%A Yuzhong SUN, Ying SONG, Yunwei GAO, Haifeng FANG, Kai ZHANG, Hongyong ZANG, Yaqiong LI, Yajun YANG, Ran AO, Yongbing HUANG, Lei DU, %T TRainbow: a new trusted virtual machine based platform %0 Journal Article %D 2010 %J Front. Comput. Sci. %J Frontiers of Computer Science %@ 2095-2228 %R 10.1007/s11704-009-0076-5 %P 47-64 %V 4 %N 1 %U {https://journal.hep.com.cn/fcs/EN/10.1007/s11704-009-0076-5 %8 2010-03-05 %X Currently, with the evolution of virtualization technology, cloud computing mode has become more and more popular. However, people still concern the issues of the runtime integrity and data security of cloud computing platform, as well as the service efficiency on such computing platform. At the same time, according to our knowledge, the design theory of the trusted virtual computing environment and its core system software for such network-based computing platform is at the exploratory stage. In this paper, we believe that efficiency and isolation are the two key proprieties of the trusted virtual computing environment. To guarantee these two proprieties, based on the design principle of splitting, customizing, reconstructing, and isolation-based enhancing to the platform, we introduce TRainbow, a novel trusted virtual computing platform developing by our research group. With the two creative mechanisms, that is, capacity flowing amongst VMs and VM-based kernel reconstructing, TRainbow provides great improvements (up to 42%) in service performance and isolated reliable computing environment for Internet-oriented, large-scale, concurrent services.