to the public as a service like water and electricity. In March 2006, Amazon launched the Elastic Computing Cloud (EC2) service, and then Google CEO Eric Schmidt first proposed the concept of "cloud computing" at the Search Engine Conference. Cloud computing is a model for the growth, usage and delivery of Internet-based related services, usually involving the provision of dynamically scalable and often virtualized resources over the Internet. [0003] The rapid development of cloud technology gradually affects people's lives. According to a report by market research company IHS iSuppli, the current total number of clou...

AI Technical Summary

Problems solved by technology

However, when this technology is actually deployed, the changes to the XEN environment are too large, and it is not convenient to add it to the actual XEN environment.

[0008] To sum up, there have been some studies on the security of virtual machine systems in cloud environments at home and abroad, most of which stay on the research of traditional security issues, some of which have not considered the facts and deployment issues, and have not combined XEN source code. , the analysis and research of the overall structure

Images