CN107368354B - 一种虚拟机安全隔离方法 - Google Patents
一种虚拟机安全隔离方法 Download PDFInfo
- Publication number
- CN107368354B CN107368354B CN201710657661.5A CN201710657661A CN107368354B CN 107368354 B CN107368354 B CN 107368354B CN 201710657661 A CN201710657661 A CN 201710657661A CN 107368354 B CN107368354 B CN 107368354B
- Authority
- CN
- China
- Prior art keywords
- virtual machine
- page frame
- memory
- attribute table
- frame attribute
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/455—Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
- G06F9/45533—Hypervisors; Virtual machine monitors
- G06F9/45558—Hypervisor-specific management and integration aspects
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/455—Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
- G06F9/45533—Hypervisors; Virtual machine monitors
- G06F9/45558—Hypervisor-specific management and integration aspects
- G06F2009/45583—Memory management, e.g. access or allocation
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/455—Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
- G06F9/45533—Hypervisors; Virtual machine monitors
- G06F9/45558—Hypervisor-specific management and integration aspects
- G06F2009/45587—Isolation or security of virtual machine instances
Abstract
Description
Claims (8)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710657661.5A CN107368354B (zh) | 2017-08-03 | 2017-08-03 | 一种虚拟机安全隔离方法 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710657661.5A CN107368354B (zh) | 2017-08-03 | 2017-08-03 | 一种虚拟机安全隔离方法 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN107368354A CN107368354A (zh) | 2017-11-21 |
CN107368354B true CN107368354B (zh) | 2021-02-02 |
Family
ID=60310502
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710657661.5A Active CN107368354B (zh) | 2017-08-03 | 2017-08-03 | 一种虚拟机安全隔离方法 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN107368354B (zh) |
Families Citing this family (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108418817B (zh) * | 2018-02-14 | 2021-02-26 | 华为技术有限公司 | 一种加密方法及装置 |
CN109901911B (zh) * | 2018-11-22 | 2023-07-07 | 海光信息技术股份有限公司 | 一种信息设置方法、控制方法、装置及相关设备 |
CN109766164B (zh) * | 2018-11-22 | 2021-06-18 | 海光信息技术股份有限公司 | 一种访问控制方法、内存管理方法及相关装置 |
CN109614204A (zh) * | 2018-12-21 | 2019-04-12 | 成都海光集成电路设计有限公司 | 内存隔离保护方法、隔离检查硬件、soc芯片和存储介质 |
US10936506B2 (en) * | 2019-02-22 | 2021-03-02 | Chengdu Haiguang Integrated Circuit Design Co., Ltd. | Method for tagging control information associated with a physical address, processing system and device |
CN110825492B (zh) * | 2019-10-31 | 2023-05-09 | 海光信息技术股份有限公司 | 安全数据内存隔离方法、装置、设备、存储介质 |
CN110928646B (zh) * | 2019-11-22 | 2023-02-17 | 海光信息技术股份有限公司 | 一种访问共享内存的方法、装置、处理器和计算机系统 |
CN111124956B (zh) * | 2019-11-22 | 2023-03-07 | 海光信息技术股份有限公司 | 一种容器保护方法、处理器、操作系统及计算机设备 |
CN112099903B (zh) * | 2020-08-18 | 2023-01-31 | 海光信息技术股份有限公司 | 一种虚拟机的内存管理方法、装置、cpu芯片及服务器 |
CN112052069B (zh) * | 2020-08-25 | 2024-03-12 | 海光信息技术股份有限公司 | 一种写、读虚拟机标识的方法、装置及相关设备 |
CN112988508B (zh) * | 2021-03-04 | 2022-03-18 | 浙江中控研究院有限公司 | 一种基于内存隔离的可信plc嵌入式系统 |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101158924A (zh) * | 2007-11-27 | 2008-04-09 | 北京大学 | 一种虚拟机管理器的动态内存映射方法 |
CN101520738A (zh) * | 2008-02-27 | 2009-09-02 | 黄歆媚 | 基于设备访存管理技术的虚拟机系统及其设备访问方法 |
CN103488588A (zh) * | 2013-10-09 | 2014-01-01 | 中国科学院计算技术研究所 | 一种内存保护方法、系统及网络接口控制器 |
CN104468568A (zh) * | 2014-12-05 | 2015-03-25 | 国云科技股份有限公司 | 一种虚拟机安全隔离方法 |
CN105939309A (zh) * | 2015-07-28 | 2016-09-14 | 杭州迪普科技有限公司 | 一种虚拟机隔离方法及装置 |
CN105978915A (zh) * | 2016-07-19 | 2016-09-28 | 浪潮电子信息产业股份有限公司 | 一种基于云资源控制的安全隔离方法 |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8464252B2 (en) * | 2009-02-27 | 2013-06-11 | Red Hat, Inc. | Per process virtual machines |
-
2017
- 2017-08-03 CN CN201710657661.5A patent/CN107368354B/zh active Active
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101158924A (zh) * | 2007-11-27 | 2008-04-09 | 北京大学 | 一种虚拟机管理器的动态内存映射方法 |
CN101520738A (zh) * | 2008-02-27 | 2009-09-02 | 黄歆媚 | 基于设备访存管理技术的虚拟机系统及其设备访问方法 |
CN103488588A (zh) * | 2013-10-09 | 2014-01-01 | 中国科学院计算技术研究所 | 一种内存保护方法、系统及网络接口控制器 |
CN104468568A (zh) * | 2014-12-05 | 2015-03-25 | 国云科技股份有限公司 | 一种虚拟机安全隔离方法 |
CN105939309A (zh) * | 2015-07-28 | 2016-09-14 | 杭州迪普科技有限公司 | 一种虚拟机隔离方法及装置 |
CN105978915A (zh) * | 2016-07-19 | 2016-09-28 | 浪潮电子信息产业股份有限公司 | 一种基于云资源控制的安全隔离方法 |
Also Published As
Publication number | Publication date |
---|---|
CN107368354A (zh) | 2017-11-21 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN107368354B (zh) | 一种虚拟机安全隔离方法 | |
US11321452B2 (en) | Execution environment virtualization method and apparatus and virtual execution environment access method and apparatus | |
EP3602376B1 (en) | Monitoring of memory page transitions between a hypervisor and a virtual machine | |
US9098325B2 (en) | Persistent volume at an offset of a virtual block device of a storage server | |
CN107562515B (zh) | 一种在虚拟化技术中管理内存的方法 | |
CN110928646B (zh) | 一种访问共享内存的方法、装置、处理器和计算机系统 | |
KR101966767B1 (ko) | 클라우드 서비스를 위한 암호화 키 관리 시스템 | |
US20170277898A1 (en) | Key management for secure memory address spaces | |
US10372628B2 (en) | Cross-domain security in cryptographically partitioned cloud | |
CN109901911A (zh) | 一种信息设置方法、控制方法、装置及相关设备 | |
CN109523261B (zh) | 区块链终端的交易验证方法、相关装置及可读存储介质 | |
CN101783801A (zh) | 一种基于网络的软件保护方法、客户端及服务器 | |
US10938559B2 (en) | Security key identifier remapping | |
US11468201B2 (en) | System and method for slice virtual disk encryption | |
CN107430555B (zh) | 用于存储器保护的高速缓存和数据组织 | |
CN113395271A (zh) | 一种云计算平台中数据安全访问方法及云计算平台 | |
TWI797353B (zh) | 動態密碼密鑰擴展之電路、方法及系統 | |
CN110188051B (zh) | 标记与物理地址相关的控制信息的方法、处理系统和设备 | |
CN107562514B (zh) | 一种物理内存访问控制与隔离方法 | |
US20140289517A1 (en) | Methods and apparatuses for securing tethered data | |
KR101761799B1 (ko) | 단말의 보안 데이터 관리 장치 및 그 방법 | |
CN107516052B (zh) | 一种内存访问隔离方法 | |
CN112416526B (zh) | 一种直接存储访问方法、装置及相关设备 | |
CN111857947B (zh) | 内存隔离方法、隔离检查电路和cpu芯片 | |
CN110990120B (zh) | 虚拟机监视器分区间通信方法及装置、存储介质和终端 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
TA01 | Transfer of patent application right |
Effective date of registration: 20180110 Address after: 300143 Tianjin Haitai Huayuan Industrial Zone No. 18 West North 2-204 industrial incubation -3-8 Applicant after: Hai Guang Information Technology Co., Ltd. Address before: 201203 3F, No. 1388, 02-01, Zhang Dong Road, Pudong New Area, Shanghai Applicant before: Analog Microelectronics (Shanghai) Co., Ltd. |
|
TA01 | Transfer of patent application right | ||
CB02 | Change of applicant information |
Address after: 300143 Tianjin Haitai Huayuan Industrial Zone No. 18 West North 2-204 industrial incubation -3-8 Applicant after: Haiguang Information Technology Co., Ltd Address before: 300143 Tianjin Haitai Huayuan Industrial Zone No. 18 West North 2-204 industrial incubation -3-8 Applicant before: HAIGUANG INFORMATION TECHNOLOGY Co.,Ltd. |
|
CB02 | Change of applicant information | ||
GR01 | Patent grant | ||
GR01 | Patent grant |