CN106685999A - Safety protection method for virtual machine, system and safety device - Google Patents
Safety protection method for virtual machine, system and safety device Download PDFInfo
- Publication number
- CN106685999A CN106685999A CN201710108303.9A CN201710108303A CN106685999A CN 106685999 A CN106685999 A CN 106685999A CN 201710108303 A CN201710108303 A CN 201710108303A CN 106685999 A CN106685999 A CN 106685999A
- Authority
- CN
- China
- Prior art keywords
- data
- virtual machine
- interception
- secure
- safety equipment
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0281—Proxies
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/145—Countermeasures against malicious traffic the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Virology (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a safety protection method for a virtual machine, a system and a safety device. The method comprises the following steps: intercepting a data flow of a target virtual machine, thereby acquiring a corresponding intercepted data; sending the intercepted data to the safety device; selecting a safety proxy corresponding to the target virtual machine from a plurality of safety proxies contained in the safety device, thereby acquiring a target safety proxy; utilizing the target safety proxy to detect virus for the intercepted data, thereby confirming if the intercepted data is a safety data; and if yes, performing the subsequent data routing treatment on the intercepted data by the safety device. According to the method disclosed by the invention, the purpose of saving computer resources is achieved, the centralized management for the plurality of safety proxies corresponding to multiple virtual machines becomes convenient and the management cost of the safety proxies is reduced.
Description
Technical field
The present invention relates to security technology area, more particularly to a kind of secure virtual machine means of defence, system and safety equipment.
Background technology
Currently, the security protection problem under virtualized environment becomes a popular focus of IT circles.In virtualization skill
The early stage of art, security solution there is no the protection mode for adapting to virtualized environment, people to continue to use traditional safety
Prevention policies, i.e., the equal deployment secure Protection Product external member on every virtual machine, i.e., so-called " TSM Security Agent ", this safety is prevented
Shield pattern is referred to as " having proxy mode (Agent-based) ".However, as cloud computing and Intel Virtualization Technology are applied on a large scale,
This kind of pattern has shown various disadvantages, is mainly reflected in:It is required for being respectively mounted corresponding safety on each virtual machine
Agency, storage resource, the memory source occupancy so to physics host is larger, and causes the management process phase of TSM Security Agent
Work as complexity, the management cost of TSM Security Agent is higher.
In sum as can be seen that how to realize saving computer resource simultaneously during the security protection of virtual platform
The management cost for reducing TSM Security Agent is the problem for needing further solution at present.
The content of the invention
In view of this, it is an object of the invention to provide a kind of secure virtual machine means of defence, system and safety equipment, energy
The mesh of enough management costs for realizing saving computer resource and reducing TSM Security Agent during the security protection of virtual platform
's.Its concrete scheme is as follows:
A kind of secure virtual machine means of defence, including:
The data flow of target virtual machine is intercepted, corresponding data interception is obtained;
The data interception is sent to safety equipment;
Safe generation corresponding with the target virtual machine is filtered out in the multiple TSM Security Agent included from the safety equipment
Reason, obtains targeted security agency;
Acted on behalf of using the targeted security, Viral diagnosis are carried out to the data interception, to determine that the data interception is
It is no for secure data;
If the data interception is secure data, launch follow-up corresponding to the data interception by the safety equipment
Data route processing.
Optionally, the process that the data flow to target virtual machine is intercepted, including:
Using the network driver on virtual platform, the data flow of the target virtual machine is intercepted, obtained
The data interception.
Optionally, the network driver is the network driver comprising fire wall.
Optionally, the device type of the safety equipment is virtual machine.
Optionally, the secure virtual machine means of defence, also includes:
When the upgrade patch for TSM Security Agent is got, then using the upgrade patch, in the safety equipment
All TSM Security Agent carry out upgrading processing.
The invention also discloses a kind of secure virtual machine guard system, including:
Data interception module, for intercepting to the data flow of target virtual machine, obtains corresponding data interception;
Data transmission blocks, for the data interception to be sent to safety equipment;
Screening module is acted on behalf of, for filtering out in multiple TSM Security Agent for including from the safety equipment and the target is empty
The corresponding TSM Security Agent of plan machine, obtains targeted security agency;
Data detection module, for acting on behalf of using the targeted security, carries out Viral diagnosis, with true to the data interception
Whether the fixed data interception is secure data;
Data routing module, for being secure data when the data interception, is then blocked by the safety equipment to described
Cut data and launch follow-up corresponding data route processing.
Optionally, the data interception module, specifically for using the network driver on virtual platform, to described
The data flow of target virtual machine is intercepted, and obtains the data interception.
Optionally, the secure virtual machine guard system, also includes:
Upgraded module is acted on behalf of, it is for when the upgrade patch for TSM Security Agent is got, then right using the upgrade patch
All TSM Security Agent in the safety equipment carry out upgrading processing.
The present invention further discloses a kind of safety equipment, including multiple TSM Security Agent, also include:
Data acquisition module, for obtaining the data interception obtained after the data flow to target virtual machine is intercepted;
Screening module is acted on behalf of, for filtering out safety corresponding with the target virtual machine from the plurality of TSM Security Agent
Agency, obtains targeted security agency;
Data detection module, for acting on behalf of using the targeted security, carries out Viral diagnosis, with true to the data interception
Whether the fixed data interception is secure data;
Data routing module, for being secure data when the data interception, then launches follow-up phase to the data interception
The data route processing answered.
Optionally, the device type of the safety equipment is virtual machine.
In the present invention, secure virtual machine means of defence, including:The data flow of target virtual machine is intercepted, phase is obtained
The data interception answered;Data interception is sent to safety equipment;Filter out in the multiple TSM Security Agent included from safety equipment with
The corresponding TSM Security Agent of target virtual machine, obtains targeted security agency;Acted on behalf of using targeted security, virus is carried out to data interception
Detection, to determine data interception whether as secure data;If data interception is secure data, by safety equipment to intercepting number
According to the follow-up corresponding data route processing of expansion.
It can be seen that, the present invention is placed on TSM Security Agent corresponding with virtual machine in safety equipment, when needing to destination virtual
When machine launches security protection, the present invention first carries out data interception to target virtual machine, then data interception is sent to above-mentioned peace
Full equipment, then filters out TSM Security Agent corresponding with target virtual machine in the multiple TSM Security Agent from safety equipment, so as to
Safety analysis is carried out to data interception using this TSM Security Agent for screening, it is determined that data interception is the feelings of secure data
Under condition, follow-up corresponding route processing will be launched to data interception by safety equipment, it can be seen that, the present invention is by by multiple stage
The corresponding TSM Security Agent of virtual machine is both placed in safety equipment, when needing to carry out security protection to certain virtual machine, just may be used
To carry out security protection operation using the corresponding TSM Security Agent preserved in safety equipment, so just without the need in every virtual machine
Corresponding TSM Security Agent is respectively mounted, is occurred so as to avoid the computer resource to main frame from taking larger situation, that is, realizing
The purpose of computer resource is saved, also, because the corresponding TSM Security Agent of multiple stage virtual machine is put together at safety by the present invention
In equipment, multiple TSM Security Agent corresponding to multiple stage virtual machine can be so facilitated to manage concentratedly, that is, the present invention also drops
The low management cost of TSM Security Agent.
Description of the drawings
In order to be illustrated more clearly that the embodiment of the present invention or technical scheme of the prior art, below will be to embodiment or existing
The accompanying drawing to be used needed for having technology description is briefly described, it should be apparent that, drawings in the following description are only this
Inventive embodiment, for those of ordinary skill in the art, on the premise of not paying creative work, can be with basis
The accompanying drawing of offer obtains other accompanying drawings.
Fig. 1 is a kind of secure virtual machine means of defence flow chart disclosed in the embodiment of the present invention;
Fig. 2 is a kind of specific secure virtual machine means of defence flow chart disclosed in the embodiment of the present invention;
Fig. 3 is a kind of secure virtual machine guard system structural representation disclosed in the embodiment of the present invention.
Specific embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete
Site preparation is described, it is clear that described embodiment is only a part of embodiment of the invention, rather than the embodiment of whole.It is based on
Embodiment in the present invention, it is every other that those of ordinary skill in the art are obtained under the premise of creative work is not made
Embodiment, belongs to the scope of protection of the invention.
The embodiment of the invention discloses a kind of secure virtual machine means of defence, shown in Figure 1, the method includes:
Step S11:The data flow of target virtual machine is intercepted, corresponding data interception is obtained.
Wherein, above-mentioned target virtual machine is the arbitrary virtual machine on virtual platform.
Step S12:Data interception is sent to safety equipment.
Step S13:Safe generation corresponding with target virtual machine is filtered out in the multiple TSM Security Agent included from safety equipment
Reason, obtains targeted security agency.
In the present embodiment, multiple TSM Security Agent are included in above-mentioned safety equipment, wherein, different TSM Security Agent are not corresponding to
Same virtual machine.Data interception corresponding with target virtual machine is being sent to safety equipment, it will from safety equipment
TSM Security Agent corresponding with target virtual machine is filtered out, subsequently just using the TSM Security Agent safety is carried out to above-mentioned data interception
Property analysis.
Step S14:Acted on behalf of using targeted security, Viral diagnosis are carried out to data interception, to determine that whether data interception be
Secure data.
Step S15:If data interception is secure data, by safety equipment follow-up corresponding number is launched to data interception
According to route processing.
That is, in the case where data interception corresponding with target virtual machine is determined for secure data, will be using safety
Data interception is routed to corresponding data receiver by equipment.It is understood that not being the feelings of secure data in data interception
Under condition, will forbid carrying out data route processing to above-mentioned data interception.
It can be seen that, the embodiment of the present invention is placed on TSM Security Agent corresponding with virtual machine in safety equipment, when needing to mesh
When mark virtual machine launches security protection, the embodiment of the present invention first carries out data interception to target virtual machine, then by data interception
Send to above-mentioned safety equipment, then filter out peace corresponding with target virtual machine in the multiple TSM Security Agent from safety equipment
Full Proxy, so as to the TSM Security Agent screened using this carries out safety analysis to data interception, it is determined that data interception is
In the case of secure data, follow-up corresponding route processing will be launched to data interception by safety equipment, it can be seen that, this
Bright embodiment by the way that the corresponding TSM Security Agent of multiple stage virtual machine is both placed in safety equipment, when needing that certain virtual machine is entered
During row security protection, just security protection operation can be carried out using the corresponding TSM Security Agent preserved in safety equipment, so
Just without the need for being respectively mounted corresponding TSM Security Agent in every virtual machine, so as to avoid the computer resource to main frame from taking larger feelings
Condition occurs, that is, the purpose for saving computer resource is realized, also, because the embodiment of the present invention corresponds to multiple stage virtual machine
TSM Security Agent be put together in safety equipment, can so facilitate multiple TSM Security Agent corresponding to multiple stage virtual machine to carry out
Centralized management, that is, the embodiment of the present invention also reduces the management cost of TSM Security Agent.
It is shown in Figure 2, the embodiment of the invention also discloses a kind of specific secure virtual machine means of defence, including it is as follows
Step:
Step S21:Using the network driver on virtual platform, the data flow of target virtual machine is intercepted,
Obtain data interception.
Preferably, in the present embodiment, above-mentioned network driver is specifically as follows the network driver comprising fire wall.
Further, the network driver in the present embodiment can specifically include that the fast path for carrying out fast-path processed drives
Moving cell and the slow-path driver element for carrying out slow-path process.
Step S22:Data interception is sent to secure virtual machine.
That is, the device type of the safety equipment in a upper embodiment can be specifically virtual machine.It is pointed out that this
In embodiment, obtain above-mentioned after multiple TSM Security Agent corresponding with multiple stage virtual machine by installing on common virtual machine
Secure virtual machine.In addition, in the present embodiment, corresponding to the corresponding physics host of secure virtual machine and other common virtual machines
Physics host can be with identical, it is also possible to differ.
Step S23:Safety corresponding with target virtual machine is filtered out in the multiple TSM Security Agent included from secure virtual machine
Agency, obtains targeted security agency.
Step S24:Acted on behalf of using targeted security, Viral diagnosis are carried out to data interception, to determine that whether data interception be
Secure data.
Step S25:If data interception is secure data, launch follow-up corresponding to data interception by secure virtual machine
Data route processing.
It is understood that when data interception is not secure data, will forbid carrying out data route to above-mentioned data interception
Process.
Further, the secure virtual machine means of defence in the embodiment of the present invention, can also include:Peace is directed to when getting
The upgrade patch of Full Proxy, then using upgrade patch, to safety equipment in all TSM Security Agent carry out upgrading processing.
Accordingly, the embodiment of the invention also discloses a kind of secure virtual machine guard system, shown in Figure 3, the system
Including:
Data interception module 11, for intercepting to the data flow of target virtual machine, obtains corresponding data interception;
Data transmission blocks 12, for data interception to be sent to safety equipment;
Screening module 13 is acted on behalf of, for filtering out and target virtual machine pair in multiple TSM Security Agent for including from safety equipment
The TSM Security Agent answered, obtains targeted security agency;
Data detection module 14, for acting on behalf of using targeted security, to data interception Viral diagnosis is carried out, to determine interception
Whether data are secure data;
Data routing module 15, for being secure data when data interception, is then launched by safety equipment to data interception
Follow-up corresponding data route processing.
Wherein, above-mentioned data interception module, specifically can be used for using the network driver on virtual platform, to mesh
The data flow of mark virtual machine is intercepted, and obtains data interception.
In the present embodiment, above-mentioned network driver is specifically as follows the network driver comprising fire wall.
In addition, the device type of above-mentioned safety equipment can be specifically virtual machine.
Further, the secure virtual machine guard system in the present embodiment, can also include:
Upgraded module is acted on behalf of, for when the upgrade patch for TSM Security Agent is got, then using upgrade patch, to safety
All TSM Security Agent in equipment carry out upgrading processing.
It can be seen that, the embodiment of the present invention by the way that the corresponding TSM Security Agent of multiple stage virtual machine is both placed in safety equipment, when
When needing to carry out security protection to certain virtual machine, just can be carried out using the corresponding TSM Security Agent preserved in safety equipment
Security protection is operated, so just without the need for being respectively mounted corresponding TSM Security Agent in every virtual machine, so as to avoid the calculating to main frame
The larger situation of machine resource occupation occurs, that is, the purpose for saving computer resource is realized, also, due to present invention enforcement
Example is put together at multiple stage virtual machine corresponding TSM Security Agent in safety equipment, so can facilitate to multiple stage virtual machine correspondence
Multiple TSM Security Agent managed concentratedly, that is, the embodiment of the present invention also reduces the management cost of TSM Security Agent.
Further, the embodiment of the invention also discloses a kind of safety equipment, including multiple TSM Security Agent, also include:
Data acquisition module, for obtaining the data interception obtained after the data flow to target virtual machine is intercepted;
Screening module is acted on behalf of, for filtering out TSM Security Agent corresponding with target virtual machine from multiple TSM Security Agent, is obtained
To targeted security agency;
Data detection module, for acting on behalf of using targeted security, to data interception Viral diagnosis is carried out, to determine interception number
According to whether being secure data;
Data routing module, for being secure data when data interception, then launches follow-up corresponding data to data interception
Route processing.
Wherein, the device type of above-mentioned safety equipment is specifically as follows virtual machine.
The embodiment of the present invention is right when needing by the way that the corresponding TSM Security Agent of multiple stage virtual machine is both placed in safety equipment
When certain virtual machine carries out security protection, just safety can be carried out using the corresponding TSM Security Agent preserved in safety equipment anti-
Shield operation, so just without the need for being respectively mounted corresponding TSM Security Agent in every virtual machine, so as to avoid the computer resource to main frame
Take larger situation to occur, that is, the purpose for saving computer resource is realized, also, because the embodiment of the present invention will be many
The corresponding TSM Security Agent of platform virtual machine is put together in safety equipment, can so facilitate corresponding to multiple stage virtual machine multiple
TSM Security Agent is managed concentratedly, that is, the embodiment of the present invention also reduces the management cost of TSM Security Agent.
Finally, in addition it is also necessary to explanation, herein, such as first and second or the like relational terms be used merely to by
One entity or operation make a distinction with another entity or operation, and not necessarily require or imply these entities or operation
Between there is any this actual relation or order.And, term " including ", "comprising" or its any other variant meaning
Covering including for nonexcludability, so that a series of process, method, article or equipment including key elements not only includes that
A little key elements, but also including other key elements being not expressly set out, or also include for this process, method, article or
The intrinsic key element of equipment.In the absence of more restrictions, the key element for being limited by sentence "including a ...", does not arrange
Except also there is other identical element in including the process of the key element, method, article or equipment.
Above detailed Jie is carried out to a kind of secure virtual machine means of defence provided by the present invention, system and safety equipment
Continue, specific case used herein is set forth to the principle and embodiment of the present invention, the explanation of above example is only
It is to be used to help understand the method for the present invention and its core concept;Simultaneously for one of ordinary skill in the art, according to this
Bright thought, will change in specific embodiments and applications, and in sum, this specification content should not be managed
Solve as limitation of the present invention.
Claims (10)
1. a kind of secure virtual machine means of defence, it is characterised in that include:
The data flow of target virtual machine is intercepted, corresponding data interception is obtained;
The data interception is sent to safety equipment;
TSM Security Agent corresponding with the target virtual machine is filtered out in the multiple TSM Security Agent included from the safety equipment, is obtained
To targeted security agency;
Acted on behalf of using the targeted security, Viral diagnosis are carried out to the data interception, to determine that whether the data interception be
Secure data;
If the data interception is secure data, by the safety equipment follow-up corresponding number is launched to the data interception
According to route processing.
2. secure virtual machine means of defence according to claim 1, it is characterised in that the data to target virtual machine
The process that stream is intercepted, including:
Using the network driver on virtual platform, the data flow of the target virtual machine is intercepted, obtain described
Data interception.
3. secure virtual machine means of defence according to claim 2, it is characterised in that
The network driver is the network driver comprising fire wall.
4. secure virtual machine means of defence according to claim 1, it is characterised in that the device type of the safety equipment
For virtual machine.
5. the secure virtual machine means of defence according to any one of Claims 1-4, it is characterised in that also include:
When the upgrade patch for TSM Security Agent is got, then using the upgrade patch, to the safety equipment in it is all
TSM Security Agent carries out upgrading processing.
6. a kind of secure virtual machine guard system, it is characterised in that include:
Data interception module, for intercepting to the data flow of target virtual machine, obtains corresponding data interception;
Data transmission blocks, for the data interception to be sent to safety equipment;
Screening module is acted on behalf of, for filtering out and the target virtual machine in multiple TSM Security Agent for including from the safety equipment
Corresponding TSM Security Agent, obtains targeted security agency;
Data detection module, for acting on behalf of using the targeted security, carries out Viral diagnosis, to determine to the data interception
State whether data interception is secure data;
Data routing module, for being secure data when the data interception, then by the safety equipment to the interception number
According to the follow-up corresponding data route processing of expansion.
7. secure virtual machine guard system according to claim 6, it is characterised in that
The data interception module, specifically for using the network driver on virtual platform, to the target virtual machine
Data flow intercepted, obtain the data interception.
8. the secure virtual machine guard system according to claim 6 or 7, it is characterised in that also include:
Upgraded module is acted on behalf of, for when the upgrade patch for TSM Security Agent is got, then using the upgrade patch, to described
All TSM Security Agent in safety equipment carry out upgrading processing.
9. a kind of safety equipment, it is characterised in that including multiple TSM Security Agent, also include:
Data acquisition module, for obtaining the data interception obtained after the data flow to target virtual machine is intercepted;
Screening module is acted on behalf of, for filtering out safe generation corresponding with the target virtual machine from the plurality of TSM Security Agent
Reason, obtains targeted security agency;
Data detection module, for acting on behalf of using the targeted security, carries out Viral diagnosis, to determine to the data interception
State whether data interception is secure data;
Data routing module, for being secure data when the data interception, then launches follow-up corresponding to the data interception
Data route processing.
10. safety equipment according to claim 9, it is characterised in that the device type of the safety equipment is virtual machine.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710108303.9A CN106685999A (en) | 2017-02-27 | 2017-02-27 | Safety protection method for virtual machine, system and safety device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710108303.9A CN106685999A (en) | 2017-02-27 | 2017-02-27 | Safety protection method for virtual machine, system and safety device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN106685999A true CN106685999A (en) | 2017-05-17 |
Family
ID=58861354
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710108303.9A Pending CN106685999A (en) | 2017-02-27 | 2017-02-27 | Safety protection method for virtual machine, system and safety device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106685999A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109189558A (en) * | 2018-09-04 | 2019-01-11 | 郑州云海信息技术有限公司 | A kind of method and device for secure virtual machine protection |
| CN111459609A (en) * | 2020-03-10 | 2020-07-28 | 奇安信科技集团股份有限公司 | Virtual machine safety protection method and device and electronic equipment |
| CN112565203A (en) * | 2020-11-19 | 2021-03-26 | 深信服科技股份有限公司 | Centralized management platform |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20090254990A1 (en) * | 2008-04-05 | 2009-10-08 | Mcgee William Gerald | System and method for intelligent coordination of host and guest intrusion prevention in virtualized environment |
| CN104753852A (en) * | 2013-12-25 | 2015-07-01 | 中国移动通信集团公司 | Virtualization platform and security protection method and device |
| CN106375281A (en) * | 2016-08-25 | 2017-02-01 | 杭州数梦工场科技有限公司 | Message control method and device |
-
2017
- 2017-02-27 CN CN201710108303.9A patent/CN106685999A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20090254990A1 (en) * | 2008-04-05 | 2009-10-08 | Mcgee William Gerald | System and method for intelligent coordination of host and guest intrusion prevention in virtualized environment |
| US8856914B2 (en) * | 2008-04-05 | 2014-10-07 | Trend Micro Incorporated | System and method for intelligent coordination of host and guest intrusion prevention in virtualized environment |
| CN104753852A (en) * | 2013-12-25 | 2015-07-01 | 中国移动通信集团公司 | Virtualization platform and security protection method and device |
| CN106375281A (en) * | 2016-08-25 | 2017-02-01 | 杭州数梦工场科技有限公司 | Message control method and device |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109189558A (en) * | 2018-09-04 | 2019-01-11 | 郑州云海信息技术有限公司 | A kind of method and device for secure virtual machine protection |
| CN111459609A (en) * | 2020-03-10 | 2020-07-28 | 奇安信科技集团股份有限公司 | Virtual machine safety protection method and device and electronic equipment |
| CN111459609B (en) * | 2020-03-10 | 2024-04-19 | 奇安信科技集团股份有限公司 | Virtual machine safety protection method and device and electronic equipment |
| CN112565203A (en) * | 2020-11-19 | 2021-03-26 | 深信服科技股份有限公司 | Centralized management platform |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108369625B (en) | Dual memory introspection for protecting multiple network endpoints | |
| US9596251B2 (en) | Method and system for providing security aware applications | |
| US9166988B1 (en) | System and method for controlling virtual network including security function | |
| EP3714583B1 (en) | Apparatus, system and method for security management based on event correlation in a distributed multi-layered cloud environment | |
| EP3729780B1 (en) | Method and system for managing iot-based devices in an internet-of-things environment | |
| US7836174B2 (en) | Systems and methods for grid-based data scanning | |
| EP3433990A1 (en) | Protecting dynamic and short-lived virtual machine instances in cloud environments | |
| CN109379347B (en) | Safety protection method and equipment | |
| CN104392175A (en) | System and method and device for processing cloud application attack behaviors in cloud computing system | |
| EP3476101B1 (en) | Method, device and system for network security | |
| CN106911648B (en) | Environment isolation method and equipment | |
| CN105075212A (en) | Hybrid firewall for data center security | |
| CN106685999A (en) | Safety protection method for virtual machine, system and safety device | |
| CN102763112A (en) | Externally managed security and validation processing device | |
| CN113938321B (en) | Extensible operation and maintenance management system, method, electronic equipment and readable storage medium | |
| CN105119736A (en) | Data check method and device in network function virtualization architecture | |
| CN104504495A (en) | Operation and maintenance abnormity processing method, device and equipment | |
| CN104169939A (en) | Method and system realizing virtualization safety | |
| KR102559568B1 (en) | Apparatus and method for security control in IoT infrastructure environment | |
| CN107085516A (en) | A kind of method and device for changing configuration | |
| CN109343944A (en) | Data processing method, device, terminal and the storage medium of eSIM card | |
| CN116781312A (en) | Security protection method, cloud security platform and storage medium | |
| US10972433B2 (en) | Method for the management and maintenance of an aircraft comprising a zone with a high degree of security | |
| CN105991343A (en) | Update method and device of feature libraries | |
| CN114338175B (en) | Data collection management system and data collection management method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170517 |