The invention discloses a method and device for protecting integrity of a kernel of a virtual machine. The method comprises the following steps: verifying starting integrity of a host machine and the virtual machine and establishing a credible running environment; establishing a first page table for the virtual machine, and storing a mapping relation between a memory page of the virtual machine and a memory page of the host machine in the first page table; judging whether a module running in the virtual machine is an incredible module or not according to the credible running environment in a process of running the virtual machine; establishing a second page table if the incredible module does not exist in the module of the virtual machine; and transferring the mapping relation between the memory page of the incredible module and the memory page of the host machine into the second page table from the first page table. The memory of the incredible module is isolated from the memory of a host machine main body, so that the incredible module can be supervised independently on the premise that the incredible module can be allowed to still run, possible aggressive behaviors of the incredible module can be controlled, and integrity of the kernel of the virtual machine can be protected while normal running of the virtual machine is guaranteed.