计算机工程Issue(12):26-32,7.DOI:10.3969/j.issn.1000-3428.2014.12.005
云计算客户虚拟机间的安全机制研究与实现
Research and Implementation of Security Mechanism Among Guest Virtual Machine in Cloud Computing
摘要
Abstract
The elastic cloud computing service relies on virtualization technology. However, security problems of virtualization technology are also posing threats to cloud computing. This paper focuses on the risks confronted by guest virtual machine in cloud computing. Some mechanisms,including a centralized-managing and distributed-executing access control and a cloud resource controlling based separation,are designed to protect the safety of guest virtual machine based on an analysis about the security requirements of guest virtual machine. After that,these mechanisms are implemented in a XEN based OPENSTACK cloud environment. Some experiments are designed as well to test these mechanisms, which show improvement is made in protecting guest virtual machine in cloud environment and prove the validity of these mechanisms.关键词
云计算/虚拟化安全/客户虚拟机/强制访问控制/隔离机制/中国墙策略Key words
cloud computing/virtualization security/guest virtual machine/mandatory access control/separation mechanism/Chinese wall strategy分类
信息技术与安全科学引用本文复制引用
乔然,胡俊,荣星..云计算客户虚拟机间的安全机制研究与实现[J].计算机工程,2014,(12):26-32,7.基金项目
国家科技重大专项基金资助项目(2012ZX03002003)。 (2012ZX03002003)
