-
1.发明申请Virtual Machine Monitoring Method, System and Computer Readable Storage Medium 有权虚拟机监控方法,系统和计算机可读存储介质公开(公告)号:US20130067470A1
公开(公告)日:2013-03-14
申请号:US13287650
申请日:2011-11-02
申请人: Zhi-Wei Chen , Chia-Wei Tien , Chin-Wei Tien , Chih-Hung Lin
发明人: Zhi-Wei Chen , Chia-Wei Tien , Chin-Wei Tien , Chih-Hung Lin
IPC分类号: G06F9/455
CPC分类号: G06F21/53 , G06F9/45558 , G06F11/3093 , G06F2009/45587 , G06F2201/815 , G06F2201/865
摘要: A virtual machine monitoring method used in a virtual machine monitoring system is provided. The virtual machine monitoring method includes retrieving a hypercall transmitted from one of a plurality of virtual machines to a hypervisor of a virtual machine monitoring system, wherein the hypercall is used for establishing a channel between a source virtual machine and a target virtual machine. A central control virtual machine ID information in the hypervisor is retrieved. A type of the channel established by the hypercall is determined according to the central control virtual machine ID information and channel-establishing information corresponding to the hypercall. When the channel is a private channel that is not related to a central control virtual machine of the virtual machines, a security module is used to monitor the private channel.
摘要翻译: 提供了虚拟机监控系统中使用的虚拟机监控方法。 所述虚拟机监视方法包括检索从多个虚拟机中的一个发送到虚拟机监视系统的管理程序的超级呼叫,其中,所述超级呼叫用于在源虚拟机和目标虚拟机之间建立通道。 检索管理程序中的中央控制虚拟机ID信息。 根据中心控制虚拟机ID信息和对应于该超级呼叫的信道建立信息来确定由超级呼叫建立的信道类型。 当信道是与虚拟机的中央控制虚拟机无关的专用信道时,使用安全模块来监视专用信道。
-
2.发明授权Virtual machine monitoring method, system and computer readable storage medium 有权虚拟机监控方式,系统和计算机可读存储介质公开(公告)号:US08650567B2
公开(公告)日:2014-02-11
申请号:US13287650
申请日:2011-11-02
申请人: Zhi-Wei Chen , Chia-Wei Tien , Chin-Wei Tien , Chih-Hung Lin
发明人: Zhi-Wei Chen , Chia-Wei Tien , Chin-Wei Tien , Chih-Hung Lin
IPC分类号: G06F9/455
CPC分类号: G06F21/53 , G06F9/45558 , G06F11/3093 , G06F2009/45587 , G06F2201/815 , G06F2201/865
摘要: A virtual machine monitoring method used in a virtual machine monitoring system is provided. The virtual machine monitoring method includes retrieving a hypercall transmitted from one of a plurality of virtual machines to a hypervisor of a virtual machine monitoring system, wherein the hypercall is used for establishing a channel between a source virtual machine and a target virtual machine. A central control virtual machine ID information in the hypervisor is retrieved. A type of the channel established by the hypercall is determined according to the central control virtual machine ID information and channel-establishing information corresponding to the hypercall. When the channel is a private channel that is not related to a central control virtual machine of the virtual machines, a security module is used to monitor the private channel.
摘要翻译: 提供了虚拟机监控系统中使用的虚拟机监控方法。 所述虚拟机监视方法包括检索从多个虚拟机中的一个发送到虚拟机监视系统的管理程序的超级呼叫,其中,所述超级呼叫用于在源虚拟机和目标虚拟机之间建立通道。 检索管理程序中的中央控制虚拟机ID信息。 根据中心控制虚拟机ID信息和对应于该超级呼叫的信道建立信息来确定由超级呼叫建立的信道类型。 当信道是与虚拟机的中央控制虚拟机无关的专用信道时,使用安全模块来监视专用信道。
-
公开(公告)号:US08286258B2
公开(公告)日:2012-10-09
申请号:US12631546
申请日:2009-12-04
申请人: Chin-Wei Tien , Yao-Ting Chung , Chih-Hung Lin , Jain-Shing Wu
发明人: Chin-Wei Tien , Yao-Ting Chung , Chih-Hung Lin , Jain-Shing Wu
IPC分类号: H04L29/06
CPC分类号: G06F21/554 , G06F21/6263
摘要: A monitor method and a monitor apparatus for monitoring a data of hardware are provided. The data has private information, identification information and at least one first network transmission address. The monitor apparatus comprises a storage unit and a processing unit. The data is stored in the storage unit according to the identification information. The processing unit is configured to record the identification information and the at least one first network transmission address of the data in a mark information table. In response to a sending system call, when a transmission is arranged to transmit the private information of the data to a second network transmission address which is different from the at least one first network transmission address, the processing unit will output a signal to cease the transmission.
摘要翻译: 提供了一种用于监视硬件数据的监视方法和监视装置。 数据具有私人信息,识别信息和至少一个第一网络传输地址。 监视器装置包括存储单元和处理单元。 数据根据识别信息存储在存储单元中。 处理单元被配置为将标识信息和数据的至少一个第一网络传输地址记录在标记信息表中。 响应于发送系统呼叫,当发送被设置为将数据的私有信息发送到与至少一个第一网络发送地址不同的第二网络发送地址时,处理单元将输出信号以停止 传输。
-
公开(公告)号:US08458785B2
公开(公告)日:2013-06-04
申请号:US12960056
申请日:2010-12-03
申请人: Chih-Hung Lin , Chin-Wei Tien , Sheng-Hao Wang
发明人: Chih-Hung Lin , Chin-Wei Tien , Sheng-Hao Wang
IPC分类号: G06F15/16
CPC分类号: H04L63/1408 , G06F21/53 , H04L63/0236
摘要: An information security protection host is provided. The information security protection host comprises a network interface and a virtual machine monitor (VMM) device. The network interface is connected to a computer network and is configured to receive a first packet. The VMM device is configured to run a first operating system, wherein the first operating system provides a first network service. The VMM device is further configured to provide a first operating system information of the first operating system and a first network service information of the first network service instantaneously so as to determine the security of the first packet.
摘要翻译: 提供信息安全保护主机。 信息安全保护主机包括网络接口和虚拟机监视器(VMM)设备。 网络接口连接到计算机网络,并被配置为接收第一分组。 VMM设备被配置为运行第一操作系统,其中第一操作系统提供第一网络服务。 VMM设备还被配置为立即提供第一操作系统的第一操作系统信息和第一网络服务的第一网络服务信息,以便确定第一分组的安全性。
-
-
-
搜索结果
4 条记录 (耗时 0.022 秒)
