基于SGX的虚拟机动态迁移安全增强方法

doi:10.11959/j.issn.1000-436x.2017183

通信学报 ›› 2017, Vol. 38 ›› Issue (9): 65-75.doi: 10.11959/j.issn.1000-436x.2017183

基于SGX的虚拟机动态迁移安全增强方法

石源^1,²,张焕国^1,²,赵波^1,²,于钊^1,²

¹ 武汉大学计算机学院，湖北武汉 430072
² 武汉大学空天信息安全与可信计算教育部重点实验室，湖北武汉 430072

修回日期:2017-02-22 出版日期:2017-09-01 发布日期:2017-10-18
作者简介:石源（1991-），男，江西九江人，武汉大学博士生，主要研究方向为信息安全和可信计算。|张焕国（1945-），男，河北元氏人，武汉大学教授、博士生导师，主要研究方向为信息安全、可信计算、容错计算与计算机应用等。|赵波（1972-），男，山东青岛人，武汉大学教授、博士生导师，主要研究方向为信息安全、可信计算、嵌入式体系结构等。|于钊（1991-），男，河南郑州人，武汉大学硕士生，主要研究方向为信息安全和可信计算。
基金资助:
国家自然科学基金重点资助项目(61332019);国家重点基础研究发展计划（“973”计划）基金资助项目(2014CB340600);国家高技术研究发展计划（“863”计划）基金资助项目(2015AA016002)

Security-enhanced live migration based on SGX for virtual machine

Yuan SHI^1,²,Huan-guo ZHANG^1,²,Bo ZHAO^1,²,Zhao YU^1,²

¹ School of Computer,Wuhan University,Wuhan 430072,China
² Key Laboratory of Aerospace Information Security and Trusted Computing Ministry of Education,Wuhan University,Wuhan 430072,China

Revised:2017-02-22 Online:2017-09-01 Published:2017-10-18
Supported by:
The National Natural Science Foundation of China(61332019);The National Basic Research Program of China (973 Program)(2014CB340600);The National High Technology Research and Development Program of China (863 Pro-gram)(2015AA016002)

摘要/Abstract

摘要：

针对虚拟机动态迁移面临的虚拟机信息泄露的安全问题，引入内存动态保护技术SGX，基于KVM虚拟化环境，提出一种动态迁移安全增强方法。在迁移两端构建以 SGX 技术为核心的硬件隔离的安全执行环境，保障加密、完整性度量等安全操作和秘密数据的安全。通过迁移双方的安全执行环境之间的远程证明，建立一个用于传输迁移数据的加密信道，并在此基础之上实现迁移双方的平台完整性的相互验证。最后分析该方法的安全增强效果，并通过实验验证了SGX技术的引入不会对迁移造成过多的性能损耗。

关键词: 虚拟化, 动态迁移, IntelSGX, 远程证明, 完整性度量

Abstract:

The virtual machine may face the problem of information leakage in live migration.Therefore,a dynamic memory protection technique SGX was introduced and a security enhancement live migration method based on KVM environment was proposed.Firstly,on both sides of migration,a hardware-isolated secure execution environment centered SGX was built.It guaranteed the security of operations like encryption and integrity measurement and also ensured the security of private data.An encrypted channel to transfer migration data based on the remote attestation between the secure execution environments of both migration sides was constructed.And the mutual authentication of both sides’ platform integrity was realized.Finally,the security enhancement effect and did the experiment was analyzed.The results shows that the introduction of SGX won’t cause much negative effect to the migration performance.

Key words: virtualization, live migration, Intel SGX, remote attestation, integrity measurement

中图分类号:

TP391

石源,张焕国,赵波,于钊. 基于SGX的虚拟机动态迁移安全增强方法[J]. 通信学报, 2017, 38(9): 65-75.

Yuan SHI,Huan-guo ZHANG,Bo ZHAO,Zhao YU. Security-enhanced live migration based on SGX for virtual machine[J]. Journal on Communications, 2017, 38(9): 65-75.

图/表 16

图1

图2

图3

图4

图5

图6

表1

图7

图8

图9

图10

图11

图12

图13

表2

图14

参考文献 18

[1]	邹庆欣, 郝志宇, 云晓春 . 基于运行阶段特征的虚拟机实时迁移技术[J]. 通信学报, 2016,37(1): 170-179.
	ZOU Q X , HAO Z Y , YUN X C . Live migration based on the characteristics of operation stages for virtual machine[J]. Journal on Communications, 2016,37(6): 170-179.
[2]	ZHANG H G , HAN W B , LAI X J ,et al. Survey on cyberspace security[J]. Science China Information Sciences, 2015,58(11): 1-43.
[3]	OBERHEIDE J , COOKE E , JAHANIAN F . Empirical exploitation of live virtual machine migration[C]// BlackHat DC convention. 2008.
[4]	VAN C A , PIETERS W , WIERINGA R . Security implications of virtualization:a literature study[C]// IEEE International Conference on Computational Science and Engineering (CES). 2009: 353-358.
[5]	YAMUNADEVI L , ARUNA P , DEVI D S ,et al. Security in virtual machine live migration for KVM[C]// International Conference on Process Automation,Control and Computing (PACC). 2011: 1-6.
[6]	CHEN X , GAO X , WAN H ,et al. Application-transparent live migration for virtual machine on network security enhanced hypervisor[J]. China Communications, 2011,8(3): 32-42.
[7]	NAGIN K , HADAS D , DUBITZKY Z ,et al. Inter-cloud mobility of virtual machines[C]// International Conference on Systems and Storage. 2011: 1-12.
[8]	PATIL V P , PATIL G A . Migrating process and virtual machine in the cloud:load balancing and security perspectives[J]. International Journal of Advanced Computer Science ＆ Information Technology, 2012,1(1): 11-19.
[9]	BIN S N A , MASUDA H . Evaluation of a secure live migration of virtual machines using IPSEC implementation[C]// IEEE International Conference on Advanced Applied Informatics. 2014: 687-693.
[10]	范伟, 孔斌, 张珠君 ,等. KVM 虚拟化动态迁移技术的安全防护模型[J]. 软件学报, 2016,27(6): 1402-1416.
	FAN W , KONG B , ZHANG Z J ,et al. Security protection model on live migration for KVM virtualization[J]. Journal of Software, 2016,27(6): 1402-1416.
[11]	WANG W , ZHANG Y , LIN B ,et al. Secured and reliable VM migration in personal cloud[C]// International Conference on Computer Engineering and Technology. 2010: 705-709.
[12]	ASLAM M , GEHRMANN C , BJORKMAN M . Security and trust preserving VM migrations in public clouds[C]// IEEE International Conference on Trust,Security and Privacy in Computing and Communications. 2012: 869-876.
[13]	ANATI I , GUERON S , JOHNSON S ,et al. Innovative technology for CPU based attestation and sealing[C]// International Workshop on Hardware and Architectural Support for Security and Privacy (HASP). 2013.
[14]	HOEKSTRA M , LAL R , PAPPACHAN P ,et al. Using innovative instructions to create trustworthy software solutions[C]// International Workshop on Hardware and Architectural Support for Security and Privacy (HASP). 2013.
[15]	Mckeen F , ALEXANDROVICH I , BERENZON A ,et al. Innovative instructions and software model for isolated execution[C]// International Workshop on Hardware and Architectural Support for Security and Privacy (HASP). 2013.
[16]	BERGER S , CACERES R ,et al. vTPM:virtualizing the trusted platform module[C]// The 15th conference on USENIX Security Symposium. 2006: 305-320.
[17]	SHI Y , ZHAO B , YU Z ,et al. A security-improved scheme for virtual TPM based on KVM[J]. Wuhan University Journal of Natural Sciences, 2015,20(6): 505-511.
[18]	FAN P R , ZHAO B , SHI Y . An improved vTPM-VM live migration protocol[J]. Wuhan University Journal of Natural Sciences, 2015,20(6): 512-520.

API	含义
void tpm_state_read(unsigned char*buffer,uint32_t buflen)	读取vTPM易失性状态
void tpm_state_write(unsigned char*buffer,uint32_t buflen)	写入vTPM易失性状态
void qemu_volatilestate_enc(ObjectData volatiledata,void data)	易失性状态加密
void qemu_volatilestate_dec(ObjectData volatiledata,void data)	易失性状态解密

分组	Normal/ms	KVM/ms	SGX-based/ms
第1组	23 132	23 476	23 563
第2组	23 298	23 301	23 381
第3组	23 231	23 562	23 633
第4组	23 138	23 368	23 456
第5组	23 272	23 591	23 657

基于SGX的虚拟机动态迁移安全增强方法

Security-enhanced live migration based on SGX for virtual machine

在线阅读

PDF下载

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 16

参考文献 18

相关文章 15

Metrics

推荐阅读 0

[1]	马玲, 樊漆亮, 许婷, 郭冠琛, 张圣林, 孙永谦, 张玉志. 基于强化学习的在线离线混部云环境下的调度框架[J]. 通信学报, 2023, 44(6): 90-102.
[2]	陈浩, 杨芫, 徐明伟, 裴丹, 尤艺霖. 支持多模态网络的可扩展异构服务功能链并行编排部署系统[J]. 通信学报, 2022, 43(9): 1-11.
[3]	徐泽汐, 庄雷, 张坤丽, 桂明宇. 基于知识图谱的服务功能链在线部署算法[J]. 通信学报, 2022, 43(8): 41-51.
[4]	杨力, 潘成胜, 孔相广, 黄琦龙, 戚耀文. 5G融合卫星网络研究综述[J]. 通信学报, 2022, 43(4): 202-215.
[5]	邱航, 汤红波, 游伟, 赵宇, 柏溢. NFV中基于量子遗传算法的网络服务扩展算法[J]. 通信学报, 2022, 43(11): 44-52.
[6]	涂碧波, 程杰, 夏豪骏, 张坤, 孙瑞娜. 云虚拟化平台可信证明技术研究综述[J]. 通信学报, 2021, 42(12): 212-225.
[7]	王泽南, 张娇, 汪硕, 黄韬, F.RichardYu. 端到端时延上限确定的服务链部署算法[J]. 通信学报, 2021, 42(11): 66-78.
[8]	丁绍虎,谢记超,张鹏,普黎明,谷允捷. 基于风险感知的关键虚拟网络功能动态迁移方法[J]. 通信学报, 2020, 41(4): 102-113.
[9]	王侃,赵楠,李军怀,王怀军. 移动边缘计算网络中联合无线多播的服务功能链部署算法[J]. 通信学报, 2020, 41(10): 37-47.
[10]	孙晨,毕军,郑智隆,王舒鹤,胡宏新. MicroNF：基于微服务的异构网络功能虚拟化框架[J]. 通信学报, 2019, 40(8): 54-59.
[11]	王汝言,高毅爽,陈霄. 带有区分保护的虚拟化FiWi网络可靠传输机制[J]. 通信学报, 2019, 40(3): 36-47.
[12]	钱红燕,薛昊,陈鸣. UDM：基于NFV的防止DDoS攻击SDN控制器的机制[J]. 通信学报, 2019, 40(3): 116-124.
[13]	何欣枫,田俊峰,刘凡鸣. 可信云平台技术综述[J]. 通信学报, 2019, 40(2): 154-163.
[14]	兰巨龙,金子晋,孙鹏浩,江逸茗,王月. 基于可靠性的服务功能链构建算法[J]. 通信学报, 2019, 40(1): 64-70.
[15]	王汝言,徐宁宁. 带有混合能量供电的TWDM-PON与C-RAN联合架构资源分配机制[J]. 通信学报, 2018, 39(9): 94-109.