Processing

Please wait...

Settings

Settings

Goto Application

1. EP2352088 - METHOD, APPARATUS AND SYSTEM FOR VIRTUAL MACHINE MIGRATION DECISION

Office European Patent Office
Application Number 10788216
Application Date 01.07.2010
Publication Number 2352088
Publication Date 03.08.2011
Publication Kind B1
IPC
G06F 9/455
GPHYSICS
06COMPUTING; CALCULATING OR COUNTING
FELECTRIC DIGITAL DATA PROCESSING
9Arrangements for program control, e.g. control units
06using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
44Arrangements for executing specific programs
455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
G06F 9/48
GPHYSICS
06COMPUTING; CALCULATING OR COUNTING
FELECTRIC DIGITAL DATA PROCESSING
9Arrangements for program control, e.g. control units
06using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
46Multiprogramming arrangements
48Program initiating; Program switching, e.g. by interrupt
CPC
G06F 9/45558
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
9Arrangements for program control, e.g. control units
06using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
44Arrangements for executing specific programs
455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
45533Hypervisors; Virtual machine monitors
45558Hypervisor-specific management and integration aspects
G06F 9/4856
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
9Arrangements for program control, e.g. control units
06using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
46Multiprogramming arrangements
48Program initiating; Program switching, e.g. by interrupt
4806Task transfer initiation or dispatching
4843by program, e.g. task dispatcher, supervisor, operating system
485Task life-cycle, e.g. stopping, restarting, resuming execution
4856resumption being on a different machine, e.g. task migration, virtual machine migration
G06F 21/57
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
G06F 2009/4557
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
9Arrangements for program control, e.g. control units
06using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
44Arrangements for executing specific programs
455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
45533Hypervisors; Virtual machine monitors
45558Hypervisor-specific management and integration aspects
4557Distribution of virtual machine instances; Migration and load balancing
Applicants HUAWEI TECH CO LTD
Inventors SHEN QINGNI
REN LANFANG
WANG SHAOBIN
JIN YUANYOU
WEI LEI
LI ZHAO
RUAN ANBANG
SHI LEI
Designated States
Priority Data 200910108609 01.07.2009 CN
2010074889 01.07.2010 CN
Title
(DE) VERFAHREN, VORRICHTUNG UND SYSTEM ZUR ENTSCHEIDUNG ÜBER DIE MIGRATION VIRTUELLER MASCHINEN
(EN) METHOD, APPARATUS AND SYSTEM FOR VIRTUAL MACHINE MIGRATION DECISION
(FR) PROCÉDÉ, APPAREIL ET SYSTÈME POUR DÉCISION DE MIGRATION DE MACHINE VIRTUELLE
Abstract
(EN)
A method, an apparatus, and a system for making a decision about virtual machine migration are provided. The system includes a source host platform of a virtual machine to be migrated, configured to send a migration request to a Migration Authority (MA), and migrate the virtual machine to be migrated to a target host platform according to a received migration decision-making result; the MA, configured to perform security checks on the source host platform and the target host platform according to the migration request, to obtain a first evaluation result of the source host platform and a second evaluation result of the target host platform, acquire a third evaluation result of the virtual machine to be migrated, and return a corresponding migration decision-making result to the source host platform according to the first evaluation result, the second evaluation result, and the third evaluation result; and the target host platform of the virtual machine to be migrated, configured to accept the virtual machine to be migrated. Therefore, not only the security of the virtual machine after migration to the target platform, but also the security of the target platform after accepting the virtual machine is ensured.

(FR)
L'invention porte sur un procédé, un appareil et un système pour décision de migration de machine virtuelle. Le système comprend : une plateforme hôte source d'une machine virtuelle en attente de migration destinée à envoyer une requête de migration vers une partie d'autorisation de migration, et à faire migrer la machine virtuelle en attente de migration vers une plateforme hôte cible selon un résultat de décision de migration reçu ; la partie d'autorisation de migration destinée à exécuter des contrôles de sécurité de la plateforme hôte source et de la plateforme hôte cible selon la requête de migration, à obtenir un premier résultat d'évaluation de la plateforme hôte source et un deuxième résultat d'évaluation de la plateforme hôte cible, à obtenir un troisième résultat d'évaluation de la machine virtuelle en attente de migration, et à renvoyer le résultat de décision de migration correspondant à la plateforme hôte source selon le premier résultat d'évaluation, le deuxième résultat d'évaluation et le troisième résultat d'évaluation ; et la plateforme hôte cible de la machine virtuelle en attente de migration afin de recevoir la machine virtuelle en attente de migration. Cette solution garantit non seulement la sécurité de la machine virtuelle après la migration de celle-ci vers la plateforme cible, mais encore la sécurité de la plateforme cible une fois que celle-ci a reçu la machine virtuelle.

Also published as