CAJ | 학술논문

为了解决云计算环境下虚拟机可信度量方法存在的并发性和安全性问题，提出了一种树形可信度量模型。根据云计算环境的特点将度量过程分离，一方面采用基于完整性的方式来度量管理域的可信性，另一方面采用基于系统行为的方式来度量用户域的可信性，解决了传统度量模型难以并发度量的问题，提高了度量模型的可扩展性。结合系统调用截获和虚拟机内省技术，实现了可信度量原型系统，并通过实验评测系统的有效性和相关性能。实验结果表明，树形可信度量模型能够有效验证虚拟机的可信度。
위료해결운계산배경하허의궤가신도량방법존재적병발성화안전성문제，제출료일충수형가신도량모형。근거운계산배경적특점장도량과정분리，일방면채용기우완정성적방식래도량관리역적가신성，령일방면채용기우계통행위적방식래도량용호역적가신성，해결료전통도량모형난이병발도량적문제，제고료도량모형적가확전성。결합계통조용절획화허의궤내성기술，실현료가신도량원형계통，병통과실험평측계통적유효성화상관성능。실험결과표명，수형가신도량모형능구유효험증허의궤적가신도。
In order to solve the concurrency and security problem of a virtual machine's trustworthi-ness measurement for cloud computing,a tree-style trustworthiness measurement model (TSTM)is proposed.The traditional process of trustworthiness measurement is separated according to the char-acteristics of cloud computing.The trustworthiness measurement of the system domain is based on integrity,while the trustworthiness measurement of the user domain is based on system behaviors. TSTM solves the concurrency problem of conventional measurement models and enhances the exten-sibility.A TSTM prototype system for virtual machine is implemented based on system call intercep-tor (SCI)and virtual machine introspection (VMI)technology.The effectiveness and the perform-ance of the TSTM are evaluated by comprehensive experiments.The experimental results show that the TSTM achieves effective trustworthiness measurement.