摘要
随着云计算技术规模的不断扩大,其安全问题备受人们担忧,面对亟待解决的云计算安全问题,基于TPCM双系统体系结构的可信计算,实现了为云计算平台上的每个虚拟机提供主动免疫可信安全机制,从而防止了云环境下虚拟机化技术相关的安全问题。然而目前针对如何管理vTPCM与虚拟机的生命周期并没有相应的具体方案,因此文章首先提出了管理vTPCM实例的整体架构,旨在解决vTPCM实例与虚拟机生命周期同步;然后,提出了一种基于可信计算的vTPCM管理方案,解决了虚拟机迁移过程中的生命周期同步问题,以及虚拟机访问vTPCM实例与物理机访问TPCM的映射问题,从而有效地提高vTPCM与虚拟机的关联性。
With the continuous expansion of cloud computing technology, its security issues have been worried about. In the face of the urgent need to solve the cloud computing security issues, the Trusted Computing TPCM-based dual-system architecture enables the provision of proactive immune trusted security mechanisms for each virtual machine on the cloud computing platform, thus preventing the cloud environment virtual machine technology-related security issues. However, this paper first puts forward the overall architecture of managing v TPCM instances, which aims at solving the management of the lifecycle of v TPCM instance and virtual machine. Then, the paper analyzes the v TPCM instance and the virtual machine lifecycle, This paper proposes a management scheme based on Trusted Computing to solve the problem of lifecycle synchronization in virtual machine migration process and the mapping between virtual machine accesses v TPCM instance and physical machine access TPCM, so as to effectively improve the association between v TPCM and virtual machine.
作者
张建标
杨石松
涂山山
王晓
ZHANG Jianbiao;YANG Shisong;TU Shanshan;WANG Xiao(Beijing Key Laboratory of Trusted Computing, Faculty of Information Technology, Beijing University of Technology, Beijing 100124;National Engineering Laboratory for Critical Technologies of Information Security Classified Protection, Beijing 100142, China)
出处
《信息网络安全》
CSCD
北大核心
2018年第4期9-14,共6页
Netinfo Security
基金
国家自然科学基金[61671030]
国家高技术研究发展计划(863计划)[2015AA016002]
