KR20140143953A - Appratus for a virtual desktop service and method thereof - Google Patents

Abstract

The present invention relates to a method and architecture capable of efficiently providing a virtual desktop service. According to the present invention, service architecture for the virtual desktop service includes: a connection broker performing authentication, the management of a virtual machine, and a server monitoring and protocol coordination function; a resource pool managing a software resource executed on a specific virtual machine by being delivered to the specific virtual machine in a streaming type at a predetermined time and providing provision information about the managed software resource according to a request of the connection broker in order to provide an on-demand virtual desktop service; and a virtual machine infrastructure supporting a hardware resource and providing virtual machines as virtual desktops by generating the virtual machines in which software of a user terminal is operated.

Description

[0001] APPARATUS FOR A VIRTUAL DESKTOP SERVICE AND METHOD THEREOF [0002]

The present invention relates to a device for a virtual desktop service and a virtual desktop service method.

Recently, research and standardization activities of virtual desktop service as a service for providing data storage hard disk and application in the Internet space have been performed.

Korean Patent Laid-Open Nos. 2010-0123847, 2009-0111576, and 2009-0111576 disclose a virtual desktop service technology in detail.

However, the architecture for such a virtual desktop service has not been standardized yet, and thus, there is a limit in that the virtual desktop service can not be efficiently provided to the user.

Korean Patent Laid-Open Publication No. 2009-0108868 discloses a technology related to a virtual machine management system capable of allocating a processor to a plurality of virtual machines. However, Korean Patent Laid-Open Publication No. 2009-0108868 applies to a method of configuring a system for virtualization management There are difficult limits.

Therefore, there is an urgent need for newer technologies to provide a virtualized desktop environment and manage virtualized desktop systems.

VIRTUAL DESKTOP SERVICE is a service that provides the hard disk and application programs that store data in the Internet space, and connects the virtual machine running on the virtual desktop server to the client system.

Until now, general PC was used as client system of virtual desktop service. However, in such a conventional environment, the user has to directly execute the dedicated software through the operating system of the client system.

In providing a conventional virtual desktop, a method of providing a terminal service called RDC (Remote Desktop Connection) using Microsoft Remote Desktop Protocol (RDP) by Microsoft (Microsoft), a method of providing VNC (Remote Desktop Connection) Virtual Network Computing) and Teradici to provide a terminal service solution with a PCoIP (PC-over-IP) protocol.

In order to perform a virtual desktop service using such a conventional method, a virtual desktop function should be provided for each user. In order to provide the virtual desktop function, a device (CPU, Memory, HDD, USB, etc.) The OS image for the OS must be allocated.

In order to provide such functions, there are virt-tool and virt-manager as public tools, and it is possible to create and create a user virtual machine by using a program such as xendesktop, VMware Fusion or workstation of Citrix Co., Are tools that are provided in a manual manner, and thus are not suitable for providing real-time virtual services.

In this background, the present invention has a main purpose of providing an architecture that can efficiently provide a virtual desktop service.

One embodiment of the present invention relates to a method and system for allocating a virtual machine to a user terminal using a virtual desktop service, A connection broker for coordinating the user loads between the servers; A resource pool for providing software resources including operating system, application and user profiles for the virtual desktop service; And a virtual machine infrastructure that supports hardware resources and dynamically allocates the software resources stored in the software resources to the hardware resources.

The connection broker may further perform a user authentication operation for authenticating the user of the user terminal and a license authentication operation for authenticating the software of the user terminal.

The connection broker may allocate the hardware resource and the software resource to the user terminal using the resource pool and the virtual machine infrastructure.

The virtual machine infrastructure may include a hypervisor that dynamically allocates the hardware resources to the software resources.

According to another embodiment of the present invention, a connection broker confirms a user profile of a user for a virtual desktop service and finds a virtual machine suitable for the hardware of the user terminal; If the connection broker does not have the appropriate virtual machine, the virtual broker requests the virtual machine infrastructure to create the corresponding virtual machine. If the appropriate broker has the appropriate virtual machine, the connection broker applies the user profile to the virtual machine and creates a virtual desktop step; And transmitting connection information for transferring the generated virtual desktop to the user terminal, and transmitting the virtual desktop to the user terminal using the transfer protocol of the virtual desktop To provide a virtual desktop service method.

As described above, the present invention provides an architecture that can efficiently provide a virtual desktop service.

According to the present invention, a DaaS system having a virtual desktop manager and a client device is applied, enabling efficient management using a multi-PC system using desktop virtualization, easy application of the system, and applicable to existing virtualization systems .

As described above, according to the embodiment of the present invention, the virtual desktop service can be accessed immediately after powering on the client system, and the power of the client is also shut down when the virtual machine of the virtual desktop service is shut down. Provides an environment for receiving virtual machine services without being aware of the virtual desktop client software.

According to the present invention, a user OS image and a user disk image to be allocated to a user for a virtual desktop service can be provided in a short time.

In addition, since the image disk is prepared in advance, it is possible to greatly reduce the server load in the server virtualization environment by reducing the operations such as virtual machine creation and image copying.

1 is a diagram illustrating a service architecture for a virtual desktop service according to an embodiment of the present invention.
2 is a conceptual diagram of a service architecture for a virtual desktop service according to an embodiment of the present invention.
3 is a flowchart of a method for a virtual desktop service according to an embodiment of the present invention.
4 is a functional layered architecture for a virtual desktop service according to an embodiment of the present invention.
5 is a conceptual diagram of a functional layered architecture for a virtual desktop service according to an embodiment of the present invention.
6 is a diagram illustrating a configuration of a desktop virtualization system according to an embodiment of the present invention.
7 illustrates a virtual desktop manager device according to an embodiment of the present invention.
8 is a diagram illustrating a virtual desktop client device according to an embodiment of the present invention.
FIG. 9 is a flowchart illustrating a management method using a virtual desktop manager device according to an embodiment of the present invention.
FIG. 10 is a flowchart illustrating a management method using a virtual desktop client device according to an embodiment of the present invention.
11 is a diagram showing the overall structure of a virtual desktop service system.
12 is a diagram illustrating the overall structure of a client system according to an embodiment of the present invention.
13 is a flowchart illustrating a process of a client system accessing a virtual desktop service according to an embodiment of the present invention.
14 is a diagram showing a login screen in the client system.
15 is a flowchart illustrating a process of terminating a client system according to an embodiment of the present invention.
16 is a diagram illustrating a system configuration for a real-time virtual desktop service according to an embodiment of the present invention.
17 is a diagram illustrating a system configuration for a virtual desktop service including a service gateway according to an embodiment of the present invention.
18 is a diagram illustrating a configuration of a service gateway for a real-time virtual desktop service according to an embodiment of the present invention.
19 is a diagram illustrating a method of providing a virtual machine for a real-time virtual desktop service according to an embodiment of the present invention.
20 is a diagram illustrating an interface of a virtual machine providing method for a real-time virtual desktop service according to an embodiment of the present invention.
21 is a diagram illustrating an interface of a method for providing a virtual machine for a real-time virtual desktop service according to an embodiment of the present invention.
22 is a diagram illustrating an interface of a method for providing a virtual machine for a real-time virtual desktop service according to an embodiment of the present invention.
23 is a diagram illustrating an interface of a method for providing a virtual machine for a real-time virtual desktop service according to an embodiment of the present invention.

Hereinafter, some embodiments of the present invention will be described in detail with reference to exemplary drawings. It should be noted that, in adding reference numerals to the constituent elements of the drawings, the same constituent elements are denoted by the same reference symbols as possible even if they are shown in different drawings. In the following description of the present invention, a detailed description of known functions and configurations incorporated herein will be omitted when it may make the subject matter of the present invention rather unclear.

In describing the components of the present invention, terms such as first, second, A, B, (a), and (b) may be used. These terms are intended to distinguish the constituent elements from other constituent elements, and the terms do not limit the nature, order or order of the constituent elements. When a component is described as being "connected", "coupled", or "connected" to another component, the component may be directly connected to or connected to the other component, It should be understood that an element may be "connected," "coupled," or "connected."

1 is a diagram illustrating a service architecture for a virtual desktop service according to an exemplary embodiment of the present invention.

There are several steps for providing a virtual desktop service to an end-user from the perspective of a service provider, and these steps are performed by a connection broker (CB) 110, a resource pool 120, and a virtual machine infrastructure 130. The virtual machine infrastructure 130 is a virtual machine infrastructure.

Hereinafter, the functions of three main actors will be described with reference to FIG.

2 is a conceptual diagram of a service architecture for a virtual desktop service according to an embodiment of the present invention.

2, the connection broker 110 may be a software program that allows a user terminal 20 to be connected to a virtual desktop 200 and may include software of the user terminal 20 and the user terminal 20 A function of user authentication 211 and license verification 212 for validating the virtual machine and a function of managing a virtual machine (VM) assigned to the user terminal 20, A monitoring function 213 of a server for measuring an activity level and a protocol coordination function 214 for using the same protocol between the user terminal 20 and a server.

The connection broker 110 may provide a connection between the backup storage and the virtual desktop servers.

Referring to FIG. 2, the resource pool 120 may include an operating system (OS), applications, and user profiles to provide an on-demand virtual desktop service. You can manage three different types of high-capacity software resources. That is, the resource pool 120 includes an OS pool 221, an application pool 222, and a user profile pool 223, as shown in FIG.

The software resources managed by the resource pool 120 are delivered to a specific virtual machine at a predetermined time in a streaming form and are executed on a specific virtual machine.

The resource pool 120 may provide the provision information 224 regarding the corresponding software resource at the request of the connection broker 110.

The above-mentioned user profiles may include, for example, a hardware configuration (e.g., CPU, RAM, I / O, etc.), an operating system (OS) Internet access method, etc.). These user profiles can be managed on a user-by-user basis.

Referring to FIG. 2, the virtual machine infrastructure 130 plays a major role in supporting hardware resources 231 and generating a virtual machine (VM) 232.

In a virtual desktop server, a virtualization technology, also referred to as a hypervisor 233, for example, would be highly needed to efficiently use the hardware resources 231 mentioned above.

The hypervisor 233 mentioned above abstracts the physical hardware resources 231 and dynamically allocates them to the upper level of the software 234. [

That is, the hardware resources 231 supported by the virtual machine infrastructure 130 are stored in a virtual desktop server that abstracts the physical hardware resources 231 and dynamically allocates the hardware resources 231 to a higher level of the software 234 Hypervisor virtualization technology can be used effectively.

As a result, the virtual machine infrastructure 130 provides the virtual machines 232 in which the software 234 of the user terminal 20 operates. These virtual machines are called virtual desktops (200).

Hereinafter, a method for a virtual desktop service will be described with reference to FIG. 3, with reference to FIG. 2 together with a conceptual diagram of a service architecture for a virtual desktop service.

3 is a flowchart of a method for a virtual desktop service according to an embodiment of the present invention.

Referring to FIG. 3, a method for a virtual desktop service according to an exemplary embodiment of the present invention includes a user terminal access and user confirmation step S300, a virtual machine search step S302, a user profile application step S308, (Step S310), a user terminal connection step (S312), an experience information communication step (S314), a log-off operation, and a user profile update step (S316).

If the user terminal 20 is connected through one or more security protocols such as Secure Shell (SSH) and Transport Layer Security (TLS), the connection broker 110 transmits a user ID and / Validate the user with the password.

In the virtual machine search step S302, the connection broker 110 identifies a corresponding user profile for virtual machine assignment, and uses the provisioning function to access the hardware of the user terminal 20 And searches for a virtual machine that satisfies the configuration and is optimal for a computing environment.

If there is no suitable virtual machine, the connection broker 110 transmits information on the hardware configuration to the virtual machine infrastructure 130 (S304) by determining whether to search for the virtual machine in the search result in the virtual machine searching step S302 ) To create a virtual machine. Accordingly, a virtual machine is created in the virtual machine infrastructure 130 (S306).

In the user profile application step S308, after the virtual machine is allocated or created, the connection broker 110 applies the user profile to the allocated or created virtual machine.

In this user profile application step S308, the connection broker 110 may install an operating system (OS) and an application for constructing the virtual desktop 200.

In the session creation step S310, a session for delivering the virtual desktop 200 is created in the virtual machine infrastructure 130, and session information about the created session is dispatched to the connection broker 110 Dispatch.

In the user terminal connection step S312, the connection broker 110 transmits the session information to the user terminal 20, and the user terminal 20 is connected to the virtual machine infrastructure 130. [

In the experiential information communication step S314, the user terminal 20 communicates experience information of users by the virtual desktop 200 using a virtual desktop delivery protocol (VDDP) .

In the log-off operation and user profile update step S316, the user terminal 20 executes a log-off operation to prevent loss of user data when the virtual desktop service is terminated, During the off-operation, the connection broker 110 updates the changed user profile in the User Profile Pool 223.

In the log-off operation and the user profile update step S316, the connection broker 110 may return the virtual machine so that the virtual machine is available.

Hereinafter, functional layers of a virtual desktop service according to an embodiment of the present invention will be described with reference to FIGS. 4 and 5. FIG.

4 is a functional layered architecture for a virtual desktop service according to an embodiment of the present invention.

Referring to FIG. 4, a functional layered architecture for a virtual desktop service according to an exemplary embodiment of the present invention includes a user layer 410, a cloud access and publication layer 420, And includes a functional layer such as a network service orchestration layer 430, a cloud service layer 440, and a resource layer 450.

Hereinafter, each of the above-mentioned functional layers will be described with reference to FIG.

5 is a functional layered architecture for a virtual desktop service according to an embodiment of the present invention.

5, the user layer 410 performs an interaction between the user terminal 50 and a cloud infrastructure, transmits a cloud service request, performs a cloud service access, And is used to manage or monitor resources and includes an End User Function 511, a Terminal Adaptation Function 512, an Administration Function 513, a Partner Function with Partner 510 , 514, and an Inter-Cloud function 515, and the like.

When a cloud receives a request for a cloud service, the cloud may orchestrate resources of its own or other cloud through the inter-cloud functionality 515, provide the cloud service via the user layer 515, do.

The end user function 511 supports the end user, i.e., the user terminal 50, to access the cloud service and consume the cloud service.

Management function 513 supports enterprise administrators to manage cloud resources and services within business processes.

The partner function 514 enables a partnership through a cloud service provider.

The inter-cloud function 515 provides an interconnection interface and a broker function for interconnection with a plurality of Cloud Service Providers (CSP) clouds. This inter-cloud function 515 includes an Inter-Cloud Service Broker function, an Inter-Cloud Portal function, and the like.

The inter-cloud broker function provides an alternative solution for cloud users or applications to access cloud services and resources of other CSPs 52.

The user terminal for the virtual desktop service may be various types such as a laptop, a desktop PC, a thin client, a mobile phone, and the like.

In addition, terminal adaptation refers to a function that enables a terminal device to provide a proper desktop among various resolutions having different peripherals in a different band environment.

5, the cloud access and publishing layer 420 provides a common interface for manual and automated cloud actions and consumption, and includes a cloud service provider (CSP: Cloud Service provider's services and resources by using cloud application program interfaces (APIs) to accept cloud service consumption requests of consumers or business processes, network termination functions, API termination functions API termination function and Inter-Cloud Mediation function.

Referring to FIG. 5, the cloud network service orchestration layer 430 includes a virtual desktop transmission function (virtual desktop transmission function) for encapsulating and delivering access to an entire information system environment or a remote client device via a network, An Authentication entity that provides authorized access to a combination of personalized applications for different security levels by consulting a directory server to authenticate the user's desktop session, , There may be various communication protocols between the user terminal and the virtual desktop, such that the connection broker performs the function of coordinating the user desktop session to be used between the user terminal and the virtual desktop for a common communication protocol for data and video transmission after authentication A monitoring and management entity that performs a coordination entity, a connection broker performing runtime status monitoring of a virtual machine and ensuring an operation environment for a required application, and a connection broker, And a connection broker function 532 configured as a verification entity that provides a software license checking function to allow the terminal 50 to access an authorized application hosted in the virtual desktop .

In the above-described virtual desktop delivery function 531, the virtual desktop transfer protocol (VDDP) is a core component of the virtual desktop transfer function 531 and includes, for example, display, input, cursor, And provides a communication channel between the server for DaaS (Desktop as a Service) and the user terminal 50 in order to transmit all the interaction information (interaction information) such as the monitoring information.

Also, in the above-described monitoring and management entity, the connection broker may allocate a new idle virtual machine instance to a newly arrived request, or allocate a new idle virtual machine instance Then instructs the virtual machine infrastructure to allocate a previous instance for the request raised by the client-side device and instructs the connection broker to prepare a new cloud virtual machine for a new Login User Session You can ask the virtual machine infrastructure.

The above-described cloud network service orchestration layer 430 further includes a record function 533, a configuration function 534, and the like.

5, the cloud service layer 440 includes a DaaS (Desktop as a Service) function 541 for providing a virtual desktop service to the user terminal 50 through a broadband network, a guest OS A visualized modeling tool for creating a virtual template that allows a cloud virtual machine to be created in a virtual machine infrastructure and is a global resource repository or a repository server set in which applications are serialized and stored Visualized modeling tool) and has the ability to dynamically assemble resources including operating system, application software, user profile, and system configuration from a running virtual desktop and to produce corresponding image files, Enables communication with the machine infrastructure and enables serialized images And a Resource Pool function 545 that supports a network-based Bootstrap Protocol that enables creation of a virtual desktop remotely from a file.

The cloud service layer 440 may include a service orchestration function 542, a service publication function 543, and a service adaptation function 544, as shown in FIG. ), And the like.

5, the resource layer 450 includes a physical resource including a computing resource, a storage resource, a network resource, a power resource, and other components essential to a cloud computing environment, 551), and a virtual resource (Virtual Resource) 552 including a virtual machine, a virtual network resource, and a virtual storage resource.

A virtual machine refers to a virtual machine created in the virtual machine infrastructure 553 by different server virtualization technologies such as XEN, KVM, and the like.

5, a functional layered architecture for a virtual desktop service according to an exemplary embodiment of the present invention further provides a cross layer function (560) including monitoring and SLA functions, management, support, and security functions can do.

The above-mentioned virtual machine infrastructure 553 refers to a cluster environment having HA characteristics, and many execution virtual machine instances are generated from the same virtual machine template and configured with the same parameters. Nearly all of the virtual machine infrastructure 553 provides virtual machine mobility and thus enables a running instance to move to another hosting server in the event of a system failure to maintain business continuity .

The virtual desktop service described herein may be a service for providing a data storage hard disk and an application in the Internet space, that is, a personal computer or a business desktop may be a desktop virtualization technology And can be a desktop service using a virtual machine. The generated desktop virtual machine is located remotely, such as the Internet data center, and can be used anytime and anywhere like a local desktop.

The Virtual Desktop Service described herein may be a Desktop as a Service (DaaS) service or a Cloud Computing service or a Cloud Desktop Service.

The architecture (service architecture and functional layered architecture) for a virtual desktop service according to an embodiment of the present invention may be a design method of a system or a server that provides a virtual desktop service to a user terminal, (System) or a server itself, which provides the user terminal with a service.

6 is a diagram illustrating a configuration of a desktop virtualization system according to an embodiment of the present invention.

6, a desktop virtualization system (hereinafter, also referred to as a DaaS system) according to an embodiment of the present invention includes a virtual desktop manager device 1000 and a virtual desktop client device 2000. FIG.

The virtual desktop manager device 1000 provides a function of allocating a virtual desktop server to the virtual desktop client device 2000 according to a user's request and managing creation, management, disappearance and migration of the virtual machine.

The detailed configuration of the virtual desktop manager device 1000 and the virtual desktop client device 2000 will be described in detail below with reference to FIGS. 7 and 8. FIG.

FIG. 7 illustrates a virtual desktop manager device according to an embodiment of the present invention.

Referring to FIG. 7, a virtual desktop manager 1000 according to an exemplary embodiment of the present invention includes a connection module 1100, an allocation module 1200, a management module 1300, and a web server module 1400, do.

The connection module 1100 allows the virtual desktop client device 2000 and the virtual desktop server to connect to the user who has completed the user authentication.

In order to provide the virtual desktop service to the user remotely through the DaaS system, the connection module 1100 is connected to the virtual desktop server.

At this time, the connection module 1100 permits allocation of an arbitrary virtual machine through the request information of the user and the virtual machine information of the virtual desktop server configuring the current system, only for the user who is connected according to the user authentication.

In addition, the connection module 1100 can provide a connection function and a screen redirection function of the virtualized desktop environment using the remote access protocol of the allocated virtual machine after the allocation of the virtualization desktop server.

In addition, the connection module 1100 stores the current environment setting according to the user account so that the user can access the virtual machine when the virtual machine is allocated to the user, and removes the virtual desktop connection function and provides the screen redirection function Can be removed.

The allocation module 1200 identifies the operation status of the virtualization desktop server and allocates the optimal virtualization desktop server to the virtualization desktop client device 2000.

At this time, the allocation module 1200 allocates resource usage of the virtualization desktop servers and allocation information of the virtual machines to the remote user requesting the virtualization desktop service through the connection module 1100, in order to allocate a virtual machine supporting the best virtualization desktop service A virtual machine provisioning function can be provided.

At this time, the allocation module 1200 can monitor in real time the resource allocation status, usage information, and use of the created virtual machines of the virtualized desktop servers constituting the DaaS system.

At this time, the allocation module 1200 provides the best user-customized virtualized desktop server to the remote user, and can assign another virtual machine in real time when a problem occurs to the virtual machine.

At this time, the allocation module 1200 may allocate a virtual desktop server by separating an image for operating a virtual machine and a disk image for a user of the virtual desktop client device 2000.

The management module 1300 monitors the operation status of the virtualization desktop server and the virtual machine, and executes a control command of the virtualization desktop server.

The web server module 1400 provides the user with a web-based management tool GUI.

8 is a diagram illustrating a virtual desktop client device according to an embodiment of the present invention.

8, a virtual desktop client device 2000 according to an embodiment of the present invention includes a hypervisor 2100, a monitoring information collector 2300, a hardware profile collector 2400, a performance meter 2500, (2600).

At this time, the monitoring information collector 2300, the hardware profile collector 2400, the performance measurer 2500, and the instruction executing unit 2600 may be configured as a virtual desktop agent 2050.

The hypervisor 2100 accepts one or more virtual machines 2200 on top of the hardware.

The hypervisor 2100 can communicate with the virtual machine 2200 and the configurations of the virtual desktop agent 2050 using the programmed daemon.

At this time, the type of the virtual machine 2200 can be configured as full virtualization or semi-virtualization.

The monitoring information collector 2300 monitors the virtual machine 2200.

The hardware profile collector 2400 collects hardware information and OS level information of the virtual desktop client device 2000.

The performance measurer 2500 calculates performance information of the virtual machine 2200 using the information monitored by the monitoring information collector 2300.

The instruction execution unit 2600 buffers and executes a control instruction word transmitted from the virtualization server.

At this time, the control commands related to the control of the virtual machine are controlled through the programmed daemon, and the commands related to the virtual desktop client device 2000 can be processed at the hypervisor 2100 and the OS level.

Meanwhile, the network protocol of the virtualized desktop system uses TCP / UDP, and the management method of operation will be described later in detail with reference to FIG. 9 and FIG.

FIG. 9 is a flowchart illustrating a management method using a virtual desktop manager device according to an embodiment of the present invention.

Referring to FIG. 9, in the management method using the virtual desktop manager device according to an embodiment of the present invention, a new server is registered in the virtual desktop manager device 1000 by the user (S1000).

A method of registering a new server will be described. First, a user tries to connect to the virtual desktop client device 2000, and a new user connects to the connection module 1100. Then, the member ID and password are given through the membership process. The user connects to the virtual desktop manager device 1000 with the given connection ID, and the virtual desktop manager device 1000 creates a new image. In the case of a new image, the virtual desktop manager device 1000 selects a preset virtualized image according to an existing user pattern, or generates an image through settings of a CPU, a memory, and a HDD desired by the user. The generated information is stored in the connection module 1100 and the connection module 1100 requests the redirection function to the management module 1300 with an image generated for the service and then direct management is continuously performed in the management module 1300 Go ahead.

Then, the virtual desktop manager device 1000 transmits the IP and connection port of the virtual desktop manager 1000 to all servers registered in the same network in a broadcast manner (S 1100)

At this time, in order to transmit the IP address of the virtual desktop manager device 1000 without changing the registered client devices when the IP of the server of the virtual desktop manager 1000 is changed, transmission of the IP and the connection port of the virtual desktop manager 1000, , And can be transmitted and retransmitted once at predetermined intervals.

Then, the virtual desktop manager device 1000 runs as a TCP server and performs a listener for the broadcasted port (S1200)

Thereafter, when receiving a connection request message (TCP Connection) received from the virtual desktop client device 2000 (S1300), it is checked whether the client device is an IP address registered in the management server (S1400).

At this time, if the IP address of the client device is not registered, the TCP connection is not processed (S1500)

On the other hand, in the case of the registered IP, the access code is received from the client device (S1600).

At this time, the access code can be configured to be modified through the GUI of the virtual desktop manager device.

Thereafter, the connection code transmitted from the virtual desktop client device 2000 is compared and information about the match is transmitted to the client device that has attempted connection (S1700).

At this time, the transmission result of the coincidence with respect to the connection code can be transmitted with a result value of 1 if coincidence and 0 when it does not coincide.

On the other hand, if the access codes do not match, a result indicating that they do not match is transmitted and then the connection is released (S1800)

In contrast, if the access codes match, it is notified that the access codes match (S1900), and the virtual desktop client device's virtual desktop agent is confirmed to operate properly (S2000).

At this time, it is possible to check whether the connection of the virtualized desktop agent connected through a separate thread or process is continued.

At this time, it is possible to maintain the connection even if there is no data transmission by using the keepalive function of the TCP.

FIG. 10 is a flowchart illustrating a management method using a virtual desktop client device according to an embodiment of the present invention.

Referring to FIG. 10, a method for managing a virtual desktop client device 1000 according to an exemplary embodiment of the present invention includes: first, a virtual desktop agent to access a virtual desktop manager device 1000; 1000) and the port information (S3000)

At this time, when the virtual desktop agent is activated, the broadcast receiver code is first executed. If the TCP connection is disconnected during the operation of the virtualization desktop agent after the TCP connection, the broadcast receiver code part can be configured to be executed again.

 Then, the IP address and port of the virtual desktop manager device 1000 are received through the broadcast (S3010), and the virtual desktop manager device 1000 is requested to access the virtual desktop manager device 1000 using the received IP address and port (S3020).

Then, when the connection is completed, the connection code is transmitted to the virtualization desktop manager device 1000 (S3030)

At this time, the access code can be stored as a separate file.

Thereafter, the connection code processing result is waited for, and in the case of connection error, the connection is terminated and the broadcast receiver code is executed again.

11 is a diagram showing the overall structure of a virtual desktop service system.

11, a virtual desktop service system according to an embodiment of the present invention includes a virtual desktop server 3200 and a plurality of client systems 3100, and includes a virtual desktop server 3200 and a plurality of client systems 3100 ) Are connected by a network.

In the virtual desktop server 3200, a hypervisor 220 is installed and executes a virtual machine 210 for a virtual desktop service on the hypervisor 220. Then, the user connects to the virtual machine 210 on the virtual desktop server 3200 using the client system 3100. [ Actual performance of the virtual machine 210 is performed on the virtual desktop server 3200, and only user input / output tasks are performed in the client system 3100.

12 is a diagram illustrating the overall structure of a client system according to an embodiment of the present invention.

12, the hardware 3150 of the client system 3100 includes a CPU 3150a, a memory 3150b, a storage device 3150c, a video device 3150d, a keyboard 3150e, a mouse 3150f, An input device 3150g, an audio output device 3150h, and a network device 3150i.

Here, the storage device 3150c mounts only the client operating system 3140 and the virtual desktop client software 3110, and mounts the minimum capacity capable of storing them.

The operating system 3140 manages the hardware 3150 of the client system and provides an environment for performing the client software 3110.

The client software 3110 comprises a virtual machine input / output processor 120 and a virtual machine connection manager 3130.

The virtual machine input and output processor 120 includes a video channel processor 120a, a cursor channel processor 120b, a keyboard / mouse channel processor 120c, an audio input channel processor 120d, an audio output channel processor 120e, And a transceiver 120f.

The virtual machine connection manager 3130 includes a virtual desktop login processor 3130a and an operating system termination processor 3130b.

13 is a flowchart illustrating a process of a client system accessing a virtual desktop service according to an embodiment of the present invention.

Referring to FIG. 13, when the client system 3100 is powered on, an operating system 3140 for managing a client is performed (S3100). When the operating system 3140 is booted (S3110), the operating system automatic login processor 3140a automatically performs the login of the operating system 3140 (S3120).

Thereafter, the client software executor 3140b automatically performs the virtual desktop client software 3110 (S3130). When the virtual desktop client software 3110 is executed, the virtual desktop login processor 3130a is executed (S3140).

The virtual desktop login processor 3130a needs to know the ID and password of the virtual machine 210 and the IP address of the virtual desktop server 3200 in order to access the virtual desktop server 3200. [ If the login is successful, the user can access and use the virtual machine 210 (S3150).

The method of inputting the ID of the virtual machine 210, the password and the IP address of the virtual desktop server 3200 can be selected from two methods of using the login screen or using the storage device 3150c of the client system 3100 have.

14 is a diagram showing a login screen in the client system.

The present invention can input the ID and password of the virtual machine 210 and the IP address of the virtual desktop server 3200 using the login screen as shown in FIG.

In addition, the present invention can store the ID and password of the virtual machine 210 and the IP address of the virtual desktop server 3200 in the client storage device 3150C, and automatically retrieve the ID, the password, and the IP address of the virtual desktop server 3200 from the corresponding file. In this case, the user can directly access the virtual machine 210 without using the login screen.

15 is a flowchart illustrating a process of terminating a client system according to an embodiment of the present invention.

Referring to FIG. 15, the user executes a system shutdown command of the virtual machine 210 (S3200). Then, the virtual machine 210 of the virtual desktop server 3200 is terminated (S3210).

Thereafter, after the operating system termination processor 3130b of the virtual desktop client software 3110 recognizes that the virtual machine 210 is terminated, it commands the client system 3100 to terminate the system.

Then, the operating system 3140 of the client system 3100 is terminated (S3220), and the power of the client system 3100 is also turned off (S3230).

Here, data exchange between the virtual machine 210 and the client system 3100 of the virtual desktop server 3200 is performed through the channel described below.

The video channel transmits the screen on the monitor from the virtual machine 210 to the client system 3100 and the cursor channel transmits the mouse cursor from the virtual machine 210 to the client system 3100 on the monitor screen.

The keyboard / mouse channel transmits the keyboard / mouse input of the client system 3100 to the virtual machine 210.

The audio input channel also transmits the audio input of the client system 3100 to the virtual machine 210 and the audio output channel transmits the audio output of the virtual machine 210 to the client system 3100.

The channel data transceiver 120f includes a channel data transmitter and a channel data receiver.

The virtual desktop server 3200 transmits data corresponding to each channel of the virtual machine 210 to the client system 3100. Data of the virtual machine 210 arrives through the channel data receiver of the client system 3100, and each data is sent to the corresponding channel processor.

Video channel processor 3120a outputs a screen on the monitor using video device 3150d and cursor channel processor 3120b outputs the mouse cursor to a location on the specified monitor.

The audio output channel processor 3120e outputs audio using the audio output device 3150h and the channel data transmitter 3120f transmits the input data of the client system 3100 to the virtual machine 210. [

The keyboard / mouse channel processor 3120c transmits the keyboard / mouse input of the client system 3100 to the virtual machine 210 via the channel data transmitter 3120f.

The audio input channel processor 3120d transmits the data received from the audio input device 3150g to the virtual machine 210 through the channel data transmitter 3120f.

As described above, the present invention can access the virtual desktop service immediately after the client system 3100 is powered on, and the power of the client system 3100 is also terminated at the end of the virtual machine 210 of the virtual desktop service, Provides an environment in which virtual machine services can be received without recognizing the operating system 3140 and the virtual desktop client software 3110 driving the virtual machine 3100.

Therefore, since the client system is directly connected to the virtual machine of the virtual desktop service through the structure of the dedicated client for the virtual desktop service, there is no problem that the user must directly execute the dedicated software.

In addition, according to the present invention, when the virtual machine is shut down, the power of the client system is also turned off, so that the user can use the virtual desktop service without being aware of the client operating system and the client software.

Hereinafter, an embodiment of a connection broker capable of performing a load balancing function for dynamically allocating a virtual desktop service will be described in detail.

16 is a diagram illustrating a system configuration for a real-time virtual desktop service according to an embodiment of the present invention.

Referring to FIG. 16, a system for real-time virtual desktop service according to an embodiment of the present invention includes a client unit 4100 and a service provider server 4200.

The client unit 4100 requests allocation of a virtual machine to the service provider server 4200, and receives a virtual machine service through the allocated virtual machine.

The service provider server 4200 allows the user to access the pseudo machines created on the hypervisor through the client unit 4100 using the connection protocol, and transmits the virtual machine stored in the service provider server 4200 So that it can be used.

At this time, a user profile (user information file), an OS image for a user, and a disk image for a user are required to provide a virtual machine to the user.

17 is a diagram illustrating a system configuration for a virtual desktop service including a service gateway according to an embodiment of the present invention.

Referring to FIG. 17, a system for a virtual desktop service including a service gateway according to an embodiment of the present invention includes a client unit 4300, a service gateway 4350, and a service provider server 4400.

The client unit 4300 transmits a virtual machine allocation and use request command to the service provider server 4400 through the service gateway 4350.

The service gateway 4350 performs an authorization process for authenticating the user of the client unit 4300 and granting a work right.

Details of the service gateway 4350 will be described later with reference to FIG.

The service provider server 4400 includes a plurality of virtual machines 4401, 4402, and 4403 and a hypervisor 4404.

The hypervisor 4404 further includes an agent 4405 that performs a request command transmitted from the client unit 4300 and transmits the execution result to the client unit 4300 through the service gateway 4350. [

18 is a diagram illustrating a configuration of a service gateway for a real-time virtual desktop service according to an embodiment of the present invention.

18, a service gateway for real-time virtual desktop service according to an embodiment of the present invention includes a user information management unit 4351, a virtual machine information management unit 4352, and a virtual machine creation unit 4353.

The user information management unit 4351 authenticates the user information provided by the user through the client unit.

At this time, the user information management unit 4351 can determine whether the user is a registered user by analyzing the user information provided from the client unit.

The virtual machine information management unit 4352 generates virtual machine access information corresponding to the user information provided through the client unit and provides the virtual machine access information to the client unit.

At this time, the connection information may include an address and a port number of a service provider server providing a virtual machine.

At this time, if the user information management unit 4351 classifies the user as a registered user through the analyzed user information, the virtual machine information management unit 4352 can determine whether or not the existing virtual machine exists.

At this time, if the user information management unit 4351 is classified as an unregistered user through the analyzed user information, the virtual machine information management unit 4352 requests the client unit to register the user ID, password, and virtual machine setting information You can create a new user.

At this time, the virtual machine setting information may include at least one of the number of CPUs of the virtual machine to be provided, the number of memory units, the hard disk capacity, and the OS type information.

At this time, in the virtual machine setting information, the virtual machine information management unit 4352 analyzes the authority level of the user information, determines the domain name and the OS type of the virtual machine according to the analyzed authority level, have.

On the other hand, when the existing virtual machine corresponding to the user information does not exist, the virtual machine information management unit 4352 can request the client unit to register the virtual machine setting information.

The virtual machine creation unit 4353 selects a service provider server according to the virtual machine creation request of the client unit, and creates a virtual machine in the selected service provider server.

19 is a diagram illustrating a method of providing a virtual machine for a real-time virtual desktop service according to an embodiment of the present invention.

20 to 23 are views showing a process of a virtual machine providing method for a real-time virtual desktop service according to an embodiment of the present invention in an interface format.

Referring to FIG. 19, a method for providing a virtual machine for a real-time virtual desktop service according to an embodiment of the present invention first attempts to access a client-side service gateway by transmitting user information (S5010, S5020).

The client part may be in the form of a PC, a mobile device, or the like.

Referring to FIG. 20, in order to describe steps S5010 and S5020 in detail, the user inputs user information corresponding to a user name and password on the connection interface screen output to the PC or the mobile device, Enter the address CB Address.

The client part attempts to connect to the online server corresponding to the CB address, and at the same time, transmits the user name and the password.

Thereafter, the service gateway analyzes the user information and determines whether the user is a registered user (S5030).

At this time, if the user is classified as an unregistered user, the registration of the user ID, password, and virtual machine setting information is requested to the client unit to create a new user (S5040).

Referring to FIG. 21, in step S5040, a name, an ID, a password PW, a virtual machine setting information VM_USAGE, an office name (office_ID), a telephone number Tel) and e-mail address (E-mail) on the registration interface screen and creates a new user.

A detailed setting process of the virtual machine setting information will be described later with reference to FIG. 22 and FIG.

Thereafter, the service gateway determines whether an existing virtual machine corresponding to the user information exists (S5050).

At this time, if the existing virtual machine does not exist, a registration of the virtual machine setting information is requested to the client unit, and a new virtual machine is created and registered (S5060).

At this time, the preset method and the manual method can be applied to the method of setting the virtual machine setting information.

22, when the virtual machine setting information is manually set, the name of the virtual machine, the description of the virtual machine, the number of CPUs of the virtual machine to be provided, the number of memory, the hard disk capacity And OS type information are set and registered.

Referring to FIG. 23, when the virtual machine setting information is set in the preset mode, the service gateway analyzes the authority level of the user information and determines the domain name and the OS type of the virtual machine according to the authority level.

For example, it is possible to set the domain name and the type of the OS to be provided by analyzing the user's service level or the user serviceable level through the office name input in step S5040.

The service gateway selects one service provider server among a plurality of service provider servers providing a virtual machine based on virtual machine setting information set in a preset method or a manual method, and creates a virtual machine in the server.

At this time, preset virtual machine setting information (template) is copied at a designated position, and a previously created image is rename at a specific position.

Therefore, each service provider server must have a template file that matches its own server and set it in a fixed location, and have an image corresponding to the capacity of the server as a default.

When the virtual machine creation is completed, the service provider server allocates connection information to the client.

At this time, the connection information may include the address and the port number of the service provider server providing the virtual machine.

Thereafter, the client unit accesses the service provider server through the allocated connection information (S5070).

In step S5080, the service provider server does not perform the process of copying the prepared virtual machine image, but renames the user OS image and the user disk image corresponding to the virtual machine setting information set by the user, and provides the same to the user.

When the allocation is completed, an allocation completion message is sent to the user, and the user can boot using this.

20: User terminal
110: Connection Broker
120: resource pool
130: Virtual Machine Infrastructure
200: Virtual Desktop
1000: Virtualization Desktop Manager Device
1100: connection module 1200: assignment module
1300: Management module 1400: Web server module
2000: Virtualization Desktop Client Device
2050: Virtualization Desktop Agent 2100: Hypervisor
2200: Guest OS (VM) 2300: Monitoring information collector
2400: Hardware Profile Collector 2500: Performance Meter
2600: Instruction execution unit
4100, 4300: client unit 4200, 4400: service provider server
4350: Service gateway 4351: User information management part
4352: virtual machine information management unit 4353: virtual machine creation unit
4401, 4402, 4403: virtual machine 4404: hypervisor
4405:

Claims (8)

An assignment task of a virtual machine allocated to a user terminal using a virtual desktop service, a coordination task of a delivery protocol used between the user terminal and servers providing the virtual desktop service, A connection broker for managing a user load between the servers;
A resource pool for providing software resources including operating system, application and user profiles for the virtual desktop service; And
And a virtual machine infrastructure that supports hardware resources and dynamically allocates the software resources stored in the software resources to the hardware resources. The method according to claim 1,
Wherein the connection broker further performs a user authentication operation for authenticating a user of the user terminal and a license authentication operation for authenticating software of the user terminal. The method according to claim 1,
Wherein the connection broker uses the resource pool and the virtual machine infrastructure to allocate the hardware resource and the software resource to the user terminal. The method according to claim 1,
Wherein the virtual machine infrastructure includes a hypervisor that dynamically allocates the hardware resources to the software resource. The connection broker confirms the user profile of the user for the virtual desktop service and finds a virtual machine suitable for the hardware of the user terminal;
If the connection broker does not have the appropriate virtual machine, the virtual broker requests the virtual machine infrastructure to create the corresponding virtual machine. If the appropriate broker has the appropriate virtual machine, the connection broker applies the user profile to the virtual machine and creates a virtual desktop step; And
The connection broker transmits connection information for transmitting the generated virtual desktop to the user terminal and transmits the virtual desktop to the user terminal using the transmission protocol of the virtual desktop Virtual desktop service method. 6. The method of claim 5,
Wherein the connection broker manages a user load between servers for a virtual desktop service. 6. The method of claim 5,
Wherein the connection broker allocates a hardware resource and the software resource to the user terminal using a resource pool providing a software resource including an operating system, an application and user profiles, and the virtual machine infrastructure. 6. The method of claim 5,
Wherein the virtual machine infrastructure includes a hypervisor that dynamically allocates hardware resources to the software resources.

Images