密码卡虚拟化技术研究与实现
作者:
作者单位:

作者简介:

通讯作者:

基金项目:

伦理声明:



On the Virtualization of Cryptographic Card
Author:
Ethical statement:

Affiliation:

Funding:

  • 摘要
  • |
  • 图/表
  • |
  • 访问统计
  • |
  • 参考文献
  • |
  • 相似文献
  • |
  • 引证文献
  • |
  • 资源附件
    摘要:

    密码卡是一种密码设备,位于网络安全平台的物理层,通过各种密码算法为上层应用系统提供加解密、数字签名等密码运算服务。从云计算安全方面考虑,密码卡需要具备高速运算的特点,并且 需要通过虚拟化技术实现高并发性。密码卡作为输入/输出(Input/Output,I/O)设备面临的挑战是,如何在虚拟化的情况下获得良好的 I/O 性能并有效地共享 I/O 设备。目前 I/O 虚拟化技术的发展相对滞后,影响了虚拟机的整体性能。基于此,该文提出了 3 种密码卡虚拟化设计方案,实现了基于现场可编程门阵列(FPGA)的软件虚拟化密码卡和基于单根 I/O 虚拟化技术的硬件虚拟化密码卡。在实际应用中,虚拟化密码卡通过高速外设部件互连标准(PCI-E)总线内置于服务器中,具备高性能并且通过软件调度 可以被多用户共享。结果表明,该技术可应用于金融、电信等信息安全领域,具备广阔的应用前景。

    Abstract:

    Cryptographic card is a kind of encryption device located in the physical layer of the network security platform. It provides several encryption and decryption algorithms, digital signature, and other cryptographic operation services for application systems. Considering the security of cloud computing, the cryptographic card needs to be high speed and achieve high concurrency through virtualization technology. The challenge for the cards as input/output (I/O) devices is how to achieve high I/O performance and share I/O devices in the case of virtualization effectively. At present, the development of I/O virtualization technology is lagging behind, which affects the overall performance of the virtual machine. Based on this, this paper realizes the software virtualization cryptographic card by using field-programmable gate array and the single root I/O virtualization technology. In practical applications, a virtualized cryptographic card is built into the server through the peripheral component interconnect express bus, which has high performance and can be shared by many users. The results show that this technology has broad applications in the field of information security.

    参考文献
    相似文献
    引证文献
引用本文

引文格式
苏振宇.密码卡虚拟化技术研究与实现 [J].集成技术,2019,8(3):31-41

Citing format
SU Zhenyu. On the Virtualization of Cryptographic Card[J]. Journal of Integration Technology,2019,8(3):31-41

复制
分享
文章指标
  • 点击次数:
  • 下载次数:
  • HTML阅读次数:
历史
  • 收稿日期:
  • 最后修改日期:
  • 录用日期:
  • 在线发布日期: 2019-05-17
  • 出版日期: