Cloud migration methodology is a high-level plan that is constructed in order to transfer data and applications from an existing on-premise server to the cloud server. Since data is what makes a company valuable these days, it is important that we have a good migration plan to move the data.
In this article, we will be taking a look at the different challenges risks, and approaches of migration in cloud migration.
Over the last decade of cloud migration, the threat model against Java applications and the way that we need to defend them has shifted. OpenJDK has made one positive change in this area already by deprecating the old SecurityManager, a relic that protected a bygone era of AOL CDs and paper maps. The next positive change in security is to strengthen the supply chain of software components, know what’s running and what’s vulnerable, and communicate this information with non-technical experts whose data is at risk.
Part of this threat model is driven by vulnerable libraries like last year’s Log4j. Although Log4j is a great logging library and was active on patching, many teams scrambled to identify where they needed to apply those patches. For individual Java developers or teams that knew their code and could deploy, the patch was simple — you updated a library and that was it. The reality though is that software moves fast and far, often leaving the locus of control of these technical experts to stakeholders that don’t have the expertise to manage a problem at this level. In a scramble, teams that did not know Java-specifics looked everywhere including .NET software and Python forums. The government of Quebec shut services down until they knew where Log4j wasn’t. This scrambling was not effective and does not protect our data.
Enterprises migrating to the cloud are often faced with the dilemma of choosing between public or private cloud. The right way forward is to choose the one that best suits your organization’s workloads, and that could be public, private or even a mix of both.
According to the RightScale State of the Cloud Report, 2019:
During discussions with many of my colleagues, I realized the need for (a) clear demarcation between Application Portfolio Rationalization (APR) and R-Lane, (b) the association of R-Lane with APR, (c) right positioning of APR and R-Lane and (d) role of modernization in APR and R-Lane.
While all these topics spinning around rationalization, they differ only in when and where rationalization is taking place. Let us consider the following three scenarios to better understand these trending terminologies.
