| 摘要 |
A method of secure communication between a virtual machine in a set of virtual machines (602, 604, 606) and a shared software service (608) over a network (600), the method comprising: establishing a network connection between the virtual machine and the software service; communicating data between the virtual machine and the software service; establishing a tunnelling VPN connection for communication of encrypted network traffic between the virtual machine and the software service, access to the VPN connection being restricted so as to securely separate communication between the virtual machine and the software service from communication occurring with other virtual machines in the set, and wherein data is communicated between the virtual machine and the software service via the VPN connection. The VPN may also be established per application within the VM and per execution thread (620, 622, 624) of the shared service. |
