Making HCloud service trustworthy with TPM-based extesion

HCloud (Healthcare Cloud) is a proposed private cloud platform aims at providing ubiquitous healthcare services. Security issues are crucial for applications and popularization. Apart from the traditional network security solutions, trusted computing technology is combined into more and more aspects of cloud computing environment to guarantee the integrity of platform and provide attestation mechanism for trustworthy services. We extend the structure of HCloud by introducing trusted central node (TCN), which is a host with a built-in TPM (trusted platform module) for each service layer to check process integrity online and using trusted front node (TFN) as a broker to relay the certificate application, as well as under the context of proposed dual-CA regime. Two algorithms are also designed for scheduling request from different category terminals and determine which service would be probed at specific time. Security analysis shows us that the trustworthy services are available after improving the system architecture.