Virtual machine monitor and virtual trusted execution environment construction method

A technology of virtual machine monitor and execution environment, applied in the direction of instrument, software simulation/interpretation/simulation, calculation, etc., can solve the problems of security application difficulty, cloud server does not provide SGX technical hardware support, etc.

Pending Publication Date: 2019-08-13
上海隔镜信息科技有限公司
View PDF6 Cites 15 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] The inventors have found the following disadvantages in the prior art: most cloud servers do not provide hardware support for SGX technology, which makes only a small number of servers ava

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Virtual machine monitor and virtual trusted execution environment construction method
  • Virtual machine monitor and virtual trusted execution environment construction method
  • Virtual machine monitor and virtual trusted execution environment construction method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0021] In order to make the purpose, technical solutions and advantages of the embodiments of the present invention more clear, various implementation modes of the present invention will be described in detail below in conjunction with the accompanying drawings. However, those of ordinary skill in the art can understand that, in each implementation manner of the present invention, many technical details are provided for readers to better understand the present application. However, even without these technical details and various changes and modifications based on the following implementation modes, the technical solution claimed in this application can also be realized.

[0022] The first embodiment of the present invention relates to a virtual machine monitor, which starts a guest virtual machine based on trusted hardware and starts an application in the guest virtual machine. The structure of the virtual machine monitor is as follows: figure 1 As shown, it includes: a trust...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The embodiment of the invention relates to the technical field of software, and discloses a virtual machine monitor and a virtual trusted execution environment construction method. The invention provides a virtual machine monitor which starts a client virtual machine based on trusted hardware and starts an application in the client virtual machine. The virtual machine monitor comprises a trusted extension page table management module and an instruction simulation module, the trusted extension page table management module used for establishing a trusted extension page table when the applicationis started, and the instruction simulation module used for establishing mapping for the protected physical memory in the trusted extension page table, loading codes and data of an application into the protected physical memory, and verifying the integrity of the codes and the data; the instruction simulation module completes the construction of the virtual trusted execution environment when the verification is passed. Therefore, a trusted execution environment is realized without using an SGX technology, the difficulty brought to wide deployment of security applications due to the fact that only a few servers support the SGX technology is avoided, and wide deployment of the security applications is realized.

Description

technical field [0001] The embodiment of the present invention relates to the field of software technology, in particular to a virtual machine monitor and a method for constructing a virtual trusted execution environment. Background technique [0002] A core concern of cloud services is the security and privacy of data and applications. In order to enable applications to run safely on the cloud, cloud service providers need to provide a trusted execution chain based on a trusted computing technology. environment. The SGX (Software Guard Extensions) technology released by Intel after the sixth-generation CPU Skylake processor can provide an enclave trusted execution environment through a part of independent secure memory, protect the security of cloud server data, and prevent data and code from being accessed or modified . Because Enclave can protect the security of applications and data from the hardware level, its application in cloud services has attracted extensive atte...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): G06F9/455
CPCG06F9/45558G06F2009/45575G06F2009/45587Y02D10/00
Inventor 余倩倩
Owner 上海隔镜信息科技有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap