Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Implementation method of cross-domain network terminal virtual machine based on separation of three powers

A technology of separation of powers and cross-domain network, applied in the field of operating systems, it can solve problems such as poor kernel closure, system failure, information leakage, etc., to prevent malicious modification, reduce resource consumption, and improve network service performance.

Pending Publication Date: 2021-03-02
北京远为软件有限公司
View PDF0 Cites 4 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0007] (2) The members interact with each other, and the isolation is not complete
Obviously, in the existing operating system structure, it is difficult to establish independent operating entities
[0009] (3) Third-party code needs to be introduced, and the kernel is poorly closed
[0011] (4) Application programs need to be installed, and the environment is poorly sealed
Executing untrustworthy programs can easily destroy the integrity of the system, introduce viruses, Trojan horses and other malicious programs into the system, causing system failure, information leakage and other hazards
Therefore, the non-closed nature of the environment is another major cause of poor system security and reliability.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Implementation method of cross-domain network terminal virtual machine based on separation of three powers
  • Implementation method of cross-domain network terminal virtual machine based on separation of three powers
  • Implementation method of cross-domain network terminal virtual machine based on separation of three powers

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0117] In order to make the purpose, content, and advantages of the present invention clearer, the specific implementation manners of the present invention will be further described in detail below in conjunction with the accompanying drawings and embodiments.

[0118] 1. Overview of technical principles

[0119] When designing the structure of the operating system, the principle of separation of powers in the political system is used for reference, that is, the formulation of policies (legislature), the implementation of policies (judicial agencies) and the execution of user programs (administrative agencies) are separated into three parts, so that They run on three different types of virtual machines. The strong isolation between virtual machines is used to ensure the independence of each part, and the specially designed communication mechanism between virtual machines is used to realize the cooperation and control of each part.

[0120] Therefore, the designed operating sy...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention belongs to the technical field of operating systems, and particularly relates to an implementation method of a cross-domain network terminal virtual machine based on separation of threepowers. Compared with the prior art, when an operating system structure is designed, a three-power separation principle in a political system is used for reference, namely, strategy making, strategy implementation and user program execution are separated and run on three different virtual machines respectively. The independence among the parts is ensured by utilizing the strong isolation characteristic among the virtual machines, and the cooperation and restriction among the parts are realized by utilizing a specially designed communication mechanism among the virtual machines. Management, I / Oexecution and user operation of an operating system are distributed to different virtual machines for operation on the basis of a security base with three independent rights, the problem that a traditional operating system is too high in rights and is a manager of computer resources and a user of the computer resources at present is solved, and the congenital security problem of a computer is solved from the aspect of a computer system structure.

Description

technical field [0001] The invention belongs to the technical field of operating systems, and in particular relates to a method for realizing a cross-domain network terminal virtual machine based on the separation of three rights. Background technique [0002] In the traditional operating system structure, policy formulation, policy implementation, system management, device management, user program execution, etc. are all mixed together, all of which are in charge of the functional components of the operating system. Since these components cannot be completely isolated, the problem of one component will quickly spread to other components, so the security and reliability of traditional operating systems are not high. In addition, in a traditional computer system, the operating system is the first layer of software running on the hardware. It has the highest privilege and is responsible for fully managing all resources of the computer system, including the processor, memory, e...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F9/455
CPCG06F9/45558G06F2009/45562G06F2009/45575G06F2009/45587G06F2009/45595
Inventor 黄玉琪
Owner 北京远为软件有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com