Safe transfer method and system of wide area network trusted virtual machine

Abstract

The invention provides a safe transfer method and system of a wide area network trusted virtual machine. The method includes the following steps that: S1, two data centers are deployed in a wide area network, and two layers of bride-pattern virtual private networks are constructed between the two data centers; S2, a virtual machine image file is split into a template and user private data, and hardware resources of each data center are virtualized, so that services can be provided for a user in the form of a virtual machine; S3, a trusted virtual machine which supports a vTPM is created and started between the two data centers through deploying a virtual trusted platform, and a vTPM example bound with the trusted virtual machine is generated, and TPM driving is loaded; S4, a source end and a destination end are configured according to the vTPM example, and then, the memory, CPU state, disk and vTPM state of the trusted virtual machine are transferred at the source end, and are restored at the destination end, and therefore, synchronous transfer of the vTPM and the virtual machine can be realized.

Description

technical field [0001] The invention relates to the field of virtual machine migration, in particular to a safe migration method of a trusted virtual machine in a wide area network. Background technique [0002] In recent years, virtualization technology, as one of the key technologies of cloud computing, can improve the utilization rate of server resources in the data center, reduce the difficulty of management, and reduce the IT cost of enterprises, so it has been widely concerned and used by enterprises. Among them, the virtual machine online migration technology is widely used in the fields of data center disaster recovery backup, load balancing, and data center energy saving because it can flexibly allocate and schedule server resources. [0003] But the security of virtual machines has been a concern. With the development of trusted computing technology, people began to try to combine trusted computing technology with virtualization technology to solve the security pr...

AI Technical Summary

Problems solved by technology

[0003] But the security of virtual machines has been a concern

In the WAN, this method will fail, and direct migration will cause the services deployed on the virtual machine to fail to run normally after migration.

[0007] 3) High latency and low bandwidth problems of networks between WANs

Connecting two data centers requires multiple routes and links. The network delay is large and the bandwidth is relatively small, which increases the total time and downtime of virtual machine migration and affects the business running in the virtual machine.

The NFS distributed shared file system is used in the LAN, and the shared disk does not need to be migrated. However, due to its high latency and low bandwidth, the use of shared disks in the WAN will cause a large delay. Therefore, NFS shared disks are generally not used for WAN migration. way, but need to use the way of disk migration

[0008] 4) Trusted virtual machines need to additionally migrate vTPM state data

Its migration process is more complicated than ordinary virtual machine migration

Images