Cyberattack method where stolen account credentials are used to gain unauthorized access to user accounts through large-scale automated login requests.
Four key metrics (deployment frequency, lead time for changes, time to restore service, change failure rate) used to measure software delivery performance.
A system that manages large files by storing them outside the main repository, replacing them with lightweight pointers to improve performance and efficiency.
Integration of 5G mobile edge computing with container platforms for low-latency applications and services at network edges.
AIOps for Container Environments
Application of AI and machine learning for automated operations, monitoring, and management of containerized environments.
API Deprecation Policy
Guidelines for phasing out older API versions in Kubernetes, ensuring smooth transitions for users.
API Extensions
Mechanisms to extend the Kubernetes API with custom resources and functionalities, enhancing platform capabilities.
API Gateway Pattern
Containerized service that acts as a single entry point for all client requests to a microservices architecture.
API Server
Core component of Kubernetes that exposes the cluster's API and handles all administrative operations.
API Server Aggregation
Kubernetes feature allowing the API server to be extended with additional APIs without modifying core Kubernetes code.
API-First Development
Approach prioritizing API design before implementation, crucial for developing scalable containerized microservices.
AWS Fargate
Serverless compute engine for containers, allowing you to run containers without managing the underlying infrastructure.
Adapter Pattern
Design pattern in containerized microservices that wraps a service's interface to make it compatible with other services.
Admission Controllers
Plugins that intercept requests to the Kubernetes API server before object persistence, enforcing policies or modifying objects.
Admission Controllers for Security
Admission controllers specifically focused on enforcing security policies and validating security-related configurations.
Admission Webhooks
HTTP callbacks that receive admission requests and can modify or validate objects before they are persisted.
Admission Webhooks in Operators
Use of admission webhooks within Kubernetes operators to enforce custom policies or modify resources.
Advanced Audit
Kubernetes feature providing detailed logging of all requests processed by the API server for security and compliance.
Aggregated API Servers
Extension of the Kubernetes API server to include custom resources and functionalities without modifying core Kubernetes.
Aggregated ClusterRoles
Combination of multiple ClusterRoles into a single role, simplifying RBAC management in Kubernetes.
Air-gapped Registries
Container registries isolated from public networks, used in secure or restricted environments.
Akri
Open-source project for exposing heterogeneous leaf devices as resources in Kubernetes clusters.
Alertmanager Configuration
Setup and management of Prometheus Alertmanager for handling alerts from monitoring systems.
Amazon Elastic Container Registry (ECR)
Fully managed Docker container registry provided by AWS for storing, managing, and deploying container images.
Ambassador Pattern
Microservices design pattern where a dedicated service acts as an API gateway for other services.
Ambient Mesh
Service mesh implementation that doesn't require sidecars, reducing resource overhead and simplifying deployment.
Anchore Engine for Image Scanning
Open-source tool for deep inspection of container images, including vulnerability scanning and policy enforcement.
Ansible-based Operators
Kubernetes operators implemented using Ansible for automating application lifecycle management.
Antrea Network Policies
Network policies specific to the Antrea CNI plugin, offering fine-grained control over pod-to-pod communication.
Antrea for Open vSwitch-based Networking
Kubernetes networking solution using Open vSwitch for improved performance and advanced networking features.
Apache OpenWhisk
Open-source serverless platform that executes functions in response to events or direct invocations.
AppArmor Profiles
Security profiles for Linux that restrict program capabilities, enhancing container isolation and security.
Application-level Logging
Logging implemented within applications, providing detailed insights into application behavior and performance.
Aqua Security
Platform providing security and compliance for container-based and cloud-native applications throughout their lifecycle.
Aqua Security Platform
Comprehensive security solution for containerized and cloud-native environments, offering vulnerability management and runtime protection.
Argo CD
GitOps continuous delivery tool for Kubernetes, automating application deployment and lifecycle management.
Argo Rollouts
Kubernetes controller for advanced deployment strategies like canary and blue-green deployments.
ArgoCD
Declarative GitOps tool for Kubernetes, automating application deployment and synchronization with Git repositories.
Artifact Management
Process of storing, organizing, and managing container images and related artifacts in container registries.
Athenz for Fine-grained Access Control
Open-source platform for fine-grained access control and authentication in distributed systems.
Attribute-Based Access Control (ABAC)
Access control paradigm where authorization decisions are based on attributes of users, resources, and environment.
Audit Annotations
Additional metadata added to Kubernetes audit events for enhanced context and analysis, improving audit trails.
Audit Backends
Components responsible for processing and storing Kubernetes audit logs, supporting various storage and analysis options.
Audit Events
Records of requests and activities within a Kubernetes cluster, used for security monitoring and compliance.
Audit Levels
Configurable detail levels for Kubernetes audit logs, ranging from metadata-only to full request and response details.
Audit Logging
Process of recording API server requests and responses for security, troubleshooting, and compliance purposes.
Audit Logs
Detailed records of activities and operations within a Kubernetes cluster, used for security and compliance monitoring.
Audit Policy
Configuration defining which events should be recorded in Kubernetes audit logs and at what level of detail.
Audit Profile
Predefined set of audit policy rules for common use cases in Kubernetes, simplifying audit configuration.
Audit Stages
Different phases of request processing where audit events can be generated in Kubernetes, providing comprehensive auditing.
Audit Webhook Configuration
Setup for sending Kubernetes audit events to external webhook endpoints for processing or analysis.
Auditing
Process of systematically recording and examining activities within a Kubernetes cluster for security and compliance purposes.
Authenticating Proxy
Intermediary service that handles authentication before forwarding requests to the Kubernetes API server.
Authentication Modules
Pluggable components in container orchestration platforms for verifying user identities using various methods.
Authorization Policies
Rules defining access permissions for users and services in container orchestration platforms.
Azure Container Instances
Serverless container hosting service in Azure, offering rapid deployment of containers without cluster management.
Azure Container Registry
Managed Docker registry service for storing and managing container images in Azure cloud environments.
BGP (Border Gateway Protocol) in Containers
Implementation of Border Gateway Protocol within containerized network environments for advanced routing.
BGP in Container Networks
In container networks, BGP (Border Gateway Protocol) manages routing information between containers and external networks for efficient traffic routing.
Backend for Frontend (BFF) Pattern
Microservices design pattern where a dedicated service acts as an API gateway for specific frontend needs.
Backup and Restore
Processes for preserving and recovering container data and configurations in orchestration platforms.
Base Image
Foundation Docker image upon which other images are built, containing core OS and runtime components.
Base Image Selection
Process of choosing appropriate foundation images for container builds, balancing size, security, and functionality.
Best Effort QoS
Kubernetes quality of service class for pods with no resource guarantees, scheduled when resources are available.
Blue-Green Deployments
Deployment strategy using two identical environments to minimize downtime and risk during updates.
Bootstrap Tokens
Temporary tokens used for secure cluster initialization and node joining in Kubernetes, simplifying cluster setup.
Bottlerocket OS
Minimalist Linux-based operating system optimized for running containers in cloud environments.
BuildKit
Advanced container image building toolkit offering improved performance and caching capabilities.
BuildKit for Advanced Image Building
Use of BuildKit for efficient, concurrent, and cache-optimized container image creation, improving build performance.
Bulkhead Pattern
Isolation technique in microservices to contain failures and prevent system-wide cascading failures.
Bulkhead Pattern in Microservices
The Bulkhead Pattern in microservices isolates failures by dividing services into separate compartments, preventing issues in one from affecting others.
Burstable QoS
Kubernetes quality of service class for pods that can use more resources than requested when available.
CIS Benchmarks for Containers
Security configuration guidelines for deploying containers securely in various environments.
CNI Plugin Chaining
Technique of using multiple Container Network Interface plugins together for advanced networking capabilities.
CPU Manager
Kubernetes feature for fine-grained CPU resource management and allocation to containers, optimizing performance.
CPU Throttling
Technique to limit CPU usage of containers to prevent resource monopolization and ensure fair allocation.
CQRS (Command Query Responsibility Segregation)
Architectural pattern separating read and write operations in distributed systems, often used in microservices.