Check patentability & draft patents in minutes with Patsnap Eureka AI!

Virtualization security management method, device of running kernel driver and storage medium

A technology of security management and virtualization, applied in the field of virtualization security management method, running kernel-driven devices and storage media, can solve problems such as attacks and achieve the effect of ensuring security

Inactive Publication Date: 2019-02-12
ZHENGZHOU YUNHAI INFORMATION TECH CO LTD
View PDF8 Cites 4 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

After the virtual machine escapes, it may attack other virtual machines

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Virtualization security management method, device of running kernel driver and storage medium
  • Virtualization security management method, device of running kernel driver and storage medium
  • Virtualization security management method, device of running kernel driver and storage medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0029] Embodiments of the present invention provide a virtualization security management method, a device for running a kernel driver, and a storage medium, which can implement mandatory access control and control of a virtual machine by running the kernel driver as an intermediary for signal transmission between a virtual machine and a host machine. The system call of the host is hooked, thereby avoiding the risk of virtual machine escape and realizing the security of the virtualized system.

[0030] In order to make those skilled in the art better understand the solutions of the present application, the technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present application. Obviously, the described embodiments are only The embodiments are part of the present application, but not all of the embodiments. Based on the embodiments in the present app...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a virtualized safety management method, which comprises the following steps of using the kernel driver to receive an access request of a process; using the kernel driver to acquire the access rights and / or request types for the process; using the kernel driver to assign an access policy to the process according to access right and / or request type; using the kernel driver toobtain the access resource from the host machine according to the access policy; using the kernel driver To send the access resource to the process. Embodiments of the present application also provide a device and a storage medium. The embodiment provided by the present application sets the kernel driver between a virtual machine and a host machine as a signaling intermediary, and the virtual machine is used as an access process in the host machine. The kernel module identifies the access rights and the access types of the process, performs forced access control and hooks the system calling,thereby pertinently allocating an access policy to the process. According to the present invention, the problem that the virtual machine escapes to attack the host machine, attack the virtualization software or attack other virtual machines through the host machine is prevented, and the security of the virtualization system is guaranteed.

Description

technical field [0001] The present invention relates to the field of virtualization technology, in particular to a virtualization security management method, a device and a storage medium driven by a running kernel. Background technique [0002] One of the reasons why cloud computing can provide powerful services is due to the development of virtualization technology (Virtualization). Virtualization technology provides cloud computing with the advantages of high resource utilization, low energy consumption, dynamic resource scheduling and so on. In the virtualization technology, each virtual machine (virtual machine, VM) runs on the host as a process, and the host uniformly schedules and manages the resources of the virtual machine. The safe and stable operation of the host and virtualization software is the basis for cloud computing to provide powerful services. Therefore, it is necessary to ensure the security of the host and the virtualization software on it. [0003] ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F9/455G06F21/62
CPCG06F9/45558G06F21/6218G06F2009/45587
Inventor 吕琦
Owner ZHENGZHOU YUNHAI INFORMATION TECH CO LTD
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com