Restructure/Rewrite Dissertation paper

PaaS, which means platform as a service gives application platform as a service. An example is the Google App Engine. The software platform allows customers to deploy uses based on the language used by providers. The clients only have control over application settings and programming tools built within the organization. The management of the fundamental infrastructure of the application remains a serious responsibility of the providers. Lastly, IaaS refers to infrastructure as a service that delivers all its services through hardware resources, network components to be used, or even the allocated disk size (Habjan & Pucihar, 2017). The hardware resources are allocated virtually, and the clients have full control over how to manage the services they have paid for.

Architecture of Cloud Computing

This section offers a presentation of a top level type of architecture associated with cloud computing that is involved in the depiction of the various types of cloud service delivery associated models. Cloud Computing improves collaboration as well as agility, scalability, availability and in the provision of potential for the cost minimization via optimized as well as appropriate form of computing. More particularly, cloud is used in the description of the utility associated with the collection of the disseminated services as well as applications, information and infrastructure that are comprised of Pools of compute along with network, information and even storage resources. These types of components can be rapidly orchestrated as well as provisioned, implemented and even decommissioned through the use of an on demand type of utility like model associated with the allocation and consumption Aspects. Cloud services are mostly not always used in link with an enhanced virtualization type of technology to offer dynamic integration along with provisioning, orchestration and mobility. It is vital to have a comprehensive understanding of the architecture as well as the various unique features that are associated with cloud computing as this will help in understanding the security and data migration aspects of cloud computing and prepare for a better future for cloud computing (Chao, 2016).

While the very type of definition associated with cloud is used in suggesting the decoupling of the resources from the identified physical affinity to along with the location regarding the identified infrastructure that is involved in delivering them along with various descriptions associated with cloud go to one extreme or even another by either through exaggeration or the artificial limitation of the various attributes of cloud. This is usually purposely carried out in an aim to inflate or even marginalize its identified scope. Some of the examples entails the various suggestions that for an identified service to be considered to be cloud based, that the identified internet needs to be utilized as a form of transport along with web browser ought to be utilized as being an access modality or that the identified resources are always shared in an identified multi-tenant surrounding that is external to the perimeter.

From an identified architectural point of view, given this type of abstracted evolution associated with technology, it is important to understand that there is much type of confusion that surrounds the manner in which cloud is both the same along with distinct from the existing models and the manner in which these types of similarities and even differences may affect the organizational along with the operational and even the technological approaches to the aspect of cloud adoption as it is associated with the traditional type of network along with the information security practices. There are those who are involved in saying that cloud is identified as being a move sea change as well as technical kind of revolution while other people usually suggest that it is a form of natural evolution along with coalescence associated Technology along with economy and even culture. The actuality lies somewhere between all the stated principles (Gan & Zhu, 2020).

There are numerous tools that are available in the current world that are involved in aiming at addressing the various cloud aspects from the different perspectives regarding the academicians along with the architects, managers, consumers and even developers among other essential groups. The identified architecture that the following chapter focuses on is particularly tailored to the unique types of perspectives regarding IT network deployment along with service delivery. Cloud services are usually based upon five key principles that are used in the demonstration as well as differentiation and the traditional computing models. The principles are outlines below for enhanced understanding.

Principles of Cloud Computing

The first principle is identified as being the abstraction of infrastructure. The identified computation as well as network and even storage type of infrastructure resources are usually abstracted from the identified application as well as the information associated resources as a type of function associated with the service delivery. Whereas by what physical associated resource that the identified data is usually processed as well as transmitted and even stored on usually becomes largely opaque from the identified perspective regarding an identified application or even the ability of the services to deliver it. The infrastructure associated resources are usually polled so as to offer delivery of the identified service despite the tenancy model which is usually employed shared or even dedicated. This type of abstraction is usually offered by the means of the high level associated with virtualization at the identified choosey as well as operation of the identified system levels or enhanced at the higher levels through heavily customized types of file systems along with the operating systems or even the communication protocols.

The other principle is defined as being resources democratization. The identified abstraction regarding the given infrastructure usually yields the identified notion associated with the identified resource associated democratization whether the identified infrastructure as well as the identified applications or even information and offers the needed ability for the pooled types of resources to be availed as well as accessed to any person or anything that is considered to be authorized to use them via the use of the standardized techniques for carrying out such. Nonetheless, there is also another principle which is identified as being the service oriented type of architecture (Zhong & Liu, 2020). As the identified abstraction regarding the infrastructure from the identified application along with information is involved in yielding well defined as well as the loosely coupled types of the resolute democratization, the identified notion associated with the use of these types of components in whole or even in part as well as solely or even with integration, is entailed in the provision of a service oriented type of architecture whereby the identified resources can be accessed as well as used in a standard manner. In this principle, the key focus is usually on the identified delivery regarding service and not in the control of the identified infrastructure.

There is also the principle of elasticity or dynamisms. The on demand type of model associated with cloud provisioning that is coupled with the high levels associated with automation and even virtualization and ubiquitous alongside reliability and high speed type of connectivity offers for the ability to rapidly along with effectively expand of even contract the identified resource associated allocation to the identified service definition and even requirements through the utility of a self-service type of model which is entailed in scaling to as the needed capacity. Since the identified resources are pooled, effective utilization as well as service levels can be appropriately attained.

The other principle is identified as being the use model associated with consumption and even allocation. The abstracted as well as the democratized, the service oriented and even the elastic nature associated with cloud combined with the tight type of automation as well as orchestration, the aspect of provisioning and even self-service then is involved in allowing for the dynamic allocation of the various resources that are based on the various types of the governing input associated parameters. Given the identified visibility at an identified atomic level, the identified consumption associated with resources can then be utilized to offer a metered utility type of cost as well as the usage model. This is used in facilitating higher level of costs associated efficacies as well as scale, manageable and the predictive types of costs (Deylami & Sinha, 2020).

Cloud Service Delivery Models

Three architectural models as well as the derivative combination thereof usually describe cloud service associated delivery. The three individual models are usually defined as being SPI model whereby the term SPI is used to refer to the Software as well as platform and infrastructure aspects. The first one is software as a service which is defined as SaaS. The ability that is usually offered to the identified consumer is considered to be the use of the applications of the provider that are operating on the cloud associated infrastructure as well as are accessible from a variety of client devices via think client associated interface like the web browser. In other words, this type of model entails a whole application which is usually provides to the customer as a type of service on demand. A single type of instance regarding the service operates on the identified cloud along with a variety of the end users are considered to be services.

On the side of the consumer, it is vital to understand that there is no need for having any kind of upfront investment in the servers or even the software types of licenses while for the identified provider, the identified costs are usually lowered since solely a single type of application needs to be hosted as well as maintained. In this type of model, the identified customers do not need to be involved in the management or in the controlling of the underlying cloud associated infrastructure as well as network, the identified servers, storage and the operating system with the probable exception of the limited user specific application associated configuration settings. It is essential to understand that in the current times, SaaS is usually providing by organizations like Google along with Microsoft and Zoho among others (Yang & Zhao, 2020).

There is also the platform as a service whereby there is an identified later regarding Software or even the development of the environment is usually encapsulated as well as provided as a form of a service upon which the other higher types of levels regarding service are usually constructed. The identified customer is considered to have the freedom to build their own applications which operate on the infrastructure of the identified provider. Therefore, an identified capability is usually offered to the identified customer to help in the deployment onto the identified cloud associated infrastructure customer created types of applications via the use of the programming languages and instruments that are usually supported by the identified providers such as Java along with python among others (Sha & Rajabion, 2020).

Despite the fact that the identified customer does not usually manage or even control the underlying cloud associated infrastructure as well as Network, servers, storage or the operating systems, but the person possesses the control along with management over the Identified deployed applications as well as probably over the Identified application that is involved in hosting the identified environment configurations. To meet manageability along with the identified scalability requirements regarding the applications, Papas providers usually provide a predefined kind of combination associated with the operation of systems and even the identified application servers like the LAMP that is Linus along with Apache, MySQL and PHP types of platforms. Some of the examples of PaaS are considered to be Force.Com.

The other cloud service delivery model is identified as being infrastructure as a service IaaS which offers the most fundamental storage and even computing associated capabilities as standardized forms of services over the Identified network. Servers as well as storage systems, networking equipment, data center space among others are usually pooled as well as are usually made available to handle various workloads. The identified ability offered to the identified customer is considered to rent processing as well as storage, networks and other types of fundamental computing resources whereby the identified customer is usually considered to deploy along with operating the arbitrary software which can entail operating systems along with applications. The identified customer does not manage the identified underlying cloud associated infrastructure but possesses the control over the identified operating systems along with storage, deployed applications and probably select the most appropriate networking components such as firewalls along with load balancers among others. Some of the examples of this model are Amazon as well as 3 Tera among others (Ruiz-Martínez & Marín, 2014). 

Comprehensive of the relationship as well as dependencies that exist between these types of model is considered to be critical. IaaS is identified as being the foundation regarding all the cloud services with the PaaS being built upon IaaS and SaaS building upon PaaS. The figure below depicts an architecture regarding the cloud layer type of model.

Literature Review

According to Hammamiet al. (2017) in their article “A Security Approach for Data Migration in Cloud Computing Based on Human Genetics,” data migration, which is a cloud-based activity is several ways risk-oriented exercise. The issue incorporates both qualitative and quantitative analysis of issues to balance the risks available with benefits and safeguards. The balancing must be applied in a manner that takes into account the issue of accountability in data management practices within the organization. In case the benefits associated with the organization outweigh the ineffectiveness and inefficiencies within the organization, then the risks of migrating data remain high (Corcoran & Datta, 2016). Therefore, it is a must to ensures a balance between possible risks associated and the strengths of control.

Data security is among the common topics in the field of cloud computing. Perhaps, it is because the service providers do not have direct physical access to the security system, and they heavily rely on the cloud data centers. Service providers can only specify the security measure that can be taken but does not have the capacity of determining whether the measures have been implemented or not (Hammami et al., 2017). The risks are further accelerated if the infrastructure is incapable of attaining the confidentiality and auditability of the data that is migrated through space. Reliance on remote transfers requires that the organization use a trusted platform module in generating the non-forgeable system reports and summaries. Failure to use TPM can create risky situations that can result in organizational losses.

Urge for Secure Data Migration Process

Data migration in the cloud is among the areas where managers face serious problems. The provision of cloud services will imply that providers will have to move information over the network to make virtual task execution a possibility. That is information need to be moved from the company’s server to a cloud server that is situated elsewhere. There exist several reasons as to why service providers and managers in charge face several issues (Jain & Menache, 2017). This is because of the associated risks of moving data from one point to another. To begin with, cloud operates within an interface, through which organizations and clients are allowed to access data and information in a virtual environment. Therefore, the smooth execution of the functions fundamentally lies in how well and knowledgeable the cloud providers within the area are.

Moreover, failure to comply with systematic data migration procedures will eventually result in further problems about data privacy and the overall security involved (Patrignani et al., 2016). Thus, having to hire cloud service providers who have sound experience and skills in data management will ensure that cloud-based data migration is managed properly and in the required manner.

For instance, in case, there is an organization that is planning to shifts its data to the cloud so that it can be capable of providing solutions; the first step should be contacting cloud service providers. The providers will eventually start initializing the necessary steps that need to be taken to ensure that security is taken into consideration throughout the process. Failure to follow the right procedure will not only create losses to the organization but also face reputation degradation and heightened data issues.

Added Latency and Poor Visibility and Control

Data migration involves several underestimated risks. These are risks that exist and have effects, but they are assumed to be negligible or too small to have any impact in place. The truth of the matter is that added latency is a serious risk and can have adverse effects on the organization involved in the data transfer process. The risks result when application, systems, and databases used during data transfer and cloud service provision are not in line with the urgency of the services needed (Tchernykh et al., 2019). Latency becomes critical when dealing with eCommerce services and the internet of things because the activities require a vital customer experience. Data migration incorporates the execution of certain tasks that require immediate processing of data and information. In this light, added latency will result in not only frustrations but also disappointment in data migration.

Inadequate or lack of visibility and control in cloud computing is another serious cause of data migration risks. Visibility significantly impacts the utilization and performance of networks. When an organization relies on individually owned data centers, they tend to have better or full control over the issues which ought to be addressed. Besides, the organizations have full control over the resources utilized and how they are normally used. The physical and the host networks tend to be managed properly also. Data migration involves switching to external cloud service providers. In such situations, the organization does not have full control of the services provided, the networks in use as well as the resources that are put to work. This makes the company lack visibility on what is being executed with the presence of data in the cloud and public cloud workloads.

The recent survey undertaken by Dimensional Research revealed that more than 95% of the sample group interviewed confirmed that visibility issues are the major causes of cloud service challenges. It is through visibility that the performance of organizations in the management and handling of data over the cloud has resulted in network issues (Zelenkov, 2016). The results further revealed that 38% of the total sample interviewed point’s visibility as a major issue in network outages within a cloud server.

Data Loss and Wasted Costs

Data loss is among the common most cloud risks that face data migration to deliver services over a network. Before initiating data migration, there is a need to ensure that the right procedure that will prevent data loss is put in place. The files of data that are being migrated need to be taken good care of so that permanent data loss is avoided (Al-Badi, Tarhini & Al-Qirim, 2018). Errors, corrupted data, and missing files are common issues that might be encountered during the data migration process. Pre-defined solutions like having data backups should be put in place before starting the actual migration information.

Wasted costs is another common risk that data migration is vulnerable to. Models of cloud computing come with different prices. The prices depend on the flexibility and reliability of the cloud services that the model is expected to be providing. Cloud computing involves making payments for storage, transfer, and storage services independently. It is worth noting that failure in one service can have a significant impact on the other services provided even though the payments have been made (Al-Badi, Tarhini & Al-Qirim, 2018). Finding a reliable platform that is capable of taking into account all organizational issues is quite challenging. At times, it incorporates the trial and error process that is costly before arriving at the right model or platform to be used. This risks the right allocation of the funds that might be present within the organization.

The issues of security in cloud computing have been discussed in several ways. Although the paper has not cited out several safety conventions of the networking systems, mitigating all possible errors remains one of the best options of clinching the benefits of the process (Hyseni & Ibrahimi, 2017). Despite all the advantages that have been pointed out, several people and forms find cloud computing security lacking, particularly when it comes to data migration (Sharma et al., 2017). Firms that deal with sensitive data and information like the banking sector worry much about the security of data migration. Slight tampering of the information can result in massive losses within the organization. Therefore, there is a need to take extra caution when transferring data to an onsite. In light of the risk mentioned above activities and issues, the following are the possible solutions and recommendations on how the issue can be addressed.

There exist several solutions through which risks of data loss can be addressed. These include but are not limited to; understanding the possible causes of data loss within an organization. Anything ranging from power outrages to security issues associated with the information and data center can result in data loss (Lin, Yao & Huang, 2016). Therefore, having backups of the information being migrated can be a better strategy as it will ensure the availability of information in case data is lost with backups, one should not worry about the potential of losing the data. in case the infrastructure in place fails to work better, then another one can be deployed, and the process continues without the risk of losing any information

Akinrolabu, New & Martin (2017) points out that wasted costs can also be secured through optimization of costs in areas that are not relevant to the organization and the essential activities that the organization is associated with. The practices that can be mitigated wasted costs include getting rid of underutilized instances, rightsizing the available workload, capitalizing on out scaling issues, and capitalizing on discount instances so that expenditures can be minimized.

Efforts to get rid of latency within the organization and includes having a proper understanding of the root cause of issues. Understanding the existing geographic distance between service providers and clients is essential because it will minimize delays and mitigate misconfiguration issues (Weil, 2020). Alternative ways of how latency can be mitigated include segmenting the traffic flows, having the right multi-cloud connectivity in place, and offloading the internet in case some components are not in use at any given time (Akinrolabu, New & Martin, 2017). If such activities do not help to keep the application in use within the premises can be of great importance.

In an article published in 2017 following a study by Hussain and four other researchers. The researchers start by identifying three main security concerns in the adoption of cloud infrastructure use. The three security risks are a privacy breach, unauthorized data access, and data leakage. The researchers identified that there is a need for cloud service providers and users to classify the security concerns in cloud computing. The risks ought to be ranked as high, medium, or low. By classifying the risks, the following measures can be implemented; data privacy, data encryption, authentication, and authorization of the different services (Hussain et al., 2017). According to the researchers, the multi-level classification framework provides a dynamic security layer for each cloud layer.

A multi-level classification is a good approach and probably a good solution considering the emphasis is in the categorization of risks in the adoption of cloud computing. Through the categorization, the importance of security features is emphasized. Consequentially, both the cloud service providers and the users can ensure data and infrastructure are protected. In business management emphasis is placed on having a reliable risk assessment and management protocol. The emphasis happens to ensure that management is aware of risks and consequentially implements measures to counter the risks. The same principle applies in cloud computing as the identification of risks ensures that stakeholders develop measures to protect themselves.

There exist various tools that can be used in addressing visibility. These are the tools that support the monitoring of cloud services and third-party vendors responsible for offering multiple cloud solutions (Ahmed et al., 2017). Having an automatic response team in place and activity monitoring solutions can help embrace visibility and control. Proper understanding of Distributed Systems can help ensure that the distributed system in place addresses all the possible issues of platform associated with data migration. Having a solid understanding of distributed systems ensures that efficient service provision and delivery has been attained. Besides, it ensures reliable access to the data and information that might be need

Testing Reviews- Cloud Service Deployment and Consumption Models

Despite the delivery model that is usually utilized in cloud computing as discussed in the previous section, there are four fundamental ways whereby cloud services are usually deployed. Cloud integrators can help in playing a key role in the determination of the most appropriate cloud associated path for a particular organization (Rezaei, 2017). First and foremost, there is the public cloud which are usually identified as having been offered by a designated type of service providers along with may provide either a dedicated or even a shared type of operating surrounding that has all the benefits along with the functionality regarding elasticity or even the accountability model associated with the cloud. The physical type of infrastructure is usually owned by along with controlled by the designated service associated provider and even located within the identified provider data center that is the off premises. All the customers are usually considered to share the same type of infrastructure pool with the limited configuration along with the identified security protections and even the identified availability variances. One of the benefits associated with the public cloud is that they may be considered to be larger than an identified type of Enterprise cloud thus they usually offer the capability to scale seamlessly on demand (Hu, 2020).

There is also the private cloud which are usually offered by a company or even their designated types of services and usually provide a single type of tenant operating surrounding with all the advantages as well as functionality regarding elasticity as well as accountability/utility model regarding cloud (Murugesan & Bojanova, 2016). The private clouds usually aim to effectively address the key concerns on data associated security as well as provide higher level of control which is usually lacking in an identified public cloud. There are two types of variants associated with private clouds that is firstly the on premise private clouds along with the externally hosted types of private cloud.

The on premise type of private clouds also referred to as an internal cloud are usually hosted within the data center of an individual. This type of model usually offers a more type of standardized process as well as protection but is usually limited in the identified aspects regarding size along with scalability. IT departments would also need to experience the identified capital as well as operational costs for the identified physical resources (Marinescu, 2013). This is usually most appropriately suited for the identified types of applications which need whole control as well as configurability regarding the identified infrastructure along with security. They are usually hosted externally with an identified cloud provider (Munir, 2015).

The hybrid clouds are usually considered to be a combination of the public as well as the private cloud offerings which usually allow for the transitive information associated exchangeable as well as probably application compatibility along with portability across the disparate cloud associated service types of offerings and the providers using standard or even the proprietary methodologies despite the ownership or even location. With an identified hybrid cloud, service providers can use third part cloud associated providers in a wholly or even partial manner thus causing an increment of the flexibility regarding computing. The identified hybrid cloud model is usually capable of the provision of the on demand as well as the externally provisioned types of scale. The capability to augment an identified private cloud with the identified resources regarding a public could may be utilized in the management of any unexpected surges that are in the workload (Rizvi & Williams, 2020).

Table 1: Summary of the various features of cloud deployment models

There is also the managed cloud. The managed types of clouds are usually offered by a designated type of service provider as well as they may provide either a single type of tenant or the shared type of operating environment with all the types of advantages as well as functionality regarding elasticity as well as the identified accountability and even utility model associated with the cloud. The identified physical type of Infrastructure is usually owned as well as physically located in the data centers of the given organization with an identified extension regarding management along with the security control types of planes that are usually controlled by the identified designated service associated provider (Aruna & Mohan, 2020).

The notion associated with the public along with the private and even the managed and the hybrid types of clouds when used in the description of the cloud services usually denote that the identified attribution regarding management as well as availability regarding service to the specific types of consumers regarding these services. When carrying out an assessment of the identified impact of a particular cloud associated service may possess one’s personal security posture as the well as the general security associated architecture, It is considered to be necessary to effectively classify the identified assets as well as resources and services within the identified context of not solely its identified location but also its identified criticality along with the business impact as it is associated with the management along with security aspect. This is usually utilized to mean that an appropriate level regarding risk type of assessment is usually carried out before entrusting it to the identified vagaries associated with the cloud. Moreover, it is vital to comprehend a variety of tradeoffs between the various types of cloud services models.

There are some important key points that people need to put into consideration when analyzing and trying to understand that cloud computing architecture. First and foremost, SaaS usually offers a large amount of the integrated features that are usually built in a more direct way into the provision with the least amount of the extensibility as well as in general a huge level of security. PaaS is usually entailed in the provision of the less integrated types of features since it is usually formulated to enable the identified developers to build their own types of applications on top of the identified platform (Hussein, 2021). Therefore, it is vital to understand that it is a more extensible service in the cloud as compared to SaaS by nature. However, the identified extensibility types of features tradeoffs on the given security features as well as abilities. IaaS is usually involved in the provision of few applications like types of features and is entailed in the provision of enormous extensibility but usually has less security associated capabilities and even functionalities beyond the protection of the identified infrastructure itself. This is because it usually expects the operating systems along with applications and even contents to be controlled and even secured by the given customers.

Benefits of Cloud Computing

By und understanding the components of cloud computing, it is easier as well as more efficient to comprehend the various benefits as well as security risks associated with cloud computing. The first benefit is that one associated with cost savings. Cost saving has been considered to be one of the hugest cloud computing advantage. It is vital in assisting people to save the substantial capital cost as it does not usually require any kind of physical hardware types of investments. Also an individual does not need to have trained personnel for them to maintain the given hardware. The purchase as well as the management of equipment is usually carried out by the identified cloud service associated provider.

The other benefit is identified as being the Strategic edge. Cloud Computing usually provides a competitive edge over the rivals. It is considered as being one of the most appropriate advantage associated with the cloud service which is entailed in helping an individual to access the most current applications at any moment without having to spend their time as well as money on any kind of installations (In Harkut & In Shah, 2019).  It is also considered to be beneficious in regard to high speed. Cloud Computing usually allows an individual to deploy their service quickly in fewer types of clicks. This faster deployment usually allows an individual to attain the resources that are needed for the system within fewer minutes.

It also has the capability to undertake efficiency in backing up as well as in the restoration of data. Once the identified data is stored in the cloud, it is usually considered to be easier to attain the back up as well as the recovery of the same which is usually considered to be very time taking in regard to the on premise. There is also the advantage of automatic software integration. In the identified cloud, the aspect of software associated integration is considered to be something which usually takes place automatically. Therefore, there is the need to take additional efforts to facilitate the customization along with the integration of the applications involved as per the preferences (Dehury & Chhetri, 2020).

Another advantage is considered to be reliability. Reliability is considered to be among the biggest advantages associated with cloud hosting. One can always attain instant updates regarding the given changes. There are also the advantages of mobility whereby the identified employees that are considered to be working on the identified premises or at the identified remote locations can easily access all the identified cloud associated services. All that they require is having an internet connectivity. Cloud computing is also associated with unlimited storage capacity whereby one can store as much as they need and there can be quick as well as fast expansion of the identified storage capacity with very nominal types of monthly fees.

Another key advantage is collaboration. The cloud computing type of platform is involved in helping employees who are usually located in distinct geographies to collaborate in the highly convenient as well as secure way. There is also the advantage of quick deployment whereby the entire system associated with cloud computing can be wholly functional in just a few minutes. All these benefits can only be realized if the person or the organization that is entailed in the use of the cloud computing services is involved in management of all the risks along with threats associated with the security of cloud computing as will be discussed throughout the research process.

Types of Attackers in Cloud Computing

Most of the security threats as well as challenges that are entailed in cloud computing will be the same to organizations that are involved in the management of the in house type of infrastructure along with those that are usually entailed in the traditional outsourcing types of models. Every cloud computing type of service delivery models' threats usually are as an outcome from the attackers which can be considered to be divided into two key groups. There are the internal attackers along with the external attackers.

The internal types of attackers usually have some features that are used to identify as well as define them. First and foremost, it is usually employed by the identified cloud service associated provider as well as the identified customer or even the other third party type of provider organization that is entailed in supporting the various operations regarding a cloud type of service (Chen & In Leung, 2014). Nonetheless, most of them usually are associated with being in possession of the existence of the authorized type of access to the identified cloud associated services as well as customer data or even in supporting infrastructure as well as the various types of applications dependent on the organizational role. Nonetheless, it is usually associated with the use of the existing types of privileges with a key aim of attaining further accessibility or even in supporting third parties in the execution of the different types of attacks against the identified confidentiality along with integrity and even availability regarding information that is within an identified cloud service.

The external types of attackers usually possess some features that are used in defining them. First and foremost, it is vital to note that an external type of attacker is not usually employed by the identified cloud service associated providers as well as the customer or even the other third party type of provider organization that is entailed in supporting the identified operations regarding a given cloud service (Fonseca, 2015).  Nonetheless, it lacks authorized type of access to the identified cloud services along with the customer data and even offering support to the identified infrastructure along with applications. It is also associated with the exploitation of the technical along with the operational, process and even the social engineering types of weaknesses types of weaknesses to be involved in attacking a cloud service type of provider as well as a customer or even a third part that is supporting the identified organization to attain further accessibility to propagate the identified attacks against the confidentiality as well as integrity and even availability of the information that is within the identified cloud service.

Despite the fact that the internal as well as the external types of attackers can be comprehensively differentiated, their identified ability to effectively execute successful types of attacks is what is entailed in differentiae of them as being a threat to the clients as well as the vendors. In the identified cloud surrounding, attackers can be considered to be categorized into four key types which are considered to be random as well as weak, strong and even substantial. Each of these types of categories is usually considered to be based on the capability to effectively instigate a successful type of attack instead of the type regarding the threat that they usually present such as criminals attacks or even terrorism.

Random is associated with being the most common type of attack. In this type of attack, the most common type of the attacker is usually involved in the use of simple tools along with methods to carry out their attacks. The identified attacker may be involved in randomly scanning the identified internet attempting to seek the various types of vulnerable Components. They will be involved in the deployment of the well known instruments or even methods that ought to be easily as well as efficiently detected. There is also the weak one. In this case, the semi skilled types of attackers targeting the particular servers or even cloud providers through the customization of the existing publicly available tools or even specific targets. Their various methods are usually considered to be more developed as they usually aim to customize their various attacks through the use of the available exploit tools (Banushri & Karthika, 2020).

The other one is the strong type of attack as well as the substantial attacks. For the strong attacks, there is organized along with the well-financed and even the skilled groups associated with attackers who are usually considered to have an internal type of hierarchy that are specializing in the targeting of the specific applications along with users regarding the cloud. Generally, it is vital to understand that this identified group will be considered to be an organized type of crime group that are involved in specialization in the large scale types of attacks (International Conference on Vehicle & Mechanical Engineering and Information Technology & In Yu, 2014). 

Substantial types of attacks are usually considered to be motivated as well as strong types of attackers that are not usually easily detected by the company that they attack or even by the essential law type of enforcement and the identified investigative organizations in specialization of the scrims or cyber security risks along with threats (Ahmad & Mahmood, 2020). Mitigation of this type of threat usually needs higher level of intelligence on the attacks along with specialist types of resources in response to the detection regarding an incident or a particular threat. By having a clear comprehension of these risks as well as threats as categorized on the larger categories, it becomes easier to classify them in the smaller and more specific threats along with risks as illustrated in the following research paper.

Security Challenges and Risks in Data Migration

According to Durcevic (2019), the security risks of cloud computing are the top concerns of users. The statement was in reference to the findings of a survey carried out in 2018. 77% of the respondents identified security concerns as the reasons as to why they were hesitant to fully adopt cloud computing in their operations. There are four main security concerns as concerns the adoption of cloud computing. Top on the list is data migration challenges. The second main security concern is data breaches of sensitive and proprietary data. The third main security concern is broken authentication. The fourth concern is compromised credentials.

By dealing with the data migration challenges, the majority of the security challenges and concerns in cloud computing can be handled. There are several security challenges and risks in data migration. The challenges include incompatibility with existing architecture, perception of data migration, urge for the secure data migration process, added latency and poor visibility and control, and data loss and wasted costs.

Incompatibility with Existing Architecture

There is so much information about the compatibility of the existing IT infrastructure and cloud service that ought to be provided. Much of the risks are associated with the complexity of the infrastructure in place (Ahuja & Deval, 2018). Highly complex platforms slow down the process of migration. This demands that the organization should have the right people in place with sufficient IT skills and experience to facilitate the flow of information (Caldarell, Ferri & Maffei, 2017). The big and risky question remains, “who can make the entire architecture fit for the cloud at the speed they require?”.

Enterprises that already own broken down/ simplified structures and micro services in the architectures tend to migrate easily compared to other complex structures. This is because various elements of the data can be sorted out well. It is worth noting that not all broken down structures guarantee a safe transfer of data (Sharma, Husain & Ali, 2017). Some simple architectures might be vulnerable than others when it comes to the management of data as well as its migration. This in this will, in turn, result in overall challenges to the organizations.

· Scalability: Scalability is a fundamental piece of cloud innovation. With full limit, you can tweak stockpiling in the capacity unit up or down on a case by case basis. Assuming you need your engineering to grow (high and low, and need it), yet don't stress over the extra expenses related with it, you can select to change to distributed computing.

· Increase productivity: This gives your organization the additional advantage of utilizing it for administration improvement and sending without agonizing over hardware and upkeep. It gives organizations the instruments to zero in on the accomplishment of a business objective.

· Low expense: Because adaptability is a component of cloud versatility, you don't need to stress over upkeep costs since you pay for what you use. The cloud gives the adaptability to pay by time or by utilizing an item relying upon the model to pick the cost. This is an award for little and medium-sized organizations, particularly in case they are attempting to control costs.

· Prompt use: The application can alarm the end-client to a speedy change.

· Security: Cloud security, otherwise called cloud security, is a bunch of rules, limitations, and advances that ensure information, applications, and improvements in distributed computing. This incorporates information security, network security, and PC security. Insurance is accessible at different levels and shields fundamental data from holes, burglary, and defacing.

· Availability: Cloud organizations foster capacities like the turn of events, workers, vaults, and different administrations accessible to organizations. He has 24 hours every day without investing a lot of energy.

Yes: Enable Cloud processing is required. This gives cloud-based dependability, deceivability, and versatility, empowering persistent and consistent substance and applications.

· Disaster Recovery: Cloud Disaster Recovery is a reinforcement and recuperation instrument that recoveries and screens all electronic accounts in the cloud. It is a significant security highlight that can safely move and store data, including client's validation and secret phrase assurance.

· International Conversation: Speed and effectiveness are key provisions of distributed computing, and are made conceivable by impeccable global conferencing. Various server farms all throughout the planet give territorial assets and offices, where clients can get to data in short order.

The danger related with Cloud Migration

· Follow: Some consistence norms will restrict information put away in the cloud. There might be hazards related with the IT supplier's present strategies and legally binding courses of action identified with information administration and cycles. The utilization of outer IT suppliers has lawful ramifications.

· Sensitive Information: No matter what the cloud administration is, it is consistently conceivable to forestall bug. In the event that the application contains excessively touchy information, it is prescribed not to store it in the cloud. It is smarter to determine the whole arrangement as opposed to the outcome.

· Benefits: If an application or innovation has actual properties, then, at that point, getting to the cloud can cause lawful issues. CSPs accompany their qualities and norms. Ensure you know these individuals prior to continuing on.

· Latency: The log jam in client interest and cloud administrations. This influences the quality and effectiveness of the hardware. Also, in cloud benefits, the circumstance is just deteriorating. Ambitious beginning occasions can prompt deferrals, particularly in these circumstances: cameras, cloud addresses, and other equipment. It is fundamental for find ways to decrease the deferral out in the open cloud applications. One can begin by distinguishing the regions where critical issues happened and eliminating them. One can likewise check for delays by keeping the expense of the workplace near the cloud office. Important advances have been taken to oversee misfortunes, and huge changes have been made, however there will in any case be a few misfortunes

· Current settings: One follow a rendition that isn't over the top expensive and simple to keep up with, however is seeking after the keen alternative. So you wouldn't consider it a pointless issue to get into that cloud. Improvement: This danger is on the grounds that the cloud specialist co-op may not generally have the option to offer top notch types of assistance. Ensure you realize what cloud specialist organizations are working, how to investigate the help, and how to deal with the application rapidly. On the off chance that the cloud seller deals with the hardware, water influences the degree of creation. Sharing issues: When public foundation is utilized, there is consistently the danger that one application will utilize another's assets. The right projects and gadgets can't be confirmed without looking precise simultaneously. Continuously face the challenge of acting naturally

· Vendor Lock: The way to moving in the mists is to lock the merchant. You will be unable to change starting with one item or administration then onto the next. This is chiefly because of utilization of exclusive innovation and merchant assets. The fourth critical danger of seller access is the danger of information move, the danger of exchanges, the danger of framework, and the danger of HR. This can likewise prompt higher transformation costs. In the event that you follow the cloud model, you will experience difficulty returning to the guaranteed model

· Match: Existing framework isn't viable with cloud specialist co-ops. For this situation, you need to roll out certain improvements and actually take a look at consistence prior to proceeding.

· Cloud computing technology is fast becoming a solution to the problems that plague organizations and tax IT services for years. Internal IT maintenance and management are a heavy burden on businesses large and small. Small and midsize businesses have smaller budgets and fewer resources, while large organizations have large amounts of data to manage, a high volume of traffic, many and diverse devices that operate on a network, and a variety of internal and external applications to be exploited. Each presents its own challenges.

Cloud computing offers a solution to many of the problems associated with these problems, from heavy loads in small departments to efficient management of large data warehouses. Distributed computing depends on a system of remote and conveyed virtual servers associated with the Internet to store, oversee, access, and procedure information, just as to run applications, instead of executing these capacities inside. Despite the practical benefits, cloud computing should not be embraced without a deep understanding of cloud security issues. In cloud computing, an organization entrusts valuable data to a group of exploited virtual machines to perform a task, each component of which presents an entry point to the system. These dangers can be alleviated, and a decent comprehension of distributed computing ought to incorporate a conversation of the dangers and how to moderate them.

1. At the endeavor level - before the specialized relocation comes the test of sorting out the right cloud reception guide - what would it be advisable for you to move and in what request to give the most advantages while staying inside satisfactory danger edges?

2. How would one quantifiable measure the new danger profile of your objective scene and choose where it is important to spend on relief techniques? With cloud-based administrations we normally track down that the entire assistance is up or down so when they flop then, at that point, that is an enormous lump of innovation support your business needs to proceed without.

3. Very much planned mix to different frameworks. You should conclude whether to use on premise middleware and run it in-house or use cloud-based suppliers. This will likewise give your mix design an alternate geography relying upon where you put your ESB for that predefined cycle area. In setting of public mists your vehicles should cross across firewalls and be secure.

4. Executing strong yet financially savvy administration recuperation - as shrouded in the other: What changes in case any is the studies making to keep away from future AWS personal time?

5. Getting the advantages out of the cloud model. Driving out the expense investment funds from the new model isn't direct. Great endeavors should successfully re-arrange the IT capacity to leave it lean and light-footed while as yet being skilled to administer every one of the suppliers and backing/improve the design as new business necessities approach.

6. Planning and growing a fitting help association. Every supplier at the SaaS and PaaS levels brings prerequisites for new ranges of abilities into the help association. With the present divided scene of the cloud this could mean a lot more unique ranges of abilities that you have today.

Would it be a good idea for you to develop the abilities in-house to help it or attempt to rethink this? Creating reevaluating packs with a steady arrangement of exercises inside a space and is additionally huge enough to make it beneficial to re-appropriate can be a test.

It’s the straightforward things that individuals for the most part disregard that makes greatest difficulties in the cloud movement. For instance, something individuals neglect is network between the clients, actual server farm and the cloud jobs. Since cloud responsibilities get launched 'on request' guaranteeing that right access control rules exist is significant. Clients will in general open a totally open opening to the server farm which is a HUGE security hazard. Right arranging and apparatuses can work on the movement.

The cloud offers a tempting answer for large numbers of these business issues. As the cloud has acquired notoriety and acknowledgment in the figuring scene, an ever increasing number of organizations are doing the switch. Indeed, 83% of big business jobs are relied upon to work on the cloud by 2020.

During the movement to the public cloud, the normal issue that most organizations face is a distinction between what they have on-premises and how the assistance is utilized they will purchase.

Data security

Indeed, public cloud suppliers assume liability for their mists' security, however they are not liable for your applications, workers, and information security. At the point when your public cloud supplier says it is in finished consistence with guideline, don't consider it as 100% consistent. You will in any case be needed to scramble and get your information. Further, you would have to put resources into a set-up of devices, for example, malware, antivirus, and secure web passages from different cloud specialist organizations to shield your information from digital dangers.

Ensure you pose the accompanying inquiries prior to drawing in with a cloud merchant.

· Do you guarantee to secure my information?

· How you shield information from undermined?

· Do you have experts ready if something turns out badly?

Seller lock-in

This has three classes: application lock-in, information lock-in, and foundation lock-in. The dangers of Data lock-in happen during information extraction and changing them to other cloud seller's workers. You can limit these dangers by drawing in with a cloud supplier with utilizing experience moving huge application items alongside their relating datasets. Application lock-in chances emerge when you foster cloud-local applications. Essentially, this is because of tedious and exorbitant reconfiguration of these applications to work on an alternate stage. However, there are projects to eliminate these kinds of uses. Further developing application versatility utilizing a virtualized compartment offers an elective choice.

Personal time

Clearly, you will not think twice about help quality when benefiting administrations from the outsider. Associations expect total information availability when their information is on cloud whenever from anyplace. The test most organizations face is they can get to information just through the web association. Thus, helpless web association implies troublesome cloud administrations and higher information openness hazards.

Expertise lack

One of the essential obstructions is discovering individuals who have the right stuff to deal with a successful movement. A deficiency of experts with the fitting range of abilities might be the trickiest test to cloud reception today. In the event that you don't have the assets (or karma) to recruit cloud relocation ability, you'll need to discover different arrangements. The best long haul plan is to develop cloud abilities inside, a system that gives a few benefits.

Monetary Cost Monetary concerns address pretty much every test of movement. There's simply the prompt expense to make the actual relocation notwithstanding the drawn out monetary dangers of low or slow reception and preparing after the movement has happened.

Top expenses of relocation include:

· Modifying application engineering for the cloud

· Putting resources into individuals and instruments expected to relocate effectively

· Preparing clients on the new frameworks

· Execution issues including idleness, interoperability, conditions on non-cloud applications, and personal time

Transfer speed costs

Like any significant change to your venture, a relocation to the Cloud will likewise show up with a couple of difficulties, particularly during the beginning stages of this excursion. Nonetheless, with the right vision and an appropriate Cloud Service Provider (CSP), you wind up getting great outcomes. The chief test when moving to the Cloud is choosing whether it will be a "lift and shift", or a stage insightful relocation to the Cloud. By and large, a staged change to the Cloud is the most ideal choice, as bottlenecks are settled as and when they come. The following significant test is incorporating heritage programming and applications with your cloud foundation. This is one stage which will significantly affect the general achievement of your change to the Cloud. Most heritage applications need a significant redesign before this should be possible.

Contributions of the Testing Reviews

Cloud migration is basically the same as actual development, then again, actually it includes moving IT information, applications, and cycles from specific server farms to different server farms, instead of pressing and moving actual resources. Various associations are moving to the cloud, yet 73% of cloud movement adventures require a year or continuously, as shown by a report by Velostrata and Dimensional Research released Wednesday. Of this 73 %, about 30% said they calculated their movement would take some place in the scope of one and two years.

The advantages of utilizing the cloud are various, yet the off-site relocation interaction of an organization's IT frameworks (while guaranteeing ordinary business for staff, clients, and the store network) isn't without difficulties. While putting resources into the cloud implies less on location equipment and less applications to oversee for IT managers, it doesn't really mean less work to be finished. Distributed computing depends on a lot of observing to guarantee merchants are consenting to support level arrangements, are on a careful spending plan, and cloud development is limited.

The Cloud Migration is the most common way of moving applications and its foundation (On-premises or from another Cloud supplier) to the cloud supplier of your decision. It gives associations the adaptability to bring down costs, become spry, increment accessibility, decrease idleness and receive every one of the rewards of the Cloud.

Testing Migration Process

Cloud movement follows a bunch of predefined steps that the Organizations embrace as per the extent of their relocation. AWS, GCP, and Azure follow a bunch of best practices illustrated as effective relocation rehearses. Here are the rundown of stages for the movement:

Evaluate:

In this stage, associations evaluate the application information, framework, and conditions. There is an intensive appraisal of the current and new climate to build up conditions, possession, and execution assumptions.

Assemble/Plan:

In this stage, essentially includes a ton of preparation of the jobs and relocation measure. It incorporates security and personality the executives, understanding the association structure, organizing, arranging applications, and fostering a serviceable movement procedure.

Move/Deploy:

In this stage, you configuration, carry out, and execute an arrangement interaction to move jobs to the new Cloud supplier. Contingent on the relocation procedure picked, Organizations may likewise have to configuration/refine the Cloud foundation to manage new requirements.

Advance/Modernize:

In this stage, you can exploit cloud-local components and further develop execution, adaptability, debacle recuperation, and later influence AI and man-made consciousness abilities. Likewise, this progression manages guaranteeing security and uses all the underlying cloud components to improve execution.

A cloud movement system is a created situation including the calculation of its execution or bit by bit guide. Since the fruitful move to the cloud relies upon the intricacy of the application plan, the development of utilization coupling, and the measure of work you are prepared to put resources into relocation. As a procedure, we propose a successive way to deal with cloud relocation that empowers a bit by bit move.

Movement to distributed computing isn't pretty much as basic as it might appear. The shortfall of a legitimate planning stage opens up security openings in your framework, or prompts pointless expenditures and forgetting about significant information.

Along these lines, here's the agenda of steps you need to follow to guarantee this interaction will go without a hitch:

· Characterize key sources of info.

· Pick the supplier.

· Survey your framework's engineering.

· Make an arrangement.

· Characterize what information should move onto the cloud and what to move first.

· Rethink security systems and procedures.

· Ensure that you'll keep up with consistence as you move into the cloud.

· Sort out the number of individuals are allotted to play out the necessary errands and how well their abilities are adjusted to cloud reception endeavors.

· Work with authoritative correspondence and information sharing. Cloud movements are multi-step projects that include cautious arranging, execution, and observing. I've expounded on what I consider to be six keys for a fruitful cloud relocation, including: Pick ELT or ETL: The initial step is picking the right information mix stage to stack each of your information into the cloud information stockroom. For this decision, I suggest going with an ELT stage rather than ETL. ELT concentrates and loads the information into the CDW quicker and all the more productively, saving change for some other time.

· Auto-sync the cloud relocation: The subsequent stage is simply the sync. Little, unremarkable undertakings during cloud relocations, for example, making pipelines for every individual information base table, are a gradual but inevitable demise. Zero in on arrangements that dispense with these specialized snort errands through provisions, for example, auto-matches up.

· Guarantee information quality: Once a relocation is performed, you need to guarantee that information in the source and target match one another. This can appear to be a needle in sheaf activity, yet a few arrangements exist that can computerize this lumbering system.

· Set up consistent adjusts - After the movement is finished and all information coordinates, it's an ideal opportunity to set up a ceaseless sync among source and target. That way, everything stays continually cutting-edge. One can do this with a pipeline scheduler, or with a close prompt arrangement, for example, change information catch. Those are a portion of the primary strides, in a super dense nutshell. Obviously, every group's cloud movement is unique, and will rely upon the one of a kind conditions of the circumstance.

Factors to consider in the migration process

Accepting that you are asking as an association, and not a person, the following are a couple of things you should investigate: Licenses: Moving to cloud implies your business is working at the same time from numerous areas (probably over states or countries). Your current licenses, subsequently, may presently don't be pertinent. Look into it.

Programming Compatibility: Your current programming/work process arrangements probably won't be viable with the product fueling the far off workers.

Vacation: Moving to cloud implies that assuming the workers are down, your whole business is stale. Ensure you incorporate a condition for personal time remuneration from your specialist co-op.

Protection: Remote workers may go through harm because of normal/man made fiascos. This could deteriorate your business either to some extent or completely. Ensure your workers are guaranteed from each conceivable danger.

Business Implantation Questions

Does an application overhaul require new equipment? Provided that this is true, an organization can keep away from an exorbitant equipment buy by moving the application to a cloud administration. This exchanges the capital spend to a month to month working spend, and future overhauls will not need the high CapEx spend. This is typically a monetary thought.

Does the application have to meet any consistence guidelines (HIPPA, PCI, FISMA)? Assuming this is the case, this can firmly influence if the application needs to stay in-house, and regardless of whether cloud is a reasonable help or whether another facilitated administration (e.g., Managed Hosting) may be more fitting. This is a functional thought.

Is it an undertaking application or a web application? Each "type" handles scaling and disappointment situations in an unexpected way. There are distinctive cloud stages to address diverse the issues of various applications. For instance, a VMware-based cloud may repeat the customary endeavor application's equipment arrangement all the more intently, while a public cloud (Amazon EC2 or a cloud dependent on Openstack) will offer a help more appropriate for web-scale applications. This will be a functional thought.

Does the application profit from at least one of the five essential attributes of a cloud?

Wide organization access (i.e., Internet-open instead of nearby LAN)

On-request self-administration access (i.e., doesn't need a help ticket for an end-client to empower administration). Asset pooling (ie, virtualization to assist with grouping administrations across different hubs to acquire adaptability and execution)

Fast versatility (ie, the capacity to increase benefits or down depending on the situation)

Utility or estimated administration (the capacity to meter use and charge in like manner - either as in-house chargebacks from an IT division or to the client's administration)

In the event that the application doesn't profit from no less than one of these attributes, it may not be appropriate for cloud organization. This is a functional thought. Recall that cloud, very much like any innovation sending, is only a necessary evil. Few out of every odd application is an appropriate fit for the cloud, and few out of every odd organization is prepared to utilize cloud administrations. Yet, start with these contemplations to assist you with settling on that choice.

Conclusion

In conclusion, cloud computing has gained popularity over the recent past, and many cooperate organizations are adopting the technology in executing its operations. Once organizations have agreed to adopt cloud technology, data ought to be moved from the areas where it is stored to cloud platforms. This is known as data migration. Several cloud risks impact data migration. The risks make it difficult to migrating data successfully and using it for the intended purposes. Different cloud servers determine the type and frequency of the risks are hitting data migration processes. Three common cloud providers are Saas, PaaS, and IaaS. The risks associated with data migration include the perception of the data migration process, the data migration strategies applied, latency and poor visibility, data loss, and wasted costs. The possible solutions to the highlighted issues include utilizing the costs for essential services to avoid wasted costs, utilization of the right tools to avoid latency, selection of the right procedures, and tools to ensure that the perception and migration process is completed in the right way.

Another significant test when moving to the Cloud is characterizing clear destinations behind this essential move. When the reasoning has been set out, the following significant test is changing over that vision into the real world, as this requires steadiness and an internal compass. Finally, there is the test of dealing with the HR with the right range of abilities to pull off a cloud movement. This is the place where the job of a Cloud Service Provider (CSP) like din Cloud truly becomes possibly the most important factor, as we make our customers along each stride of the movement. None of these difficulties represents a danger to your movement over to the Cloud. In any case, appropriate arranging and execution will assume a critical part in accomplishing this movement inside the specified time and quotes.

Summary

Managers need to understand and investigate the computing opportunities that are established to protect frameworks and information from security breaches using given methodological frameworks. Therefore, the research methodology will enable them to conduct an investigation on the impacts of cloud computing on data migration. The research design, paradigm, statistical tests, and sampling procedures should be aligned with the type of data that will be collected and the objectives of the research.

The integration regarding the quantitative as well as the qualitative data in the kind of a mixed methodology type of study is considered to have a high level of potential to facilitate the strengthening of the identified rigor along with enriching the identified analysis as well as findings regarding any of the study Evaluation. It is essential that researchers are careful in their identified selection of the mixed methods which are most appropriate for the facilitation of the identified evaluation of the various questions of the research and in meeting the various research resource constraints. There is the need for the evaluators in a mixed method type of study to facilitate deeper as well as enhance a comprehensively meaningful learning in regard to the appropriateness as well as Implementation of the research models (Watkins & Gioia, 2015).

Chapter 3 - Research Methodology

Introduction

Cloud computing is a model for delegating IT administration and includes periodic access to the organization when needed, as well as access to robust and flexible self-management using an often virtualized asset pool. Through these highlights, distributed computing has the potential to improve the way business and IT work by offering fast startup, adaptability, flexibility and cost productivity. Despite the fact that distributed computing offers attractive advantages and practical alternatives to facilitating and expanding IT, new risks and opportunities for security breaches are presented. Standards, agreements and controls are the essence to support directors in the provision and protection of conditions and information framework. Managers need to understand and investigate the computing opportunities that are established to protect frameworks and information from security breaches using given methodological frameworks. This paper evaluates a research approach to analyzing the impact of cloud computing opportunities on security and future headlines on data migration to a service over a network.

Research paradigm

The research paradigm suitable for this study is qualitative. This is a statistical research strategy that includes obtaining information through open-ended and conversational means (McClintock, 2018). This technique is not only about what participants think, but also why they believe in what they hold. For example, this method can be used to examine cloud computing, its risks on the future directions on data migration, and goals for improving it. Methodological perceptions indicate that the number of men who visit this shop is greater.

Qualitative paradigm relies on sociological controls such as psychology, human science, and anthropology. In this sense, qualitative research strategy takes into account top-down tests and additional tests and is addressed to respondents depending on their reactions, while the researcher is constantly trying to understand their inspiration and mood (McClintock, 2018). When a group makes decisions, the researcher can use statistical surveys to draw conclusions. The consequences of qualitative strategies are more binding and assumptions can be effectively derived from the information received on the risks of cloud computing on the future directions of data migration.

This strategy begins in the social and behavioral sciences. Today, the reality is increasingly confusing and it is difficult to understand and see people's opinions. The qualitative online research strategy makes this clearer because it is more open and comprehensive (McClintock, 2018). Scientists use qualitative research methods when they will need to capture appropriate internal and external experiences, based on risks associated with cloud computing.

Mixed Methodology

The research paper aims at utilizing mixed methodology for enhanced efficiency as well as feasibility for the research process. The term mixed methodology is usually utilized to define the emergent methodology regarding the research process which is involved in advancing the identified systematic integration regarding the quantitative as well as the qualitative data within an identified single investigation for the sustained program regarding inquiry. The following research paper will focus on the qualitative research methods but it will integrate quantitative data into the qualitative data thus making it to have a key focus on mixed methodology for increased research efficacy (Curry & Nunez-Smith, 2015). 

The fundamental premise regarding this type of methodology is that such type of integration permits a more type of complete as well as synergistic use regarding the data than to separate the quantitative as well as the qualitative type of data collection as well as analysis. The identified evaluation regarding cloud computing and Information technology aspects is essential in the provision of an effective type of opportunity for the mixed types of method. It helps in the contribution of learning regarding the most appropriate practices in the manner in which to implement integration of cloud computing in order to enhance efficiency as well as efficacy in the achievement of the outcomes of cost as well as increased quality and information technology systems management.

Mixed methods type of research is a type of research that is considered to have originated in the identified social sciences as well as it has currently expanded into the identified health as well as the medical sciences entailing various fields like nursing along with family, medicine, social work, Information Technology among other fields. In the previous years, its various procedures as well as processes have been advanced as well as refined so as to effectively suit a variety of the identified research questions that are usually present in researches. These identified types of procedures entail development of rigor along with the provision of the alternative mixed methods types of designs, specification of any shorthand notation systems for the description of the various designs in an aim to enhance the increment of communication across a wide range of fields as well as visualization of the various procedures entailed in a research via diagrams and in the notation of the various research questions which can specifically be of advantage to the integration as well as in the development of rationales for carrying a variety of types regarding the mixed method kind of studies (In Baran & In Jones, 2020). 

The key features regarding an appropriately formulated mixed methods study in the research process will entail five key considerations. First and foremost, there will be the collection as well as the analysis of the quantitative data which will entail the closed ended type of data as well as open data which is associated with the qualitative type of data. Nonetheless, another key consideration entails the utility of rigorous processes in the collection as well as in the analysis of data that is appropriate to every methods tradition that will be utilized in the research process such as making sure that the effective sample size for the identified quantitative as well as qualitative analysis. There will also be the integration of the data along with information in the data collection process along with analysis and even discussion.

Moreover, another key consideration is the use of the various procedures as well as techniques that are involved in the implementation of the qualitative as well as quantitative types of components concurrently along with sequentially with the same type of sample or with distinct types of samples. Finally, the framing of the prospective within the identified theoretical models regarding the identified research like within the identified social constructionist model which is entailed in seeking to comprehend a variety of perspectives on a single issue would be used in characterizing various elements of the research (Curry & Nunez-Smith, 2015). 

Mixed methods will be an idea as well as an appropriate technique along with strategy for this research paper in carrying out the assessment of the complex types of interventions in the procedures. Mixed research methodology is an effective methodology that can be used to perform five key purposes in the research process. First and foremost, it will be used to help in the validation of the various findings utilizing the quantitative as well as qualitative type of data associated sources. Evaluators can utilize a convergent type of design to facilitate the comparison of findings from the identified qualitative as well as quantitative data associated sources.

It entails the collection of the qualitative as well as the quantitative type of data at the same time or almost simultaneously as well as carrying out the assessment of the Information through the use of parallel constructs for these kinds of data. It will also help in the analysis of both types of data separately thus enhancing efficiency and in the effective comparison of outcomes via various procedures like the side by side comparison identified in a certain discussion. It is also vital in the identified transformation of the identified qualitative data associated sets into the identified quantitative scores or in the joint displaying of both types of data.

Nonetheless, it will be essential in facilitating the utility of qualitative data to enhance the exploration of the quantitative types of findings. This type of explanatory sequential design usually entails two types of phases. The first phase is associated with an initial quantitative instrument while the second stage entails a qualitative data collection stage whereby the identified qualitative stage builds in a direct way on the identified outcomes from the identified quantitative stage. In this manner, the identified quantitative outcomes are illustrated in a more comprehensive via the identified qualitative data. This will help in facilitating easier as well as enhanced understanding of the various experiences of different people to match up to the identified instrument outcomes (Curry & Nunez-Smith, 2015). 

Moreover, the mixed methodology will be vital in the research in helping in the development of the identified survey tools. Yet another type of the mixed methods associated study could help in supporting the identified developed regarding the effective quantitative tools that would offer the accurate measures within the identified context of the research. This type of exploratory sequential design entails first the collection of the identified qualitative exploratory data as well as in the effective analysis of the data and in the utility of the identified findings to advance an identified psychometric tool effectively adapted to the identified sample that will be under study (Morgan, 2013). 

From this type of research method, there is the possibility of the development of a tool through the use of a rigorous type of scale advancement techniques which is then tested via the use of a sample. In this manner, it is possible for the identified researchers to utilize the mixed methods type of approach to come up with as well as test an identified psychometric tool which is considered to improve on the existent types of measures. It will help in using the identified qualitative data that will be presented in the research to facilitate the augmentation of the quantitative outcomes in the study. An outcomes type of study, for instance the randomized as well as the controlled trail with the identified qualitative type of data collection as well as analysis is added it is called an embedded type of design. Within this kind of an outcomes type of study, the identified researcher is entailed in the collection as well as analysis of the quantitative along with the quantitative type of data.

The qualitative type of data can be Integrated into the identified study at the associated outset as well as during the identified interventions and even after the given interventions so as to assist in the explanation of the outcomes. Mixed research methodology will help in the engagement of the Community associatied stakeholders. This type of approach is considered to be an example of the multiphase design. This developed type of mixed methods technique entails the Community associatied participants in a variety of the quantitative along with the qualitative types of phases regarding the research to enhance changes and the relevant models.

This type of design would help in involving the primary stakeholders associatied with the research (Creswell, 2014).  Key stakeholders take part as being co researchers in this project thus will be vital in offering input regarding their various needs along with the ways to address them and in the implementation of the relevant changes. These five research associated designs that are entailed in the mixed method type of research are considered to be essential in the evaluation of the various types of models used in the research.

Research Design

Descriptive Research Design will be appropriate for this research. This approach is a plan based on a theory in which the scientist primarily wants to present a topic that is the subject of research. It is used for contextual inquiry, naturalistic perception and verification such as the cloud computing risks on future directions on data migration (Cardano, 2020). This technique includes a variety of information, research and introduction. This allows the analyst to make difficult statements clear so that others can better understand the requirements for this type of review. Without a clear proclamation of the problem, the researcher will be failing to do a graphic study, but will instead a research study (Merriam & Tisdell, 2015). Clarify research plans to accurately and effectively describe the population. Hence, this design will be appropriate in answering the research questions. Unique study configurations may employ multiple research strategies to investigate at least one factor.

Sampling Procedures for this research

Purposeful sampling procedure is a type of likelihood test in which researchers rely on their judgment when selecting people from a population who are interested in their research. This research technique expects scientists to have earlier information about the motivations behind the research to select and approach appropriately qualified members (McClintock, 2018). Purposeful tests are used when there is a need to reach a specific group of people, because all research members are selected because they fit a certain profile. Focused research is when analysts generally consider how to build exemplary populations, whether they are real-world examples of more well-known populations in the field or not. Hence, this sampling procedure will enable researchers in this context to recruit suitable participants with knowledge about cloud computing and their impacts on their operations, particularly in data migration.

Survey sampling will also be used at some point of the research to enhance efficiency. Survey sampling is a type of sampling which is involved in the description of the identified process regarding the selection of an identified sample of factors from an identified target population with an aim of carrying out a survey. In this case the term survey may be used to define various distinct types as well as methods used in observation purposes. In the identified survey sampling, there is usually the use of questionnaire utilized in the measurement of the identified features as well as attitudes regarding individuals.

Distinct ways associated with contacting members associated with a sample once they have been effectively selected is considered to be the subject regarding the survey data associated collection. The purpose associated with sampling process is considered to be the minimization of the identified cost as well as the identified amount of work that it would take to carry out a survey on the whole target population. A survey that is involved in the measurement of the whole target population is called complete enumeration.

It is important to note that survey samples can be broad divided into two major kinds which are the probability as well as the non-probability types of samples. The former is involved in the Implementation of the identified sampling plan with an identified specified type of probability. This will be the key focus of the study since surveys that are not based on this type of surveys are usually associated with higher levels of challenges in the measurement of their bias. This is a prominent method that is utilized in the statistical inference.

Statistical Tests

Statistics are the actual test plans that supervisors use to make assumptions about information. This test allows researchers to focus on the selection based on the sample of observed information (McClintock, 2018). The Z-test is the de facto test that determines whether two populations perceive them to be different when change is known and sample size is very large. The Z-test compares population means. The boundary values ​​used are the population mean and population standard deviation. This test is appropriate for this study since it used to confirm the speculation that the samples taken have a site with the same population.

Limitations

Mixed method types of studies are considered to be challenging to effectively implement especially when they are utilized in the evaluation of the various complex types of interventions like IT processes. The following research process is likely to face some limitations. First and foremost, there is the increment in the identified complexity regarding the evaluations processes. Mixed methods types of studies are considered to be complex to plan as well as carry out. They need careful planning so as to facilitate the description of all the various aspects associated with the research process including the identified study sample for the identified qualitative along with the quantitative portions and in the identified plan associated with the integration of the given data. Integration of the quantitative with the qualitative methods is considered to be difficult for most of the researchers.

Another key limitation regarding this study is that mixed methodology is dependent on the multidisciplinary team of the researchers. Carrying out a high quality type of study that has mixed methods needs a multidisciplinary type of team of researchers who in the identified service regarding the larger study ought to be to bold to the identified methods that may not be their identified field of expertise (Sreejesh & Mohapatra, 2014). Finding effective qualitative professionals who are also as comfortable in the discussion of the identified quantitative analyses as well as vice versa can be a big issue in most of the environments.

This is given the fact that each of the identified method ought to follow its own set of standards for the rigor as well as in making sure that each of the given method is of high quality. Embedded samples whereby the identified qualitative subsample is considered to be embedded within the identified larger quantitative type of sample can be essential in instances regarding inappropriate statistical power. There is also the need for increased resources. These methods are usually labor intensive as well as need higher level of resources and time than those that are required to carry out a single method type of study (Watkins & Gioia, 2015).

Summary

Managers need to understand and investigate the computing opportunities that are established to protect frameworks and information from security breaches using given methodological frameworks. Therefore, the research methodology will enable them to conduct an investigation on the impacts of cloud computing on data migration. The research design, paradigm, statistical tests, and sampling procedures should be aligned with the type of data that will be collected and the objectives of the research.

The integration regarding the quantitative as well as the qualitative data in the kind of a mixed methodology type of study is considered to have a high level of potential to facilitate the strengthening of the identified rigor along with enriching the identified analysis as well as findings regarding any of the study Evaluation. It is essential that researchers are careful in their identified selection of the mixed methods which are most appropriate for the facilitation of the identified evaluation of the various questions of the research and in meeting the various research resource constraints. There is the need for the evaluators in a mixed method type of study to facilitate deeper as well as enhance a comprehensively meaningful learning in regard to the appropriateness as well as Implementation of the research models (Watkins & Gioia, 2015).

Chapter 4 - Research Findings (Draft)

Introduction

Cloud computing is an innovative and trending technological service approach that has assured the future of technology to be dependent on the internet. The service has numerous traits which have propagated its success and speed of adoption. They include the high flexibility of the service and technology, robust infrastructure, and ease of adaptability (Hussain et al., 2017). However, when addressing cloud migration, the technology exposes user data to numerous security risks. As identified by Hussain et al. (2017), during the migration process, where data is moved to the cloud services, incomplete transfers, corrupted files, and missing files resulting in data loss. The notion was expressed in the literature review which further identified that cybercriminals pursue insiders such as employees who facilitate the theft of critical credentials that can allow the tampering of cloud-stored data and information.

Therefore, due to the vulnerabilities associated with cloud migration, the objective of the research findings is to identify the scope of the problem by focusing on specific research questions. As the study will exploit mixed methodology research, it will source most of the data and information from secondary sources (Hussain et al., 2017). The reasoning is founded on the fact that each of the peer-reviewed materials will offer a detailed understanding of the issues facing cloud migration security. Moreover, the research material will be sourced from recent databases allowing for the assessment of up-to-date information. The importance of the findings is expressed by Hussain et al. (2017), who state that efficient functionality is highly dependent on how knowledgeable providers are concerning data migration.

Participants and Research Setting

As previously mentioned, the research was to primarily rely on secondary data, however, the primary data employed in the study mainly entailed the use of interviews and surveys. The objective of the interview was to assess the public addressing the concerns of data migration and the potential security risks. The interview process was preferred for numerous reasons moong them was the ability for high parentage returns and increased details (Heap & Waters, 2018). The results attained offered an in-depth understanding of the issue from the public’s perception. Moreover, industry professionals will be interviewed to appreciate their contribution to the change of the problem (Heap & Waters, 2018). The core limitation associated with the interview process is the long duration of time needed to amass data from the large sample size. Moreover, secondary data offers similar values as the primary data collection technique (Heap & Waters, 2018).

Alternatively, surveys were employed for the main goals of creating a critical dimension to the research. Moreover, it accomplishes the goals of qualitative research methodology as it is contributing the social aspect of the research query. The core benefits of the technique include its inexpensive nature which is further propagated by the exploitation of social platforms. Additionally, they offer a more applied resolution to data collection (Heap & Waters, 2018). It targets a specific demographic allowing for the data to be refined to the needed information once processed. The limitations associated with the use of surveys include the possibility of dishonest or misinformed responses which limit the efficacy of the results (Heap & Waters, 2018). Additionally, the difference in people’s perceptions of the questions would also impact the result's accuracy.

Analyses of Research Questions

The research question includes;

1. To leverage the benefits of cloud computing do we compromise on the data security concerns as cloud computing is a shared environment?

The research question acknowledges the scalability of online cloud computing brought about by the scope of the online environment. The ever-growing size and information on the internet are increasing in capacity and cloud computing is taking advantage of the surge. However, the security risks associated with data migration, as it exposes clients to corrupted data or missing files during transfers. The loss of data has organizational impacts, however, the question addresses the value of the benefits of cloud computing comparable to the security risks such as insiders, malware due to shared environments, and lastly, lack of physical access control

2. What are the cloud security concerns, risks, and how do plans to overcome them?

It was previously mentioned that cloud computing has brought about numerous benefits such as the maturity of numerous markets taking advantage of the technology (Hammami et al., 2017) However, it is also critical to address the concerns associated with technology. As previously mentioned by Gudisagar et al. (2017), data migration is a critical concern for managers as relies on the fundamental balance attained from each party being confident of the security of the interacting party. Data migration addresses one of the numerous risks, other security concerns include data loss and wasted costs. Data losses as previously mentioned are a common attribute of cloud computing as unexpected errors can corrupt data regardless of the procedure employed to prevent it (Gudisagar et al., 2017). Lastly, waste costs address the services no offered yet paid for. With numerous providers available, it is essential to address and assess cloud security concerns, risks and develop mitigation strategies.

3. Security and Risks associated with data migration over a network from traditional systems to cloud computing plans to overcome.

The prospects of data loss during migration are possible however, there are other risks associated with data migration such as semantics risk where a semantic error, where data is transferred to a different field in the new media, results in inconsistencies and causes numerous other issues. According to Tchernykh et al. (2017), the risk of extended downtime can cause the reduced speed of data transfer bringing about potential security risks.

4. What would be the proposed solution to overcome the risks that are associated with cloud computing?

For effective mitigation strategies to be developed and implemented it is critical for cloud service providers and clients to appreciate the scale of the vulnerability they are exposed to. Some of the proposed solutions such as end-to-end encryption, according to Abdou Hussein, (2021 it is a functional approach to mitigating the tasks. End-to-end encryption protects data from unauthorized access during migration (Abdou Hussein, 2021). Regardless, the example demonstrates the practicality of the solutions addressed at curbing the security issues.

Summary

Cloud computing has progressively become a core attribute of modern professionalism as it has numerous benefits. However, appreciating that cloud computing requires data migration as the principle operation of the technology is the availability of information for use over the internet or network. During the process, data is exposed to numerous risks and security concerns. The research questions address each of the fundamental issues affecting the technology. Firstly, if the benefits of cloud computing surpass the drawback, secondly, the various risks and security concerns. Thirdly, the risks of data migration over a network and finally proposed solutions.

References