BLOCKCHAIN FOR INTERNET OF THINGS
HCloud: A Trusted JointCloud Serverless Platform for
IoT Systems with Blockchain
Zheng Huang, Zeyu Mi, Zhichao Hua*
Institute of Parallel and Distributed Systems, Shanghai Jiao Tong University, Shanghai 200240, China
* The corresponding author, email:
[email protected]
Abstract: Cloud computing has been exploit-
ed in managing large-scale IoT systems. IoT
cloud servers usually handle a large number
of requests from various IoT devices. Due to
the fluctuant and heavy workload, the servers
require the cloud to provide high scalability,
stable performance, low price and necessary
functionalities. However, traditional clouds
usually offer computing service with the ab-
straction of virtual machine (VM), which can
hardly meet these requirements. Meanwhile,
different cloud vendors provide different per-
formance stabilities and price models, which
fluctuate according to the dynamic workload. A
single cloud cannot satisfy all the requirements
of the IoT scenario well. The JointCloud com-
puting model empowers the cooperation among
multiple public clouds. However, it is still
difficult to dynamically schedule the workload
on different clouds based on the VM abstrac-
tion. This paper introduces HCloud, a trusted
JointCloud platform for IoT systems using
serverless computing model. HCloud allows
an IoT server to be implemented with multiple
serverless functions and schedules these func-
tions on different clouds based on a schedule
policy. The policy is specified by the client and
includes the required functionalities, execution
resources, latency, price and so on. HCloud
collects the status of each cloud and dispatches
serverless functions to the most suitable cloud
based on the schedule policy. By leveraging the
blockchain technology, we further enforce that
China Communications • September 2020
Authorized licensed use limited to: Carleton University. Downloaded on October 05,2020 at 18:04:49 UTC from IEEE Xplore. Restrictions apply.
our system can neither fake the cloud status nor
wrongly dispatch the target functions. We have
implemented a prototype of HCloud and evalu-
ated it by simulating multiple cloud providers.
The evaluation results show that HCloud can
greatly improve the performance of serverless
workloads with negligible costs.
Keywords: IoT; blockchain; serverless; joint-
cloud
I. INTRODUCTION
Cloud computing has been exploited in man-
aging the largescale IoT systems [1]. IoT
servers usually needs to handle a large number
of requests from various devices, and each of
them may send the request from anywhere, at
any time. Thus, it is typical that IoT systems
require the cloud to provide high scalability,
stable performance and low price.
It is hard for a single cloud to have all of
these features. First, since the number and fre-
quency of IoT requests fluctuate from time to
time, it is not practical for a cloud vendor to
maintain enough hardware resources for the
heaviest workload. Once the workload exceeds
the capacity of the cloud, it cannot guarantee
the performance stability. Second, the prices
of different clouds may differ a lot and keep
changing. Choosing the cheapest cloud could
directly reduce the cost of the IoT system.
Third, different cloud vendors usually provide Received: Feb. 4, 2020
various software and hardware features. Using Revised: May 28, 2020
Editor: Hong-Ning Dai
1

We have implemented
a prototype of HCloud
and evaluated it by
simulating multiple
cloud providers.
one cloud cannot benefit from all these features.
The JointCloud computing proposes a
cross-cloud cooperation architecture [2]. It
offers a great chance to build services by le-
veraging multiple clouds which is transparent
to the end-users. However, existing JointCloud
system still uses traditional virtual machine
(VM) abstraction, which is not suitable for IoT
services, e.g., VM is too heavyweight to be
migrated between clouds.
In this paper, we introduce HCloud, a trusted
JointCloud serverless platform for IoT systems.
Instead of using VM, the serverless execution
model requires an IoT server to be implement-
ed with multiple serverless functions. For each
user request, the serverless platform will initial-
ize a new function instance. More requests will
lead to more instances, which provides high
scalability. HCloud allows each IoT device to
specify a schedule policy which includes the re-
quired functionalities, latency, price, etc. When-
ever the device invokes a function, HCloud will
dynamically schedule it to the most suitable
cloud according to the policy.
However, it is non-trivial to adjust the
serverless computing to a JointCloud system.
First, the interfaces provided by different
serverless platforms are diverse. As shown in
Figure 1, for the same operation of returning
a response, AWS’s lambda requires a callback
function, while AliYun allows application to
directly return it. Second, it is difficult to ef-
ficiently monitor the fluctuation of the status
of a cloud, which is required by HCloud to
perform the scheduling. Third, the HCloud
takes responsibility to collect the status of
each cloud and perform the serverless function
scheduling. However, a malicious HCloud ad-
ministrator may fake the cloud status and run
the target function on a non-suitable cloud.
We design HCloud to address all these three
challenges. To run the serverless function on
different clouds, HCloud proposes unified
APIs and automatically translates the server-
less function to different clouds. To detect
the status fluctuation of each cloud, HCloud
assigns a cloud manager for each of them.
A cloud broker schedules all the serverless
functions on different clouds. A client library
is used for each client to get the target clouds
from the broker and invoke the serverless
function. To enforce that HCloud must “cor-
rectly” perform the scheduling, we leverage a
witness blockchain to record and verify all the
cloud status and the schedule results.
We implement a prototype of HCloud, which
uses multiple computers to simulate the be-
haviors of different clouds. The cloud manager
constructs a serverless platform on these com-
puters. For evaluation, we dynamically change
the hardware resource of each emulated cloud
and use HCloud to schedule serverless function
on these clouds. The results show that HCloud
can achieve a more stable throughput and can
improve 25% throughput on average.

II. BACKGROUND

2.1 IoT Systems

IoT system is becoming a mainstream infra-
structure, which can help companies to catch
emerging opportunities and improve competitive
advantage. From a networking perspective, an
IoT system represents an ecosystem of inter-con-
nected “things” that are uniquely addressable,
provide specific services and communicate
through standard protocols [3]. “Things” include
sensors, actuators, sensor networks, embedded
Fig. 1. The serverless application examples of different clouds. systems, RFID tags and smart devices, etc.

2 China Communications • September 2020

Authorized licensed use limited to: Carleton University. Downloaded on October 05,2020 at 18:04:49 UTC from IEEE Xplore. Restrictions apply.
 The IoT cloud is used to provide necessary
functionalities for each device in an IoT sys-
tem. A cloud can theoretically offer unlimited
storage, compute and network capabilities, so
it can serve a large amount of IoT devices.
2.2 JointCloud
With the development of cloud computing,
more and more cloud vendors appear, such as
AWS, Azure, Alibaba and IBM. To get ben-
efits from different clouds, researchers intro-
duce JointCloud computing, which consists
of multiple clouds. A JointCloud platform can
leverage all the features of different clouds.
The JointCloud platform can consist entirely
of public clouds or private clouds. It can also
be a combination of the public clouds and pri-
vate clouds.
Existing JointCloud systems bluntly piece
together multiple clouds. Therefore, they try
to keep most of the cloud computing features
like live-migration, unified network layer and
external storage.
2.3 Serverless computing
Serverless computing is also called FaaS
(Function as a Service). Users upload their
business functions and providers maintain the
deployment, traffic routing and scaling. From
a user’s perspective, serverless computing can
simplify the process of deploying code into
production. Scaling and capacity planning are
hidden from the developer. The developer also
does not to consider about how to maintain the
virtual machine (VM). In addition, pricing is
based on the actual amount of resources con-
sumed by an application [4][5].
2.4 Blockchain and oracle
Blockchain typically serves as a decentralized
and trustless ledger maintained by all partici-
pants in a peer-to-peer network. Each compu-
tation request is executed and validated by all
the participants commonly known as miners,
and the network state is organized as a sequen-
tial list of blocks, called a blockchain, which
is append-only and traceable. Blockchain is
designed for Byzantine fault tolerance. Public
China Communications • September 2020
Authorized licensed use limited to: Carleton University. Downloaded on October 05,2020 at 18:04:49 UTC from IEEE Xplore. Restrictions apply.
blockchains(e.g., Bitcoin [6], Ethereum [7])
have no rights of entry which means anyone
can join the protocol. In contrast, permissioned
blockchain (e.g., Quorum [8]) is often set up
among a relatively small number of identi-
fiable participants with strict access control,
serving as a trusted coordinator and auditor.
Permissioned blockchain often adopts efficient
consensus algorithms like PBFT (Practical
Byzantine Fault Tolerance).
However, blockchain is a closed and de-
terministic system so that uncertain behaviors
like network I/O are not allowed. Meanwhile,
blockchain cannot efficiently authenticate the
input data. Oracle is a kind of data feed ser-
vice transferring data from external world to
blockchain in a verifiable way. Existing oracle
solutions mainly consists of centralized ora-
cles (e.g., Oraclize [9], Town Crier [10]) and
decentralized oracles(e.g., Chainlink [11]).
III. SYSTEM DESIGN
3. 1 Challenges and goals
HCloud tries to provide a trusted serverless
platform, with multiple clouds, for IoT sys-
tems. IoT application developers can focus on
their application logic and HCloud takes care
of scheduling these serverless functions on
multiple clouds. There are three challenges of
HCloud: 1) How to deal with the incompatibil-
ity due to heterogeneous implementations of
different serverless clouds? 2) How to detect
the real-time resource utilization of each cloud
and to perform scheduling on them? 3) How
to prevent a malicious HCloud administrator
from faking the status of a cloud and schedule
a client invocation to the non-suitable cloud?
HCloud first analyzes existing serverless
APIs and provides unified interfaces for the
developer. Thereafter, we leverage multiple
cloud managers and a cloud broker to monitor
the real-time status of each cloud and perform
scheduling according to the user-specified
schedule policy. Finally, we use a witness
blockchain to log and verify all the cloud sta-
tus uploaded by the HCloud and help the user
3
 to audit the scheduling result.
3.2 Design overview
HCloud is a single serverless platform across
different clouds. The HCloud maintainer pro-
vides an accounting model and users only need
to pay the HCloud maintainer. The maintainer
further pays the public clouds. Figure 2 shows
the overview of HCloud, which consists of
four components. We assign a cloud manager
for each cloud to monitors the real-time cloud
status, including the resource utilization and
price. Meanwhile, the cloud manager helps to
manage the serverless function on each cloud.
After that, a centralized cloud broker continu-
ously gets the cloud status from all cloud man-
agers and schedules all user functions on these
clouds. A client library is used by each client
to cooperate with the cloud broker to specify
the schedule policy and invoke the target func-
tion. Finally, we use a witness blockchain to 1)
record and verify all the cloud status collected
by each cloud manager; 2) record the schedule
behavior of the cloud broker; 3) allows each
client to audit each schedule behavior.
In the following sections, we will introduce
the function interfaces provided by HCloud
and the cross-cloud data sharing method. Af-
ter that, we will give the detailed design of
the cloud manager, cloud broker and client
library. Finally, we show how to use witness
blockchain to prevent a malicious HCloud ad-
ministrator from faking the cloud status.
3.3 HCloud interfaces
To run the serverless function on different
clouds with different interfaces. HCloud first
summarizes the serverless interfaces into three
types and provide unified interfaces. After
that, we provide a translation method to run
the serverless function written with HCloud
interfaces on different clouds.
Different cloud vendors often provide va-
rieties of interfaces for the serverless function
developer. All these interfaces can be divided
into three types:
• Invocation and Return: Serverless func-
tions are invoked by sending an HTTP re-
4 China Communications • September 2020
Authorized licensed use limited to: Carleton University. Downloaded on October 05,2020 at 18:04:49 UTC from IEEE Xplore. Restrictions apply.
quest, and returned with an HTTP response.
However, different clouds provide different
interfaces to parse arguments and return
values. Figure 1 shows the different APIs
provided by AWS and AliYun.
• R untime API: Different clouds provide
interfaces to access the cloud resources.
For example, the AWS allows functions to
access the S3 storage.
• R untime Dependency and Languages:
Different clouds support different libraries
for the function, or support different pro-
gramming languages.
Table 1 shows the unified interfaces pro-
vided by HCloud. The user inputs are passed
through the function arguments. Meanwhile,
the response is returned directly. For the run-
time API, currently, HCloud only provides
APIs to access the storage, which is managed
as a key-value store. HCloud allows users to
develop the function with Python.
Function Translation: To run the server-
less function on a specific serverless cloud,
HCloud needs to translate the function to the
version which uses the platform-specific in-
terfaces. We use the cloud interfaces to imple-
ment HCloud interfaces. For example, to run
a function on AWS, we will replace the return
interface with the callback interface provided
by AWS. Currently, HCloud can only use the
serverless cloud which supports Python to
write the function.
Since current clouds often provide plat-
form-specific serverless interfaces, we intro-
duce HCloud interfaces to allow the serverless
function to be deployed on different public
clouds. However, a better solution is having a
serverless computing API standard. We think
the HCloud interfaces could be further extend-
ed to define the standard.
3.4 Cross-clouds data sharing
During the execution, a serverless function may
persist some data in the platform and allow
the following functions to access these data.
However, there exist multiple clouds in HCloud
and each of them has its own storages. The first
function may store the data in a cloud while the
second one is executed on another cloud.
Since HCloud allows each client to choose
a cloud for executing a function (introduced
in Section III-F), one solution is asking the
developer to explicitly specify the dependency
of different functions and relying on the bro-
ker to schedule the related functions together.
Besides, HCloud also provides a cross-cloud
storage to solve this problem. We leverage
existing techniques, such as GPFS [12], to im-
plement this storage.
3.5 Cloud manager
HCloud assigns a cloud manager to each cloud
to 1) construct a serverless platform, 2) sched-
ule the serverless function and 3) monitor the
status of the cloud.
Figure 3 shows the design of the cloud man-
ager. When receiving a user request, the cloud
manager will create an instance of the calling
function to handle it. We provide two execution
modes: container mode and native mode. The
previous one is implemented by a worker VM.
The worker creates a container for each func-
tion instance. The container mode can be used
on any cloud, even when it does not support
serverless model. The latter is based on the na-
tive serverless platform. The serverless function
is developed with HCloud’s API. To run them
in the cloud’s serverless platform, we use a
transfer to do the translation when the function
is deployed on the cloud.
The cloud manager also uses a scheduler
to handle and schedule all the user requests.
Basically, the serverless function will be start-
ed in native mode due to its fast startup time
and pay-per-invocation price mode. When
there are lots of user requests, the container
mode will be cheaper. For example, the price
of AWS lambda is 0.20 USD per 1M requests.
Consider a serverless function that runs for
1 second. A client needs to pay $25.60 for 3
million invocations. However, a VM instance
with 2 GB memory only takes $0.0084 per
hour. Handling 3 million requests will only
take $7. When the scheduler detects a heavy
workload, it will start up a worker and handle
requests in container mode. The scheduler also
China Communications • September 2020
Authorized licensed use limited to: Carleton University. Downloaded on October 05,2020 at 18:04:49 UTC from IEEE Xplore. Restrictions apply.
Table I. Interfaces of HCloud.
Types Interfaces Description
handler(event, con- Event and context are used to parse the
Invocation and
text) invocation arguments. Directly return the
Return
return response response.
kv_put(key, value) Put a new (key, value) pair into the storage.
Runtime API kv_get(key) Get a value of the corresponding key.
kv_delete(key) Delete a (key, value) pair in the storage.
Runtime De-
Developer can write serverless functions
pendency and Python
with Python.
Languages
Fig. 2. The design overview of HCloud.
monitors the resource utilization and the price
of the cloud.
3.6 Cloud Broker
The cloud broker collects all the statuses of
a cloud and a serverless function. After that,
the broker allows the client to specify a sched-
uling policy and the broker can select a most
suitable cloud to handle the client requests.
Status Collection: The cloud broker needs
to collect two kinds of status: the status of
each cloud and the status of each serverless
function. As mentioned in Section III-E, the
previous one can be synchronized from the
cloud manager. The latter one includes the
version of each deployed serverless function
and its deployed status in each cloud. The
cloud broker first provides APIs for developers
to deploy and manage their functions. When a
developer updates her function, the broker will
deploy this updating to all cloud managers and
record current function status.
5
 Cloud Scheduling: After collecting the sta-
tus of all clouds, the cloud broker can choose
the most suitable one basing on the schedule
policy specified by the client. As shown in
Figure 4, HCloud allows different clients to
specify its own schedule policy. The client
C asks the broker to pick the cheapest cloud.
Meanwhile, both the client A and B want to
invoke the cloud with the smallest distance.
In the JointCloud environment, the distance
between client and the cloud influences the
network latency significantly. The longest path
may take hundreds of milliseconds to com-
plete while the lowest latency is less than 30
milliseconds. The broker could measure the
distances between a client to all the cloud and
choose the shortest path.
However, there exists a problem after the
developer updating the function. A cloud may
not immediately finish the deployment of the
new function. Since the client does not know
that the function has been updated, she may
still send a request to the cloud with the old
version of the function.
Fig. 3. Architecture of cloud manager.
Fig. 4. Different scheduling policies in HCloud.
6 China Communications • September 2020
Authorized licensed use limited to: Carleton University. Downloaded on October 05,2020 at 18:04:49 UTC from IEEE Xplore. Restrictions apply.
HCloud asks the client to specify the version
of the invoked function. The version number
can be gotten from the cloud broker previously.
After that, the client needs to parse the version
number for each function invocation. If the
manager doesn’t have the specified version of
function, it will return an error and the client
cloud get a new cloud manager from the broker.
3.7 Client library
The client library provides four functionalities:
Function Management: The library allows
• 
the developer to deploy and update the
serverless function in HCloud.
Cloud Selection: The library allows a client
• 
to upload a schedule policy to the cloud bro-
ker. Meanwhile, the library periodically gets
the selected cloud from the cloud broker.
Function Invocation: The library helps a
• 
client to invoke the target function on the
selected cloud.
Schedule Auditing: HCloud gives a client
• 
ability to verify whether a cloud is selected
based on the real status, instead of the faked
one. The library provides interfaces for the
client to audit the schedule log (introduced
in Section III-H).
3.8 Witness blockchain
Risk Introduced by HCloud: When HCloud
is used, a user has to trust HCloud that it will
always perform the scheduling honestly based
on the client-specified schedule policy.
In practical situations, the relation between
different cloud providers maintains competi-
tiveness. They all hope to hold their advantages
and stand on a positive position in the proce-
dure of scheduling, so that they can get more
benefits by selling more computing resources.
Therefore, cloud providers have a strong
motivation to manipulate the behavior of
HCloud and consequently extort the schedule
favoritism. For example:
• Cloud providers could collude with the bro-
ker by bribes and manipulate the schedule
logic privately. And the broker would offer
users a tampered schedule decision accord-
ing to the bade discretion sort, which gives
 high ranking to the high bidder. lic information, the witness blockchain
• Since managers are running on the cloud, could automatically verify whether the up-
the cloud providers with root privilege loaded status is corresponding to the public
could hack the manager, fake cloud status information. The verification is performed
and induce broker to make biased schedule by a smart contract deployed on the witness
decisions. blockchain. The schedule logging and au-
• Cloud providers could temporarily modify diting should only use the verified status.
the pricing scheme to tempt brokers with Schedule Logging: For each time the cloud
• 
attractive price and acquire the schedule broker performs the scheduling, it should
advantages over a period of time, and then upload the scheduling log to the blockchain.
restore prices to the origin in settlement to The log includes 1) the cloud status used in
guarantee profits. the scheduling; 2) the schedule policy and
Making HCloud to be Trusted: We lever- 3) the schedule result.
age a witness blockchain to enforce that the Schedule Auditing: Whenever the client
• 
cloud status cannot be tampered with and the receives a schedule result from the cloud
cloud broker correctly performs the schedul- broker, the client can audit the result with
ing based on the schedule policy. We choose the help of the witness blockchain. Lever-
permissioned blockchain to implement the aging the scheduling log, the client can
witness blockchain, because it always has verify 1) whether the cloud broker uses the
more practical performance for large-scale correct cloud status; 2) whether it uses the
computation than public blockchain. correct schedule policy and 3) whether it
The architecture of the witness blockchain performs the scheduling correctly.
is shown in Figure 5. The detailed workflow
can be divided into four parts: IV. EVALUATION
• Status Upload: For each time a cloud man-
ager synchronizes the cloud status to the We implement a prototype of HCloud to do the
cloud broker, the manager is required to evaluation. We use three computers to emulate
upload the status to the witness blockchain. three clouds. Each computer has an 8-core Intel
A compromised manager may 1) upload
the faked status; 2) not upload the status to
the blockchain; or 3) upload a correct status
but synchronize the broker with the faked
one. The first malicious behavior can be
prevented by the status verification, and the
latter two can be prevented by the schedule
logging and auditing.
• Public Information Collection: The up-
loaded status should correspond with the
public information of the cloud. For exam-
ple, the uploaded price must be same as the
price published by the cloud. The witness
blockchain needs the public information
to verify the uploaded status. However, a
blockchain is closed which cannot get the
outside data. To solve this problem, we
leverage an oracle to collect the public in-
formation from each cloud.
• Status Verification: After getting the pub- Fig. 5. Architecture of the Witness Blockchain.

China Communications • September 2020 7

Authorized licensed use limited to: Carleton University. Downloaded on October 05,2020 at 18:04:49 UTC from IEEE Xplore. Restrictions apply.
 Core i7-8559U CPU, 8GB memory and 256GB ond, we change the cost of different clouds and
SSD. The client runs on another machine with a analyze how HCloud helps to reduce the cost.
4-core Intel Core i5-7260U CPU, 8GB memory We deploy a serverless function, which adjusts
and 256GB SSD. All the machines are connect- the size of a picture, to do the evaluation.
ed with an H3C 240Gbps switch.
4.1 CPU utilization
In the evaluation, we perform two tests.
First, we change the free CPU utilization rates In this test, we change the free CPU utilization
of different clouds and show how HCloud im- rate of each machine to emulate the perfor-
proves the performance by choosing the cloud mance fluctuates of a cloud. As shown in Fig-
with the highest free CPU utilization rate. Sec- ure 6, we use three functions to emulate the
fluctuation of the free CPU utilization rates:
1.4 • Sine: The rate wave resembles a sine curve.
1.3 sine(cloud-1)
It increases and decreases regularly.
linear(cloud-2)
• Linear: The free CPU utilization rate in-
1.2
Free CPU utilization rate

1.1 const(cloud-3)

1 creases and decreased linearly.

0.9 • Stable: The free CPU utilization rate is a
0.8
0.7
const value.
0.6 We configure the cloud manager to report
0.5
the cloud status every 15 seconds. Meanwhile,
0.4
0 20 40 60 80 100 120 140 160 180
for each cloud, the CPU utilization rate chang-
es slowly following one of the above strate-
Fig. 6. The fluctuation of the free CPU utilization gies. In a real world, the fluctuation is slighter
rate of different clouds.
and more frequent.
We firstly test the throughput of using a single
80 cloud. After that, we measure the throughput of
HCloud
70 Cloud-1(sine) the HCloud which schedules the serverless func-
Cloud-2(linear)
tion on all the three clouds. As shown in Figure
Throughput (op/min)

60 Cloud-3(const)

50 7, HCloud will have a higher throughput.

4.2 Cost analysis

40

30

20
We analyze how HCloud can help the user
to reduce the cost. Same as the previous test,
10
1 2 4
we assume that the cost of each public cloud
fluctuates and each fluctuation wave resembles
Fig. 7. Throughput of different clouds and
different functions (Shown in Figure 8):
HCloud.
• Sine: The cost wave resembles a sine curve.
It increases and decreases regularly.
• Linear: The cost increases and decreased
5.0
sine(cloud-1)
4.5 linear(cloud-2) linearly.
Cost per second (x1 0-5)

4.0
const(cloud-3)
• Stable: The cost is a const value.
3.5 We configure the cloud manager to report
3.0
the cloud status every 15 seconds. And use
a specific serverless function which always
2.5
takes 2s. We further analyze the average cost
2.0
of running this function on a single cloud or
0 20 40 60 80 100 120 140 160 180
on the HCloud platform. Table 2 shows the
Fig. 8. The fluctuation of the cost of different analysis result. The average cost of HCloud is
clouds. smaller than using a single cloud.

8 China Communications • September 2020

Authorized licensed use limited to: Carleton University. Downloaded on October 05,2020 at 18:04:49 UTC from IEEE Xplore. Restrictions apply.
V. RELATED WORK
5.1 Serverless
The serverless computing has been applied to
a variety of use cases. PyWren [13] lever- ages
AWS Lambda functions for linear algebra and
machine learning optimization. Werner et.al
[14] propose to implement distributed matrix
multiplication by using serverless platform.
MapReduce [15] and Spark [16] have also
been ported to serverless versions via this way.
A real-world application usually has rich
functionalities and all its modules cooperates
and communication with each other during
runtime. ExCamera [17] processes a frame-
work (called mu) to create over 3,000 worker
functions to encode video in just a few min-
utes. Based on the mu framework, Sprocket
[18] is a system that efficiently processes
video, which allows developers to program a
series of pipeline operations. HCloud targets
the IoT scenario, which also requires a com-
plex IoT server application to serve all the IoT
devices. Meanwhile, HCloud can schedule
serverless functions among different clouds to
enjoy all the benefits of them.
5.2 Serverless optimization
Serverless functions are mainly deployed
within containers or VMs. A line of research-
es target to optimize the booting procedure
of serverless functions. OpenWhisk [19] can
pre-launch Node.js containers if observing
the workload is based on Node.js. SOCK [20]
takes a similar approach for Python functions.
To optimize the storage performance of
serverless functions, Pocket [21] leverages
multi-tier storage including DRAM, SSD, and
HDD. Pocket proposes a controller to right-
size the resource allocation according to the
properties of server- less functions and current
conditions of resource utilizations. Crail [22]
is aimed at storing and exchanging large-scale
temporary data. But it targets for high band-
width and low latency. HCloud’s design can
be used together with these optimizations.
China Communications • September 2020
Authorized licensed use limited to: Carleton University. Downloaded on October 05,2020 at 18:04:49 UTC from IEEE Xplore. Restrictions apply.
Table II. The average cost of each invocation on different clouds.
HCloud Cloud-1(Sine) Cloud-2(Linear) Cloud-3(Stable)
Average Cost 4.83×10-5 5.72×10-5 5.68×10-5 5.66×10-5
VI. CONCLUSION
In this paper, we have presented HCloud, a
trusted JointCloud serverless platform, with
blockchain technology, for IoT systems.
HCloud allows each IoT server to be imple-
mented with multiple serverless functions. Af-
ter that, HCloud will schedule these functions
among different clouds to achieve high scalabil-
ity, stable performance, low price, rich func-
tionalities and so on. To achieve this goal, we
first provide unified interfaces to implement the
serverless function, as well as a transformation
method to run the function on different clouds.
Meanwhile, a cloud manager is assigned to
each cloud for collecting the cloud status and
a centralized cloud broker schedules serverless
functions among these clouds basing on the
schedule policy. To ensure that HCloud always
performs the scheduling correctly, we leverage
a witness blockchain to audit each schedule be-
havior. We implement the prototype of HCloud
and perform an evaluation by emulating the
behaviors of different clouds. For a client who
wants to use the cloud with the highest free
CPU utilization rate, HCloud can help her im-
prove 25% performance on average.
ACKNOWLEDGMENT
This work was supported by the Nation-
al Key Research & Development Program
(No.2016YFB1000104).
References
[1] M. M. Hassan, B. Song, and E.-N. Huh. “A frame-
work of sensor-cloud integration opportunities
and challenges.” Proc. ACM 3rd international con-
ference on Ubiquitous information management
and communication, pp. 618–626.
[2] H. Wang, P. Shi, and Y. Zhang. “Jointcloud: A
cross-cloud cooperation architecture for inte-
grated internet service customization.” Proc. IEEE
37th International Conference on Distributed
Computing Systems (ICDCS), pp. 1846–1855.
9
 [3] D. Bandyopadhyay and J. Sen. “Internet of things:
Applications and challenges in technology and
standardization.” Wireless personal communica-
tions, 58(1):49–69, 2011.
[4] R. Miller. “Aws lambda makes ser verless
applications a reality.” https://techcrunch.
com/2015/11/24/ aws-lamda-makes-server-
less-applications-a-reality/, 2015.
[5] R. Miller. “Amazon launches lambda, an
event-driven compute service.” https://tech-
crunch.com/2014/11/13/ amazon-launch-
es-lambda-an-event-driven-compute-service/,
2015.
[6] S. Nakamoto et al. “Bitcoin: A peer-to-peer elec-
tronic cash system.” 2008.
[7] G. Wood et al. “Ethereum: A secure decentralised
generalised transaction ledger. ”Ethereum project
yellow paper, 151(2014):1–32, 2014.
[8] J. Morgan. “Quorum: A permissioned implemen-
tation of ethereum supporting data privacy,”
september 2016.
[9] Oraclize. “the provable blockchain oracle for
modern dapps.” http:// provable.xyz, 2016.
[10] F. Zhang, E. Cecchetti, K. Croman, A. Juels, and E.
Shi. “Town crier: An authenticated data feed for
smart contracts.” Proc. ACM SIGSAC conference
on computer and communications security, pp.
270–282.
[11] S. Ellis, A. Juels, and S. Nazarov. “Chainlink: A
decentralized oracle network.” Retrieved March,
11:2018, 2017.
[12] F. B. Schmuck and R. L. Haskin. “Gpfs: A shared-
disk file system for large computing clusters.? In
FAST, volume 2, 2002.
[13] E. Jonas, Q. Pu, S. Venkataraman, I. Stoica, and B.
Recht. “Occupy the cloud: Distributed computing
for the 99%.” Proc. 2017 Symposium on Cloud
Computing, SoCC ’17, pp 445–451.
[14] S. Werner, J. Kuhlenkamp, M. Klems, J. Mu ̈ller,
and S. Tai. “Serverless big data processing using
matrix multiplication as example.” In 2018 IEEE
International Conference on Big Data (Big Data),
pages 358– 365, Dec 2018.
[15] Amazon. “Ad hoc big data processing made
simple with serverless mapreduce.” https://aws.
amazon.com/blogs/compute/ ad- hoc- big-
data- processing- made- simplewith- serverless-
mapreduce/, 2016.
[16] Github. “Apache spark on aws lambda. ”https://
github.com/qubole/ spark-on-lambda/.
[17] S. Fouladi, R. S. Wahby, B. Shacklett, K. V. Bala-
subramaniam, W. Zeng, R. Bhalerao, A. Sivara-
man, G. Porter, and K. Winstein. “Encoding, fast
and slow: Low-latency video processing using
thousands of tiny threads.” In Proceedings of the
14th USENIX Conference on Networked Systems
Design and Implementation, NSDI’17, pages
363–376, Berkeley, CA, USA, 2017. USENIX Asso-
ciation.
[18] L. Ao, L. Izhikevich, G. M. Voelker, and G. Porter.
10
Authorized licensed use limited to: Carleton University. Downloaded on October 05,2020 at 18:04:49 UTC from IEEE Xplore. Restrictions apply.
“Sprocket: A serverless video processing frame-
work.” In Proceedings of the ACM Symposium
on Cloud Computing, SoCC ’18, pages 263–274,
New York, NY, USA, 2018. ACM.
[19] M. Tho m ̈ mes. Squeezing the milliseconds: How
to make serverless platforms blazing fast, 2017.
[20] E. Oakes, L. Yang, D. Zhou, K. Houck, T. Harter,
A. C. ArpaciDusseau, and R. H. Arpaci-Dusseau.
“Sock: Rapid task provisioning with server-
less-optimized containers.” In Proceedings of the
2018 USENIX Conference on Usenix Annual Tech-
nical Conference, USENIX ATC ’18, pages 57–69,
Berkeley, CA, USA, 2018. USENIX Association.
[21] A. Klimovic, Y. Wang, P. Stuedi, A. Trivedi, J. Pfef-
ferle, and C. Kozyrakis. “Pocket: Elastic ephemeral
storage for serverless analytics.” In Proceedings
of the 12th USENIX Conference on Operating
Systems Design and Implementation, OSDI’18,
pages 427–444, Berkeley, CA, USA, 2018. USENIX
Association.
[22] P. Stuedi, A. Trivedi, J. Pfefferle, A. Klimovic, A.
Schuepbach, and B. Metzler. “Unification of tem-
porary storage in the nodekernel architecture.”
In Proceedings of the 2019 USENIX Conference on
Usenix Annual Technical Conference, USENIX ATC
’19, pages 767–781, Berkeley, CA, USA, 2019.
USENIX Association.
Biographies
Zheng Huang, received the BS
degree in software engineering
in 2019, from Shanghai Jiao
Tong University. He is now a
master student at the Institute
of Parallel and Distributed Sys-
tems at School of Software,
Shanghai Jiao Tong University.
His research interests include blockchain system and
system security.
Zeyu Mi, received a Ph.D de-
gree in computer science from
Shanghai Jiao Tong University
in 2020. He is currently a re-
search assistant professor at
School of Software, Shanghai
Jiao Tong University. His re-
search interests include operat-
ing system, system virtualization and system security.
Zhichao Hua, received a Ph.D
degree in computer science
from Shanghai Jiao Tong Uni-
versity in 2020. He is currently
a research assistant professor
at School of Software, Shang-
hai Jiao Tong University. His re-
search interests include operat-
ing system, virtualization and security.
China Communications • September 2020