计算机应用研究2013,Vol.30Issue(9):2784-2787,4.DOI:10.3969/j.issn.1001-3695.2013.09.056
一种基于互信的特权分离虚拟机安全模型研究
Separate privilege virtual machine security model based on mutual trust
禹聪 1李立新 1王魁 1余文涛1
作者信息
- 1. 信息工程大学密码工程学院,郑州450004
- 折叠
摘要
Abstract
Virtual machine security issues have been the focus of attention.The permissions of traditional management domain Dom0 are too large,so that the user's privacy is threatened.At the same time,once the attacker compromises Dom0,it can threaten all the users.This paper presented a separate privilege virtual machine security model based on mutual trust(MTSP).It split Dom0's privileges into three parts:the device driver,forming the isolated driver domain; the operations of the user's privacy,forming a DomU management domain; remaining forming Thin Dom0.It achieved the startup of the system by the VMM and user together restricting each other.Combined with the model,the prototype system was implemented and security analysis and performance testing were done.It can protect the users' privacy,apportion the risk and isolate fault.关键词
互信/特权分离/虚拟机安全/安全模型Key words
mutual trust/ separation of privilege / virtual machine security/ security model分类
信息技术与安全科学引用本文复制引用
禹聪,李立新,王魁,余文涛..一种基于互信的特权分离虚拟机安全模型研究[J].计算机应用研究,2013,30(9):2784-2787,4.
