원문정보
초록
영어
For the problem that the process running is not security in the virtual environment, a multi-level process isolation management scheme is proposed. In this scheme, the processes and the basic runtime environment is defined as the process space. It takes a level hierarchical division strategy to classify the processes from the process space into two levels. One of which is the level of credible processes and another is the level data confidential processes. Under the strategy, the processes operate with different permission to ensure the security of sensitive information, prevent data leaking, operate legally and operate under authority. Finally simulation experiment results show that the method has a good protection to the process running in a virtual environment and it can meet the needs of data confidentiality. At the same time, the overhead of running processes is not obvious.
목차
1. Introduction
2. Related Work
3. Hierarchical Process Isolation Scheme(HPIS)
3.1. Related Definition
3.2. Basic Thought
3.3. DCM Module
3.4. Information Interaction Rules between Processes
3.5. Confidence Level of Process
4. Simulation Experiment Results Analysis
4.1. Integrated Simulation Experiment Environment
4.2. Safety Analysis
4.3. Performance Analysis
5. Conclusion
Acknowledgements
References