QingTian System Overview
Traditional Virtualization System
Virtualization enables multiple operating systems (OSs) to run on a single physical computer system. A virtualization system leverages hardware-assisted virtualization to virtualize CPUs, memory, and I/Os, and provides independent, isolated hardware space for customers' virtual OSs. Virtualization can divide the resources of a single server among multiple tenant VMs. Each VM is allocated isolated resources, thereby effectively utilizing the resources of a single server.
The core component of a virtualization system is the hypervisor. The core responsibilities of the hypervisor include abstracting and allocating physical hardware resources, managing the full lifecycle of VMs, and isolating VMs. The hypervisor can isolate resources of different VMs on the same physical server to prevent data theft or malicious attacks between VMs and ensure that the VM resource usage is not affected by peripheral VMs. VMs are isolated for security. End users can only access resources (such as hardware and software resources and data) allocated to their own VMs.
QingTian Virtualization System Evolution
The QingTian system architecture is the next generation of hardware-software synergy architecture launched by Huawei Cloud. It provides key capabilities such as zero resource reservation, zero compute loss, zero service jitter, and strong security isolation. Huawei Cloud has released QingTian instances in 2017. The QingTian architecture supports multiple forms and heterogeneous compute, such as VMs, bare metal servers, and containers. After years of development, the QingTian system has reshaped Huawei Cloud infrastructure and has become the mainstream underlying platform of the new generation of instances.

The QingTian system consists of Huawei-developed QingTian Cards and QingTian Hypervisor.
- QingTian Cards are Huawei Cloud-developed hardware acceleration devices. They provide overall system control and I/O virtualization passthrough. They run independently of the frontend host system and are powered independently.
QingTian Cards enable secure boot and trusted measurements for the overall system based on a hardware root of trust. They also provide anti-tampering protection for firmware and accelerate hardware-based I/O encryption and decryption.
- QingTian Hypervisor is a lightweight hypervisor designed to provide powerful resource isolation, strong security, near-bare-metal high performance.
Dedicated QingTian Cards connect to the host system CPU through the standard PCI-Express interface and simulate various local and network resources as local resources of the host CPU through drivers. This prevents customers from configuring complex functions and ensures secure isolation between cloud infrastructure and customer applications. QingTian Cards also use dedicated ASIC hardware to process storage and network virtualization, which not only improves performance but also reduces costs. In addition, the QingTian architecture can greatly reduce the adaptation workload between the cloud infrastructure foundation and different computes, improving the iteration speed of new functions.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot