Research And Implementation On Dynamic Migration Of Trusted Virtual Environment In Cloud Environment

The rapid development of cloud computing technology makes the physical resources be fully utilized and also reduces the use cost of cloud tenant.The dynamic migration of virtual machine is one of the key technologies of cloud computing,but the traditional migration method doesn't fully consider about the problems of safety level of platform authentication,there are serious safety hazards during migration process,and solving the safety issues in migration process is also extremely urgent.Aiming at the service mode of cloud computing platform,introducing the reliable computing technology can effectively improve the safety level of cloud platform.Information Safety Technology Basic Needs of Information System Security Level Protection this national standard also proposes the requirements on reliable computing technology,regarding it as an important gist for level protection evaluation and test.By using TPCM,the protection system such as cloud platform completed the changes from passive defense to active immunity,and applying the reliable computing technology to improve the safety of dynamic migration already becomes the current tendency.Facing with the potential safety risks in dynamic immigration process,the main research work in this paper is listed as follows:(1)Conduct need analysis on the platform from safety and performance,aiming at the potential safety risks in dynamic migration,propose the migration platform framework of VM-vTPCM,design VM-vTPCM synchronous dynamic migration protocol,and formulate complete safety migration schemes;(2)Adopt the modular development ideas,design and realize vTPCM management module in detail,deploy the vTPCM management module in each computational node,and conduct management and scheduling on the context information and lifecycle of all VM and vTPCM living examples;VM-vTPCM association list of vTPCM management module maintenance matches with the status data collection module,completing the storage and migration work of status data,and further completing the synchronous dynamic migration of VM-vTPCM;(3)Aiming at the synchronous migration process of VM-vTPCM,design and realize dynamic migration engine,deploy the dynamic migration engine on the controlling node,formulate the complete synchronous dynamic migration strategies based on the migration protocol,and according to dynamic migration strategies,select one of the computational nodes as the target platform,and adopting the migration status data and recovering running status,complete the whole VM-vTPCM dynamic migration.In the end,each proposed functional module is realized and tested based on OpenStack cloud platform and virtual infrastructure of KVM,testing VM-vTPCM synchronous live migration from two aspects including function and performance.The experiment results showed that as for security,the security of virtual machine migration is improved by combining the live migration of virtual machine and the migration of vTPCM instance;In terms of performance,due to the introduction of vTPCM instance migration in the migration process,the total migration time increased by 4.8% on average.Overall,migration performance is good and can meet the principle of transparency to the upper users of the virtual machine.