IEEE COMMUNICATIONS SURVEYS & TUTORIALS, VOL. 22, NO.
3, THIRD QUARTER 2020
Blockchain Meets Cloud Computing: A Survey
Keke Gai , Senior Member, IEEE, Jinnan Guo, Liehuang Zhu , Member, IEEE,
and Shui Yu , Senior Member, IEEE
Abstract—Blockchain technology has been deemed to be an
ideal choice for strengthening existing computing systems in var-
ied manners. As one of the network-enabled technologies, cloud
computing has been broadly adopted in the industry through
numerous cloud service models. Fusing blockchain technology
with existing cloud systems has a great potential in both function-
ality/performance enhancement and security/privacy improve-
ment. The question remains on how blockchain technology inserts
into current deployed cloud solutions and enables the reengi-
neering of cloud datacenter. This survey addresses this issue and
investigates recent efforts in the technical fusion of blockchain
and clouds. Three technical dimensions roughly are covered in
this work. First, we concern the service model and review an
emerging cloud-relevant blockchain service model, Blockchain-
as-a-Service (BaaS); second, security is considered a key technical
dimension in this work and both access control and search-
able encryption schemes are assessed; finally, we examine the
performance of cloud datacenter with supports/ participance of
blockchain from hardware and software perspectives. Main find-
ings of this survey will be theoretical supports for future reference
of blockchain-enabled reengineering of cloud datacenter.
Index Terms—Blockchain, cloud computing, data provenance,
blockchain-as-a-service, blockchain service model.
I. I NTRODUCTION
S AN emerging technical term, blockchain is deemed
A to be an adoptable alternative for establishing a trust-
ful platform, due to a few of its characteristics, e.g., data
traceability and tamper-resistance. It has been widely believed
that blockchain can be not only used in financial services
Manuscript received August 29, 2019; revised February 2, 2020; accepted
April 2, 2020. Date of publication April 22, 2020; date of current
version August 21, 2020. This work was supported in part by the
Ministry of Education—China Mobile Research Fund Project under Grant
MCM20180401, in part by the National Natural Science Foundation of China
under Grant 61972034, Grant 61872041, and Grant U1836212, in part by the
Natural Science Foundation of Beijing Municipality under Grant 20D20116,
in part by the Pre-study Foundation of Weapons and Equipment under
Grant 31511020401, in part by the Natural Science Foundation of Shandong
Province under Grant ZR2019ZD10, in part by the Guangxi Key Laboratory of
Cryptography and Information Security under Grant GCIS201803, in part by
the Henan Key Laboratory of Network Cryptography Technology under Grant
LNCT2019-A08, and in part by Australian ARC under Grant DP180102828
and Grant DP200101374. The work of Keke Gai was supported by the
Beijing Institute of Technology Research Fund Program for Young Scholars.
(Corresponding author: Liehuang Zhu.)
Keke Gai and Liehuang Zhu are with the School of Computer Science and
Technology, Beijing Institute of Technology, Beijing 100081, China (e-mail:
gaikeke@bit.edu.cn; liehuangz@bit.edu.cn).
Jinnan Guo is with the School of Information and Electronics,
Beijing Institute of Technology, Beijing 100081, China (e-mail:
1120162383@bit.edu.cn).
Shui Yu is with the School of Computer Science, University of Technology
Sydney, Sydney, NSW 2007, Australia (e-mail: shui.yu@uts.edu.au).
Digital Object Identifier 10.1109/COMST.2020.2989392
1553-877X 
c 2020 IEEE. Personal use is permitted, but republication/redistribution requires IEEE permission.
See https://www.ieee.org/publications/rights/index.html for more information.
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
2009
(e.g., Bitcoin) but also implemented in application-oriented
scenarios [1], [2]. Smart contract is a major driven fac-
tor in blockchain-enabled applications as it introduces the
ability of the automatic control [3]. The trustful environ-
ment conducted by blockchain is tightly tied to operations
or processes via implementing smart contract. Implementing
blockchain-enabled solutions is an expectable technical route
for reinforcing cloud datacenter.
Based on our investigations, we find that many contempo-
rary studies are seeking methods that utilize blockchain tech-
niques to power up existing systems. Reengineering of cloud
datacenter through blockchain-enabled approach is deemed to
be one of the major trends in achieving trustworthiness and
reliability in the intercrossed networking environment [4], [5].
A few representative benefits of blockchain technology, as
widely accepted, include tamper-resistance [6], [7], transpar-
ent governance [8], decentralization-powered security [9], [10]
and novel business models [11], [12].
Despite various merits of blockchain technology, there are
two typical challenges commonly exist in current blockchain-
enabled cloud solutions, deriving from findings of our study.
The first type of challenge is that blockchain generally
encounters technical difficulties when applying it in cloud
applications. Most difficulties are caused by technical charac-
teristics of blockchain, some of which are considered advan-
tages. For instance, a pure decentralization setting (e.g., public
blockchain) offers a strong autonomous working mode; how-
ever, lack of control in this mode also is considered a weakness
in many practical scenes. Centralization-based governance
cannot be fully abandoned due to various reasons, such as
legal issues or governmental duties. Our recent study [13]
also finds that privacy leakage is threatening the consortium
blockchain-based autonomous trading system, based on a real-
world case, as data stored in blocks are open to the public.
Considering cloud datacenter, even though consortium/private
blockchain lowers down the impact of the decentralization,
tamper-resistance is an obstacle to achieving controllable/
scalable cloud systems [14], [15].
The other type of common challenge is formulating/ con-
ducting blockchain service models. Blockchain used to be
known as a synonym of “Bitcoin” when the cryptocurrency
was first introduced to the public, although blockchain tech-
nology was created as a distributed ledger-based storage
method, a few years before Bitcoin was born. The success of
blockchain in cryptocurrency leads a tide of blockchain-based
digital currency or financial services, but the success has been
rarely copied in other industries [14], [16]. Lack of effective
service models is a critical element that restricts blockchain
2010
implementations, albeit some attempts have been made over
years [17]–[19]. In the scenario of cloud datacenter, it also
struggles to finding out a seamless way of using blockchain
technology. Our research [15] also argues that a pure decentral-
ization computing is conflict with many existing management
models in which a centralized administration has been long-
established. The consequence of our research derives from the
investigation on both government and enterprise.
As a matter of fact, conquering two challenges above as
well as other issues in the technical fusion is more com-
plicated than it seems to be. Simply applying blockchain
technology in cloud-based solutions generally is inflexible
owing to multiple restrictions, such as the system compat-
ibility, blockchain-cloud interface, governability demand, or
infrastructure deployment. Cognizing connections between
blockchain and cloud systems is a crucial fundamental to pow-
ering up the blockchain-cloud combination. The significance
of accomplishing a survey in this field covers at least three
sides, aligning with three questions given in the following.
1) There is an urgent demand for facilitating blockchain
technology in on-ground application scenarios. As a
widely deployed technology, cloud computing is a
proper objective for carrying out blockchain tech-
niques. However, the question remains on how to make
blockchain and clouds compatible. For example, cloud
computing generally highly relies on its centralization
computing, which is contradictive with blockchain’s
decentralization setting.
2) Even though blockchain provides/ enables new service
models, e.g., adding trustworthy values, which seems
to be consistent with cloud service models, offering
blockchain services is more complicated than regu-
lar cloud services. There are many unsolved problems
needed to be answered. Unlike infrastructure or software
that fits in On-demand Pay (ODP) manner, blockchain
technology is struggling with data exchanging/ sharing
when multiple blockchain networks are merged. Finding
out effective service model that supports both clouds and
blockchain has an extreme demand.
3) It appears to be easier for cloud computing to act
as a technical support for blockchain; nevertheless,
more explorations also are intensely required in
this aspect, such as blockchain-purpose infrastruc-
ture, optimum offloading strategies, multi-participant
working mode, and blockchain-oriented storage mech-
anism. Understanding contemporary achievements
in blockchain-purpose cloud offerings has a great
requirement.
We notice that fusing blockchain and cloud techniques has
rarely addressed by prior survey studies, even though some
recent studies surveyed blockchain techniques in different per-
spectives, e.g., digital currencies [20]–[22], security [23], [24],
privacy [21], [25], edge-integration [26], IoT-integration [27],
[28], and smart city-integration [29]. Therefore, this survey
focuses on the technical fusion of blockchain and cloud com-
puting. Recent studies addressing the relevant field have been
synthesized in this work. A few aspects, from the perspective
cloud offerings/ functionality, covered by this survey include
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
IEEE COMMUNICATIONS SURVEYS & TUTORIALS, VOL. 22, NO. 3, THIRD QUARTER 2020
Fig. 1. Technical dimensions of this survey.
data provenance, access control, searchable encryption, data
deduplication, auto control and resource allocation, hardware
enhancement, and data storage.
The purpose of conducting this survey aims to indicate
recent studies of blockchain that can be utilized for powering
up cloud systems or those novel mechanism that uses cloud-
based methods to reinforce blockchain systems. Key applica-
tion specification of blockchain is addressed at each technical
dimensions, such as efficiency (throughput capacity), com-
patibility (database, network, etc.), energy cost, blockchain
platforms, and security.
Main contributions of this work are twofold.
First, this survey provides a comprehensive review that
concentrates on reengineering of cloud computing from the
perspective of blockchain implementations. Comparisons in
the same technical dimension are given in this work, which
provides an explicit research/ practical guideline for scholars/
practitioners. Second, this survey offers a brief tutorial about
fusing blockchain technology with cloud computing. The orga-
nization structure of this work depends on a series of technical
dimensions, which assists academic/ industrial involvers to
build up their knowledge scaffold in the field and is meaningful
for developing on-ground blockchain-powered cloud systems
or cloud-powered blockchain systems.
Fig. 1 illustrates main technical dimensions addressed by
this survey. As the organizational structure shown in the figure,
the organization of this work follows the order below.
In Section II, we present an emerging blockchain-oriented
service model, known as a Blockchain-as-a-Service (BaaS).
From the perspective of data governance, blockchain-enabled
data provenance and access control methods are reviewed
in Section III and IV, respectively. Moreover, we synthesize
work in blockchain-enabled searchable encryption methods
and blockchain-based applications in data deduplication in
Sections V and VI. Next, Section VII describes a few recent
studies that focus on applying smart contract in cloud resource
allocations. In addition, Section VIII reviews offloading mech-
anism in blockchain. Section IX shows recent achievements in
performance enhancement from the hardware dimension and
Section X exhibits relevant work in the field of blockchain-
related storage. Furthermore, discussions and main findings
are presented in Section XI. Finally, we wrap up the work
with a conclusion in Section XII.
GAI et al.: BLOCKCHAIN MEETS CLOUD COMPUTING: A SURVEY
II. B LOCKCHAIN - AS - A -S ERVICE
A. Concept of BaaS
BaaS is a type of blockchain service model that borrows
the concept from cloud computing. This service model deems
blockchain systems or components to be computing resource
that can be used for supporting cloud systems or other appli-
cations [30]. The major intention of using BaaS is allowing
customers to focus on core business rather than struggling with
technical obstacles of blockchain.
In work [5], a metaphor, “Cloud over Blockchain”, is given
to describe a blockchain service offering in a cloud service
model. As widely accepted, the continuous growth of cloud
demands has introduced numerous service models. Besides
three fundamental cloud service models (IaaS, PaaS, SaaS),
emerging cloud services are transmitting even partial process-
ing components or processes into the transferrable manner
for service demanders, e.g., Backend-as-a-Service, Process-
as-a-Service, and Security-as-a-Service. The work [31] further
discussed the service interoperations in IoT through the imple-
mentation of BaaS, which argued that trusted environment
and smart contract executions could be used for enhancing
interoperability of services.
The diversity of the cloud service model implies that
either a system or a governable network can be a service
content. Similarly, blockchain infrastructure or backend can
be the service offering in a BaaS. To be specified, BaaS
allows customers to leverage a cloud-based approach to obtain
blockchain-related supports. For instance, Alibaba Cloud
BaaS provides a variety of services via offering customers
blockchain systems, such as transaction tracking database,
smart contract, and consortium governance. With various BaaS
providers, the purpose of BaaS is distinct. Some common tar-
get functions include security, cost saving, system integration,
and control optimization.
In this survey, we mainly investigate the method for
implementing blockchain techniques in the position of sup-
porting cloud services. The basic idea of BaaS is that the
blockchain network/application is treated as a service offering,
on which users are allowed to configure blockchain settings,
such as blockchain network types and smart contract rules.
Infrastructure for establishing blockchain network is offered
by the service provider and partial codes of blockchain are
available for open source. Exploring the establishment of novel
BaaS has been addressed by recent studies, e.g., FSBaaS [32],
uBaaS [33], and NutBaaS [34]. We notice that unified BaaS
still is under exploration and most prior attempts are at the
stage of system design. The challenging part is that techni-
cal difficulties still exist in communication, consensus, and
data synchronization. Technical restrictions cause the lack of
real-world implementations in unified BaaS.
Besides classic features of cloud computing, two spe-
cific characteristics of BaaS concept are highlighted in the
following for the further explicit explanation.
1) Cloud Service Providers (CSPs) manage/ govern all
required blockchain computing resource (e.g., infras-
tructure or operations) and provide customers with an
agile service offering, so that customers can obtain
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
2011
customized acquisitions to host their blockchain apps
or partial blockchain functions (e.g., smart contract).
2) BaaS screens the complexity of the blockchain imple-
mentation. An ODP manner offers adaptable and scal-
able service scope, from establishment and configuration
to manipulation and maintenance. Plug-in architecture
generally is available for quick adoptions.
Moreover, applying blockchain techniques is believed to
be an approach for eliminating drawbacks or creating new
values in clouds. For example, different CSPs are involved
in the integrated cloud data management system so that
data sharing/transferring activities are a frequent phenomenon
[35], [36]. Lack of control on data flows has become a con-
cern when multiple parties participate in data sharing actions.
The issue can be solved by deploying blockchain-based data-
tracing system.
In general, CSPs of BaaS are responsible for construct-
ing and maintaining the blockchain platform, including
performance enhancement (e.g., source scheduling and API
design) and risk mitigation (e.g., security protection [37]).
BaaS provides an opportunity for users to maintain ubiquitous
access to blockchain networks [38].
B. BaaS Industrial Deployment
From the perspective of the service presentation, contempo-
rary BaaS products were similar to BPaaS (Business Process
as a Service), both of which emphasized the interconnections
between logical business activities and physical deliveries.
Emerging trends of blockchain had attracted interests of CSPs.
Many IT companies, e.g., Microsoft, IBM and Amazon, pro-
vide BaaS in their mature cloud environments. IBM BaaS
is attempting to provide services for vehicular systems [39];
Oracle BaaS is driving away at service offerings in logistic and
payment [40]. A comparison of BaaS services will be given
in this section.
Microsoft Azure [41] is a cloud platform that provides the
fast blockchain deployment, which supports Ethereum, Corda
and Hyperledger Fabric for the deployment and configuration
of a blockchain network. The Azure’s user only needs con-
figure certain parameters rather than figuring out all technical
details. Besides, Microsoft’s solution can automatically backup
the on-chain data to the off-chain cloud storage. Current ver-
sion of Azure mainly supports the single-node configuration in
Fabric and the deployment of consortium blockchain is under
explored.
Next, another common cloud platform, Amazon Web
Services (AWS) [42], has provided BaaS in their mature and
wildly-used cloud environment since 2016. AWS’s BaaS can
support both Ethereum and Hyperledger such that service
alternatives from both blockchain systems are available to
users.
IBM Blockchain Platform [43] provided a public cloud
that users could deploy the blockchain on it. Compared with
other BaaS, the main disadvantage of the IBM Blockchain
Platform is that it can only support the solution template imple-
mented by the Hyperledger Fabric, the widely-used Ethereum
is not supported in IBM BaaS solution. However, other BaaS
2012
TABLE I
C OMPARISONS OF BAA S I NDUSTRIAL D EPLOYMENTS
providers failed to establish a life-cycle management of users’
blockchain. IBM provides data life-cycle management which
can ensure a reliable outsourced data management for users.
Furthermore, IBM BaaS relied on secure containers. It can also
support users to configure their Blockchain on private clouds
or on-premises environments. These above characteristics offer
IBM BaaS a secure and reliable cloud environment. Table I
illustrates a brief comparison among popular BaaS services.
Despite many merits of BaaS, most existing BaaS is
attached to single cloud ecosystem due to the restriction of the
blockchain system. Multi-chain technique still is under explo-
ration yet, such that multi-cloud setting needs more research
for deployment.
C. BaaS Under Exploration
An efficient and secure blockchain service is a common
goal for BaaS products. Obtaining a flexible host service
from clouds becomes an alternative option. Samaniego and
Deters [30], [44] discussed and analyzed the performance
difference of BaaS system running in both cloud and fog envi-
ronments. The results showed that, in the cloud context, a
BaaS system could have higher-level computation capability
and storage resource than that of fog computing, while latency
time was longer. Samaniego and Deters work [44] also eval-
uated communication costs between the BaaS server and IoT
devices with varying amounts of clients and network condi-
tions and demonstrated that a fog-based BaaS system had a
better performance than a cloud-based setting.
In most current blockchain systems, an assumption was
made that the demand of the trustful third-party was reduced
due to the decentralization setting. Interactions between stake-
holders were assumed to be secure no matter whether the
stakeholder was trustful. This assumption could be challenged
when the implementation of BaaS was implemented, accord-
ing to recent investigations. Singh and Michels [38] discussed
trust management issues in BaaS and pointed out that insert-
ing service providers into the blockchain system could cause
recentralizations. One of the reasons was that the service
provider could be or had connections with stakeholder(s) so
that the blockchain offering might lack of trust. There was
a great chance that the majority of voters were threatening
as blockchain system was outsourced to the third party. A
potential solution was signing a service agreement to restrict
activities of CSP(s).
From the perspective of the service provider, trust concerns
also restricted the improvement of BaaS service [38], [45].
Typically, service providers needed to prove the capability of
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
IEEE COMMUNICATIONS SURVEYS & TUTORIALS, VOL. 22, NO. 3, THIRD QUARTER 2020
data security by offering transparent operations on the dis-
tributed ledger. Singh and Michels [38] presented four optional
solutions: (i) enhancing users’ controllability by using PaaS-
alike setting, (ii) mitigating the recentralization by establishing
CSP federations, (iii) working on an authenticated trustful
environment (e.g., ARM’s trust zone), and (iv) strengthening
access controls.
A few more views on BaaS models have been explored.
Melo et al. [46] assessed reliability and availability of BaaS
model, which presented Dynamical Reliability Block Diagrams
(DRBDs) to construct the “master” and “slave” in hyper-
ledger. The investigation showed that cloud backend offering
resulted in a higher-level availability and reliability of BaaS
system. Similarly, Lee [47] attempted to using BaaS in iden-
tity management services. A Blockchain-based-ID as a Service
(BIDaaS) was proposed in order to eliminate the demand of
screened third party in identity management. This approach
offered a virtual ID’s registration service by publishing related
transactions with virtual ID and ID’s signature information.
When the user was accessing the BIDaaS service, a mutual
authentication attaching to BaaS ledger was applied for ver-
ifying identities. Xu et al. [48] investigated the feasibility of
data auditing by applying BaaS.
Improvements based on existing BaaS models also had
been made. For example, Chen and Zhang [49] proposed
a Functional BaaS (FBaaS) model such that the BaaS was
expanded to the server-less architecture. The expansion derived
from the Big Data Open Architecture (BDOA) and the model
consisted of four layers, including infrastructure, component,
service, and business logic layers. Considering the software
development aids, Lu et al. [50] proposed a BaaS-based devel-
opment assist toolkits to support blockchain design pattern
services, which covered both data management and smart
contract designs.
In addition, smart contract-oriented service also is a research
direction in the field of BaaS. Zhang et al. [51] attempted
a smart contract-based secure billing approach in ride hail-
ing services. Even though the study did not provide a route
of X-as-a-service, it still showed a potential blue map of
smart contract-as-a-service as the rule defined by smart con-
tract could be embedded into other systems. Smart contract
could play a role of enabler for other service offerings. For
example, it [52] has been proved that Mobility-as-a-Service
(MaaS) could be achieved by the smart contract-enabled
trusted transactions.
Finally, consensus was a vital part of blockchain for eglitar-
ianism. Marandi et al. [53] discussed a potential mechanism of
consensus-as-a-service on a Service Level Agreement (SLA).
The method combined the agreement with the consensus in
order to meet the target throughput and degree of fault-
tolerance. In the cloud/fog context, a PoW consensus approach
could be an option to achieving optimizations of computing
resources. Kumar et al. [54] investigated the feasibility of
using maximization-factorization statistics with a PoW con-
sensus to reduce time and energy costs, as the proposed
statistical method could realize precise probability in minimal
time. Zhou et al. [55] paid attention to the Vehicle-to-Grid
(V2G) scenario and utilized consortium blockchain trading
GAI et al.: BLOCKCHAIN MEETS CLOUD COMPUTING: A SURVEY
mechanism to enable a low-cost demand-supply matching
method. The information asymmetry issue was addressed by
this work, which was solved by a contract-based control
method as well as a consensus.
Summary: In this section, we had discussed BaaS in
both industry and research. With the support of BaaS offer-
ings, users can concentrate on the functionality and usabil-
ity of their blockchain-based apps rather than exploring
blockchain network establishment. From the perspective of
cost-saving, BaaS is efficient due to the easy-configuration and
outsourcing-maintenance. A few tech giants had been devel-
oping various BaaS service models as the branch of their
cloud services. Our investigations depicted that the indus-
try had ambitious attempts on exploring BaaS, while limited
research achievements were revealed. A wider implementation
of BaaS needed to take over challenges in trust management,
data security, and recentralizations.
III. B LOCKCHAIN -E NABLED DATA P ROVENANCE
IN C LOUDS
A. Data Provenance Issues
IDC (International Data Corporation) [56] forecasted that
global data sphere would reach 175 Zettabyte by 2025, of
which half of the cloud data would be stored in public clouds.
Data provenance is an essential of traceable data usage in
assisting the management of such high volume data, consid-
ering both efficiency and reliability. Provenance refers to a
type of metadata that records and describes operation data. In
the scenario of cloud computing, a functional provenance tells
when, where and how data are stored, accessed, modified and
deleted in cloud datacenter, which means CSPs are expected
to provide reliable cloud-data management when a competent
provenance is implemented.
The application of provenance in cloud benefits both CSPs
and users. To address providers’ demands, provenance meta-
data could be utilized to debug [66] for discovering potential
security vulnerabilities. Titian [67] provided a data prove-
nance to support Data-Intensive Scalable Computing (DISC)
systems in order to simplify the debug process. Provenance
system can also assist CSPs to identify abnormal process
in clouds, e.g., unexpected running applications, which con-
tinually consuming resources without notice when prove-
nance was not applied [68]. The automatous data life-cycle
management is the major subject offered by provenance.
Westerkamp et al. [57] proposed a blockchain-based approach
for tracing manufacturing processes that covered both products
deliveries and components during manufacturing. The concept
of the token was used for linking blocks with products or
product components.
On the other hand, from the perspective of users, provenance
can protect users data from the threat of malicious insid-
ers [69], e.g., adversarial data mining. Provenance provides
a platform with a function of recording both administrative
and malicious operations. A long-run of fulfillment of Service
Level Agreement (SLA) can be monitored under the restriction
of provenance information [70]. Recent study [71] also proved
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
2013
Fig. 2. High level architecture of blockchain-enabled data provenance for
cloud datacenter.
that provenance could be used as a recovery tool in case of
mis-detection.
Benefits of provenance as discussed above are based on
the assumption of metadata that were secure and reliable.
However, provenance records still had a chance to be tem-
pered by the threat agent, which could disable/ misused the
provenance system [72]. As mentioned in [58], provenance
services were subjected to accidentally shut-down and mali-
cious attacks. It suggested that storage and analysis process
be required to realize reliable provenance collections.
B. Blockchain-Enabled Cloud Data Provenance
As a temper-resistant distributed ledger, blockchain could
ensure the security of provenance data. The basic idea of
blockchain-based data provenance is using blockchain’s char-
acteristic in traceability to record each activities happened to
data on blocks. Fig. 2 shows the high level architecture of
the blockchain-enabled data provenance for cloud datacenter.
Ali et al. [73] emphasized that blockchain techniques con-
tribute to data provenance by its immutable, deterministic and
public nature. Smart contract plays a vital role in balancing
data provenance, functionality, and trusted environment, no
matter whether the data are stored on-chain or off-chain.
ProvChain [58] was a private chain in order to collect, store
and verify provenance data in the cloud. In this blockchain-
based provenance architecture, programs named hooks were
responsible for monitoring changes in cloud environment to
record these operation events. Besides, provenance data were
sensitive and vulnerable to data misusing [74]. In ProvChain
structure, user’s identities appeared in the hashed form in order
to protect users’ privacy. Only service provider could map the
hashed value to user’s identity. However, some sensitive data
were still stored as a plaintext in the blockchain.
SmartProvenance [59] system, introduced automatic ver-
ification in data provenance process. Differ from verifica-
tions in ProvChain that relied on auditors for verification,
SmartProvenance utilized a voting mechanism to design a
peer-to-peer decentralized verification scheme; hence, the
trusted auditor was no longer needed in SmartProvenance.
Both provenance collections and verifications were imple-
mented by smart contract to make the whole system fully
automatic. SmartProvenance stored all sensitive data off-chain
2014
B LOCKCHAIN -BASED P ROVENANCE M ECHANISMS IN C LOUDS
but remained hash values on-chain for privacy-preserving pur-
pose. GridMonitoring [61] also used blockchain technology
to generate temper-resistant provenance data record of power
usage data that stored in cloud. Thus, inconsistency in actual
power usage between users and power providers could be
tackled with the aid of smart contract, which provided a
transparency and non-reputable data record.
Layered nature of cloud indicated that involvement of
federated service providers in service delivery process was
inevitable [5]. Resource and task offloading occurred fre-
quently between different CSPs. In federated cloud, ProvChain
and SmartProvenance were not appropriate because they were
designed for a single provider situation. Applying [58], [59],
[61] in federated cloud environment was challenging due to
the lack of interoperability.
To address this challenge, Xia et al.’s [60] team launched
MeDShare to achieve data provenance and auditing in the
federated cloud environment. In this work, provenance func-
tion was designed to support secure data sharing among
trust-less service providers and prevent malicious attacks that
damaged in both financial and reputation aspects. Data own-
ers hosted a complete control of data provenance [75] due
to an access control-oriented smart contract as well as a
tamper-resistant provenance mechanism were designed and
implemented. When violations or misbehaviors were detected
by CSPs at the provenance phase, an automatic access control
was to be performed to revoke access to malicious or abnor-
mal entities. Patient’s sensitive data were well-protected during
the data sharing process among medical institutes under the
condition given in the work.
Another work completed by Nessie et al. [62] constructed
a blockchain-based data provenance tracking system to fit in
the protection requirement of European Union (EU) citizen’s
personal data. Alike MedShare [60], smart contract in [62]
was utilized to record provenance information and store access
policy. In this system, three types of smart contract were coop-
erated together to support comprehensive provenance records
from the perspective of both controller and specific group of
data. Such that comprehensive metadata records were from two
aspects (e.g., controller and data perspective), which ensured
the data sharing manipulations among CSPs. The work [76]
considered the data stored in blocks and used differential pri-
vacy techniques to screen original data. The implementation
of differential privacy in blocks was examined as an efficient
approach to against data mining-based attacks.
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
IEEE COMMUNICATIONS SURVEYS & TUTORIALS, VOL. 22, NO. 3, THIRD QUARTER 2020
TABLE II
From the perspective of security, blockchain-based prove-
nance method was deemed to be an approach for secur-
ing data operations in multiple manufacturing processes.
Maw et al. [65] proposed a secure data operation architecture
that addressed both immutability and redundancy dimen-
sions. Blockchain system was used to construct a checking
mechanism for achieving integrity and a traceable replica-
tion mechanism for data recovery. This solution could be
considered a storage service combining with blockchain sup-
ports. Distributed network architecture also contributed to
strengthening self-defensive capability of data protection [77].
Considering data integration, blockchain also was a techni-
cal alternative. Chen et al. [78] demonstrated that blockchain
technique could protect data integrity that was superior to tra-
ditional schemes. The approach was a stochastic blockchain
mechanism, by which the volume of cooperative nodes was
limited and IoT edge devices were used to work offloading.
Some cloud services aimed to offer High Performance
Computation (HPC) instead of high volume of storage under
pay-as-you-go pattern. Thus, these cloud data centers were
diskless and shared the remote storage. Above blockchain
provenance designs cannot perform well in HPC system due
to the high I/O overhead. Al-Mamun et al. [63] proposed
an in-memory blockchain to realize trustworthy and effi-
cient provenance in HPC system. In this novel architecture,
distributed ledgers were stored in volatile memory, which com-
municated by high-speed and persistence protocols to reduce
I/O overhead. In addition, a neoteric consensus protocol,
Proof-of-Reproducibility (PoR), combined the idea of PoW
and PoS, to realize trustworthy provenance data validation
and reproduction in volatile environment. Experiment results
indicated that the proposed method outperformed traditional
database and files provenance system in latency overhead.
Similarly, BlockCloud [64] also focused on the consen-
sus protocols in blockchain-based cloud provenance system.
In this approach, authors discussed 5 PoW provenance
system security challenges, which were de-anonymization,
51% attack, blockchain fork, consensus delay and selfish min-
ing. To tackle the problems above, BlockCloud was designed
under PoS to offer reliable data provenance. The prove-
nance process in BlockCloud was similar to ProveChain [58].
Challenges of PoS based cloud provenance system also were
discussed in this paper.
Summary: Data provenance technology provided opera-
tion record and management throughout data’s lifecycle.
GAI et al.: BLOCKCHAIN MEETS CLOUD COMPUTING: A SURVEY
Traditional approaches in data provenance were centralized,
complex and lack of protection and validation. In this sec-
tion, we listed existing works that tackle the current challenges
with the support of blockchain. Further, privacy and inter-
operability of provenance data were discussed. In future,
the blockchain solution of cloud data provenance should be
focused on smart contract based system that provides incentive
to honest behavior and punishment for malicious.
IV. B LOCKCHAIN -BASED ACCESS C ONTROL IN C LOUDS
A. Access Control in Cloud Computing
Access control was an essential method to provide cloud
data security and privacy, which kept cloud data from intrusive
by unauthorized users. An unreliable access control method
also affected other functions, such as authentication, autho-
rization and data auditing. In this section, we discussed about
challenges of traditional access control methods in clouds.
Traditional access control methodologies in clouds mainly
were based on well-established access control policies.
Existing traditional policies were categorized into four aspects:
namely, Discretionary Access Control (DAC), Mandatory
Access Control (MAC), Role-Based Access Control (RBAC)
and Attribute-Based Access Control (ABAC). In DAC, the
legitimate user (e.g., service provider) was responsible for
determining how other users access to objects (e.g., cloud
users) [79]. By this method, a flexible access control for cloud
users was achieved due to the fact that no rigid rule was
needed in DAC. Contradicted to DAC, MAC was implemented
by a predefined trusting policy that could not be dynamically
changed. System administrator was responsible for access con-
trols instead of objects, such that the approach focused on the
confidently rather than integrity [24].
In RBAC model, access rights were assigned to subjects
based on their roles and responsibilities in the system rather
than their identities [24]. The nature of RBAC caused the
drawback because of the lack of the consideration in other
aspects of subjects. ABAC was proposed to further tackle
these issues. It configured the access rule based on the attribute
analysis of objects and subjects [80]. Major benefit of ABAC
was relevant with its comprehensive consideration during
authentication. Even though authentication of ABAC was a
time-consuming process, the computation resource it cost was
negligible in the cloud environment.
As discussed above, each access control method has pros
and cons. A common weakness of traditional access con-
trol mechanisms is that they highly rely on a centraliza-
tion setting, which generally lacks transparency, traceability,
tamper-resistance, and multi-party governance. Considering
the specific application environment, the trade-off between
security and efficiency exists and can be hardly solved in
nature.
B. Blockchain-Based Cloud Access Control
Differing from traditional access control methods,
Blockchain-based Access Control (BAC) has a few benefits
deriving from characteristics of blockchain. Our investiga-
tion suggests two key advantages. First, BAC introduces
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
2015
consensus into the operation of access control, such that,
logically speaking, all stakeholders can be involved during
the process. Establishing a consensus generally needs an
agreement-level consent made by participant voters or
deciders, which strengthens the security from the perspective
of the decentralization. Second, traceability supported by
blockchain provides a traceable and immutable governance
capability for access control. This feature raises the difficulty
of adversaries. In this section, we review representative recent
work in BAC.
Due to the layered nature of cloud architecture, access con-
trol mainly played two roles in clouds. The first was the
cloud service role who controlled the access of cloud users
in accessing the cloud data and services. A recent study,
BlockSLaaS [81] proposed a blockchain-assisted approach for
offering Logging-as-a-Service (LaaS). The proposed mecha-
nism addressed cloud forensics, which provided a represen-
tative reference for merging blockchain and access control
techniques. On the other hand, it played a visual role such that
Virtual Machine’s (VM’s) access to physical machines needed
governance in case of threats from side channel analysis [82].
A decentralized access control technology powered by
blockchain could avoid the risk of single point failure and
data misusing caused by third-parties. By applying blockchain
technology, data owners could flexibly and completely control
the access of their own data [83]. Recent study [84] demon-
strated that BAC could enable data sharing in an untrusted
environment. Decentralization could avoid hazards caused by
dishonest third party or participants [85]. Nugyen et al. [86]
addressed the scenario of medical records sharing and exam-
ined the performance of BAC. The evaluation suggested that
BAC could offer trustworthy access controls for multiple
medical providers.
Thanks to the tamper-resistant and transparent nature of
blockchain transactions, some approaches utilized blockchain
transactions to instruct the access control process in cloud
environment. Zyskind and Nathan [87] developed a decentral-
ized personal data managing system for mobile data’s off-chain
storage. Two different transactions exist in this blockchain
network. Taccess, the first type of transaction, was designed
for access control management. The other type of transaction,
Tdata, was responsible for data storage. Data owners were
allowed to modify the access authentications by configuring
different policy set in Taccess transaction. In addition, Tdata
cooperates with check policy protocol to govern the read/
write operations. In such way, users fully controlled their data
by implementing digitally-signed transactions, such that mali-
cious intrusions (from unauthorized users) could be prevented
in this blockchain-enhancement DAC model. To be specific,
the protocol-based transaction implemented a dynamic and
fine-grained access control protocol was implemented, which
consisted of four protocols, including compound key genera-
tion, permission check, access control and data on/off chain
protocols.
Moreover, authors in [87] also discussed extensions of
blockchain in their work. At the first phase, the extension
could be realized by efficient off-chain data processing, so
that the security of off-chain data needed to be secured during
2016
data processing. To tackle this issue, an analysis method was
proposed, which divided data into shares by using a secure
multi-party computation model [87]. The second phase of
the extension was a measurement of trust in the blockchain
network. The new trust evaluation proposed as the sigmoid
function of the difference between the number of “good” and
“bad” actions. Through this trust measurement, the evaluation
results showed that it could support the blockchain system
against sybil attacks.
Another study, Engima [88], proposed a privacy-preserving
decentralized computation system. It was constructed as an
optimized secure multi-party computation system. Different
parties were designed for distinct computation tasks as well
as preserving privacy jobs. With the implementation of this
design, computations and storage redundancy was eliminated
to address the scalability challenge. ProvChain [58] col-
lected temper-resistant on-chain provenance data to perform
Provenance Based Access Control (PBAC), which was defined
by Nguyen et al. [89] in 2012.
We also observed that scalability was a challenge when
transaction-based access control was deployed. BBDS [90]
was proposed in order to tackle this issue, which relied on
a lightweight block structure to improve the system’s effi-
ciency and scalability. This model was applied to protect
sensitive medical data stored in clouds. The unique design of
block structure provided high scalability in this private chain
network. In addition, the identity-based authentication, cryp-
tography algorithms and transaction verification cooperated
together to implement access control. However, BBDS was
not based on any open-sourced blockchain platform, which
made the BBDS immature and lack of extensive experimental
verification.
As we stepped into the blockchain 2.0 era, smart contract
was another widely applied alternative that could be used to
strengthen access control. Some works constructed the smart
contract based access management system for sensitive health
and medical data under telemedicine scenario.
Rahman et al. [91] designed a blockchain-based therapy
management framework. While user’s medical data were
stored in off-chain clouds, access policy of off-chain data
was embedded into smart contract. Major drawback of this
approach was the dependency of trust third parties, such as
physio-therapy center, caregiver and therapist. MedShare [60]
system used different kinds of smart contract cooperated with
cloud provenance data to achieve access control. While some
contracts were responsible for judging potential misbehaviors
and threats based on provenance data, others execute potential
misbehaviors and threats based on these provenance data. In
addition, punishment was executed by revoking access rights
of malicious cloud users. However, MedShare could only
revoke the access authentication; other essential operations in
access control were neglected.
Furthermore, the decentralized cloud environment also was
an application scenario of smart contract-based access con-
trols. FairAccess [92] implemented a smart contract-based
access control mechanism under Organization Based Access
Control (OrBAC) model. This system could grant, read,
delegate and revoke the access rights by different access
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
IEEE COMMUNICATIONS SURVEYS & TUTORIALS, VOL. 22, NO. 3, THIRD QUARTER 2020
tokens from transactions. Smart contract inside the transac-
tion provided fine-grained and context-aware access control
policies. To proof-of-concept, this system was constructed on
a Raspberry PI device. Similarly, Novo [93] created a single
smart contract system to manage access policies. In this work,
a wide range of edge devices could access the blockchain
network via management hubs. Besides, the management hub
provided a real-time access policy update for all edge devices.
In Zhang et al.’s work [82], three smart contracts, namely,
access control contract, judge contract and register contract,
cooperated together to achieve both access management and
punishment for misbehaviors.
Combining with the concept of ABAC, Wang et al. [94]
proposed a blockchain framework for attributed-based fine-
grained access control in the distributed storage system.
Traditional attribute-based encryption relied on trusted Public
Key Generator (PKG). Compromising the PKG would lead
to system failure and sensitive information leakage. In
Wang et al.’s [94] design, blockchain was responsible for key
management rather than trusted PKG. Thanks to the involve-
ment of blockchain, users fully controlled data through a
tamper-resistant and traceable key management, so that the
method was free from the leakage and misusing caused by
semi-honest providers and single point failure.
Despite plentiful access control methods we had mentioned
above, these researches (exclude MedShare, which only per-
form revoke operation) were designed for single CSP scenario,
e.g., cloud federation was not take into account. Thus, these
designs can only provide confidentiality of single cloud data
rather than whole cloud federation. In 2016, Federation-as-
a-Service (FaaS) [97] proposed an access control system for
federated cloud environment. In this work, authors presented
an attributed based access control mechanism with both Policy
Enforcement Point (PEP) and Policy Decision Point (PDP).
PEP collected user’s request while PDP conducted access
permission.
A few more attempts ware made deriving from FaaS frame-
work. For example, DRAMS [95] was constructed on the
top of the FaaS framework. Smart contract was used to
collect, compare and check user’s logs for verification and
intrusion detection in this system. DRAMS was immune to
access control decisions/ responses modifications and policy
alterations. Challenges in this approach included vulnerable
off-chain system component and the latency issues. Similar
to the intention of DRAMS, Alansari et al. proposed [96]
an attribute based fine-grained access control method. The
system was spreaded out though the distributed federation,
so that it preserved user’s privacy by implementing Oblivious
Commitment-Based Envelope (OCBE) protocol. Blockchain
maintained the attribute and policy integrity in this work. We
provide a comparison table for showing differences between
various blockchain-based access management mechanism in
Table III.
Summary: Access control was an essential method to
prevent user’s data from intruding by unauthorized attackers.
Traditional access control methods face challenges in signal
point failure, unreliable trusted third parity and lack of user’s
control. By implementing blockchain technology, users could
GAI et al.: BLOCKCHAIN MEETS CLOUD COMPUTING: A SURVEY
TABLE III
C OMPARISONS OF B LOCKCHAIN -BASED ACCESS
M ANAGEMENT M ECHANISM
fully control their data without threat of single point failure.
In addition, smart contract provided automatic access manage-
ment as well as detection and punishment of misbehaviors.
Moreover, these access control methods were all applied for
secure cloud storage.
However, cloud VMs also needed access control mecha-
nism to avoid side-channel attacks. In our best knowledge,
blockchain application in VM access management was short
of study. In future, cloud VM security powered by blockchain
would be the next research trend. In Table II we compared
and discussed different works.
V. B LOCKCHAIN -E NABLED S EARCHABLE
E NCRYPTION IN C LOUDS
A. Current Issues in Searchable Encryption
Due to the concern of lack of control in personal outsourced
data, users could choose encrypting data before uploading to
the cloud to avoid exposing plain-texts. By this effort, the
honest-but-curious service provider could not exquisite and
analysis personal sensitive data. With the trade-off between
security and availability, this type of protection methods might
reduce the service availability. Difficulty in searching the
encrypted outsourced data was one of the common challenges.
To address this challenge, searchable encryption was proposed
to ensure that users could acquire the search result without
downloading all encrypted data stored in cloud.
Existing approaches of searchable encryption could be
divided into two categories, which were Searchable Symmetric
Encryption (SSE) and searchable Public Key Encryption
(PKE). Song et al. [98] proposed a searchable encryption
scheme on the basis of the symmetric encryption as a two-
layered form, which was known as a representative approach
of the first generation search encryption. On the fundamental
of Song et al.’s work, Boneh et al. [99] put forward the public
key based asymmetric searchable encryption. The work [100]
proposed conjunctive keyword search method to achieve multi-
keyword search. However, all mechanisms discussed above
were based on the exact matching, so that the availability
performance could be lowered down. To further tackle this
issue, Li et al. [101] replaced exact matching by the fuzzy
keyword search, which returned the result with the highest
similarity.
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
2017
All work summarized above were constructed under
the assumption that CSPs followed honest-but-curious
model [102]. Nonetheless, this assumption was weak in a
practical scenario due to various insider threats. Dishonest
servers might return false results under the consideration of
energy saving and fault covering. It implied that verifica-
tion process was desired in searchable encryption scheme.
Although some attempts [103]–[105] tried to verify integrity
of returned values, no punishment could be made to incentive
honest behaviors without a trusted party. Besides, verifica-
tions, from server side to against malicious users, were not
well-researched.
B. Blockchain-Enabled Searchable Encryption
Some recent work focused on solving existing blockchain-
based mechanism. Chen et al. [106] accomplished a study on
strengthening encrypted keyword search through blockchain.
The work found the issue that malicious nodes could ruin
search results when using a distributed hash table protocol to
integrate the encryption with keyword search. The proposed
solution could detect and remove malicious nodes as majority
of nodes run a self-determining strategy. In order to against
Keyword Guessing Attacks (KGAs), Zhang et al. [107]
proposed a blockchain-assisted PKE, named as a SEPSE.
A few methods were proposed by this work in order to
reduce the success chance of KGA, such as screening
key encryption, periodically key renewal, and key request
monitoring. Addressing the key leakage issue, the work [108]
developed a key aggregation searchable encryption scheme
that against CPA.
Some approaches verified the search result with the support
of broadcasted transactions. For instance, Searchchain [109]
was one of the methods using this technical route, which
deployed on the top of Obvious Key word Search with
Authentication (OKSA) mechanism to provide a privacy-
preserving public key encryption. Limitation of traditional
Oblivious Keyword Search (OKS) was addressed by novel
OKSA mechanism by providing key word search autho-
rization. Searchchain was proposed to reinforce privacy-
preserving when CSPs validated users’ access authentica-
tion via a specific keyword. Data retrieval information was
recorded on the block and was broadcasted to all nodes for
verifications through a consensus without acknowledging any
keyword information.
Zhang et al. [110] proposed a blockchain-based time com-
mitment scheme that used different kinds of transactions. In
this model, dishonest party would be punished by bitcoin com-
pensation without any Trusted-Third Party (TTP). In a follow
up study, TKSE [111] firstly came up with two-sided verifica-
tion in searchable encryption system. Both malicious service
provider and malicious data owner could be punished. In order
to verify the search result, authors constructed a merkle tree
with ciphertext leafs, then check the results by its root. Similar
to Bpay, the payment fairness [116] was also based on the idea
of time commitment.
In [112], returned keyword value and corresponding
search tokens were recorded on search transactions for
2018
S EARCHABLE E NCRYPTION
further verification. Multi-set hashing, an incremental hash-
ing scheme, was used to process data integrity verifications.
There were two types of participants in this model. First,
Clint Peers were data owners where storage peers acted
as service providers. The other participant, Client Peers,
requested verifiable cipher-text search from storage peers.
Besides, this scheme provided an optimized storage overhead
and dynamic updates. Unlike [110], [111], fairness mechanism
in this work was provided by accountable metadata instead of
time-commitment.
Although verification mechanisms could provide soundness
search results, miners still had a chance to deliberately skip
verifying complex transactions in order to focus on highly-
rewarded mining activities. The phenomenon was called the
Verifier’s Dilemma [117]. In the work [113], authors explored
smart contract to provide soundness keyword search with-
out complicated verification process on the data owner side.
In other words, result soundness could be ensured as long
as the Ethereum blockchain was safe. By embedding the
search algorithm in smart contract, correct results could be
ensured only when the contract was successfully executed on
blockchain. The time consuming verification process of the
searched data was no longer needed. Besides, author stored
encrypted indexes in dictionary in order to reduce the compu-
tation overhead. Packing method also was used to reduce gas
cost.
In addition, fair payment also implemented by smart con-
tract in this approach. Introduce fairness into the paying
process could incentive the honest and punish the malicious.
Time commitment was used to ensure fairness in both single
user and multi-user setting. For example, Zhang et al. [110],
[111] introduced a fair payment to encourage honest behavior
in SSE process.
Index of user’s file was stored on blockchain while the stor-
age of file was outsourced to public clouds. Fairness [116]
also was provided by smart contract in the form of time com-
mitment. Both single user setting and multi-user setting were
considered in performing fairness. Subsequent research com-
pleted by Chen et al. [106] extended Hu et al.’s work [113]
into electronic health record sharing scenario, which executed
with queries from different health agents. Different from Hu’s
work, index for EHRs was generated by complex logic expres-
sions and stored in blockchain. By this effort, data owner could
fully control the access to their own data.
Also addressed medical data, Zhang and Lin [114] came
forward with a searchable public keyword encryption scheme
under personal health information sharing scenario. Private
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
IEEE COMMUNICATIONS SURVEYS & TUTORIALS, VOL. 22, NO. 3, THIRD QUARTER 2020
TABLE IV
blockchain, as deployed in a private cloud, was designed to
store the PHI data while the consortium chain stored the
indexes of PHI for encrypted search. The time controlled
revocation in this work preserved user’s data security from
honest-but-curious phyician. After the key word search opera-
tion was finished, the trapdoor was disabled such that phyician
could not use the trapdoor to access patient’s future data.
Combining with other technical methods was alternative in
this domain as well. A recent work [94] developed a func-
tional blockchain framework, which cooperated attribute based
encryption and SSE to achieve both fine-grained access con-
trol and searchable encrypted keyword. Smart contract carried
out fair payment mechanism by depositing user’s search fee in
advance. However, fair pay algorithm in [94] failed in compen-
sating users when CSPs were dishonest, e.g., no punishment
to CSP. Thus, fair payment mechanism in [94] was not effec-
tive as [110], [111], [113] under the circumstance of malicious
service provider.
Summary: Searchable encryptions enable cloud users to
search their own outsourced data. Since CSP(s) might be
honest-but-curious or malicious, encrypted search results could
be incorrect and misleading. With the support of blockchain,
the transaction verification and smart contract were used to
make search result authentic. In addition, fair payment was
also important. Malicious users could refuse to pay money
after they got correct data. Users could still pay for the
invalid search results when the payment system was not
correctly designed. Fair payment was implemented by the
time commitment that embedded into either transactions or
smart contract. Until now, majority of the blockchain-based
searchable encryption tackled the above challenges of SSE.
Blockchain in PEKS needed more research. We provide a
few comparison results of searchable encryption solutions in
Table IV.
VI. B LOCKCHAIN IN C LOUD DATA D EDUPLICATION
A. Data Deduplication in Clouds
According to IDC’s report [56], cloud will store nearly 88
Zettabyte of data by 2025, where 75% of it is in the form of
duplicated data [118]. To maximize cloud storage efficiency,
majority of CSPs utilized data deduplication technology in
their Storage-as-a-Service (StaaS) product, e.g., DropBox and
GoogleDrive. This technology could be beneficial both CSPs
and users in saving bandwidth, increasing storage efficiency
and reducing cost of power and infrastructure, as well as result-
ing in a low price of services for customers. Nonetheless,
GAI et al.: BLOCKCHAIN MEETS CLOUD COMPUTING: A SURVEY
deduplication approaches still encountered critical security
challenges.
Data stored on cloud server could be cypher-texts in order
to ensure the outsourced data confidentiality. However, CSPs
generally denied users to encrypt their outsourced by conven-
tional encryption method (e.g., AES) [119], which influenced
the efficiency of the deduplication. Instead, convergent key
encryption [120] was utilized to achieve cyphertext dedupli-
cation. Message-lock encryption (MLP) [121] later suggested
that convergent encryption was a kind of form of it. The
authors also proved that the MLP was not semantic secure.
A subsequent research [122] introduced a TTP to deliver tags
that assisted with duplicate check. Potential challenges of this
approach, based on our observations, main derived from its
centralization design. This deduplication system would be dis-
abled by a TPP single point failure. By intruding the TTP,
attackers could obtain file tags for further side-channel attacks
in source-based deduplication system [123].
Moreover, data integrity also was threatened within dedupli-
cation process. After deduplication, only one copy remained
that could be a primary target for attackers. It meant that
both service outage and malicious administrator could easily
erase storage content in an irreversible way. Data auditing was
essential in protecting users’ data in cloud, in which the dedu-
plication was implemented. One solution to achieving reliable
auditing was to deploy a trust authority that relied on the treat
of single point failure [124].
B. Blockchain-Enabled Cloud Data Deduplication
Existing blockchain-enabled approaches mainly focused on
multi-cloud decentralized deduplication scheme. Blockchain
technology was used to govern multi-cloud deduplication oper-
ations due to the incentive of high deduplication rate and fault
tolerance performance. For example, CloudShare [125] intro-
duced blockchain in multi-cloud deduplication management.
In this work, user side encryption was against attacks from col-
luding malicious servers. User data’s integrity and ownership
were protected by the temper-resistant blockchain transactions.
Blockchain assisted multiple CSPs quickly synchronize file
informations for dynamically instructing deduplication system.
Liu et al. [126] and Li et al. [127] presented a smart
contract-based cloud deduplication system. Business Smart
Contract (BSC) performed periodically Proof-of-Retrievability
(PoR) through a challenge-and-response protocol to verify file
integrity, retrievability and resist side channel attacks. BSC
dealt with file pointer management and the publication of
Transaction Smart Contract (TSC), which was generated after
the server passed PoR challenge and automatically transaction
and payment management are processed. Reference [128] out-
performed [126] by its automatically file reconstruction, which
was benefited from distributed storage.
Summary: Despite enormous significance of blockchain-
based cloud deduplication, there were insufficient work done
in this field until now. The conflict between high-redundancy
blockchain data and the aim of deduplication was a critical
obstacle. There was no such solution that blockchain could
fully reconstruct cloud storage system with deduplication
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
2019
technology. It seemed that blockchain served as a subsystem
for ensuring cloud storage security. Existing work stored file
tags on-chain while files remained off-chain. Considering this
setting, only small storage space was consumed while system
security and data integrity could be enhanced.
VII. B LOCKCHAIN -E NABLED C LOUD R ESOURCE
A LLOCATION
A. Cloud Resource Allocation
Typically, cloud resource allocation addresses two goals,
which are maximizing energy utilization and optimizing com-
putation efficiency [129], [130]. As widely accepted, cloud
datacenter is storing a huge volume of data and the volume is
growing along with the enlargement of the service scope and
the increment of the network. Heavy cloud workload means
the huge amount of electricity consumption at cloud datacen-
ter. Constructing an energy-aware task scheduling mechanism
is a primary goal for cloud datacenter to reduce service cost,
such that blockchain-empowered allocation method is an alter-
native [131], [132]. For example, Zhang et al. [133] attempted
an approach of using blockchain to enhance computation capa-
bility of mobile edge computing. This study tried to solve the
joint computation offloading as well as coin loaning problem
by aiming the minimum value of the total computing cost.
Xu et al. [134] developed a Byzantine Fault-Tolerant (BFT)
networking approach in order to cover both data security and
system efficiency. Two cases were considered by this work,
which included a single Byzantine fault and with multiple
faults.
One of the methods of categorizing cloud resource allo-
cation problems is on the basis of the “distance” from
scheduling tasks to users [135]. That is to say, problems can
be categorized by different layers. At the cloud infrastruc-
ture layer, task-scheduling focus on optimizations in datagram
exchanging and cloud federations. In addition, task scheduling
generally deals with the mapping issue from VMs to physi-
cal machines, as well as optimum migration problems at the
platform layer. Finally, issues at the application layer mostly
consider specific optimization goals, such as satisfying Quality
of Service (QoS) or energy-saving requirements.
The challenging part is that most cloud resource schedul-
ing problems are NP-hard problems while multiple elements
are considered. A trade-off between the time complexity and
energy cost is representative example in scheduling problems.
In exhaustive methods, such as liner programming [136], time
cost will be exponentially increased along with the incre-
ment of the amount of variables. To tackle this problem,
evolutionary approaches [137] (e.g., genetic algorithm, ant
colony optimization and particle swarm optimization) have
been proposed to achieve the high-efficiency scheduling.
However, as scheduling methods typically were based on
a central control hub, most existing methods failed in per-
forming a real-time scheduling, which appeared inflexible in
responding varying requirements from users. Blockchain tech-
nology provides a potential for solving the drawback caused
by the control center, by constructing a decentralized resource
scheduling system.
2020
B. Blockchain-Enabled Cloud Resource Allocation
We observe that blockchain technology generally is
merged into cloud resource allocations by utilizing some of
blockchain’s technical features, including trustworthy platform
establishment (transparent and traceable token transactions)
and smart contract applications.
Distributed incentive scheme of resource allocation could
be achieved by implementing financial incentive tokens.
Liu et al. [126] proposed a novel Vehicular Ad hoc Networks
(VANETs) scheme, where each Electrical Vehicle (EV) could
be regarded to be a mobile cloudlet as well as a moving
power plant. The idling electrical resources of EVs were
aggregated into source pool for flexible resource reallocation,
which was directly influenced by encrypted coins. Data con-
tributions between moving vehicles were rewarded by data
coins followed Proof of Data Contribution (PoDC) consen-
sus. Similarly, electricity contributions were rewarded by the
“energy coin” to incentive resource contribution. Source allo-
cation was performed based on the amount of tokens possessed
in each EV, according to this blockchain-based system. A
high-amount coins owner means it contributed frequently in
collaborative management. To incentive high frequency con-
tribution, owners with high coins could get a higher priority
in accessing the resource pool with a lower price. This type
of resource allocation could be seen as token-based resource
allocation. However, the performance of this approach had not
fully examined due to lack of evaluations.
Infrastructure service provisioning was one of the core
application scenarios, in which a central broker was respon-
sible for resource allocation in most existing cloud solutions.
Ghosh et al. [138] proposed an approach that freed up the
restriction of the single broker, so that a transparent alloca-
tion operation was created. Thus, blockchain-enabled resource
allocation was deemed to be a suitable option for making a
transparent and trustworthy cloud federation [139]. Another
work [140] achieved high-efficiency computation offloading
between mobile devices and cloud servers with the assist of
the “FlopCoin”. FlopCoin was designed to create an incen-
tive scheme to encourage users executing the offloadable task.
Members’ mobility and reputation were also considered in
resource scheduling. Interactions between resource providers
and users were addressed as pricing strategy, such that both
fixed pricing and auction mechanisms were considered in
resource price.
Due to the explosion of the machine learning technology,
reinforcement learning is widely used in the field of resource
allocation. Liu et al. [128] proposed a joint framework, uti-
lizing both deep reinforcement learning and smart contract to
achieve efficient cloud data collection and secure data shar-
ing. In a follow up study, Xu et al. [141] firstly embedded
the reinforcement learning algorithm into the smart contract
to perform optimum request migration in peer-to-peer cloud
data center network. They tackle the problem by propos-
ing off-policy temporal-difference learning (Q-leaning), which
was both in high efficiency and close to the real migra-
tion problem where rewards and transfer probability were
unknown.
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
IEEE COMMUNICATIONS SURVEYS & TUTORIALS, VOL. 22, NO. 3, THIRD QUARTER 2020
TABLE V
C OMPARISONS OF B LOCKCHAIN -E NABLED R ESOURCE A LLOCATIONS IN
C LOUD C OMPUTING
Summary: Due to the economical nature of the blockchain,
some blockchain-based systems allocated resource via
incentively issuing tokens. The tokenized incentive based
cloud resource allocation could increase the resource sharing
rate that reduce the energy cost. Some approaches embedded
reinforcement learning algorithm into the blockchain system.
Thus resource could be optimally allocated among the peer-
to-peer cloud data center network. Blockchain-based cloud
resource scheduling was short of research. Combination of
incentive and optimum allocation methods could be next
research trend. We have listed a few representative work in
Table V in order to exhibit major differences among distinct
approaches.
VIII. C LOUD O FFLOADING FOR B LOCKCHAIN
Despite benefits of blockchain system in security, trans-
parency and fault-tolerance, blockchain-based applications fre-
quently needed a powerful backend service supports. First,
most blockchain systems utilized PoW consensus. Portable
communication devices, such as mobile smart phone, could not
be deployed by PoW blockchain due to its constrained com-
putation ability [26], [142]. Outsourcing this cryptographic
puzzle game can be a solution in this scenario. Second,
blockchain system has low throughput and high redundancy so
that storing all data on-chain could result in tremendous cost of
local hardware storage space. Applying a scalable outsourced
storage service was an option in addressing this issue.
Since the invention of Bitcoin [143], PoW had been a major
consensus mechanism in blockchain system. In PoW mecha-
nism, miners scramble the right of packaging block by solving
a cryptographic puzzle. Although PoW provides high fault
tolerance and security, it is computational exhausted to each
node in the blockchain network. Thus, resource contained edge
devices cannot afford such high computation cost. similarly,
executing complex smart contracts was also a huge burden to
resource limited devices [5]. The work [144] proposed a novel
approach that used smart contract to optimize task allocation in
smart grid. The energy supply was dynamically and automati-
cally managed by implementing a smart contract. The method
used a reinforcement learning approach that could fit in a con-
tinuously changing environment. Another work [145] utilized
smart contract to realize contractual routing protocol in IoT,
which also emphasized the auto control feature of smart con-
tract. Some researches offloaded computational tasks between
devices and cloud servers to tackle this challenge.
GAI et al.: BLOCKCHAIN MEETS CLOUD COMPUTING: A SURVEY
Fig. 3. Offloading type classifications for blockchain.
A. User’s Profit-Based Offloading
In some approaches, offloading strategy was designed to
maximize the profit in the PoW cryptographic game from the
one perspective, e.g., miner and service user perspective. These
works assumes that the unit price of energy was fixed and pre-
defined by an authority. Thus, the profit optimization problem
was converted into a problem that minimized the total cost
and maximized the computation efficiency.
The work [146] proposed a mobile edge computing based
computation offloading and content caching joint system to
maximize the total net revenue, which was evaluated under
the metric that considered task delay and energy consump-
tion. It was because the unity energy price was constant
and the optimization problem addressed minimizations. Two
offloading mechanisms were designed for computation insen-
sitive mining task. In the first solution, the full mining task
Am,n was offloaded to nearby access point that connected
to cloud server. The second strategy divided the whole mining
task into subtasks, then distributed them to device to device
users. The optimal offloading decision was constructed under
Alternating Direction Method of Multipliers (ADMM) [147]
algorithm to solve this distributed optimization problem.
Relationship between users and time efficiency was considered
under real-world radio wireless communications, which paid
attention to Rayleigh fading, noise, channel attenuation and
CPU cycling. Meanwhile, power consumption of both active
component, e.g., CPU, and passive component, e.g., static
circuit.
Extension of the work [146] was made and the findings were
presented in [148]. Similar to [146], two offloading strate-
gies cooperated with ADMM algorithm had been proposed to
achieve optimal total net revenue. Stochastic geometry meth-
ods also were used in offloading and caching metrics. Differ
from the work [146], deadline constrain in [148] derived from
the probability of orphaning block instead of the expecta-
tion of total delay. The difference between probabilistic and
deterministic constrains was revealed by the experiments in
this work. It showed that with probabilistic constrains in out-
performed deterministic constrains in the net revenue. Token
cost in decision making was considered in the optimization.
This work presented a detailed discussion of the model
performance and the miner’s preference under different deter-
ministic backhaul constraints (γm BH ). The limitation of this
work is that the approach highly depended on nearby network
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
2021
nodes (edge devices), such that the real-world performance
might be impacted by the number of participant nodes.
In Liu et al.’s [149] follow-up investigations, blockchain
offloading strategy was utilized in the video streaming
systems, which enables individual participations. However,
video transcoding is a computation intensive task that needed
to be offloaded to nearby servers. The aim of the offload-
ing was to maximize the average transcoder’s transcoding
profit, which was issued by tokens. Both small cell base sta-
tions and Device-to-Device (D2D) users could be offloaded.
Then they used an ADMM-based algorithm to solve the non-
convex problem in a distributed manner. The blocksize in this
blockchain network dynamically was adapted to achieve the
optimization of proposed task.
Furthermore, investigations [150], [151] focused on the total
reward from the perspective of Mobile Terminals (MT) while
MTs offloaded computational intensive PoW tasks to the Edge
Servers (ES). Fairness between MTs was taken into the con-
sideration. We mainly analyzed the work [150] because it is
the extended version of [151]. Two distributed optimized algo-
rithms were proposed to fit both single ES and multiple ESs
scenarios. The solution vertically divided the non-convex Total
Reward Optimization (TRO) problem into two subtasks: TRO-
sub and TRO-top tasks. TRO-sub was a convex optimization
problem such that it was optimized by bisection-search or
diminish step size in single or multiple ES, respectively. To
optimize the TRO-top, they used a linear-search with small
step to find the best viable interval, which could maximize the
sub-problem in single ES, and randomized search in multiple
ES scenario. Experiment results showed the proposed method
performed better than equal allocation in regarded of the total
reward.
B. Social Welfare-Oriented Offloading
In this section, we focused on auction-based offloading
method to optimize the revenue or social welfare from the
CSP perspective. Auction was a pricing method to dynamically
adjust the price of the resource based on the demand of min-
ers. Thus, cloud surplus resources could be effectively used.
Jiao et al.’s [152] work applied auction mechanism in edge
servers resource allocation and pricing strategy to maximize
the cloud/edge service provider’s social welfare. From the user
perspective, miner experienced two stage valuation in the auc-
tion process. In the first round, miner’s could not know the
total resource amount and the number of winners. The bid
also was called an ex-ante valuation, accorded to the expected
reward. In the next round, miners took auction result into
consideration and derived ex-post valuation. The ex-post valu-
ation was defined as the multiplication of expected reward and
network effect. The network effect in this work was defined
empirically by S-curve function that described the trade-offs
between number of miners, stability of blockchain network and
amount of resource allocated to each miner under the constant
demand model.
From the resource provider’s aspect, optimal algorithm
in [152] was proposed based on received bids to maximize the
social welfare, which defined the difference of sum of ex-post
2022
O FFLOADING FOR P OW P UZZLE
valuations and total cost of CSPs. Winner selection process
used a greedy mechanism in this work to achieve the max-
imum social welfare. After the winner set was determined,
Vickrey-Clarke-Groves (VCG) [157] mechanism assisted the
calculation of payment. Five propositions suggested that the
auction algorithm was truthful, individually rational, compu-
tationally efficient and optimal in maximizing social welfare.
Similarly, ETRA [158] was a three-stage auction model for
maximizing social welfare. The auction process was divided
into potential winner matching, cloudlet - AP matching and
resource allocation steps.
However, the work [152] only considered the constant
demand situation. In the extended work [153], both constant-
demand and multi-demand were considered in designing
miner’s auction scheme. Network effect in [153] was derived
by the curve fitting of the real-world experiment data instead
of empirical assumption to make the function accurate. In
multi-demand bidding, maximizing social welfare was a non-
monotonic submodule maximization problem under knap-
sack constraint. An approximate algorithm was constructed
to obtain sub-optimal welfare for tackling this NP-hard
problem. Two efficient auction schemes named FLRS and
MDB were designed to achieve sub-optimal of social welfare
in multi-demand bidding. Although two achievements [152],
[153] above considered the resource constrain of server
and blockchain network, real communications had not been
assessed (e.g., Rayleigh fading, noise, channel attenuation).
We also noticed that the work [152], [153], [158] dis-
cussed above only considered one service provider social
welfare maximization model. In the real market scenario,
there were multiple service providers to offer PoW offloading.
Therefore, the resource allocation and pricing strategy should
be developed based on double auction mechanism [159],
which took competitions between CSPs into the account.
Li et al. [154] applied an iterative double-sided auction in
the multi-CSP situation, which attained both social efficiency
maximization and privacy preservation were attained. A smart-
contract designed broker was responsible for trading manage-
ment between competitive CSPs and miners. The broker first
collected demands from miners. In each double auction inte-
gration, it extracted the hidden information while preserving
CSPs/users’ privacy, and update bidding, pricing and allocation
strategy to the optimum utility. The broker executed the social
welfare maximization algorithm for achieving high-efficiency
market adoptability.
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
IEEE COMMUNICATIONS SURVEYS & TUTORIALS, VOL. 22, NO. 3, THIRD QUARTER 2020
TABLE VI
C. CSP Profit-Based Offloading
A few aspects need to be considered from the perspective of
CSP, such as energy and cost saving. Qiu et al. [160] empha-
sized that blockchain could not be directly applied in IoT or
other networking environments due to most network nodes
were heavily resource-limited. The work suggested that com-
bining agent mining with cloud mining was a feasible method
to diminish the limitation. Chen et al. [132] pointed out that
computation offloading and blockchain mining needed to con-
sidered in a unified manner. The complexity of the issue was
high when both computation and mining were considered, as
more participants were involved. The work [132] developed a
distributed algorithm (exchanging messages) between network
nodes to reduce the computational complexity.
Moreover, some explorations tried game theory to model
the interaction between selfish service provider and users.
Xiong et al. [161], [162] used a two-stage Stackelberg game
to model the pricing process. Service provider in this game
acted as the leader, where miners were followers in this game.
As a result, provider’s profit was maximized when reached
the equilibrium. In a follow-up study [156], trading between
cloud/fog providers (CFPs) and rational miners also was mod-
eled by two-stage Stackelberg game. During the sub-game in
stage II, miners, e.g., followers, determine their demands to
maximize the resource utility under the price set by providers.
Cloud/fog providers, e.g., leaders, decided their pricing strat-
egy to maximize provider’s profit. These two subgame formed
the two-stage Stackelberg game. Backward induction was
applied to achieve nash equilibrium, which represented the
joint optimization of both CFP’s profit and miner’s resource
utility. In addition, this work took both uniform and discrimi-
natory into the account. Experiment results revealed that profit
of CFPs and resource demand from miners were higher under
discriminatory than uniform pricing.
Luong et al. [155] utilized a deep neural network to do
the monotone transformation, allocation and pricing, in order
to achieve maximum revenue for service provider; however,
this machine learning-based method only considered single
resource unit.
Summary: In this section, we discussed the task offload-
ing and resource allocation to assist mobile users solve PoW
puzzle. We concluded that three objects were concerned to be
optimized during the offloading. Table VI presents a compar-
ison result about the offloading for PoW puzzle, based on our
investigations.
GAI et al.: BLOCKCHAIN MEETS CLOUD COMPUTING: A SURVEY
TABLE VII
C LOUD M INER H ARDWARE (D E .: D ECENTRALIZATION ; F LEX .:
F LEXIBILITY; E.E.: E NERGY E FFICIENCY; H.P.: H ASHPOWER ; U.R.:
U SER ’ S R EVENUE ; H: H IGH ; M: M ODERATE ; L: L OW )
From miner’s perspective, mining and PoW task offloading
strategy were dynamically optimized to achieve miner’s total
revenue. From service provider’s point of view, game theory
was utilized to find the optimal equilibrium point to ensure
maximum provider’s profit. Social welfare, which represented
the total utility in the system, could be maximized by auction
mechanism. Future works in this field includes the evaluation
of trade-offs between social welfare optimization and provider
profit maximization, deep learning technologies in pricing and
auction under multiple service providers.
IX. C LOUD H ARDWARE IN B LOCKCHAIN M INING
Increasing difficulties during the blockchain mining pro-
cess made on-premises deployment of miners expensive and
space-consuming. Due to the development of visualization
technology and parallel computing, cloud could be a flexible,
pay-as-you-go manner with high computation performance. In
this section, we focused on two technical dimensions, latency
or energy costs. Differing from traditional blockchain min-
ing, cloud-based mining had an observable advantage. The
merit was caused by the centralization setting of clouds,
such that both energy saving and efficiency performance
could be improved due to the hardware resource optimization.
Cloud data center’s processing unit’s computation ability fun-
damentally determined its PoW executing efficiency [163].
Therefore, some researches and products aimed to increase
the mining success rate by optimizing the hardware design
and fabrication [164]. The hardware level computational
optimization in cloud data center had gone through four stages:
CPU, GPU, FPGA and ASIC [165], [166]. For example,
Liu et al. [167] proposed a hardware-assisted mechanism for
secret sharing, which scaled up the number of nodes in BFT
protocols. Table VII exhibits a comparison between distinct
hardware aspects.
A. CPU-Based Cloud Mining
Bitcoin’s cartographic mining puzzle was implemented by
SHA256 [143]. In [168], bitcoin mining process was defined
as a constrained input small output problem (CISO). In this
CISO problem, miners aimed to find the available nonce,
Merkle root and time stamp to make H 2 < target. However,
CPU was computational constrained. Mid-state buffer [169]
hashed the initiating information before the nonce creates a
constant hash value, in order to improve the mining efficiency.
Furthermore, nine improvements to speed up the CPU mining
were discussed in [168].
However, recent development of GPU and ASIC miner vio-
lated the Nakamoto’s 1 CPU 1 vote provision. To encourage
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
2023
CPU miners, Litecoin et al. [170] used SCRYPT [171], which
consumed both computational and storage capacity in min-
ing process. Similarly, Ethereum’s PoW mechanism based on
Ethash. In Ethash’s mining process, memory bandwidth was
a major element that effected the mining rate.
B. GPU/FPGA-Based Cloud Mining
CPU was designed as the general processing unit.
Components other than arithmetic logic unit such as regis-
ters and branch prediction units, were redundant in mining.
Therefore, repetitive mining work for CPU was waste of time
and energy. Although SHA256 computation rounds cannot be
paralleled compute, different nonces could be tested simulta-
neously with each other by parallel computation [165]. In GPU
cloud mining center, two elements should be considered.
First, hardware overhead could be minimized. In [169],
an economically GPU based miner was introduced. This
miner used AMD’s 7970 GPU rather than NVidia’s to pro-
vide higher SHA256 computation speed. Besides, to reduce
the GPU overhead, they used 1x PICe slot instead of 8x
and 16x in commercial motherboard. Additionally, low-cost
PCIe converter connected 16x AMD GPU connector and 1x
slot. Therefore, overhead per each GPU was greatly reduced.
Ekbote et al. [172] designed a NVIDIA GPU mining accel-
erator. Authors in this work developed the framework by
CUDA to perform general purpose computing for mining task.
Experiments in this work revealed the prior performance of
GPU compared to CPU in mining task.
Second, powering and cooling system should be carefully
and efficiently designed. Skach [173] designed a thermal time
cooling data center by phase charging materials. Thermal peak
was reduced and natural involvement in cooling can be max-
imized in night. Kampl [174] discussed some recent 2-phase
cooling system for blockchain miners.
Field Programmable Gate Array (FPGA) was flexible and
could be used to accelerate a specific kind of computation
problem, such as mining. Xilinx’s FPGA cannot suffer min-
ing task due to the lack of cooling and computation capability.
Some hackers [175] developed an open source customized
FPGA miner with reduced I/O and RAM component, which
were redundant for mining process.
C. ASIC-Based Mining
Application specific integrated circuit (ASIC) technology
was developed for producing customized integrated circuit
for specific application scenario. Therefore, developing the
ASIC miner could be rewarded due to its optimized design
for finding the hashed value. A relatively low resource cost
could achieve a high hash rate performance. Butterfly Labs
(BFL) [176] launched a ASIC miner based on their FPGA
miner in 2012. This miner was fabricated under 65nm process
with maximum speed 1,500GH/s. In 2013, Avalon et al. [177]
proposed a miner with 110-nm TSMC fabrication. This prod-
uct could reach 66Gh/s with 60W power. Thanks to the
development of transistor fabrication technology, performance
of the ASIC miner promoted exponentially followed the
Moore’s law. Avalon’s latest product AvalonMiner 852 was
2024
C LOUD S TORAGE FOR B LOCKCHAIN
fabricated under 16-nm technology. It could achieve 15TH/s
with 100W/T energy efficiency. By 2019, Bitmain’s [178]
product occupied 70% percent miners in the market. They
firstly proposed 7nm miner. It can achieve 40TH/s with
tolerable energy cost.
Summary: We discussed four different cloud mining hard-
ware generation. CPU-based mining was original approach. It
provided fully decentralization during PoW consensus. GPU
miner, though energy costly, offered high amount of hashrate.
FPGA miner was flexible and optimizable for any mining
protocol. However, FPGA miner’s computing capability was
limited. To tackle this problem, a customized, energy effi-
cient, and hashpower sufficient ASIC miner was designed and
widely used since 2014. Although ASIC miner could take both
speed and efficiency into consideration, it is not as flexible as
FPGA miner. For FPGA miners, when consensus mechanism
changed, FPGA’s logic should be rewritten but the hardware
could remains. However, ASIC’s logic cannot be changed after
tape-out. Therefore, the lifespan of ASIC miner was depend
on the pace of consensus change. In addition, cloud data cen-
ter might not execute homogeneously mining task. Different
mining task cause the ASIC cloud heterogeneity. By using
the FPGA, cloud data center could keep homology. As a
result, trade-offs between cloud data center’s homology and
efficiency is well-worth study in the future.
X. C LOUD S TORAGE AND B LOCKCHAIN
Using cloud storage is an alternative method for reinforc-
ing blockchain systems, from the perspective of mass data
storage, which reduces the restriction caused by the limited
storage space of blocks. The crucial issue is to determine
which data shall be stored in blocks in order to retrieve a
great balance between block size and blockchain function-
ality. Another aspect is that using blockchain techniques to
facilitate secure data sharing, e.g., healthcare [75] and smart
city [179]. Zheng et al. [180] pointed out the potential haz-
ard caused by centralized data storage and demonstrated a
blockchain-based data sharing for securing personal health
data. Another study [181] also addressed medical data shar-
ing and further assessed the performance of blockchain in
enabling multi-party collaborations. Qian et al. [179] com-
pleted a study that demonstrated a secure data exchanging
between different organizations. However, most recent work
concentrated on examining the potential of merging cloud
storage with the existing blockchain techniques. The attempts
were encountering various restrictions, such as multi-chain
collaboration.
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
IEEE COMMUNICATIONS SURVEYS & TUTORIALS, VOL. 22, NO. 3, THIRD QUARTER 2020
TABLE VIII
A. On-Chain Hash Value Storage
Although blockchain was capable of storing temper-resistant
data on-chain, blockchain’s storage capability was limited. For
example, Bitcoin’s block size was only 1MB, which can-
not used to storage large volume of data [36]. Meanwhile,
storing high amount of data on-chain could lead the full
node size of the blockchain network intolerable high to PC
and mobile users. Thus, off-chain [182] storage technology
was introduced to tackle this challenge. CSP could offer
storage-as-a-service as a scalable off chain solution to users.
Guo et al. [183] proposed a two-way-pegged multi-sidechain
approach in order to increase throughput through a novel
multi-sidechain setting. For explicitly presentation, we show
a brief comparison about cloud storage for blockchain in
Table VIII.
Zyskind and Nathan [87] used off-blockchain key value
store in a blockchain-based automatic access control system.
To protect user privacy, user’s data were first encrypted.
Then, these cyphertext routed to the off-blockchain stor-
age system, which was implement by Distributed Hash
Table (DHT) based distributed cloud. Only hash value
of each file saved on the public ledger. By this effort,
user’s data privacy and blockchain system efficiency were
jointly optimized. The further study [88] used off-chain
storage in their secure multi-party computation system
(Enigma).
Similarly, Sun et al. [184] applied off-chain technology
to store high amount of EHR data. In this work, EHR
data address was stored on-chain, while the EHR data were
encrypted and saved in data owner’s off-chain database. The
work introduced attributed based signature to secure data shar-
ing in the off-chain database. During the sharing process,
the data owner firstly signed the EHR data’s address with
his attributes. Then the signed address was stored in the
blockchain transactions. Users verify the data owner’s sig-
nature when retrieving the data. Rifi et al. [185] also stored
hash pointer of each file on-chain. In Rifi’s work, off-chain
database was the widely used Inter Planetary File System
(IPFS).
Following the exploration above, Shafagh et al. [186]
realized secure and reliable access control and key man-
agement for the off-chain storage system with the support
of blockchain. In their work, blockchain acted as a control
layer over the blockchain. Distributed cloud storage used to
tackle the scalability issues of the blockchain system. Alike
work [87], off-chain data stored in distributed cloud server
powered by the DHT technology.
GAI et al.: BLOCKCHAIN MEETS CLOUD COMPUTING: A SURVEY
B. On-Chain Metadata Storage
Works we have discussed above all stored hash pointer
of the file on-chain. While this method could protect the
data from outsider’s temper, the data were lack-of-control
under the threat of malicious insider. To tackle this problem,
Zhu et al. [15] proposed a controllable voting scheme based
on on-chain metadata. This work tackled collude attacks
during the file modification process. In this work, cloud
servers offered storage-as-a-service to user’s file. By this
effort, blockchain storage efficiency was greatly enhanced.
Meanwhile, three kinds of temper-resistant metadata (e.g., vot-
ing record, file changing history, and changed data’s hash
values) were stored on blockchain to make the system secure
and controllable. In this approach, on-chain metadata pro-
vided transparent and traceable history of previously valid and
invalid changes of the document. Therefore, the file revisions
could be conveniently checked by users. Thus, the system was
controllable compared to above works. Trade-off between stor-
age efficiency and data security was optimized by selecting
suitable metadata on-chain. Extensive experiments revealed
the approach was secure, controllable, privacy-preserved, and
unforgeable.
The work [187] applied blockchain to construct a decen-
tralized PingER model. Metadata included merkle roots with
raw data leaves and file off-chain storage locations were stored
on-chain. Raw files offloaded to distributed monitory agents
storage system that constructed by DHT. With the on-chain
metadata, access control and identity verification could be
performed to ensure data security in off-chain storage system.
Summary: In this section, we discussed off-chain solu-
tions to address the blockchain storage limitations. Applying
the off-chain storage benefited blockchain in scalability, stor-
age efficiency and verification speed. As we can see in
the previous literature, trade-off between data security and
blockchain system’s efficiency was a essential problem when
designing the on/off chain system. Storing many types related
metadata could ensure the off-chain data secure and control-
lable. However, high amount of data on-chain could reduce
the blockchain’s scalability and efficiency. Therefore, how
to select suitable data on-chain to tackle both security and
scalability issues could be a rewarded future research direction.
XI. M AIN F INDINGS AND D ISCUSSIONS
A. Main Findings
We explain main findings of this study in a few angles,
which include the similarity, connectivity, and creativity.
Similarity: The primary similarity between two technolo-
gies is that both technologies highly rely on the decentralized/
distributed networking environment. Even though cloud dat-
acenter delivers services in a centralized computing manner,
distributed/ decentralized settings still exist in clouds, such
as distributed multi-tenant, heterogeneous clouds deployment,
and third-party service providers.
We observe that this similarity results in similar technical
attentions. From the perspective of the service, for example,
both technologies address intelligent controls (e.g., resource
allocations) to achieve a higher-level service quality. A smart
contract plays a similar role to a cloud controller. Blockchain
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
2025
and cloud computing also share some service models, such as
BaaS and X-as-a-Service, which facilitates two technologies
into one concept.
Due to characteristics of distributed networks, blockchain
and cloud computing also share similar network-relevant con-
cerns (e.g., security and privacy issues). A few cyber threats in
cloud computing apply to blockchain network, such as identity
leakage and data mining-based attacks, although adversarial
methods maybe distinct. Data recorded in blocks are available
to all authorized users, which implies a possibility of privacy
leakage from mining block data. The situation is similar to
data stored in remote cloud servers. Even for an anonymous
cloud dataset, privacy leakage may take place when a suc-
cessful linkage attack is launched. Both outsider and insider
attacks are threatening two technologies.
In addition, similar to many prior researches in optimiz-
ing efficiency of cloud systems, enhancing performance of
blockchain systems also is a popular research topic. Efforts
have been made for both technologies in architecture improve-
ment, hardware re-design, resource allocation strategy, and
data provenance.
Connectivity: Interconnectivity exists between blockchain
and cloud computing, based on our investigations. First, BaaS
is a service model that derives from cloud computing. Many IT
companies are seeking new markets by offering BaaS service
offerings. Blockchain infrastructure and backend support are
two major parts in most current BaaS models. Second, abun-
dant computing resources in clouds are the supplementation
of blockchain system for enhancing security, strengthening
efficiency, and improving service quality. The supplementary
offerings not only cover software but also address hardware-
relevant supports, such as blockchain-oriented equipment (e.g.,
blockchain-purpose chips). Consensus mechanism plays a vital
role in building up a trustworthy environment for cloud appli-
cations. Finally, with a nature of auto control, smart contract
has a great potential in a wide scope of cloud applications, e.g.,
resource allocation and intelligent manufacturing. We observe
that smart contract is a crucial interconnection point by which
blockchain and cloud resource can be merged.
Creativity: Emerging service models have been introduced
to public in recent years. From the perspective of value chain,
we find that primary creativity of combining blockchain and
clouds derive from value creations, which can be categorized
into two motivations. The first intention is adding values to
the existing system. Blockchain technique is used to solve
the weakness of cloud solutions, such as lack of control and
lower-level trust. Merits of blockchain are considered to be a
supplement of clouds, such that additional values are added to
the existing cloud models. The other creativity route is to cre-
ate new values. Cloud computing provides blockchain system
with resource supply, e.g., infrastructure and software, so that
new service model has been created (BaaS). In practice, BaaS
still is at an early stage and more research is required for fitting
in distinct demands.
B. Discussions
We summarize a few representative challenges and oppor-
tunities in this section.
2026
Challenges: First, BaaS operations in multi-cloud (cloud
federation) need more attempts in various dimensions, such
as architecture, communication, and consensus mechanisms.
As multi-chain technique is insufficiently mature, bridging
up different BaaS service providers still is a challenging
issue. Second, challenges in blockchain-enabled cloud data
provenance are varied. It is still challenge to verify whether
data are used by unexpected parties in a network environ-
ment. It is also hard to decide whether the data in blocks
are actually associated with physical objects, e.g., animals or
hardware. Technical development in other domains is needed.
Third, security of blockchain still is encountering a great
challenge. From blockchain infrastructure to smart contract,
potential threats exist in current blockchain systems from top
to bottom. Even though blockchain can strengthen security
protection, there are many unsolved issues, such as com-
plex network nodes setting, multi-chain environment, hardware
attacks, and privacy leakage. Finally, many performance spec-
ifications of blockchain system have not reached other mature
active systems, e.g., throughput capacity, energy cost, and data
storage.
Research Opportunities: This work focuses on the integra-
tion of blockchain and cloud computing; however, other asso-
ciated technologies shall not be ignored for future updates and
research. We observe that future integration may have a higher-
level coverage that combines multiple network-related tech-
nologies, based on our investigation on prior studies in other
manners of integrations, e.g., software-defined network [188],
IoT [189], and cloud radio access network [190]. In addi-
tion, perfecting BaaS service model will become an attractive
research topic in both academia and the industry. Besides
infrastructure and backend, more service offerings (e.g., AI-
related services or access control) are needed to meet different
demands. Moreover, customized data provenance and object
tracing services will turn into a great domain in practice.
Solving the issue of attaching physical objects to network
nodes or data may lead an industrial transform. Furthermore,
research on security and privacy issues in blockchain is an
unavoidable topic. Future work needs to pay attention to both
blockchain-related attacks (e.g., attacks at smart contract) and
emerging threats to blockchain-cloud systems. Finally, high
performance is still a keyword in the domain of blockchain-
cloud in the foreseeable future. Both software and hardware
need to be improved in order to deal with complex or
heavy-workload environments.
XII. C ONCLUSION
This work addresses a few technical dimensions for reengi-
neering of cloud computing by using blockchain technology.
Three technical dimensions are involved in the work, namely,
service, security, and performance. To be specific, this sur-
vey explains contemporary explorations in blockchain-enabled
reengineering of cloud datacenter through following aspects,
including BaaS service model, blockchain-enabled cloud
access control, blockchain-enabled cloud data provenance,
blockchain-based cloud searchable encryptions, blockchain-
based cloud data deduplications, smart contract-based cloud
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
IEEE COMMUNICATIONS SURVEYS & TUTORIALS, VOL. 22, NO. 3, THIRD QUARTER 2020
applications, blockchain-powered offloading, blockchain hard-
ware development, and blockchain-related cloud storage. Main
findings of this work provide future work with a theoretical
reference in the field of blockchain-enabled reengineering of
cloud datacenter.
R EFERENCES
[1] L. D. Xu and W. Viriyasitavat, “Application of blockchain in collab-
orative Internet-of-Things services,” IEEE Trans. Comput. Soc. Syst.,
vol. 6, no. 6, pp. 1295–1305, Dec. 2019.
[2] T. Aste, P. Tasca, and T. D. Matteo, “Blockchain technologies: The
foreseeable impact on society and industry,” Computer, vol. 50, no. 9,
pp. 18–28, 2017.
[3] A. Dorri, M. Steger, S. Kanhere, and R. Jurdak, “Blockchain: A dis-
tributed solution to automotive security and privacy,” IEEE Commun.
Mag., vol. 55, no. 12, pp. 119–125, Dec. 2017.
[4] H. Zhou, X. Ouyang, Z. Ren, J. Su, C. de Laat, and Z. Zhao, “A
blockchain based witness model for trustworthy cloud service level
agreement enforcement,” in Proc. IEEE Conf. Comput. Commun., 2019,
pp. 1567–1575.
[5] K. Gai, K. Choo, and L. Zhu, “Blockchain-enabled reengineering of
cloud datacenters,” IEEE Cloud Comput., vol. 5, no. 6, pp. 21–25,
Nov./Dec. 2018.
[6] B. Chen, Z. Tan, and W. Fang, “Blockchain-based implementation for
financial product management,” in Proc. IEEE 28th Int. Telecommun.
Netw. Appl. Conf., 2018, pp. 1–3.
[7] A. Hari and T. Lakshman, “The Internet blockchain: A distributed,
tamper-resistant transaction framework for the Internet,” in Proc. 15th
ACM Workshop Hot Topics Netw., 2016, pp. 204–210.
[8] F. S. Hardwick, R. N. Akram, and K. Markantonakis, “Fair and
transparent blockchain based tendering framework—A step towards
open governance,” in Proc. 17th IEEE Int. Conf. TrustCom, 2018,
pp. 1342–1347.
[9] N. Fabiano, “Internet of Things and blockchain: Legal issues and pri-
vacy. The challenge for a privacy standard,” in Proc. IEEE Int. Conf.
IoT, 2017, pp. 727–734.
[10] W. Meng, E. Tischhauser, Q. Wang, Y. Wang, and J. Han, “When intru-
sion detection meets blockchain technology: A review,” IEEE Access,
vol. 6, pp. 10179–10188, 2018.
[11] K. Biswas and V. Muthukkumarasamy, “Securing smart cities using
blockchain technology,” in Proc. IEEE 18th Int. Conf. HPCC, 2016,
pp. 1392–1393.
[12] R. Cole, M. Stevenson, and J. Aitken, “Blockchain technology:
Implications for operations and supply chain management,” Int. J.
Supply Chain Manag., vol. 24, no. 4, pp. 469–483, 2019.
[13] K. Gai, Y. Wu, L. Zhu, M. Qiu, and M. Shen, “Privacy-preserving
energy trading using consortium blockchain in smart grid,” IEEE Trans.
Ind. Informat., vol. 15, no. 6, pp. 3548–3558, Jun. 2019.
[14] I. Eyal, A. Gencer, E. Sirer, and R. V. Renesse, “Bitcoin-NG: A scalable
blockchain protocol,” in Proc. 13th USENIX Symp. Netw. Syst. Design
Implement., 2016, pp. 45–59.
[15] L. Zhu, Y. Wu, K. Gai, and K.-K. R. Choo, “Controllable and trustwor-
thy blockchain-based cloud data management,” Future Gener. Comput.
Syst., vol. 91, pp. 527–535, Feb. 2019.
[16] E. Heilman, F. Baldimtsi, and S. Goldberg, “Blindly signed contracts:
Anonymous on-blockchain and off-blockchain bitcoin transactions,” in
Proc. Int. Conf. Financ. Cryptography Workshops, 2016, pp. 43–60.
[17] N. Herbaut and N. Negru, “A model for collaborative blockchain-based
video delivery relying on advanced network services chains,” IEEE
Commun. Mag., vol. 55, no. 9, pp. 70–76, Sep. 2017.
[18] D. Qin, C. Wang, and Y. Jiang, “RPchain: A blockchain-based aca-
demic social networking service for credible reputation building,” in
Proc. Int. Conf. Blockchain, 2018, pp. 183–198.
[19] Y. Xu, G. Wang, J. Yang, J. Ren, Y. Zhang, and C. Zhang, “Towards
secure network computing services for lightweight clients using
blockchain,” Wireless Commun. Mobile Comput., vol. 2018, p. 12,
Nov. 2018.
[20] F. Tschorsch and B. Scheuermann, “Bitcoin and beyond: A technical
survey on decentralized digital currencies,” IEEE Commun. Surveys
Tuts., vol. 18, no. 3, pp. 2084–2123, 3rd Quart., 2016.
[21] M. C. K. Khalilov and A. Levi, “A survey on anonymity and privacy
in bitcoin-like digital cash systems,” IEEE Commun. Surveys Tuts.,
vol. 20, no. 3, pp. 2543–2585, 3rd Quart., 2018.
GAI et al.: BLOCKCHAIN MEETS CLOUD COMPUTING: A SURVEY
[22] M. Conti, E. S. Kumar, C. Lal, and S. Ruj, “A survey on security and
privacy issues of bitcoin,” IEEE Commun. Surveys Tuts., vol. 20, no. 4,
pp. 3416–3452, 4th Quart., 2018.
[23] X. Li, P. Jiang, T. Chen, X. Luo, and Q. Wen, “A survey on the secu-
rity of blockchain systems,” Future Gener. Comput. Syst., vol. 107,
pp. 841–853, Jun. 2020.
[24] T. Salman, M. Zolanvari, A. Erbad, R. Jain, and M. Samaka,
“Security services using blockchains: A state of the art survey,” IEEE
Commun. Surveys Tuts., vol. 21, no. 1, pp. 858–880, 1st Quart.,
2019.
[25] Q. Feng, D. He, S. Zeadally, M. Khan, and N. Kumar, “A survey
on privacy protection in blockchain system,” J. Netw. Comput. Appl.,
vol. 126, pp. 45–58, Jan. 2019.
[26] R. Yang, F. R. Yu, P. Si, Z. Yang, and Y. Zhang, “Integrated blockchain
and edge computing systems: A survey, some research issues and chal-
lenges,” IEEE Commun. Surveys Tuts., vol. 21, no. 2, pp. 1508–1532,
2nd Quart., 2019.
[27] M. Ali, M. Vecchio, M. Pincheira, K. Dolui, F. Antonelli, and
M. Rehmani, “Applications of blockchains in the Internet of Things: A
comprehensive survey,” IEEE Commun. Surveys Tuts., vol. 21, no. 2,
pp. 1676–1717, 2nd Quart., 2018.
[28] H.-N. Dai, Z. Zheng, and Y. Zhang, “Blockchain for Internet of Things:
A survey,” IEEE Internet Things J., vol. 6, no. 5, pp. 8076–8094,
Oct. 2019.
[29] J. Xie et al., “A survey of blockchain technology applied to smart
cities: Research issues and challenges,” IEEE Commun. Surveys Tuts.,
vol. 21, no. 3, pp. 2794–2830, 3rd Quart., 2019.
[30] M. Samaniego and R. Deters, “Blockchain as a service for
IoT: Cloud versus fog,” in Proc. IEEE Int. Conf. IoT, 2016,
pp. 433–436.
[31] W. Viriyasitavat, D. Li, Z. Bi, and A. Sapsomboon, “New blockchain-
based architecture for service interoperations in Internet of Things,”
IEEE Trans. Comput. Soc. Syst., vol. 6, no. 4, pp. 739–748, Aug. 2019.
[32] Y. Chen, J. Gu, S. Chen, S. Huang, and X. S. Wang, “A full-spectrum
blockchain-as-a-service for business collaboration,” in Proc. IEEE Int.
Conf. Web Services, 2019, pp. 219–223.
[33] Q. Lu, X. Xu, Y. Liu, I. Weber, L. Zhu, and W. Zhang, “uBaaS: A
unified blockchain as a service platform,” Future Gener. Comput. Syst.,
vol. 101, pp. 564–575, Dec. 2019.
[34] W. Zheng, Z. Zheng, X. Chen, K. Dai, P. Li, and R. Chen,
“NutBaaS: A blockchain-as-a-service platform,” IEEE Access, vol. 7,
pp. 134422–134433, 2019.
[35] A. Azaria, A. Ekblaw, T. Vieira, and A. Lippman, “MedRec: Using
blockchain for medical data access and permission management,” in
Proc. IEEE 2nd Int. Conf. Open Big Data, 2016, pp. 25–30.
[36] C. Esposito, A. D. Santis, G. Tortora, H. Chang, and K. Choo,
“Blockchain: A panacea for healthcare cloud-based data security
and privacy?” IEEE Cloud Comput., vol. 5, no. 1, pp. 31–37,
Jan./Feb. 2018.
[37] X. Liu et al., “Adaptive data and verified message disjoint security rout-
ing for gathering big data in energy harvesting networks,” J. Parallel
Distrib. Comput., vol. 135, pp. 140–155, Jan. 2020.
[38] J. Singh and J. D. Michels, “Blockchain as a service (BaaS): Providers
and trust,” in Proc. IEEE Eur. Symp. Security Privacy Workshops, 2018,
pp. 67–74.
[39] IBM. (2019). IBM Developer: Blockchain. [Online]. Available:
https://developer.ibm.com/technologies/blockchain/
[40] Oracle. (2019). Oracle Blockchain Blog. [Online]. Available:
https://blogs.oracle.com/blockchain/blockchain-use-cases
[41] Microsoft. (2019). Microsoft Azure. [Online]. Available: https://azure.
microsoft.com
[42] Amazon. (2019). Blockchain on AWS. [Online]. Available: https://
amazonaws-china.com/cn/blockchain
[43] IBM. (2019). IBM Blockchain. [Online]. Available: https://www.ibm.
com/cloud-computing/cn/zh/newplatform/blockchain/offerings
[44] M. Samaniego and R. Deters, “Using blockchain to push software-
defined IoT components onto edge hosts,” in Proc. ACM Int. Conf.
BDAWT, 2016, p. 58.
[45] A. E. Kosba, A. Miller, E. Shi, Z. Wen, and C. Papamanthou, “HAWK:
The blockchain model of cryptography and privacy-preserving smart
contracts,” in Proc. IEEE Symp. S&P, 2016, pp. 839–858.
[46] C. Melo et al., “Dependability evaluation of a blockchain-as-a-
service environment,” in Proc. IEEE Symp. Comput. Communi., 2018,
pp. 909–914.
[47] J. Lee, “BIDaaS: Blockchain based ID as a service,” IEEE Access,
vol. 6, pp. 2274–2278, 2017.
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
2027
[48] Y. Xu, J. Ren, Y. Zhang, C. Zhang, B. Shen, and Y. Zhang, “Blockchain
empowered arbitrable data auditing scheme for network storage as a
service,” IEEE Trans. Services Comput., vol. 13, no. 2, pp. 289–300,
Mar./Apr. 2020.
[49] H. Chen and L. Zhang, “FBaaS: Functional blockchain as a service,”
in Proc. Int. Conf. Blockchain, 2018, pp. 243–250.
[50] Q. Lu, X. Xu, Y. Liu, and W. Zhang, “Design pattern as a ser-
vice for blockchain applications,” in Proc. IEEE Int. Conf. Data Min.
Workshops, 2018, pp. 128–135.
[51] H. Zhang, E. Deng, H. Zhu, and Z. Cao, “Smart contract for secure
billing in ride-hailing service via blockchain,” Peer-to-Peer Netw. Appl.,
vol. 12, no. 5, pp. 1346–1357, 2019.
[52] A. Karinsalo and K. Halunen, “Smart contracts for a mobility-
as-a-service ecosystem,” in Proc. IEEE Int. Conf. QRS-C, 2018,
pp. 135–138.
[53] P. J. Marandi, C. Gkantsidis, F. Junqueira, and D. Narayanan, “Filo:
Consolidated consensus as a cloud service,” in Proc. USENIX Annu.
Technol. Conf., Denver, CO, USA, 2016, pp. 237–249.
[54] G. Kumar, R. Saha, M. K. Rai, R. Thomas, and T.-H. Kim, “Proof-of-
work consensus approach in blockchain technology for cloud and fog
computing using maximization-factorization statistics,” IEEE Internet
Things J., vol. 6, no. 4, pp. 6835–6842, Aug. 2019.
[55] Z. Zhou, B. Wang, M. Dong, and K. Ota, “Secure and efficient
vehicle-to-grid energy trading in cyber physical systems: Integration
of blockchain and edge computing,” IEEE Trans. Syst., Man, Cybern.,
Syst., vol. 50, no. 1, pp. 43–57, Jan. 2020.
[56] D. Reinsel, J. Gantz, and J. Rydning, “The digitization of the world:
From edge to core,” Int. Data Corporat., Framingham, MA, USA,
White Paper, 2018.
[57] M. Westerkamp, F. Victor, and A. Kupper, “Tracing manufactur-
ing processes using blockchain-based token compositions,” Digit.
Commun. Netw., to be published.
[58] X. Liang, S. Shetty, D. K. Tosh, C. A. Kamhoua, K. A. Kwiat, and
L. Njilla, “ProvChain: A blockchain-based data provenance architec-
ture in cloud environment with enhanced privacy and availability,” in
Proc. 17th IEEE/ACM Int. Symp. Cluster Cloud Grid Comput., 2017,
pp. 468–477.
[59] A. Ramachandran and M. Kantarcioglu, “SmartProvenance: A dis-
tributed, blockchain based dataprovenance system,” in Proc. 8th ACM
Conf. Data Appl. Security Privacy, 2018, pp. 35–42.
[60] Q. Xia, E. Sifah, K. Asamoah, J. Gao, X. Du, and M. Guizani,
“MedShare: Trust-less medical data sharing among cloud service
providers via blockchain,” IEEE Access, vol. 5, pp. 14757–14767,
2017.
[61] J. Gao et al., “GridMonitoring: Secured sovereign blockchain based
monitoring on smart grid,” IEEE Access, vol. 6, pp. 9917–9925, 2018.
[62] R. Neisse, G. Steri, and I. Nai-Fovino, “A blockchain-based approach
for data accountability and provenance tracking,” in Proc. ACM 12th
Int. Conf. Availability Rel. Secuity, 2017, p. 14.
[63] A. Al-Mamun, T. Li, M. Sadoghi, and D. Zhao, “In-memory
blockchain: Toward efficient and trustworthy data provenance for HPC
systems,” in Proc. IEEE Int. Conf. Big Data, 2018, pp. 3808–3813.
[64] D. K. Tosh, S. Shetty, X. Liang, C. A. Kamhoua, and
L. Njilla, “Consensus protocols for blockchain-based data provenance:
Challenges and opportunities,” in Proc. IEEE 8th Annu. Ubiquitous
Comput. Electron. Mobile Commun. Conf., 2017, pp. 469–474.
[65] A. Maw, S. Adepu, and A. Mathur, “ICS-BlockOpS: Blockchain for
operational data security in industrial control system,” Pervasive Mobile
Comput., vol. 59, Oct. 2019, Art. no. 101048.
[66] W. Oliveira, D. Oliveira, and V. Braganholo, “Provenance analytics for
workflow-based computational experiments: A survey,” ACM Comput.
Surveys, vol. 51, no. 3, p. 53, 2018.
[67] M. Interlandi et al., “Titian: Data provenance support in spark,” Proc.
VLDB Endow., vol. 9, no. 3, pp. 216–227, 2015.
[68] P. Buneman and W. Tan, “Data provenance: What next?” ACM
SIGMOD Rec., vol. 47, no. 3, pp. 5–16, 2019.
[69] F. Zafar et al., “Trustworthy data: A survey, taxonomy and future
trends of secure provenance schemes,” J. Netw. Comput. Appl., vol. 94,
pp. 50–68, Sep. 2017.
[70] Z. Xiao and Y. Xiao, “Security and privacy in cloud computing,” IEEE
Commun. Surveys Tuts., vol. 15, no. 2, pp. 843–859, 2nd Quart., 2013.
[71] P. Ivie and D. Thain, “Reproducibility in scientific computing,” ACM
Comput. Surveys, vol. 51, no. 3, p. 63, 2018.
[72] S. Zawoad, R. Hasan, and K. Islam, “SECProv: Trustworthy and effi-
cient provenance management in the cloud,” in Proc. IEEE Conf.
Comput. Commun., 2018, pp. 1241–1249.
2028 IEEE COMMUNICATIONS SURVEYS & TUTORIALS, VOL. 22, NO. 3, THIRD QUARTER 2020
[73] S. Ali, J. Wang, M. Bhuiyan, and H. Jiang, “Secure data provenance
in cloud-centric Internet of Things via blockchain smart contracts,” in
Proc. IEEE SmartWorld, 2018, pp. 991–998.
[74] M. Reddy and M. Seltzer, “Provenance as first class cloud data,” ACM
SIGOPS Oper. Syst. Rev., vol. 43, no. 4, pp. 11–16, 2010.
[75] T. McGhin, K. Choo, C. Liu, and D. He, “Blockchain in healthcare
applications: Research challenges and opportunities,” J. Netw. Comput.
Appl., vol. 135, pp. 62–75, Jun. 2019.
[76] K. Gai, Y. Wu, L. Zhu, Z. Zhang, and M. Qiu, “Differential privacy-
based blockchain for industrial Internet of Things,” IEEE Trans. Ind.
Informat., vol. 16, no. 6, pp. 4156–4165, Jun. 2020.
[77] G. Liang, S. R. Weller, F. Luo, J. Zhao, and Z. Y. Dong, “Distributed
blockchain-based data protection framework for modern power systems
against cyber attacks,” IEEE Trans. Smart Grid, vol. 10, no. 3,
pp. 3162–3173, May 2019.
[78] Y.-J. Chen, L.-C. Wang, and S. Wang, “Stochastic blockchain for IoT
data integrity,” IEEE Trans. Netw. Sci. Eng., vol. 7, no. 1, pp. 373–384,
Jan.–Mar. 2020.
[79] J. Lopez and J. Rubio, “Access control for cyber-physical systems
interconnected to the cloud,” Comput. Netw., vol. 134, pp. 46–54,
Apr. 2018.
[80] M. Qiu, K. Gai, B. Thuraisingham, L. Tao, and H. Zhao, “Proactive
user-centric secure data scheme using attribute-based semantic access
controls for mobile clouds in financial industry,” Future Gener. Comput.
Syst., vol. 80, pp. 421–429, Mar. 2018.
[81] S. Rane and A. Dixit, “BlockSLaaS: Blockchain assisted secure
logging-as-a-service for cloud forensics,” in Proc. Int. Conf. Security
Privacy, 2019, pp. 77–88.
[82] Y. Zhang, S. Kasahara, Y. Shen, X. Jiang, and J. Wan, “Smart contract-
based access control for the Internet of Things,” IEEE Internet Things
J., vol. 6, no. 2, pp. 1594–1605, Apr. 2019.
[83] S. Rouhani and R. Deters, “Blockchain based access control
systems: State of the art and challenges,” 2019. [Online]. Available:
arXiv:1908.08503.
[84] I. Sukhodolskiy and S. Zapechnikov, “A blockchain-based access
control system for cloud storage,” in Proc. IEEE EIConRus, 2018,
pp. 1575–1578.
[85] S. Wang, X. Wang, and Y. Zhang, “A secure cloud storage frame-
work with access control based on blockchain,” IEEE Access, vol. 7,
pp. 112713–112725, 2019.
[86] D. Nguyen, P. Pathirana, M. Ding, and A. Seneviratne, “Blockchain for
secure EHRs sharing of mobile cloud based e-health systems,” IEEE
Access, vol. 7, pp. 66792–66806, 2019.
[87] G. Zyskind and O. Nathan, “Decentralizing privacy: Using blockchain
to protect personal data,” in Proc. IEEE Security Privacy Workshops,
2015, pp. 180–184.
[88] G. Zyskind, O. Nathan, and A. Pentland, “Enigma: Decentralized com-
putation platform with guaranteed privacy,” 2015. [Online]. Available:
arXiv:1506.03471.
[89] D. Nguyen, J. Park, and R. Sandhu, “Dependency path patterns as the
foundation of access control in provenance-aware systems,” in Proc.
Workshop Theory Practice Provenance (TaPP), 2012, pp. 1–4.
[90] Q. Xia, E. Sifah, A. Smahi, S. Amofa, and X. Zhang, “BBDS:
Blockchain-based data sharing for electronic medical records in cloud
environments,” Information, vol. 8, no. 2, p. 44, 2017.
[91] M. Rahman et al., “Blockchain-based mobile edge computing
framework for secure therapy applications,” IEEE Access, vol. 6,
pp. 72469–72478, 2018.
[92] A. Ouaddah, A. A. Elkalam, and A. A. Ouahman, “FairAccess: A new
blockchain-based access control framework for the Internet of Things,”
Security Commun. Netw., vol. 9, no. 18, pp. 5943–5964, 2016.
[93] O. Novo, “Blockchain meets IoT: An architecture for scalable
access management in IoT,” IEEE Internet Things J., vol. 5, no. 2,
pp. 1184–1195, Apr. 2018.
[94] S. Wang, Y. Zhang, and Y. Zhang, “A blockchain-based framework for
data sharing with fine-grained access control in decentralized storage
systems,” IEEE Access, vol. 6, pp. 38437–38450, 2018.
[95] M. S. Ferdous, A. Margheri, F. Paci, M. Yang, and V. Sassone,
“Decentralised runtime monitoring for access control systems in cloud
federations,” in Proc. IEEE 37th Int. Conf. Distrib. Comput. Syst., 2017,
pp. 2632–2633.
[96] S. Alansari, F. Paci, and V. Sassone, “A distributed access control
system for cloud federations,” in Proc. IEEE 37th Int. Conf. Distrib.
Comput. Syst., 2017, pp. 2131–2136.
[97] F. Schiavo, V. Sassone, L. Nicoletti, and A. Margheri, FaaS:
Federation-as-a-Service: The SUNFISH Cloud Federation Solution.
Cham, Switzerland: Springer Int., 2021.
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
[98] D. Song, D. Wagner, and A. Perrig, “Practical techniques for searches
on encrypted data,” in Proc. IEEE Symp. Security Privacy (S&P), 2000,
pp. 44–55.
[99] D. Boneh, G. D. Crescenzo, R. Ostrovsky, and G. Persiano, “Public
key encryption with keyword search,” in Proc. Annu. Int. Conf. Theor.
Appl. Cryptol. Techn., 2004, pp. 506–522.
[100] P. Golle, J. Staddon, and B. Waters, “Secure conjunctive keyword
search over encrypted data,” in Proc. Int. Conf. Appl. Cryptography
Netw. Security, 2004, pp. 31–45.
[101] J. Li, Q. Wang, C. Wang, N. Cao, K. Ren, and W. Lou, “Fuzzy key-
word search over encrypted data in cloud computing,” in Proc. IEEE
INFOCOM, 2010, pp. 1–5.
[102] G. Poh, J. Chin, W. Yau, K. Choo, and S. M. Mohamad, “Searchable
symmetric encryption: Designs and challenges,” ACM Comput.
Surveys, vol. 50, no. 3, p. 40, 2017.
[103] X. Chen, J. Li, X. Huang, J. Ma, and W. Lou, “New publicly veri-
fiable databases with efficient updates,” IEEE Trans. Depend. Secure
Comput., vol. 12, no. 5, pp. 546–556, Sep./Oct. 2015.
[104] Z. Fu, J. Shu, X. Sun, and N. Linge, “Smart cloud search services:
Verifiable keyword-based semantic search over encrypted cloud data,”
IEEE Trans. Consum. Electron., vol. 60, no. 4, pp. 762–770, Nov. 2014.
[105] R. Cheng, J. Yan, C. Guan, F. Zhang, and K. Ren, “Verifiable search-
able symmetric encryption from indistinguishability obfuscation,” in
Proc. 10th ACM Symp. ICCS, 2015, pp. 621–626.
[106] L. Chen, W.-K. Lee, C.-C. Chang, K.-K. R. Choo, and N. Zhang,
“Blockchain based searchable encryption for electronic health record
sharing,” Future Gener. Comput. Syst., vol. 95, pp. 420–429, Jun. 2019.
[107] Y. Zhang, C. Xu, J. Ni, H. Li, and X. S. Shen, “Blockchain-assisted
public-key encryption with keyword search against keyword guessing
attacks for cloud storage,” IEEE Trans. Cloud Comput., early access,
Jun. 17, 2019, doi: 10.1109/TCC.2019.2923222.
[108] J. Niu, X. Li, J. Gao, and Y. Han, “Blockchain-based anti-key-leakage
key aggregation searchable encryption for IoT,” IEEE Internet Things
J., vol. 7, no. 2, pp. 1502–1518, Feb. 2020.
[109] P. Jiang, F. Guo, K. Liang, J. Lai, and Q. Wen, “Searchain: Blockchain-
based private keyword search in decentralized storage,” Future Gener.
Comput. Syst., vol. 107, pp. 781–792, Jun. 2020.
[110] Y. Zhang, R. Deng, X. Liu, and D. Zheng, “Outsourcing service
fair payment based on blockchain and its applications in cloud com-
puting,” IEEE Trans. Services Comput., early access, Aug. 7, 2019,
doi: 10.1109/TSC.2018.2864191.
[111] Y. Zhang, R. H. Deng, J. Shu, K. Yang, and D. Zheng, “TKSE:
Trustworthy keyword search over encrypted data with two-side ver-
ifiability via blockchain,” IEEE Access, vol. 6, pp. 31077–31087,
2018.
[112] C. Cai, X. Yuan, and C. Wang, “Towards trustworthy and private key-
word search in encrypted decentralized storage,” in Proc. IEEE Int.
Conf. Commun., 2017, pp. 1–7.
[113] S. Hu, C. Cai, Q. Wang, C. Wang, X. Luo, and K. Ren, “Searching
an encrypted cloud meets blockchain: A decentralized, reliable and
fair realization,” in Proc. IEEE Conf. Comput. Commun., 2018,
pp. 792–800.
[114] A. Zhang and X. Lin, “Towards secure and privacy-preserving data
sharing in e-health systems via consortium blockchain,” J. Med. Syst.,
vol. 42, no. 8, p. 140, 2018.
[115] F. Han, J. Qin, and J. Hu, “Secure searches in the cloud: A survey,”
Future Gener. Comput. Syst., vol. 62, pp. 66–75, Sep. 2016.
[116] A. Choudhuri et al., “Fairness in an unfair world: Fair multiparty com-
putation from public bulletin boards,” in Proc. ACM SIGSAC Conf.
CCS, 2017, pp. 719–728.
[117] L. Luu, J. Teutsch, R. Kulkarni, and P. Saxena, “Demystifying incen-
tives in the consensus computer,” in Proc. 22nd ACM SIGSAC Conf.
CCS, 2015, pp. 706–719.
[118] IDC. (May 2020). IDC IVIEW: The Digital Universe DecadeŰAre
You Ready? [Online]. Available: https://group47.com/The_Digital_
Universe_Decade-Are_You_Ready.pdf
[119] Y. Shin, D. Koog, and J. Hur, “A survey of secure data deduplication
schemes for cloud storage systems,” ACM Comput. Surveys, vol. 49,
no. 4, p. 74, 2017.
[120] J. Douceur, A. Adya, W. Bolosky, P. Simon, and M. Theimer,
“Reclaiming space from duplicate files in a serverless distributed file
system,” in Proc. IEEE 22nd Int. Conf. DCS, 2002, pp. 617–624.
[121] M. Bellare, S. Keelveedhi, and T. Ristenpart, “Message-locked encryp-
tion and secure deduplication,” in Proc. Annu. Int. Conf. Theor. Appl.
Cryptol. Techn., 2013, pp. 296–312.
GAI et al.: BLOCKCHAIN MEETS CLOUD COMPUTING: A SURVEY
[122] S. Keelveedhi, M. Bellare, and T. Ristenpart, “DupLess: Server-aided
encryption for deduplicated storage,” presented at the 22nd USENIX
Security Symp., 2013, pp. 179–194.
[123] D. Harnik, B. Pinkas, and A. Shulman-Peleg, “Side channels in cloud
services: Deduplication in cloud storage,” IEEE Security Privacy,
vol. 8, no. 6, pp. 40–47, 2010.
[124] J. Yuan and S. Yu, “Secure and constant cost public cloud storage audit-
ing with deduplication,” in Proc. IEEE Conf. Commun. Netw. Security,
2013, pp. 145–153.
[125] Y. Li et al., “CloudShare: Towards a cost-efficient and privacy-
preserving alliance cloud using permissioned blockchains,” in Proc.
Int. Conf. Mobile Netw. Manag., 2017, pp. 339–352.
[126] H. Liu, Y. Zhang, and T. Yang, “Blockchain-enabled security in elec-
tric vehicles cloud and edge computing,” IEEE Netw., vol. 32, no. 3,
pp. 78–83, May/Jun. 2018.
[127] J. Li, J. Wu, L. Chen, and J. Li, “Deduplication with blockchain
for secure cloud storage,” in Proc. CCF Conf. Big Data, 2018,
pp. 558–570.
[128] C. H. Liu, Q. Lin, and S. Wen, “Blockchain-enabled data collection
and sharing for industrial IoT with deep reinforcement learning,” IEEE
Trans. Ind. Informat., vol. 15, no. 6, pp. 3516–3526, Jun. 2019.
[129] K. Gai, M. Qiu, H. Zhao, L. Tao, and Z. Zong, “Dynamic energy-aware
cloudlet-based mobile cloud computing model for green computing,”
J. Netw. Comput. Appl., vol. 59, pp. 46–54, Jan. 2016.
[130] K. Gai, M. Qiu, and H. Zhao, “Energy-aware task assignment for
mobile cyber-enabled applications in heterogeneous cloud computing,”
J. Parallel Distrib. Comput., vol. 111, pp. 126–135, Jan. 2018.
[131] X. Qiu, L. Liu, W. Chen, Z. Hong, and Z. Zheng, “Online deep
reinforcement learning for computation offloading in blockchain-
empowered mobile edge computing,” IEEE Trans. Veh. Technol.,
vol. 68, no. 8, pp. 8050–8062, Aug. 2019.
[132] W. Chen et al., “Cooperative and distributed computation offloading
for blockchain-empowered industrial Internet of Things,” IEEE Internet
Things J., vol. 6, no. 5, pp. 8433–8446, Oct. 2019.
[133] Z. Zhang, Z. Hong, W. Chen, Z. Zheng, and X. Chen, “Joint compu-
tation offloading and coin loaning for blockchain-empowered mobile-
edge computing,” IEEE Internet Things J., vol. 6, no. 6, pp. 9934–9950,
Dec. 2019.
[134] J. Xu, K. Ota, M. Dong, A. Liu, and Q. Li, “SIoTFog: Byzantine-
resilient IoT fog networking,” Front. Inf. Technol. Electron. Eng.,
vol. 19, no. 12, pp. 1546–1557, 2018.
[135] Z. Zhan, X. Liu, Y. Gong, J. Zhang, H. Chung, and Y. Li, “Cloud
computing resource scheduling and a survey of its evolutionary
approaches,” ACM Comput. Surveys, vol. 47, no. 4, p. 63, 2015.
[136] S. Kumar and P. Balasubramanie, “Dynamic scheduling for cloud reli-
ability using transportation problem,” J. Comput. Sci., vol. 8, no. 10,
pp. 1615–1626, 2012.
[137] Y.-L. Li, Z.-H. Zhan, Y.-J. Gong, W.-N. Chen, J. Zhang, and Y. Li,
“Differential evolution with an evolution path: A DEEP evolution-
ary algorithm,” IEEE Trans. Cybern., vol. 45, no. 9, pp. 1798–1810,
Sep. 2015.
[138] B. Ghosh, S. Addya, A. Satpathy, S. Ghosh, and S. Chakraborty,
“Towards a democratic federation for infrastructure service provision-
ing,” in Proc. IEEE Int. Conf. SCC, 2019, pp. 162–166.
[139] M. Yang, A. Margheri, R. Hu, and V. Sassone, “Differentially pri-
vate data sharing in a cloud federation with blockchain,” IEEE Cloud
Comput., vol. 5, no. 6, pp. 69–79, Nov./Dec. 2018.
[140] D. Chatzopoulos, M. Ahmadi, S. Kosta, and P. Hui, “FlopCoin: A cryp-
tocurrency for computation offloading,” IEEE Trans. Mobile Comput.,
vol. 17, no. 5, pp. 1062–1075, May 2018.
[141] C. Xu, K. Wang, and M. Guo, “Intelligent resource management in
blockchain-based cloud datacenters,” IEEE Cloud Comput., vol. 4,
no. 6, pp. 50–59, Nov./Dec. 2017.
[142] Y. Zhang, R. Deng, X. Liu, and D. Zheng, “Blockchain based efficient
and robust fair payment for outsourcing services in cloud computing,”
Inf. Sci., vol. 462, pp. 262–277, Sep. 2018.
[143] S. Nakamoto. (2008). Bitcoin: A Peer-to-Peer Electronic Cash System.
[Online]. Available: http://www.bitcoin.org/bitcoin.pdf
[144] K. Gai, Y. Wu, L. Zhu, L. Xu, and Y. Zhang, “Permissioned
blockchain and edge computing empowered privacy-preserving smart
grid networks,” IEEE Internet Things J., vol. 6, no. 5, pp. 7992–8004,
Oct. 2019.
[145] G. Ramezan and C. Leung, “A blockchain-based contractual routing
protocol for the Internet of Things using smart contracts,” Wireless
Commun. Mobile Comput., vol. 2018, p. 14, Nov. 2018.
Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.
2029
[146] M. Liu, F. Yu, Y. Teng, V. Leung, and M. Song, “Joint computation
offloading and content caching for wireless blockchain networks,” in
Proc. IEEE INFOCOM WKSHPS, 2018, pp. 517–522.
[147] W. Shi, Q. Ling, K. Yuan, G. Wu, and W. Yin, “On the linear conver-
gence of the ADMM in decentralized consensus optimization,” IEEE
Trans. Signal Process., vol. 62, no. 7, pp. 1750–1761, Apr. 2014.
[148] M. Liu, F. R. Yu, Y. Teng, V. C. M. Leung, and M. Song, “Computation
offloading and content caching in wireless blockchain networks with
mobile edge computing,” IEEE Trans. Veh. Technol., vol. 67, no. 11,
pp. 11008–11021, Nov. 2018.
[149] M. Liu, F. R. Yu, Y. Teng, V. C. M. Leung, and M. Song, “Distributed
resource allocation in blockchain-based video streaming systems with
mobile edge computing,” IEEE Trans. Wireless Commun., vol. 18,
no. 1, pp. 695–708, Jan. 2019.
[150] Y. Wu et al., “Optimal computational power allocation in multi-access
mobile edge computing for blockchain,” Sensors, vol. 18, no. 10,
p. 3472, 2018.
[151] Y. Wu, J. Shi, X. Chen, K. Ni, L. Qian, and K. Zhang, “Optimal multi-
access computation offloading for mobile blockchain,” in Proc. IEEE
Int. Conf. Commun. Syst., 2019, pp. 198–203.
[152] Y. Jiao, P. Wang, D. Niyato, and Z. Xiong, “Social welfare
maximization auction in edge computing resource allocation for mobile
blockchain,” in Proc. IEEE Int. Conf. Commun., 2018, pp. 1–6.
[153] Y. Jiao, P. Wang, D. Niyato, and K. Suankaewmanee, “Auction
mechanisms in cloud/fog computing resource allocation for public
blockchain networks,” IEEE Trans. Parallel Distrib. Syst., vol. 30,
no. 9, pp. 1975–1989, Sep. 2019.
[154] Z. Li, Z. Yang, and S. Xie, “Computing resource trading for edge-
cloud-assisted Internet of Things,” IEEE Trans. Ind. Informat., vol. 15,
no. 6, pp. 3661–3669, Jun. 2019.
[155] N. Luong, Z. Xiong, P. Wang, and D. Niyato, “Optimal auction for
edge computing resource management in mobile blockchain networks:
A deep learning approach,” in Proc. IEEE ICC, 2018, pp. 1–6.
[156] Z. Xiong, S. Feng, W. Wang, D. Niyato, P. Wang, and
Z. Han, “Cloud/fog computing resource management and pricing
for blockchain networks,” IEEE Internet Things J., vol. 6, no. 3,
pp. 4585–4600, Jun. 2019.
[157] V. Krishna, Auction Theory. Academic, 2009.
[158] C. Xia, H. Chen, X. Liu, J. Wu, and L. Chen, “ETRA: Efficient
three-stage resource allocation auction for mobile blockchain in edge
computing,” in Proc. 24th IEEE Int. Conf. Parallel Distrib. Syst., 2018,
pp. 701–705.
[159] J. Kang, R. Yu, X. Huang, S. Maharjan, Y. Zhang, and E. Hossain,
“Enabling localized peer-to-peer electricity trading among plug-in
hybrid electric vehicles using consortium blockchains,” IEEE Trans.
Ind. Informat., vol. 13, no. 6, pp. 3154–3164, Dec. 2017.
[160] C. Qiu, H. Yao, C. Jiang, S. Guo, and F. Xu, “Cloud computing assisted
blockchain-enabled Internet of Things,” IEEE Trans. Cloud Comput.,
early access, Jul. 2019, doi: 10.1109/TCC.2019.2930259.
[161] Z. Xiong, Y. Zhang, D. Niyato, P. Wang, and Z. Han, “When mobile
blockchain meets edge computing,” IEEE Commun. Mag., vol. 56,
no. 8, pp. 33–39, Aug. 2018.
[162] Z. Xiong, S. Feng, D. Niyato, P. Wang, and Z. Han, “Optimal pricing-
based edge computing resource management in mobile blockchain,” in
Proc. IEEE Int. Conf. Commun., 2018, pp. 1–6.
[163] P. Fairley, “Blockchain world-feeding the blockchain beast if bitcoin
ever does go mainstream, the electricity needed to sustain it will be
enormous,” IEEE Spectr., vol. 54, no. 10, pp. 36–59, Oct. 2017.
[164] I. Magaki, M. Khazraee, L. Gutierrez, and B. M. Taylor, “ASIC clouds:
Specializing the datacenter,” in Proc. ACM/IEEE 43rd Annu. Int. Symp.
Comput. Architect., 2016, pp. 178–190.
[165] N. Amit, M. Wei, and C. Tu, “Extreme datacenter specialization for
planet-scale computing: ASIC clouds,” ACM SIGOPS Oper. Syst. Rev.,
vol. 51, no. 1, pp. 96–108, 2018.
[166] M. Taylor, “The evolution of bitcoin hardware,” Computer, vol. 50,
no. 9, pp. 58–66, 2017.
[167] J. Liu, W. Li, G. O. Karame, and N. Asokan, “Scalable Byzantine
consensus via hardware-assisted secret sharing,” IEEE Trans. Comput.,
vol. 68, no. 1, pp. 139–151, Jan. 2019.
[168] N. Courtois, M. Grajek, and R. Naik, “Optimizing SHA256 in bit-
coin mining,” in Proc. Int. Conf. Cryptography Security Syst., 2014,
pp. 131–144.
[169] M. Taylor, “Bitcoin and the age of bespoke silicon,” in Proc. IEEE Int.
Conf. CASES, 2013, pp. 1–10.
[170] C. Lee. (2011). Litecoin. [Online]. Available: https://litecoin.org/
2030 IEEE COMMUNICATIONS SURVEYS & TUTORIALS, VOL. 22, NO. 3, THIRD QUARTER 2020

[171] C. Percival. (2009). Stronger Key Derivation via Sequential Memory- Jinnan Guo is currently pursuing the bachelor’s
Hard Functions. [Online]. Available: https://www.bsdcan.org/2009/ degree in electronic science and technology with
schedule/attachments/87_scrypt.pdf the School of Information and Electronics, Beijing
[172] B. Ekbote, V. Hire, P. Mahajan, and J. Sisodia, “Blockchain based Institute of Technology. His research interests
remittances and mining using CUDA,” in Proc. IEEE Int. Conf. Smart include blockchain, cloud computing, and network
Technol. Smart Nation, 2017, pp. 908–911. security.
[173] M. Skach et al., “Thermal time shifting: Leveraging phase change
materials to reduce cooling costs in warehouse-scale computers,”
in Proc. ACM SIGARCH Comput. Archit. News, vol. 43, 2015,
pp. 439–449.
[174] A. Kampl, “Bitcoin 2-phase immersion cooling and the implications
for high performance computing,” Electron. Cooling, vol. 20, no. 1,
pp. 1–5, 2014.
[175] S. Ziegenbalg. (2012). BTCMINER—Open Source Bitcoin Miner.
[Online]. Available: https://open
cores.org/projects/btcminer
[176] (2019). Butterflylab. [Online]. Available: https://butterflylabs.com/
category/bitcoin/
[177] (2019). Avalon. [Online]. Available: https://canaan.io/
[178] (2019). Bitmain. [Online]. Available: https://www.bitmain.com/
[179] Y. Qian, Z. Liu, J. Yang, and Q. Wang, “A method of exchanging data
in smart city by blockchain,” in Proc. IEEE 20th Int. Conf. HPCC,
2018, pp. 1344–1349. Liehuang Zhu (Member, IEEE) received the B.E.
[180] X. Zheng et al., “Blockchain-based personal health data sharing system and M.E. degrees from Wuhan University, Wuhan,
using cloud storage,” in Proc. IEEE 20th Int. Conf. Healthcom, 2018, China, in 1998 and 2001, respectively, and the Ph.D.
pp. 1–6. degree in computer science from the Beijing Institute
[181] X. Liang et al., “Integrating blockchain for data sharing and collabora- of Technology, Beijing, China, in 2004.
tion in mobile healthcare applications,” in Proc. IEEE 28th Annu. Int. He is currently a Professor with the School
Symp. PIMRC, 2017, pp. 1–5. of Computer Science and Technology, Beijing
[182] R. Khalil and A. Gervais, “Revive: Rebalancing off-blockchain pay- Institute of Technology. He has published more
ment networks,” in Proc. ACM SIGSAC CCS, 2017, pp. 439–453. than 200 peer-reviewed journal or conference papers,
[183] J. Guo, K. Gai, L. Zhu, and Z. Zhang, “An approach of secure two- including over ten IEEE/ACM T RANSACTIONS
way-pegged multi-sidechain,” in Proc. ICA3PP, 2019, pp. 551–564. papers (IEEE T RANSACTIONS ON I NFORMATION
[184] Y. Sun, R. Zhang, X. Wang, K. Gao, and L. Liu, “A decentralizing F ORENSICS AND S ECURITY, the IEEE T RANSACTIONS ON I NDUSTRIAL
attribute-based signature for healthcare blockchain,” in Proc. 27th Int. I NFORMATICS, the IEEE T RANSACTIONS ON V EHICULAR T ECHNOLOGY,
Conf. Comput. Commun. Netw., 2018, pp. 1–9. the IEEE T RANSACTIONS ON S MART G RID, Information Sciences, IEEE
[185] N. Rifi, E. Rachkidi, N. Agoulmine, and N. Taher, “Towards using N ETWORK, and Computer & Security). His research interests include security
blockchain technology for IoT data access protection,” in Proc. IEEE protocol analysis and design, wireless sensor networks, and cloud computing.
17th Int. Conf. Ubiquitous Wireless Broadband, 2017, pp. 1–5. He has been granted a number of IEEE Best Paper Awards, including IWQoS
[186] H. Shafagh, L. Burkhalter, A. Hithnawi, and S. Duquennoy, “Towards 17’ and TrustCom 18’.
blockchain-based auditable storage and sharing of IoT data,” in Proc.
ACM Cloud Comput. Security Workshop, 2017, pp. 45–50.
[187] S. Ali, G. Wang, B. White, and R. Cottrell, “A blockchain-based decen-
tralized data storage and access framework for pinger,” in Proc. IEEE
17th Int. Conf. TrustCom, 2018, pp. 1303–1308.
[188] R. Chaudhary, A. Jindal, G. Aujla, S. Aggarwal, N. Kumar, and
K. Choo, “BEST: Blockchain-based secure energy trading in SDN-
enabled intelligent transportation system,” Comput. Security, vol. 85,
pp. 288–299, Aug. 2019.
[189] P. K. Sharma, S. Singh, Y.-S. Jeong, and J. H. Park, “DistBlockNet:
A distributed blockchains-based secure SDN architecture for IoT
networks,” IEEE Commun. Mag., vol. 55, no. 9, pp. 78–85, Sep. 2017.
[190] X. Ling, J. Wang, T. Bouchoucha, B. Levy, and Z. Ding, “Blockchain
radio access network (B-RAN): Towards decentralized secure radio
access paradigm,” IEEE Access, vol. 7, pp. 9714–9723, 2019.

Shui Yu (Senior Member, IEEE) is a Professor

Keke Gai (Senior Member, IEEE) received the
B.Eng. degree in automation from the Nanjing
University of Science and Technology, Nanjing,
China, in 2004, the M.E.T. degree in educational
technology from the University of British Columbia,
Vancouver, BC, Canada, in 2010, the M.B.A.
degree in business administration in 2009, the M.S.
degree in information technology in 2014 from the
Lawrence Technological University, Southfield, MI,
USA, and the Ph.D. degree in computer science from
Pace University, New York, NY, USA.
He is currently an Associate Professor with the School of Computer Science
and Technology, Beijing Institute of Technology, Beijing, China. He has
published three books and more than 110 peer-reviewed journal/conference
papers, including eight ESI Highly Cited Papers. His research interests include
cyber security, blockchain, edge computing, cloud computing, and rein-
forcement learning. He has been granted the five IEEE Best Paper Awards
(TrustCom 18’ and HPCC 18’) and the two IEEE Best Student Paper Awards
(HPCC 16’) in recent five years.
with the School of Computer Science, University
of Technology Sydney, Australia. He has published
three monographs and edited two books, more than
350 technical papers, including top journals and
top conferences, such as IEEE T RANSACTIONS
ON PARALLEL AND D ISTRIBUTED S YSTEMS , the
IEEE T RANSACTIONS ON C OMPUTERS, the IEEE
T RANSACTIONS ON I NFORMATION F ORENSICS
AND S ECURITY , the IEEE T RANSACTIONS ON
M OBILE C OMPUTING, the IEEE T RANSACTIONS
ON K NOWLEDGE AND DATA E NGINEERING , the IEEE T RANSACTIONS ON
E MERGING T OPICS IN C OMPUTING, the IEEE/ACM T RANSACTIONS ON
N ETWORKING, and INFOCOM. His research interest includes big data, secu-
rity and privacy, networking, and mathematical modeling. He initiated the
research field of networking for big data in 2013. His H-index is 43. He
is currently serving a number of prestigious editorial boards, including the
IEEE C OMMUNICATIONS S URVEYS AND T UTORIALS (Area Editor), IEEE
Communications Magazine, and IEEE I NTERNET OF T HINGS J OURNAL. He
is a member of AAAS and ACM, and a Distinguished Lecturer of IEEE
Communication Society.

Authorized licensed use limited to: Siksha O Anusandhan University. Downloaded on February 02,2021 at 04:54:21 UTC from IEEE Xplore. Restrictions apply.