云计算中虚似机镜像管理研究

发布时间：2018-09-06 15:10

【摘要】：“云计算”的概念自从2006年被提出以后,迅速成为IT领域最令人振奋的研究热点,受到了工业界和学术界广泛的关注。云计算提出至今,已经在国内外得到了快速的发展。随着云计算应用的不断推广,关于虚拟化管理及其安全问题日趋重要,并且成为制约云计算进一步发展的首要因素。Google, Amazon等发起者不断爆出安全事故更加剧了人们对云计算的担忧。例如2009年Amazon EC2遭到阻断的服务攻击,Google电子邮件服务中断等。因此,要让企业大规模采用云计算平台,放心地将企业数据放到云中,必须首先解决云计算所面临的安全上的问题。laaS云服务商通常是以提供独立的虚拟机方式为用户提供服务,用户通过远程的方式管理虚拟机。提供虚拟机有利于降低用户的IT成本,提高云提供商的资源利用率和管理能力,这种方式也存在许多安全问题。由于虚拟机的创建成本较低,用户往往为不同的任务创建不同的虚拟机。此外,用户可以克隆、快照、甚至可以回滚到以前的状态。虽然这些功能为用户提供了极大的灵活性,但它们对云平台成了的巨大安全风险。例如,一台虚拟机回滚,之前的安全漏洞又重新出现了。而且随着云计算应用的深入发展,会有越来越多的虚拟机出现,这种现象被称为虚拟机蔓延,使得虚拟机管理与软件更新成为一件非常费时的任务。云计算平台提供商将虚拟机系统更新任务交给用户自己负责,而用户迫切期望供应商来完成这项任务。结果就导致大量的虚拟机(运行或休眠)由于没有及时进行软件漏洞修复而受到大量的安全威胁,降低了系统的安全性。本文针对云计算环境中虚拟机镜像管理问题进行了深入的分析和研究。首先分析了云计算环境下虚拟机镜像文件管理中存在的一些问题,并针对这些问题提出基于通用配置管理工具、源跟踪机制和版本库维护服务的虚拟机镜像文件管理策略,该策略可为虚拟机镜像文件管理提供灵活的解决方案。接着设计和实现了虚拟机镜像管理系统,并通过实际的实施环境比较和验证了该解决方案的有效性和高效性。
[Abstract]:Since it was proposed in 2006, the concept of "cloud computing" has rapidly become the most exciting research hotspot in the field of IT, and has attracted extensive attention from industry and academia. Cloud computing has been developed rapidly at home and abroad. With the continuous promotion of cloud computing applications, virtualization management and its security issues become increasingly important, Google, Amazon and other sponsors continue to burst out security incidents, which have increased people's concern about cloud computing. For example, Amazon EC2 was blocked in 2009 service attacks on the interruption of email services, and so on. Therefore, in order to allow enterprises to adopt cloud computing platform on a large scale and to put enterprise data in the cloud, we must first solve the security problems faced by cloud computing. LaaS cloud service providers usually provide services to users in the form of independent virtual machines. Users manage virtual machines remotely. Providing virtual machines can reduce the IT cost of users and improve the resource utilization and management ability of cloud providers. There are also many security problems in this way. Because of the low cost of creating virtual machines, users often create different virtual machines for different tasks. In addition, the user can clone, snapshot, and even roll back to the previous state. While these features provide users with great flexibility, they pose a significant security risk to cloud platforms. For example, a virtual machine rolls back and a previous security flaw reappears. With the further development of cloud computing applications, more and more virtual machines will appear. This phenomenon is called virtual machine spread, which makes virtual machine management and software update a very time-consuming task. Cloud computing platform providers hand over the task of virtual machine system update to the users themselves, and users are eager for the vendors to complete this task. As a result, a large number of virtual machines (running or dormant) are threatened by a large number of security threats due to the failure to repair the software vulnerabilities in time, which reduces the security of the system. In this paper, the problem of virtual machine mirror management in cloud computing environment is deeply analyzed and studied. This paper first analyzes some problems in virtual machine mirror file management in cloud computing environment, and proposes a virtual machine mirror file management strategy based on general configuration management tool, source tracking mechanism and version library maintenance service. This strategy can provide a flexible solution for virtual machine image file management. Then the virtual machine mirror management system is designed and implemented, and the effectiveness and efficiency of the solution are verified by comparing the actual implementation environment.
【学位授予单位】：复旦大学
【学位级别】：硕士
【学位授予年份】：2013
【分类号】：TP302

【参考文献】