CN109918173B - Openstack-based virtual machine health check method and system - Google Patents
Openstack-based virtual machine health check method and system Download PDFInfo
- Publication number
- CN109918173B CN109918173B CN201910168782.2A CN201910168782A CN109918173B CN 109918173 B CN109918173 B CN 109918173B CN 201910168782 A CN201910168782 A CN 201910168782A CN 109918173 B CN109918173 B CN 109918173B
- Authority
- CN
- China
- Prior art keywords
- virus
- virtual machine
- killing
- virus database
- database
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Debugging And Monitoring (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
本发明提供一种基于openstack的虚拟机健康检查方法及系统,包括如下步骤:在openstack平台创建病毒库;将病毒库绑定到防火墙规则;在openstack平台对虚拟机进行病毒查杀。系统包括病毒库创建模块、病毒库绑定模块以及病毒查杀模块。本发明实现在openstack平台无需登录虚拟机而对虚拟机进行病毒查杀,不影响用户正常使用,同时,发现病毒及时处理,提高效率;本发明根据不同网络需要,利用病毒库模板生成不同病毒库实例,实现病毒特征做不同网络化处理;本发明提高云环境的虚拟机安全性。
The invention provides an openstack-based virtual machine health check method and system, including the following steps: creating a virus database on the openstack platform; binding the virus database to firewall rules; and performing virus detection and killing on the virtual machine on the openstack platform. The system includes a virus database creation module, a virus database binding module and a virus detection and killing module. The invention realizes virus detection and killing on the virtual machine without logging in the virtual machine on the openstack platform, does not affect the normal use of the user, and at the same time, finds the virus and handles it in time to improve the efficiency; the invention uses the virus database template to generate different virus databases according to different network needs For example, different network processing of virus characteristics is realized; the present invention improves the security of virtual machines in cloud environment.
Description
Technical Field
The invention belongs to the field of virtual machine health detection, and particularly relates to a virtual machine health check method and system based on openstack.
Background
The OpenStack is an open-source cloud computing management platform project, and is formed by combining several main components to complete specific work. OpenStack supports almost all types of cloud environments, and the project aims to provide a cloud computing management platform which is simple to implement, can be expanded in a large scale, is rich and has a unified standard.
A Virtual Machine (Virtual Machine) refers to a complete computer system with complete hardware system functionality, operating in a completely isolated environment, simulated by software.
The virtual system has the same functions as a real windows system by generating a brand new virtual mirror image of the existing operating system, all operations are carried out in the brand new independent virtual system after the virtual system is accessed, running software can be independently installed, data can be stored, an independent desktop is owned, any influence on the real system cannot be caused, and the operating system has the operating system capable of flexibly switching between the existing system and the virtual mirror image. The Virtual system and the traditional Virtual machine (Parallels Desktop, Vmware, Virtual box, Virtual pc) are different in that: the virtual system does not reduce the performance of the computer, the virtual system is started without consuming time like starting a windows system, and the program is operated more conveniently and quickly; the virtual system can only simulate the same environment as the existing operating system, and the virtual machine can simulate other operating systems; moreover, virtual machines need to emulate underlying hardware instructions, and are therefore much slower in application execution speed than virtual systems.
With the increase of information explosion, the cloud platform gets more and more attention, and OpenStack is favored by many companies as a source cloud computing management platform, but in the aspect of virus detection of virtual machines, there is no systematic method, and if a virtual machine is poisoned due to misoperation of a user during the use of the virtual machine, the virtual machine is easily disabled and viruses are infected to other virtual machines.
Therefore, it is very necessary to provide a virtual machine health check method and system based on openstack to solve the above-mentioned drawbacks in the prior art.
Disclosure of Invention
Aiming at the aspect of virus detection of the virtual machine in the prior art, the virtual machine health check method and system based on openstack are provided to solve the technical problems that in the using process of the virtual machine, if the virtual machine is poisoned due to misoperation of a user, the virtual machine cannot be used and the virus is infected to other virtual machines.
In a first aspect, the invention provides a virtual machine health check method based on openstack, which includes the following steps:
s1, creating a virus library on an openstack platform;
s2, binding the virus library to a firewall rule;
and S3, virus searching and killing are carried out on the virtual machine on the openstack platform. The virus searching and killing method and the virus searching and killing device can search and kill the viruses of the virtual machine through the openstack platform without logging in the virtual machine, and the normal use of the virtual machine is not influenced.
Further, the step S1 specifically includes the following steps:
s11, creating a virus library on an openstack platform;
s12, setting a characteristic item for each virus in a virus library;
and S13, updating the virus library regularly. The latest virus is obtained by updating the virus library regularly, thereby providing timeliness of virus killing and preventing lag.
Further, the virus characteristic item includes whether to activate and an operation state. Virus library characteristic items include, but are not limited to, the items described above.
Further, the step S2 specifically includes the following steps:
s21, creating a virus library template;
s22, generating a virus library example by adopting a virus library template according to the safety requirements of different network segments, and setting a characteristic item of each virus in the virus library example;
s23, applying all virus library examples to a firewall;
and S24, setting a firewall strategy, and performing virus checking and killing on the virtual machine by the firewall according to the network segment where the virtual machine is located by adopting the corresponding virus library example. When the virus library instance is generated, the characteristics of the viruses in the virus library template can be modified according to requirements, and the virus library diversity requirements of different networks are met.
Further, the step S3 specifically includes the following steps:
s31, setting a virus searching and killing period;
s32, starting virus searching and killing on the virtual machine on an openstack platform according to a set virus searching and killing period;
s33, sequentially obtaining a network segment where each virtual machine is located;
and S34, the firewall performs virus checking and killing on the virtual machine by adopting a corresponding virus library example according to the network segment where the virtual machine is located. The virus searching and killing is carried out on the virtual machines at regular time on the openstack platform, and meanwhile, the virtual machines in different network segments adopt different virus searching and killing standards and are set in advance according to requirements.
Further, step S32 is preceded by:
s32', selecting a network segment and creating a virtual machine. When the virtual machine is created, the network segment where the virtual machine is located is selected firstly, so that the virus searching and killing standard of the virtual machine is indirectly selected.
In a second aspect, the present invention provides an openstack-based virtual machine health check system, including:
the virus library creating module is used for creating a virus library on the openstack platform;
the virus library binding module is used for binding the virus library to the firewall rules;
and the virus searching and killing module is used for searching and killing viruses in the virtual machine on the openstack platform.
Further, the virus library creation module comprises:
the virus library creating unit is used for creating a virus library on the openstack platform;
the characteristic item setting unit is used for setting a characteristic item for each virus in the virus library;
and the virus library updating unit is used for updating the virus library at regular time.
Further, the virus library binding module comprises:
the virus library template creating unit is used for creating a virus library template;
the virus library instance generating unit is used for generating a virus library instance by adopting a virus library template according to the safety requirements of different network segments and setting the characteristic item of each virus in the virus library instance;
the virus library instance application unit is used for applying all virus library instances to the firewall;
and the firewall strategy setting unit is used for setting a firewall strategy, and the firewall adopts a corresponding virus library example according to the network segment where the virtual machine is located to check and kill the virus of the virtual machine.
Further, the virus searching and killing module comprises:
a searching and killing period setting unit for setting a virus searching and killing period;
the virus searching and killing starting unit is used for starting virus searching and killing on the virtual machine on the openstack platform according to the set virus searching and killing period;
the virtual machine network segment acquisition unit is used for sequentially acquiring the network segment where each virtual machine is located;
and the virus searching and killing unit is used for configuring the firewall to search and kill the viruses of the virtual machine by adopting the corresponding virus library example according to the network segment where the virtual machine is positioned.
The beneficial effect of the invention is that,
the virus searching and killing method and the virus searching and killing device can be used for searching and killing the virus of the virtual machine without logging in the virtual machine on the openstack platform, so that the normal use of a user is not influenced, meanwhile, the virus is found and processed in time, and the efficiency is improved; according to different network requirements, the invention utilizes the virus library template to generate different virus library examples, thereby realizing different networking processing of virus characteristics; the invention improves the safety of the virtual machine in the cloud environment.
In addition, the invention has reliable design principle, simple structure and very wide application prospect.
Therefore, compared with the prior art, the invention has prominent substantive features and remarkable progress, and the beneficial effects of the implementation are also obvious.
Drawings
In order to more clearly illustrate the embodiments or technical solutions in the prior art of the present invention, the drawings used in the description of the embodiments or prior art will be briefly described below, and it is obvious for those skilled in the art that other drawings can be obtained based on these drawings without creative efforts.
FIG. 1 is a first flowchart of a method of the present invention;
FIG. 2 is a flow chart of the method of the present invention;
FIG. 3 is a schematic diagram of the system of the present invention;
in the figure, 1-virus library creation module; 1.1-virus library creation unit; 1.2-feature item setting unit; 1.3-virus library updating unit; 2-virus library binding module; 2.1-virus library template creating unit; 2.2-virus library instance generation unit; 2.3-virus library instance application unit; 2.4-firewall policy setting unit; 3-virus searching and killing module; 3.1-a killing period setting unit; 3.2-a searching and killing starting unit; 3.3-a virtual machine network segment acquisition unit; 3.4-virus killing unit.
Detailed Description
In order to make those skilled in the art better understand the technical solution of the present invention, the technical solution in the embodiment of the present invention will be clearly and completely described below with reference to the drawings in the embodiment of the present invention, and it is obvious that the described embodiment is only a part of the embodiment of the present invention, and not all embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Example 1:
as shown in fig. 1, the present invention provides a health check method for a virtual machine based on openstack, which includes the following steps:
s1, creating a virus library on an openstack platform; the platform is provided with a port, a tester can set the update time and the virus characteristic items of a virus library through the port, and the virus library comprises a network type virus characteristic code;
s2, binding the virus library to a firewall rule; performing primary isolation and primary early warning on activated viruses in the firewall rules, and performing secondary isolation and secondary early warning on inactivated viruses; the operation state of the virus comprises isolating files containing the virus and deleting files containing the virus, and a tester sets the operation state in a certain virus characteristic item through a port;
s3, virus checking and killing are carried out on the virtual machine on the openstack platform; and scanning the virtual machine on an openstack platform, comparing the network type virus feature codes in the virus library with the virtual machine data, and checking and killing the viruses after the viruses are determined. The virus searching and killing method and the virus searching and killing device can search and kill the viruses of the virtual machine through the openstack platform without logging in the virtual machine, and the normal use of the virtual machine is not influenced.
Example 2:
as shown in fig. 1 and fig. 2, the present invention provides a health check method for a virtual machine based on openstack, which includes the following steps:
s1, creating a virus library on an openstack platform; the method comprises the following specific steps:
s11, creating a virus library on an openstack platform;
s12, setting a characteristic item for each virus in a virus library; the virus characteristic item comprises activation or non-activation and operation state;
s13, updating the virus database at regular time;
s2, binding the virus library to a firewall rule; the method comprises the following specific steps:
s21, creating a virus library template;
s22, generating a virus library example by adopting a virus library template according to the safety requirements of different network segments, and setting a characteristic item of each virus in the virus library example;
s23, applying all virus library examples to a firewall;
s24, setting a firewall strategy, and performing virus checking and killing on the virtual machine by the firewall according to the network segment where the virtual machine is located by adopting a corresponding virus library example;
s3, virus checking and killing are carried out on the virtual machine on the openstack platform; the method comprises the following specific steps:
s31, setting a virus searching and killing period;
s32', selecting a network segment, and creating a virtual machine;
s32, starting virus searching and killing on the virtual machine on an openstack platform according to a set virus searching and killing period;
s33, sequentially obtaining a network segment where each virtual machine is located;
and S34, the firewall performs virus checking and killing on the virtual machine by adopting a corresponding virus library example according to the network segment where the virtual machine is located.
The latest virus is obtained by updating the virus library regularly, so that the timeliness of virus searching and killing is provided, and hysteresis is prevented; when a virtual machine is created, firstly, a network segment where the virtual machine is located is selected, so that the virus searching and killing standard of the virtual machine is indirectly selected; when the virus library instance is generated, the characteristics of the viruses in the virus library template can be modified according to requirements, so that the virus library diversity requirements of different networks are met; the virus searching and killing is carried out on the virtual machines at regular time on the openstack platform, and meanwhile, the virtual machines in different network segments adopt different virus searching and killing standards and are set in advance according to requirements.
Example 3:
as shown in fig. 3, the present invention provides an openstack-based virtual machine health check system, including:
the virus library creating module 1 is used for creating a virus library on an openstack platform; the virus library creation module 1 includes:
the virus library creating unit 1.1 is used for creating a virus library on an openstack platform;
a characteristic item setting unit 1.2, which is used for setting a characteristic item for each virus in the virus library;
the virus library updating unit 1.3 is used for updating the virus library at regular time;
the virus library binding module 2 is used for binding the virus library to the firewall rules; the virus library binding module 2 comprises:
the virus library template creating unit 2.1 is used for creating a virus library template;
a virus library example generating unit 2.2, configured to generate a virus library example by using a virus library template according to security requirements of different network segments, and set a feature item of each virus in the virus library example;
a virus library instance application unit 2.3 for applying all virus library instances to the firewall;
the firewall policy setting unit 2.4 is used for setting a firewall policy, and the firewall performs virus checking and killing on the virtual machine by adopting a corresponding virus library example according to the network segment where the virtual machine is located;
the virus searching and killing module 3 is used for searching and killing viruses in the virtual machine on the openstack platform; the virus searching and killing module 3 comprises:
a searching and killing period setting unit 3.1 for setting a virus searching and killing period;
the searching and killing starting unit 3.2 is used for starting virus searching and killing on the virtual machine on the openstack platform according to the set virus searching and killing period;
a virtual machine network segment obtaining unit 3.3, configured to sequentially obtain a network segment where each virtual machine is located;
and the virus searching and killing unit 3.4 is used for configuring the firewall to search and kill the viruses of the virtual machine by adopting the corresponding virus library example according to the network segment where the virtual machine is positioned.
Although the present invention has been described in detail by referring to the drawings in connection with the preferred embodiments, the present invention is not limited thereto. Various equivalent modifications or substitutions can be made on the embodiments of the present invention by those skilled in the art without departing from the spirit and scope of the present invention, and these modifications or substitutions are within the scope of the present invention/any person skilled in the art can easily conceive of the changes or substitutions within the technical scope of the present invention. Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.
Claims (2)
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910168782.2A CN109918173B (en) | 2019-03-06 | 2019-03-06 | Openstack-based virtual machine health check method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910168782.2A CN109918173B (en) | 2019-03-06 | 2019-03-06 | Openstack-based virtual machine health check method and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109918173A CN109918173A (en) | 2019-06-21 |
| CN109918173B true CN109918173B (en) | 2021-11-19 |
Family
ID=66963463
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910168782.2A Active CN109918173B (en) | 2019-03-06 | 2019-03-06 | Openstack-based virtual machine health check method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109918173B (en) |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102082802A (en) * | 2011-03-01 | 2011-06-01 | 陈彪 | Behavior-based mobile terminal security protection system and method |
| CN102195987A (en) * | 2011-05-31 | 2011-09-21 | 成都七巧软件有限责任公司 | Distributed credibility authentication method and system thereof based on software product library |
Family Cites Families (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US10411975B2 (en) * | 2013-03-15 | 2019-09-10 | Csc Agility Platform, Inc. | System and method for a cloud computing abstraction with multi-tier deployment policy |
| CN103067380B (en) * | 2012-12-26 | 2015-11-18 | 北京启明星辰信息技术股份有限公司 | A kind of deployment configuration method and system of virtual secure equipment |
| US9088541B2 (en) * | 2013-05-31 | 2015-07-21 | Catbird Networks, Inc. | Systems and methods for dynamic network security control and configuration |
| US9769174B2 (en) * | 2013-06-14 | 2017-09-19 | Catbird Networks, Inc. | Systems and methods for creating and modifying access control lists |
| CN104732148A (en) * | 2015-04-14 | 2015-06-24 | 北京汉柏科技有限公司 | Distributed searching and killing method and system |
| CN106203102B (en) * | 2015-05-06 | 2019-10-11 | 北京金山安全管理系统技术有限公司 | A kind of checking and killing virus method and device of the whole network terminal |
| CN105407078A (en) * | 2015-10-20 | 2016-03-16 | 国网四川省电力公司信息通信公司 | Data transmission method and data transmission system in electric power communication system |
| CN106302466B (en) * | 2016-08-17 | 2019-04-26 | 东软集团股份有限公司 | A kind of management method and system of firewall |
| CN106612225B (en) * | 2016-12-12 | 2020-01-14 | 武汉烽火信息集成技术有限公司 | Openstack-based agent deployment system and method |
-
2019
- 2019-03-06 CN CN201910168782.2A patent/CN109918173B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102082802A (en) * | 2011-03-01 | 2011-06-01 | 陈彪 | Behavior-based mobile terminal security protection system and method |
| CN102195987A (en) * | 2011-05-31 | 2011-09-21 | 成都七巧软件有限责任公司 | Distributed credibility authentication method and system thereof based on software product library |
Non-Patent Citations (2)
| Title |
|---|
| Performance of Network Virtualization in cloud computing infrastructures: The OpenStack case;Franco Callegati等;《2014 IEEE 3rd International Conference on Cloud Networking(CloudNet)》;20141201;第132-137页 * |
| 云计算系统网络安全管理与技术防护;徐绕山等;《信息化研究》;20180420;第1-8页 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109918173A (en) | 2019-06-21 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| Xu et al. | Early detection of configuration errors to reduce failure damage | |
| CN103514023B (en) | The method and system that a kind of virtual machine off-line automatic software is installed | |
| JP5425699B2 (en) | Information processing apparatus, test case generation method, program, and recording medium | |
| Sun et al. | Anvil: Verifying liveness of cluster management controllers | |
| US8271416B2 (en) | Method for dynamically determining a predetermined previous condition of a rule-based system | |
| JP2017520828A (en) | Malware mitigation | |
| CN113260993A (en) | Secure deployment and operation of virtual platform systems | |
| US10084652B2 (en) | Customizing network configuration of virtual machines using subnet mapping rules | |
| WO2022252637A1 (en) | Browser-based rpa implementation method and apparatus, device, and medium | |
| CN111736837B (en) | Method, device, device, readable storage medium, and system for restoring web page operations | |
| CN110232279A (en) | A kind of leak detection method and device | |
| JP2020113290A (en) | Mitigation of malware | |
| CN118051913A (en) | Malware detection based on user interaction | |
| CN112035282A (en) | API management method, device, equipment and storage medium applied to cloud platform | |
| US8788884B2 (en) | Automatic correction of program logic | |
| CN103944920A (en) | Network worm active hampering method based on driver checking and confronting tool automatic generation system | |
| KR20210045122A (en) | Apparatus and method for generating test input a software using symbolic execution | |
| US10652365B2 (en) | Robust computing device identification framework | |
| CN109918173B (en) | Openstack-based virtual machine health check method and system | |
| US11050766B2 (en) | Generating unique virtual process identifiers for use in network security mechanisms | |
| US10768901B2 (en) | Converting code of a first code type on a mainframe device in phases to code of a second code type | |
| Cao et al. | An attack graph generation method based on parallel computing | |
| CN113590217A (en) | Function management method and device based on engine, electronic equipment and storage medium | |
| CN107077512A (en) | Systems and methods for optimizing queries on views | |
| Kubota et al. | A new feature to secure web applications |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| CP03 | Change of name, title or address |
Address after: Building 9, No.1, guanpu Road, Guoxiang street, Wuzhong Economic Development Zone, Wuzhong District, Suzhou City, Jiangsu Province Patentee after: Suzhou Yuannao Intelligent Technology Co.,Ltd. Country or region after: China Address before: Building 9, No.1, guanpu Road, Guoxiang street, Wuzhong Economic Development Zone, Wuzhong District, Suzhou City, Jiangsu Province Patentee before: SUZHOU LANGCHAO INTELLIGENT TECHNOLOGY Co.,Ltd. Country or region before: China |
|
| CP03 | Change of name, title or address |