Where’s enterprise cloud adoption heading in Greater China?

Cloud computing

It’s hard to believe cloud computing has been around for more than a decade during which it has matured into a mainstream technology, although enterprises in the region are still to fully leverage its potential.

The cloud has accelerated IT enablement and business innovation, reducing TCO, increasing agility and enabling IT to focus on generating business value. However, while going straight to the cloud is a no-brainer for start-ups, cloud migration is inevitably less than straightforward for well-established enterprises.

Short-term strategies

The issues enterprises face include: the uneven maturity of cloud solutions; cloud security; integration with legacy applications; evolving regulations in multiple jurisdictions; and a shortage of know-how. To date, leading enterprises in Greater China have pursued a couple of different strategies – which are by no means mutually exclusive – to leverage cloud opportunities.

One is to pursue simplification and “engineered” cost savings by migrating applications to the cloud. While levels of adoption vary, we typically see clients in Greater China looking at a “hybrid cloud architecture” end-state spanning private cloud and public cloud IaaS/Paas/SaaS solutions.

The other strategy has been to pursue business innovation via cloud-driven applications. Many enterprises in the region have created “systems of engagement” – typically including mobile apps – based on pure-cloud solutions. To avoid being slowed down by more stable in-house IT “systems of record” they have kept these applications separate where possible, resulting in the “multi-speed IT” phenomenon.

Legacy holdup

Both approaches harvest low-hanging fruit without tackling the transformation of legacy systems that support core business functions. Until this is addressed enterprises face diminishing returns on their cloud strategies and will be stymied from establishing truly differentiated new business models that combine valuable existing data, insights and functionality from legacy applications and exploit fast-moving technology developments such as APIs, IoT and Blockchain.

While mulling this challenge, enterprises must contend with the uncertainty of regulatory change and bewildering service provider choice and variation. For example, the monetary authorities in Hong Kong and Singapore are now more accepting of public cloud hosting while China, Indonesia and Korea insist on maintaining data sovereignty. On the service provider front the PaaS industry is at such an early stage that there are countless options and, while IaaS is more mature, there are still plenty of choices.

Containers and microservices

So how can enterprises extract more cloud value? One very promising avenue, which neatly de-risks regulatory and service provider uncertainty, is application containerization. To put this simply, containers do for applications what virtualization has done for infrastructure. Containers are lightweight and cloud-native by nature, so can easily be moved between on-premises systems and cloud platforms.

Application developers are using containerization to break down monolithic applications into discrete business-aligned “microservices”. For instance, an application with billing and credit-check functionality can be broken up into two microservices, which are more robust and resilient. During a large month-end run, the billing microservice can scale out independently from credit-check without restarting the entire application. This architecture also allows the billing and credit teams to develop software at their own pace.

While there’s been much recent work in this area – notably around standardization – the container concept is by no means new and has been proven at truly industrial scale by the likes of Google ad Facebook. Enterprise adoption – for instance AT&T’s microservices transformation in collaboration with IBM – is more recent but fast-moving.

In a six-month project with a Hong Kong public sector client we were able to completely re-architect one of its core application to run in containers. Among the benefits, the client has been able to reduce its upgrade window from seven hours to one and is now positioned to increase its pace of innovation, with the go-ahead being given to containerize more legacy apps.

Moving ahead

Particularly in China, we’re working with highly-competitive Internet, telecommunications and financial-services companies of such scale that building private clouds and innovating on microservices architecture is picking up momentum. Yet enterprise microservice deployments are still at an early stage and one of the key issues is that, by nature, microservices architecture breaks applications into business domains. If software development is not aligned to this then enterprises will find managing microservices applications increasingly difficult as they hit development pipeline bottlenecks.

In competitive and fast-changing industries, the enterprises that enjoy the greatest success in exploiting microservices to drive rapid innovation will also be the ones most adept at re-inventing their operations and culture to align to DevOps best practices. And, as always when sailing into new waters, it pays to have an experienced navigator on board. IBM has the rich experience to help customers on this journey.

 

Daniel Cheung

Daniel Cheung, Cloud Leader, Global Business Services, IBM Hong Kong

Advertisements

人性攻心的 APT 威脅

(文章亦同時被 Unwire Pro引用)

電腦黑客入侵引發金融震蕩或核輻射洩漏的災難級事故,以往只是科幻小說題材,但現在有成為事實的風險。

《紐約時報》取得美國國土安全部與聯邦調查局的報告顯示,多國核電廠保安系統自今年五月起,遭到黑客持續攻擊,報告將事件列入「進階持續性威脅」(Advanced Persistent Threat,簡稱 APT),屬黃色警報級別。

上一代的黑客攻擊往往是執行中毒檔案後,伺服器被奪權,或硬碟遭到清洗;現在的APT 卻來自技術精良、精心策劃的攻擊團隊,攻擊手法更低調緩慢,潛伏期較長,步驟也更迂迴。即使銀行內部系統或核電廠工業控制系統,刻意與互聯網分隔,以往被認為黑客不能觸及,但在社交媒體日漸普及的今天,APT 已有可能滲透到這些關鍵系統。

power-plant

Continue reading

企業遭黑客入侵 3方面善後

(文章於2017年11月29日在香港經濟日報刊登)

how-to-increase-transparency-and-rebuild-trust-after-a-data-breach-630x330

最近某知名共享型租車服務商傳出,去年十月曾發生嚴重資訊保安問題:有黑客盜取該公司環球五千萬名顧客、七百萬名司機的個人資料,該公司當時暗中向黑客支付十萬美元贖金,並將事件保密。

其新任行政總裁得悉事件後,主動在網誌向公眾披露,事件是由兩名黑客入侵第三方雲系統引致,而該公司兩名主要保安主管已因隱瞞此事離職。行政總裁又公佈一系列補救措施,其坦誠負責的態度值得欣賞。

若企業的 IT 系統遭到入侵,該如何重建客戶的信任?

Continue reading

The winds of technology change are driving the insurance industry

Security concept

In many ways the insurance industry has led a sheltered existence. Regulation and the need for scale have created entry barriers to the industry while the key role of intermediaries in customer relationships and customers’ inertia can also be seen as “protective” characteristics. The net result is that, aside from asset management, insurance companies have been slow in adopting new technology, especially of a customer-facing nature for fear of upsetting agent networks.

As these barriers weaken insurers are paying a lot more attention to new technologies. Today the industry is abuzz with technology jargon like AI, InsurTech and RPA, reflecting the significant momentum that technology-driven trends have developed.

Continue reading

設計思維 想想「用家要甚麼」

(文章於2017年11月6日在香港經濟日報刊登)

IMG_1248

今年的特首施政報告談到創意產業,其中一個重點是「設計思維」(Design Thinking):港府將向創意智優計劃注資10億元,循設計思維培訓首長級人員、培育年輕人才,提升社會對創意及設計的認知。

設計思維就是站在使用者觀點,以其需求出發想問題。這是近年美國和日本企業趨勢,不限於建築和製造業,已擴展至金融、航運、醫療等範疇。

Continue reading

Design Thinking: Digital reinvention through customer-centricity

IMG_1248

“Design Thinking” is one of the key highlights in this year’s Policy Address. Government will inject $1 billion into the CreateSmart Initiative to strengthen support for the development of the design and creative industries, especially the nurturing of young talent, and enhance the community’s awareness of creative thinking and design capability. It also announced a series of initiatives to apply Design Thinking to the design and delivery of public services.

Continue reading

由高達走向AI 東瀛科技新風

(文章於2017年10月30日在香港經濟日報刊登)

AI Cover

今年秋天有令本港一眾《機動戰士》迷興奮的消息。東京台場的一比一獨角獸高達啟動,粉絲可近距離接觸。有趣的是,由《機動戰士》這齣橫跨近三十載的動畫作品,到以下提及的一些民用科技發展,我們可一窺科技在日本人心目中的轉型過程:由二戰後崇拜「硬」金屬巨型機械人,漸漸移向「軟」的人工智能。 

Continue reading