| HyperSpector:基于UEFI的VMM动态可信监控基的设计与实现 |
| |
| 引用本文: | 王锴,李志华,黄凡,严飞. HyperSpector:基于UEFI的VMM动态可信监控基的设计与实现[J]. 网络与信息安全学报, 2016, 2(12): 47-55. DOI: 10.11959/j.issn.2096-109x.2016.00133 |
| |
| 作者姓名: | 王锴 李志华 黄凡 严飞 |
| |
| 作者单位: | 1. 空天信息安全与可信计算教育部重点实验室,湖北 武汉 430072;2. 武汉大学计算机学院,湖北 武汉430072 |
| |
| 基金项目: | 国家自然科学基金资助项目(61003268);国家自然科学基金资助项目(61272452);国家重点基础研究发展计划(“973”计划)基金资助项目(2014CB340601) |
| |
| 摘 要: | 随着计算机技术的高速发展,云计算这一计算模式得到迅速推广。尽管可通过VMM来对云服务安全状态进行监控与安全增强,但VMM自身的安全性往往是安全的前提。为了增强VMM的安全性,提出一种基于UEFI的VMM动态可信监控基的设计与实现方法,通过UEFI的固件运行特性,在VMM下增加一层安全监控层,实现在不增加新硬件成本的前提下对VMM的透明监测。实验表明,所提出的监控方案是安全有效的。
|
| 关 键 词: | 云计算 可信计算 动态可信 统一的可扩展固件接口 虚拟机监控器 |
HyperSpector:VMM dynamic trusted monitor based on UEFI |
| |
| Kai WANG,Zhi-hua LI,Fan,HUANG,Fei YAN. HyperSpector:VMM dynamic trusted monitor based on UEFI[J]. Chinese Journal of Network and Information Security, 2016, 2(12): 47-55. DOI: 10.11959/j.issn.2096-109x.2016.00133 |
| |
| Authors: | Kai WANG Zhi-hua LI Fan HUANG Fei YAN |
| |
| Affiliation: | 1. Key Laboratory of Aerospace Information Security and Trusted Computing of Ministry of Education,Wuhan 430072,China;2. School of Computer,Wuhan University,Wuhan 430072,China |
| |
| Abstract: | With the rapid innovation of computer technology,cloud computing model expands.VMM was intro-duced to enhance the cloud safety and enhance the cloud safety.The safety of VMM itself,however,is the prerequi-site of the safety of the cloud service.A method of VMM dynamic trusted monitor based on UEFI was proposed on the purpose of enhancing the safety of VMM.The monitor of VMM was realized by adding a monitor layer beneath it,which needed no more newly hardware cost.Experiment results show that the solution is efficient. |
| |
| Keywords: | cloud computing trusted computing dynamic trust UEFI SMM |
|
| 点击此处可从《网络与信息安全学报》浏览原始摘要信息 |
|
点击此处可从《网络与信息安全学报》下载免费的PDF全文 |
