The invention discloses a multi-core environment process kernel stack protection method based on hardware virtualization, and the method comprises the steps: embedding a protection system into a hypervisor of a virtual machine manager, and providing integrity protection for a process kernel stack in a client. According to the method, in the multi-core environment, real-time integrity protection isprovided for the whole kernel stack area of any process. A protection object of the method is not limited to part of safe and sensitive data any more, and all data contents on a process kernel stackare protected, including control data and non-control data on the kernel stack; the protection method is suitable for a multi-core environment, and is effective in a single-core environment. The method not only can defend malicious attacks from a process local processor, but also can defend malicious attacks from other processors, and the defense capability is more comprehensive. In addition, theprotection mechanism of the method is continuous and real-time, no protection gap exists, and the safety of the system can be effectively enhanced.