Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Monitoring system and method in virtual machine environment

A monitoring system and virtual machine technology, applied in hardware monitoring, platform integrity maintenance, etc., can solve problems such as threats, complex management and maintenance, and protection software vulnerable to attacks and controls, achieving significant progress and highlighting substantive features Effect

Inactive Publication Date: 2015-08-26
SHANDONG ZHONGFU INFORMATION IND
View PDF5 Cites 14 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The characteristics of the virtualized environment bring about security problems that do not exist in the traditional environment. For example, the virtualized environment is highly dynamic, the security boundary is blurred, and the management and maintenance are more complicated. A security hole in a virtual machine may affect the same physical threats to other virtual machines on the machine, etc.
Some security threats in the traditional environment, such as viruses, Trojans, and malware, still exist in the virtual environment, but the traditional security protection methods for them are difficult to adapt to the virtual environment
[0003] Installing antivirus software on each virtual machine using the traditional protection method in a virtual environment, the intrusion detection and intrusion prevention system will consume a lot of resources and greatly reduce system performance, which is obviously not the best method, and the protection software is installed on the virtual machine vulnerable to attack and control, new technologies are needed to solve such security problems

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Monitoring system and method in virtual machine environment
  • Monitoring system and method in virtual machine environment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0030] In order to clearly illustrate the technical features of the solution, the solution will be described below through a specific implementation mode combined with the accompanying drawings.

[0031] As can be seen from the accompanying drawings, a monitoring system in a virtual machine environment of this solution includes the following modules:

[0032] The monitoring module is used to detect the memory and file system of the monitored virtual machine; the monitoring module detects the memory and file system of the monitored virtual machine, including monitoring malicious modifications to read-only content in the kernel, such as modifying System call table, interrupt descriptor table or system call function; discover hidden malware by monitoring task list and module list; perform integrity detection or attack signature matching on system files; virtual machine network card in promiscuous mode and hidden network The connection is detected.

[0033] The inter-domain commu...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a monitoring system and method in a virtual machine environment. The system comprises a monitoring module, an inter-domain communication module, a rule base, an analyzing module, a response service module, a response accepting module, an event processing module and the like. The monitoring system and method in the virtual machine environment is used for security protection of the virtual machine running environments of users, can manage and control resources used by virtual machines or even monitor processes inside the virtual machines, and also, can correct content of virtual machine disks of the virtual machines, thereby ensuring the monitoring reliability when the monitoring module is deployed inside a virtual machine manager; meanwhile, combined with the virtual machine introspection technology, the monitoring system and method in virtual machine environment can effectively detect the kernel space of monitored virtual machine and further avoid intrusion.

Description

technical field [0001] The invention relates to a monitoring system and a monitoring method in a virtual machine environment. Background technique [0002] In the prior art, the well-known technology is that the security issue in the virtualization environment is an important issue in the development of virtualization technology and cloud computing technology. With the rapid development of these two technologies, virtualization security has received more and more attention. attention. In the virtualization environment, the technical layer of virtual machine manager is added. The guest operating system uses the logical resources abstracted by the virtual machine manager. Multiple virtual machines can exist on the same physical machine at the same time. These virtual machines share the underlying physical resources. resource. The characteristics of the virtualized environment bring about security problems that do not exist in the traditional environment. For example, the vir...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F11/32G06F21/55
Inventor 任勋益万海山孔强赵为强
Owner SHANDONG ZHONGFU INFORMATION IND
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com