A live migration strategy for virtual encryption card equipment
Authors: 
Deliang Xu, Zewei Cen, Cai Fu, Tao Liu, Guohui Li, Lansheng Han, Zhaokang KeAuthors Info & Claims
Deliang Xu, Zewei Cen, Cai Fu, Tao Liu, Guohui Li, Lansheng Han, Zhaokang KeAuthors Info & ClaimsPages 106 - 112
Abstract
With the popularity of virtualization technologies, virtualization security issues have been appeared, which greatly hampers the development of its further application. Bringing the encryption card to the virtual environment is a good idea to enforce the security of the virtual platform. However, due to the particularity of the encryption card equipment, there is some difficult to virtualize the encryption card equipment. One of the most important difficulties is supporting Live Migration. As for the first question that we must ensure the encryption task continuity when migrating a virtual encryption card, we propose the encryption field migration for the physical encryption card, which guarantees the continuity of virtualization encryption card. For the second problem that Live Migration of virtualization encryption card must be protected from any attack, this paper designs migration protocol to ensure the security. For the last problem that the encryption card live migration should not increase the migration time of virtual machine drastically, including total migration time and downtime, we separate the migration protocol to a different stage, and complete in the different stage of virtual machine migration. By this way, we decrease the influence of virtual machine migration time. The implement and results of experiments on Kernel-based Virtual Machine indicate that the proposed scheme is feasible in function and performance.
References
[1]
B. Liang, Z. Qin, R. Sheng, Q. Chen, Y. Lv, Y. Qiang, and A. Guo, "A virtual machine access control security model," Computer application research, vol. 31, no. 1, pp. 231--235, 2014.
[2]
A. Pandey and S. Srivastava, "An approach for virtual machine image security," in International Conference on Signal Propagation and Computer Technology, 2014, pp. 616--623.
[3]
N. Ahmad, A. Kanwal, and M. A. Shibli, "Survey on secure live virtual machine (vm) migration in cloud," in Information Assurance, 2013, pp. 101--106.
[4]
A. Upadhyay and P. Lakkadwala, "Secure live migration of vm's in cloud computing: A survey," in International Conference on Reliability, INFOCOM Technologies and Optimization, 2015, pp. 1--4.
[5]
M. R. Anala, J. Shetty, and G. Shobha, "A framework for secure live migration of virtual machines," in International Conference on Advances in Computing, Communications and Informatics, 2013, pp. 243--248.
[6]
S. Berger, R. Cceres, K. A. Goldman, R. Perez, R. Sailer, and L. V. Doorn, "vtpm: virtualizing the trusted platform module," Usenix Security, vol. 15, pp. 305--320, 2006.
[7]
L. Chen and W. Li, "Xen," Computer and digital engineering, vol. 42, no. 8, pp. 1399--1402, 2014.
[8]
H. Yang, "Research on dynamic migration of virtual machine," Ph.D.dissertation, Nanjing University of Posts and Telecommunications, 2013.
[9]
H. Qiu, "Research on dynamic migration technology of data center virtual machine," Ph.D. dissertation, Chang'an University, 2016.
[10]
D. Xu, C. Fu, G. Li, D. Zou, H. Zhang, and X. Y. Liu, "Virtualization of the encryption card for trust access in cloud computing," IEEE Access, vol. PP, no. 99, pp. 1--1, 2017
[11]
X. Jiang, M. Li, and C. Wen, "Security analysis in dynamic migration of virtual machines," Computer science and exploration, vol. 05, no. 5, pp. 452--457, 2011.
[12]
W. Fan, B. Kong, Z. Zhang, T. Wang, J. Zhang, and W. Huang, "Security protection model of kvm virtualization dynamic migration technology," Journal of software, vol. 27, no. 6, pp. 1402--1416, 2016.
[13]
Q. Li, "A method of dynamic migration security protection for virtual machines," 2016.
[14]
S. Kim, "One on one contract gamecbased dynamic virtual machine migration scheme for mobile edge computing," Transactions on Emerging Telecommunications Technologies, vol. 29, no. 1, p. e3204, 2018.
[15]
H. Shang, "Security analysis in the dynamic migration of virtual machines in cloud computing," Boletin Tecnico/technical Bulletin, vol. 55, no. 4, pp. 759--763, 2017
Index Terms
- A live migration strategy for virtual encryption card equipment
Recommendations
Improving Total Migration Time in Live Virtual Machine Migration
ICCCT '15: Proceedings of the Sixth International Conference on Computer and Communication Technology 2015Virtualization is the key underlying technology enabling cloud providers to host services for a large number of customers. Live migration is an essential feature of virtualization that allows transfer of virtual machines from one physical server to ...
Toward dependency-aware live virtual machine migration
VTDC '09: Proceedings of the 3rd international workshop on Virtualization technologies in distributed computingThe most powerful characteristic of any machine virtualization technology is its ability to adapt to both its underlying infrastructure and the applications it supports. Possibly the most dynamic feature of machine virtualization is the ability to ...
A Service Sustainable Live Migration Strategy for Multiple Virtual Machines in Cloud Data Centers
AbstractVirtual machine (VM) migration is an indispensable aspect of a virtualized cloud environment. It assists in resource management by dynamically relocating VMs from one physical machine to another. This is an essential aspect especially ...
Comments
Information & Contributors
Information
Published In
Copyright © 2019 ACM.
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
Published: 08 March 2019
Check for updates
Author Tags
Qualifiers
- Research-article
Conference
HP3C '19
HP3C '19: 2019 the 3rd International Conference on High Performance Compilation, Computing and Communications
March 8 - 10, 2019
Xi'an, China
Contributors
Other Metrics
Bibliometrics & Citations
Bibliometrics
Article Metrics
- 0Total Citations
- 56Total Downloads
- Downloads (Last 12 months)6
- Downloads (Last 6 weeks)0
Reflects downloads up to 18 Aug 2024
Other Metrics
Citations
View Options
Get Access
Login options
Check if you have access through your login credentials or your institution to get full access on this article.
Sign in