| Research on Security Algorithm of Virtual Machine Live Migration for KVM Virtualization System | |
| Fan, Wei ; Zhang, Zhujun ; Wang, Tingting ; Hu, Bo ; Qing, Sihan ; Sun, Degang | |
| 2016 | |
| 关键词 | Live migration Security threats Security algorithm KVM virtualization system |
| 英文摘要 | Live migration of virtual machine is the process of moving VMs from one physical server to another server keeping services running in VMs, and facilitates load balancing, energy saving, hardware dependent, remote migration and so on. This novel technology brings a huge convenience, and also presents new security challenges that the security concern is the major factor effecting this technology widely adopted in IT industry. Live migration exposes VM's data as plaintext to the network as a result of vulnerabilities in the migration protocol. The traditional protection way is using the SSL protocol, but that consume too much time and not as safe as it used to be, few users adopt this way. So we design a security algorithm based original migration algorithm making up for the lack of security. In this paper, firstly, we analyze and verify security threats to live migration. Secondly, through the analysis on the live migration mechanism, the bottom driver, and the source code of KVM virtualization system, we design a security algorithm for live migration to meet the security needs of different users. Thirdly, the new security algorithm which we innovatively add three functions to the original algorithm to ensure migration data to remain confidential and unmodified during the transmission. The security algorithm make up the security vulnerabilities of original migration mechanism and take less time than the SSL. Finally, a series of experiments validate the algorithm that could solve the balance of the security and performance in live migration process.; CPCI-S(ISTP); fanwei@iie.ac.cn; zhangzhujun@iie.ac.cn; wangtingting9071@iie.ac.cn; hubo@iie.ac.cn; qsihan@iie.ac.cn; sundegang@iie.ac.cn; 54-70; 9977 |
| 语种 | 英语 |
| 出处 | 18th International Conference on Information and Communications Security (ICICS) |
| DOI标识 | 10.1007/978-3-319-50011-9_5 |
| 内容类型 | 其他 |
| 源URL | [http://ir.pku.edu.cn/handle/20.500.11897/460006]  |
| 专题 | 软件与微电子学院 |
| 推荐引用方式 GB/T 7714 | Fan, Wei,Zhang, Zhujun,Wang, Tingting,et al. Research on Security Algorithm of Virtual Machine Live Migration for KVM Virtualization System. 2016-01-01. |
| 个性服务 |
| 查看访问统计 |
| 相关权益政策 |
| 暂无数据 |
| 收藏/分享 |
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
修改评论