Skip to main content

Cloud Architecture

Cloud design frameworks and reference architectures

9
Standards
3
Best Practices

Standards

AWS Well-Architected Framework 2023

Adhering to AWS standards during software migrations is crucial for minimizing risks, ensuring compliance, and optimizing performance. This comprehensive guide outlines key requirements, practical implementation strategies, and tools to help teams navigate the complexities of the migration process effectively.

by Amazon Web Services

aws-well-architected-2023

Azure Well-Architected Framework 2024

Adhering to Microsoft standards during software migrations is essential for ensuring data integrity, security, and compliance. By following best practices and utilizing the right tools, teams can mitigate risks, enhance user trust, and facilitate a successful transition to new systems.

by Microsoft

azure-waf-2024

Google Cloud Architecture Framework 2023

Technical standards are crucial for ensuring successful software migrations, providing guidelines for security, interoperability, and performance. Adhering to these standards mitigates risks, assures quality, and enhances stakeholder confidence, leading to smoother transitions and better outcomes for organizations.

by Google

gcp-architecture-2023

TOGAF 10

The Open Group standards provide essential guidelines for managing software migrations, helping organizations minimize risks and enhance stakeholder confidence. By adhering to these best practices, teams can ensure alignment with business objectives, maintain comprehensive documentation, and implement effective quality assurance measures. This structured approach ultimately fosters successful transitions to modern technologies.

by The Open Group

togaf-10

NIST Cloud Computing Ref Arch SP 500-292

NIST standards are crucial for ensuring secure and compliant software migrations, focusing on data protection, risk management, and regulatory adherence. By following these guidelines, organizations can mitigate risks associated with legacy system transitions, enhance stakeholder trust, and avoid compliance pitfalls during the migration process.

by National Institute of Standards and Technology

nist-ccra

CNCF Cloud-Native Definition v1

Understanding and adhering to CNCF standards is critical for small and mid-sized teams planning software migrations. These standards ensure interoperability, scalability, and security in cloud-native environments, guiding teams through the complexities of modern migrations with practical strategies and tools.

by Cloud Native Computing Foundation

cncf-cloud-native-v1

OMG MDA Guide v1.1

Understanding and adhering to technical standards during software migrations is essential for ensuring data integrity, security, and compliance. This guide outlines the key requirements, practical strategies, and tools necessary to facilitate a smooth transition, while addressing common challenges that teams may face in the migration process.

by Object Management Group

omg-mda-1-1

BIAN Service Landscape v10

Adhering to BIAN standards during software migrations is essential for ensuring interoperability, standardization, and efficiency within banking systems. This guide outlines the key requirements, compliance considerations, and practical steps for successful migrations, empowering teams to navigate complexities confidently and effectively.

by Banking Industry Architecture Network

bian-v10

CBL-Mariner OS Spec 2.0

Adhering to Microsoft's migration standards is essential for ensuring data integrity, security, and compliance during software migrations. By following established guidelines, teams can mitigate risks, meet regulatory requirements, and enhance collaboration. Implementing automated tools and a structured approach will facilitate a smooth transition, while addressing common challenges can further optimize the process.

by Microsoft

cbl-mariner-2-0

Best Practices

AWS Well-Architected Framework

A set of cloud design principles and check-lists for building secure, high-performing, resilient, and efficient workloads on AWS.

by Amazon Web Services

Azure Well-Architected Framework

Microsoft’s five-pillar guidance (reliability, security, cost, performance, ops) for designing and operating workloads on Azure.

by Microsoft

Google Cloud Architecture Framework

Prescriptive guidance covering reliability, cost, performance, security, and operational excellence for GCP workloads.

by Google Cloud
08:53Z[DRIFT]Next.jsNext.js is 2 major versions behind (current: 14.2.35, latest: 16.1.6).
08:54Z[OWASP]A03:2021 – InjectionUnescaped user input rendered into HTML template (src/routes/admin.ts:42)
08:52Z[SCANNER]semgrepscan signature set is up to date
08:48Z[DRIFT]of dependencies are 2+ major versions behind in acme.39% of dependencies are 2+ major versions behind in acme.
08:50Z[OWASP]A02:2021 – Cryptographic FailuresJWT secret is hardcoded — use environment variables (src/auth/jwt.ts:18)
08:45Z[SCANNER]gitleaksscan signature set is up to date
08:43Z[DRIFT]@types/node@types/node is 3 major versions behind (spec: 22.15.29, latest: 25.2.3).
08:46Z[OWASP]A03:2021 – InjectionRegular expression built from user input — potential ReDoS (src/utils/search.ts:67)
08:38Z[SCANNER]trufflehogstatus: unavailable
08:38Z[DRIFT]electronelectron is 3 major versions behind (spec: ^37.6.0, latest: 40.4.1).
08:42Z[OWASP]A03:2021 – InjectiondangerouslySetInnerHTML used with potentially untrusted content (src/components/RichText.tsx:31)
08:33Z[DRIFT]@types/node@types/node is 5 major versions behind (spec: ^20.17.52, latest: 25.2.3).
08:38Z[OWASP]A05:2021 – Security MisconfigurationCookie set without httpOnly or secure flags (src/middleware/session.ts:12)
08:28Z[DRIFT]@types/supertest@types/supertest is 4 major versions behind (spec: ^2.0.16, latest: 6.0.3).
08:34Z[OWASP]A03:2021 – Injectioneval() called with dynamic expression (src/utils/template-engine.ts:88)
08:23Z[DRIFT]VitestVitest is 4 major versions behind (current: 0.34.6, latest: 4.0.18).
08:30Z[OWASP]A01:2021 – Broken Access ControlRedirect URL comes from user-controlled parameter (src/pages/auth/callback.tsx:15)
08:18Z[DRIFT]@types/node@types/node is 5 major versions behind (spec: ^20.8.0, latest: 25.2.3).
08:26Z[OWASP]A03:2021 – InjectionUnsanitised input passed to MongoDB query (src/services/users.ts:34)
08:13Z[DRIFT]vitestvitest is 4 major versions behind (spec: ^0.34.6, latest: 4.0.18).
08:22Z[OWASP]A03:2021 – InjectionChild process spawned with user-controlled arguments (src/utils/pdf-generator.ts:52)
08:08Z[DRIFT]of dependencies are 2+ major versions behind in @acme/api.31% of dependencies are 2+ major versions behind in @acme/api.
08:18Z[OWASP]A05:2021 – Security MisconfigurationExternal link opened without rel="noreferrer" (src/components/ExternalLink.tsx:8)
08:03Z[DRIFT]@types/node@types/node is 5 major versions behind (spec: ^20.11.0, latest: 25.2.3).
08:14Z[OWASP]A02:2021 – Cryptographic FailuresMath.random() used for token generation — use crypto.randomBytes (src/utils/token.ts:6)
07:58Z[DRIFT]of dependencies are 2+ major versions behind in @acme/workflow-engine.52% of dependencies are 2+ major versions behind in @acme/workflow-engine.
08:10Z[OWASP]A05:2021 – Security MisconfigurationExpress app without Helmet security headers middleware (src/server.ts:1)
07:53Z[DRIFT]@types/node@types/node is 5 major versions behind (spec: ^20.19.9, latest: 25.2.3).
07:48Z[DRIFT]@types/node@types/node is 3 major versions behind (spec: ^22.15.29, latest: 25.2.3).
08:53Z[DRIFT]Next.jsNext.js is 2 major versions behind (current: 14.2.35, latest: 16.1.6).
08:54Z[OWASP]A03:2021 – InjectionUnescaped user input rendered into HTML template (src/routes/admin.ts:42)
08:52Z[SCANNER]semgrepscan signature set is up to date
08:48Z[DRIFT]of dependencies are 2+ major versions behind in acme.39% of dependencies are 2+ major versions behind in acme.
08:50Z[OWASP]A02:2021 – Cryptographic FailuresJWT secret is hardcoded — use environment variables (src/auth/jwt.ts:18)
08:45Z[SCANNER]gitleaksscan signature set is up to date
08:43Z[DRIFT]@types/node@types/node is 3 major versions behind (spec: 22.15.29, latest: 25.2.3).
08:46Z[OWASP]A03:2021 – InjectionRegular expression built from user input — potential ReDoS (src/utils/search.ts:67)
08:38Z[SCANNER]trufflehogstatus: unavailable
08:38Z[DRIFT]electronelectron is 3 major versions behind (spec: ^37.6.0, latest: 40.4.1).
08:42Z[OWASP]A03:2021 – InjectiondangerouslySetInnerHTML used with potentially untrusted content (src/components/RichText.tsx:31)
08:33Z[DRIFT]@types/node@types/node is 5 major versions behind (spec: ^20.17.52, latest: 25.2.3).
08:38Z[OWASP]A05:2021 – Security MisconfigurationCookie set without httpOnly or secure flags (src/middleware/session.ts:12)
08:28Z[DRIFT]@types/supertest@types/supertest is 4 major versions behind (spec: ^2.0.16, latest: 6.0.3).
08:34Z[OWASP]A03:2021 – Injectioneval() called with dynamic expression (src/utils/template-engine.ts:88)
08:23Z[DRIFT]VitestVitest is 4 major versions behind (current: 0.34.6, latest: 4.0.18).
08:30Z[OWASP]A01:2021 – Broken Access ControlRedirect URL comes from user-controlled parameter (src/pages/auth/callback.tsx:15)
08:18Z[DRIFT]@types/node@types/node is 5 major versions behind (spec: ^20.8.0, latest: 25.2.3).
08:26Z[OWASP]A03:2021 – InjectionUnsanitised input passed to MongoDB query (src/services/users.ts:34)
08:13Z[DRIFT]vitestvitest is 4 major versions behind (spec: ^0.34.6, latest: 4.0.18).
08:22Z[OWASP]A03:2021 – InjectionChild process spawned with user-controlled arguments (src/utils/pdf-generator.ts:52)
08:08Z[DRIFT]of dependencies are 2+ major versions behind in @acme/api.31% of dependencies are 2+ major versions behind in @acme/api.
08:18Z[OWASP]A05:2021 – Security MisconfigurationExternal link opened without rel="noreferrer" (src/components/ExternalLink.tsx:8)
08:03Z[DRIFT]@types/node@types/node is 5 major versions behind (spec: ^20.11.0, latest: 25.2.3).
08:14Z[OWASP]A02:2021 – Cryptographic FailuresMath.random() used for token generation — use crypto.randomBytes (src/utils/token.ts:6)
07:58Z[DRIFT]of dependencies are 2+ major versions behind in @acme/workflow-engine.52% of dependencies are 2+ major versions behind in @acme/workflow-engine.
08:10Z[OWASP]A05:2021 – Security MisconfigurationExpress app without Helmet security headers middleware (src/server.ts:1)
07:53Z[DRIFT]@types/node@types/node is 5 major versions behind (spec: ^20.19.9, latest: 25.2.3).
07:48Z[DRIFT]@types/node@types/node is 3 major versions behind (spec: ^22.15.29, latest: 25.2.3).