Engineering Glossary

From fundamental principles to cutting-edge practices, this glossary covers the full spectrum of software engineering terminology.

DevOps
Cloud Computing
Git
Containerization & Orchestration

SLA (Service Level Agreement)

Contract between a service provider and customer defining expected service levels.
DevOps

SOAR

Security Orchestration, Automation and Response; platforms that enable organizations to collect security data and perform security operations.
DevOps

SOC

Security Operations Center; centralized unit dealing with security issues on an organizational and technical level.
DevOps

SQL Injection

Code injection technique used to attack data-driven applications by inserting malicious SQL statements into application queries.
DevOps

SQLi

Abbreviation for SQL Injection, a code injection technique used to attack data-driven applications by inserting malicious SQL statements.
DevOps

SSL Certificate

Digital document that authenticates a website's identity and enables encrypted connections between servers and browsers, ensuring secure data transmission.
DevOps

SSL Certificate Chain

Series of certificates needed to verify the authenticity of a website's SSL certificate.
DevOps

SSL Certificate Expiry

Date when an SSL certificate is no longer valid and needs to be renewed to maintain secure connections.
DevOps

SSL/TLS Handshake

Process by which a client and server establish a secure encrypted connection, crucial for secure data transmission over the internet.
DevOps

SaltStack

Python-based, open-source configuration management software and remote execution engine.
DevOps

Sanity Testing

Subset of regression testing to verify that code changes don't impact critical functionalities.
DevOps

Scalability

Ability of a system, network, or process to handle a growing amount of work or its potential to be enlarged.
DevOps

Scaled Agile Framework (SAFe)

Set of organization and workflow patterns for implementing agile practices at enterprise scale.
DevOps

Schatten-IT

German term for "Shadow IT"; IT systems deployed outside of the organization's formal IT department.
DevOps

Scrubbing Center

Facility used to filter malicious traffic from a network, often used in DDoS mitigation.
DevOps

Scrum

Agile framework for project management emphasizing iterative progress, team collaboration, and flexibility.
DevOps

SecOps

Practice of integrating security processes with IT operations, aiming to reduce vulnerabilities and improve overall system security.
DevOps

Secure SDLC

Software Development Life Cycle that integrates security at every stage of the development process.
DevOps

Security Analytics

Use of data collection, aggregation, and analysis tools for security monitoring and threat detection.
DevOps

Security Champions

Individuals within development teams who act as the first point of contact for security-related matters.
DevOps

Security Information and Event Management (SIEM)

System providing real-time analysis of security alerts generated by applications and network hardware.
DevOps

Security Intelligence

Evidence-based knowledge about existing or emerging threats to assets, crucial for effective cybersecurity strategies.
DevOps

Security Misconfiguration

Improper configuration of security controls, often leading to vulnerabilities and potential security breaches.
DevOps

Security Observability

Practice of gaining insight into the security posture of systems through the collection and analysis of security-relevant data.
DevOps

Security Operation Center (SOC)

Centralized unit dealing with security issues on an organizational and technical level.
DevOps

Security Posture

Overall security status of an organization's systems, networks, and data, reflecting its ability to protect from cyber threats.
DevOps

Security Remediation

Process of addressing and fixing identified security vulnerabilities or weaknesses in systems, applications, or networks.
DevOps

Security as Code

Practice of building and operating security controls as code to ensure consistent and repeatable security processes.
DevOps

Selbstheilende Systeme

German for "self-healing systems"; systems that can detect and recover from failures automatically.
DevOps

Selenium

Popular open-source tool for automating web browsers, primarily used for testing web applications across various platforms.
DevOps

Self-Healing Systems

Systems capable of detecting and recovering from failures without human intervention.
DevOps

Self-Service Deployment

Capability allowing users to deploy applications or services independently, without IT intervention.
DevOps

Semaphore

Lightweight, cloud-native continuous integration and delivery platform designed for speed and simplicity in software development workflows.
DevOps

Sensitive Data Exposure

Security vulnerability where an application does not adequately protect sensitive information from unauthorized access.
DevOps

Sensu

Open-source monitoring framework designed to empower organizations with flexible and scalable monitoring for their infrastructure and applications.
DevOps

Sequencer

Tool used in network security for analyzing and manipulating network protocols, often employed in penetration testing and vulnerability assessment.
DevOps

Serf

Decentralized solution for cluster membership, failure detection, and orchestration, designed for service discovery and orchestration.
DevOps

Server Monitoring

Process of reviewing and analyzing a server for availability, operations, performance, security and other operations-related processes.
DevOps

Serverless

Cloud computing execution model where the cloud provider manages server infrastructure.
DevOps

Serverless Computing

Cloud computing model where the cloud provider manages server infrastructure, allowing developers to focus solely on code.
DevOps

Serverless Framework

Open-source tool for building and deploying serverless applications across various cloud providers, simplifying serverless development.
DevOps

Serverless Monitoring

Process of observing and managing the performance, availability, and cost of serverless applications and functions.
DevOps

Service Level Agreement (SLA)

Contract between a service provider and the end user defining the expected level of service.
DevOps

Service Level Indicator (SLI)

Quantitative measure of the level of service provided, used to evaluate whether a Service Level Objective is being met.
DevOps

Service Level Indicators (SLIs)

Quantitative measures of the level of service provided, used to evaluate whether Service Level Objectives are being met.
DevOps

Service Level Objective (SLO)

Target value or range of values for a service level that is measured by one or more Service Level Indicators.
DevOps

Service Mesh

Infrastructure layer for facilitating service-to-service communications between microservices.
DevOps

Service Reliability

Measure of a service's ability to perform its intended function consistently and without failure.
DevOps

Service Virtualisation

Practice of simulating the behavior of system components to enable continuous testing.
DevOps

Shadow APIs

Undocumented or unofficial APIs within an organization that may pose security risks or lead to inefficiencies if not properly managed.
DevOps

Shadow CD

Unofficial or unapproved continuous delivery practices within an organization, potentially bypassing established processes.
DevOps

Shadow IT

IT systems and solutions built and used inside organizations without explicit approval.
DevOps

Shared Responsibility Model

Cloud security framework that delineates security obligations of a cloud provider and its users.
DevOps

Shift Left

Practice of moving testing, quality, and performance evaluation earlier in the development process.
DevOps

Shift Right

Practice of extending testing and quality assurance into production environments.
DevOps

Shift-Left Security

Practice of integrating security earlier in the software development lifecycle, improving overall application security.
DevOps

Shift-Left Testing

Practice of performing testing earlier in the software development lifecycle to catch and fix issues sooner.
DevOps

Shift-Right Testing

Approach that extends testing into production environments, allowing for real-world validation and continuous improvement.
DevOps

SignalFx

Cloud monitoring and observability platform for infrastructure, microservices, and applications, enabling real-time analytics.
DevOps

Siloed Security

Approach where security is treated as a separate concern, not integrated with development and operations.
DevOps

Simian Army

Suite of tools created by Netflix to test the resiliency of its AWS infrastructure.
DevOps

Single Branch Development

Development practice where all work is done on a single branch in version control.
DevOps

Site Reliability Engineer (SRE)

IT professional who combines software and systems engineering to create scalable and reliable software systems.
DevOps

Site Reliability Engineering (SRE)

Discipline that incorporates aspects of software engineering and applies them to infrastructure and operations problems.
DevOps

Sitex

Tool for automating the setup and teardown of temporary environments, useful for testing and development purposes.
DevOps

Six Nines

Explore the pinnacle of system reliability: "six nines" uptime. Discover what 99.9999% availability means, its rarity, and the extreme measures required to achieve this DevOps feat.
DevOps

Slaughter

System administration tool designed for automating repetitive tasks across multiple servers, improving efficiency and consistency in IT operations.
DevOps

Smoke Testing

Preliminary testing to reveal simple failures severe enough to reject a prospective software release.
DevOps

Snapshot

Capture of the state of a system at a particular point in time, often used for backups.
DevOps

Snort

Open-source network intrusion detection and prevention system, capable of real-time traffic analysis and packet logging on IP networks.
DevOps

Soak Testing

Testing to determine system performance over an extended period of continuous use.
DevOps

Software Composition Analysis (SCA)

Model of software delivery where software is licensed on a subscription basis and centrally hosted.
DevOps

Software Deployment

Process of making software available and ready for use in a specific environment, including installation and configuration.
DevOps

Software Development Lifecycle (SDLC)

Structured process for planning, creating, testing, deploying, and maintaining software applications.
DevOps

Software Lifecycle

Entire process of software development from inception to retirement, including planning, development, testing, deployment, and maintenance.
DevOps

Software Stack

Set of software subsystems or components needed to create a complete platform for developing and running applications.
DevOps

Software as a Service (SaaS)

Model of software delivery where software is licensed on a subscription basis and centrally hosted.
DevOps

Source Control

Management of changes to documents, programs, and other information stored as computer files.
DevOps

Spaghetti Code

Code that is hard to read, understand, or maintain due to its complex and tangled structure.
DevOps

Spike Testing

Testing to determine how a system behaves under a sudden large increase in load.
DevOps

Sprint

Time-boxed iteration in Agile methodologies, typically 1-4 weeks long, during which a potentially shippable product increment is created.
DevOps

StackStorm

Open-source automation platform that connects all your apps, services, and workflows, enabling auto-remediation and security responses.
DevOps

Staging Environment

Pre-production environment that closely mimics the production environment, used for final testing before deployment.
DevOps

Standard Operating Procedures (SOPs)

Established procedures to be followed in carrying out a given operation or situation.
DevOps

Static Application Security Testing (SAST)

Process of analyzing source code to identify security vulnerabilities without executing the program.
DevOps

Status Page

Webpage displaying the current state of system's services and any known issues, crucial for transparent communication.
DevOps

Step

Individual task or action within a larger process or workflow, often used in the context of CI/CD pipelines or automation scripts.
DevOps

Strangler Fig Pattern

Technique for gradually migrating a legacy system by replacing pieces of functionality with new applications and services.
DevOps

Stream-aligned Team

Team organized around the flow of work, capable of delivering value directly to customers or users.
DevOps

Streamline Releases

Process of optimizing and simplifying the software release cycle to increase efficiency and reduce time-to-market.
DevOps

Structured Logging

Practice of implementing a consistent, predetermined message format for application logs.
DevOps

Stubs

Pieces of code used to stand in for some other programming functionality, often used in testing to simulate complex objects or processes.
DevOps

Sublime Text

Sophisticated text editor for code, markup, and prose, known for its speed, cross-platform support, and powerful features.
DevOps

SumoLogic

Cloud-native, machine data analytics platform that helps organizations gain real-time insights from logs, metrics, and other machine data.
DevOps

Sunzi

Lightweight server provisioning tool that simplifies the process of setting up and configuring servers using simple YAML files.
DevOps

Support-Level

Degree of technical assistance provided for a product or service, often tiered based on response times and scope of support.
DevOps

Swagger

Set of tools for designing, building, documenting, and consuming RESTful web services.
DevOps

Swift

General-purpose, multi-paradigm, compiled programming language developed by Apple.
DevOps

Synthetic Monitoring

Monitoring technique that uses scripted recordings or transactions to simulate user activity.
DevOps

Sysdig

Open-source system-level exploration and troubleshooting tool for Linux systems, providing deep visibility into system behavior.
DevOps
@mention

@mention

A feature in Git platforms that allows users to notify specific team members or reference issues by using the @ symbol followed by a username.
API preview

API preview

A feature allowing developers to test and provide feedback on new Git API functionality before it's officially released.
Bare Repository

Bare Repository

A Git repository containing version control information without a working directory, typically used as a central repository for collaboration.
Bisect

Bisect

A Git command used to perform a binary search through a repository's history to identify the commit that introduced a bug or issue.
Bitbucket Pipelines

Bitbucket Pipelines

An integrated CI/CD service in Bitbucket for automating builds, tests, and deployments.
Blame

Blame

A Git feature that shows which user last modified each line of a file, helping developers trace changes and understand code history.
Blamestorming

Blamestorming

A collaborative process of analyzing Git blame information to identify the source of bugs or issues in a codebase.
Branch

Branch

A parallel version of a repository, allowing developers to work on different features or experiments without affecting the main codebase.
Branch policies

Branch policies

Rules enforced on Git branches to ensure code quality, require reviews, or restrict certain actions before merging.
Business plan

Business plan

A premium subscription tier offered by Git hosting services, providing advanced features and support for enterprise users.
CA certificate

CA certificate

A digital certificate issued by a Certificate Authority, used in Git to establish secure HTTPS connections and verify server identities.
Cache

Cache

A temporary storage area that holds frequently accessed data for quick retrieval, improving system performance.
Checkout

Checkout

A Git command used to switch between different branches or restore files from a specific commit in a repository's history.
Cherry-Pick

Cherry-Pick

A Git operation that applies the changes from a specific commit to the current branch, useful for selective code integration.
Cherry-picking

Cherry-picking

The practice of selecting and applying specific commits from one branch to another in Git, often used for targeted bug fixes.
Clone

Clone

The process of creating a local copy of a remote Git repository, allowing developers to work on the codebase independently.
Code owners file

Code owners file

A file specifying individuals or teams responsible for code in different parts of a repository.
Commit

Commit

Operation in version control systems that saves changes to the local repository, creating a new revision with a unique identifier.
Conflict

Conflict

A situation in Git where incompatible changes have been made to the same part of a file, requiring manual resolution before merging.
Continuous Integration

Continuous Integration

Practice of merging all developer working copies to a shared mainline several times a day.
DAG (Directed Acyclic Graph)

DAG (Directed Acyclic Graph)

Directed Acyclic Graph, the underlying data structure used by Git to represent the commit history and relationships between commits.
Detach HEAD

Detach HEAD

A Git operation that moves the HEAD pointer to a specific commit, allowing for temporary exploration of historical states.
Diff

Diff

A Git command or operation that shows the differences between two commits, branches, files, or other Git objects.
Downstream

Downstream

Refers to the direction of change propagation in Git, typically from a parent branch to its child branches or forks.
Explorer

Explorer

A feature in Git platforms for browsing repository contents, viewing files, and navigating through different branches.
Feature branch workflow

Feature branch workflow

A Git pattern where each new feature is developed in a dedicated branch, then merged back to the main branch.
Fetch

Fetch

A Git command that retrieves changes from a remote repository without automatically merging them into the local branch.
Force Push

Force Push

A Git push operation that overwrites the remote branch's history with the local branch, potentially causing data loss if used carelessly.
Fork

Fork

A personal copy of another user's repository on a Git hosting platform, allowing independent development without affecting the original project.
Free plan

Free plan

A no-cost tier offered by Git hosting services, typically with limited features and storage for individual users or small projects.
GPG (GNU Privacy Guard)

GPG (GNU Privacy Guard)

An encryption software used with Git for signing commits and tags, enhancing security and verification.
Gist

Gist

A simple way to share code snippets, notes, or small files using Git, often integrated into Git platforms.
Git

Git

Distributed version control system for tracking changes in source code during software development.
Git Alias

Git Alias

A custom shortcut command defined by users to simplify complex or frequently used Git operations.
Git Alternates

Git Alternates

A mechanism in Git allowing a repository to borrow objects from another repository, useful for saving disk space in large projects.
Git Annotate

Git Annotate

A Git command that shows the author and commit information for each line in a file, similar to the "blame" feature.
Git Assume Unchanged

Git Assume Unchanged

A Git feature that tells the system to temporarily ignore changes to a tracked file, useful for local configuration files.
Git Attributes

Git Attributes

A mechanism in Git for defining attributes on a per-path basis, controlling how Git handles certain files or directories.
Git Bisect

Git Bisect

A Git command used to perform a binary search through the commit history to find the commit that introduced a bug.
Git Bisect Run

Git Bisect Run

An automated version of Git Bisect that uses a script to determine if each checked-out commit is "good" or "bad".
Git Blame -C (Copy Detection)

Git Blame -C (Copy Detection)

An enhanced version of Git Blame that detects lines moved or copied from other files, providing better change tracking.
Git Bundle

Git Bundle

A Git command that creates a single file containing all the data needed to recreate a repository's branch or history.
Git Bundle Create/Verify

Git Bundle Create/Verify

Commands to create and verify Git bundles, useful for transferring repository data without using a network.
Git Cheat Sheet

Git Cheat Sheet

A quick reference guide summarizing common Git commands and their usage, helpful for both beginners and experienced users.
Git Cherry

Git Cherry

A Git command used to find commits that haven't been merged upstream, useful for identifying changes to be applied to another branch.
Git Clean

Git Clean

A command to remove untracked files from the working directory, helping to maintain a clean repository state.
Git Commit --amend

Git Commit --amend

A command that allows you to modify the most recent commit, adding new changes or updating the commit message.
Git Commit Amend

Git Commit Amend

A command that allows you to modify the most recent commit, changing its message or contents, and update it without creating a new commit.
Git Commit Hooks

Git Commit Hooks

Scripts that run automatically before or after a commit, allowing you to enforce rules, format code, or perform checks on changes.
Git Commit Templates

Git Commit Templates

Predefined structures for commit messages, helping maintain consistency and include necessary information in commits.
Git Commit Trailers

Git Commit Trailers

Metadata added to the end of commit messages, often used for things like issue references or sign-offs.
Git Commit-graph

Git Commit-graph

A file format used to store commit graph structure, improving performance for operations that traverse commit history.
Git Commit-graph Verify

Git Commit-graph Verify

A command to check the integrity and validity of the commit-graph file in a Git repository.
Git Commit-tree

Git Commit-tree

A low-level Git command used to create a new commit object from an existing tree object.
Git Config

Git Config

A command and system for setting configuration options for Git on a global, local, or repository level.
Git Count-objects

Git Count-objects

A diagnostic command that provides statistics about the number and size of objects in a Git repository.
Git Credential Helper

Git Credential Helper

A system that securely stores and retrieves credentials for Git operations, reducing the need for manual authentication.
Git Daemon

Git Daemon

A lightweight server for the Git protocol, allowing anonymous read access to Git repositories.
Git Dangling Objects

Git Dangling Objects

Objects in Git that are not reachable from any reference, often created during rebasing or other history-altering operations.
Git Describe

Git Describe

A command that generates a human-readable name for a commit based on the most recent tag and additional commit information.
Git Diff

Git Diff

A command that shows changes between commits, branches, files, or the working directory and the index.
Git Diff Algorithms

Git Diff Algorithms

Various methods used by Git to compute differences between versions of files, optimizing for different scenarios.
Git Diff Tool

Git Diff Tool

An external program or interface used to visualize differences between files or commits in a more user-friendly manner.
Git Fetch --All

Git Fetch --All

A command that fetches updates from all remote repositories configured in a Git project.
Git Filter-branch

Git Filter-branch

A powerful tool for rewriting Git history, allowing for large-scale changes across many commits.
Git Flow

Git Flow

A branching model for Git that defines a strict branching structure designed to support multiple parallel developments.
Git Fork

Git Fork

The process of creating a personal copy of someone else's project, allowing for independent development without affecting the original.
Git Fsck

Git Fsck

A command that verifies the connectivity and validity of objects in the Git database.
Git Fsck (File System Check)

Git Fsck (File System Check)

Verifies the integrity of objects in the Git database, checking for corruption and inconsistencies.
Git GPG verification

Git GPG verification

A security feature in Git that uses GPG to sign and verify commits and tags, ensuring authenticity.
Git Garbage Collection (gc)

Git Garbage Collection (gc)

A process that optimizes the Git repository by removing unnecessary files and compressing objects.
Git Gc (Garbage Collection)

Git Gc (Garbage Collection)

Short for Git Garbage Collection, a command to clean up unnecessary files and optimize the repository.
Git Grep

Git Grep

A command for searching files in a Git repository using regular expressions or simple string matching.
Git Hook

Git Hook

A script that Git automatically runs before or after specific events, like commits or merges, to customize workflows and enforce rules.
Git Hooks

Git Hooks

Same as Git Hook, scripts triggered by various Git actions to automate tasks or enforce policies.
Git Ignore

Git Ignore

A mechanism to specify intentionally untracked files that Git should ignore, typically defined in a .gitignore file.
Git Index Format

Git Index Format

The internal format used by Git to store the staging area information, representing the next commit to be made.
Git Init

Git Init

A command used to initialize a new Git repository, creating the necessary directory structure for version control.
Git Interactive Rebase

Git Interactive Rebase

A feature allowing users to modify commits in their branch history, useful for cleaning up before merging.
Git Internals (objects, refs, etc.)

Git Internals (objects, refs, etc.)

The underlying data structures and mechanisms Git uses to store and manage version control information.
Git Interpret-trailers

Git Interpret-trailers

A command to parse and manipulate the trailer lines typically found at the end of commit messages.
Git LFS (Large File Storage)

Git LFS (Large File Storage)

A system that manages large files by storing them outside the main repository, replacing them with lightweight pointers to improve performance and efficiency.
Git Large File Storage (LFS)

Git Large File Storage (LFS)

An extension that replaces large files with text pointers in Git, while storing the file contents on a remote server.
Git Log

Git Log

A command to display the commit history of a repository, showing details like author, date, and commit message.
Git Maintenance

Git Maintenance

A set of tasks performed to keep a Git repository in good condition, including garbage collection and optimization.
Git Merge Strategies

Git Merge Strategies

Different algorithms used by Git to combine separate development histories when merging branches.
Git Merge Tools

Git Merge Tools

External programs or interfaces used to resolve merge conflicts in a more visual and user-friendly manner.
Git Merge-base

Git Merge-base

A command that finds the best common ancestor between two commits, useful for determining the point where branches diverged.
Git Multi-pack Index (MIDX)

Git Multi-pack Index (MIDX)

A feature that improves performance for repositories with many pack files by creating an index across multiple packs.
Git Namespaces

Git Namespaces

A feature allowing multiple references (like branches or tags) with the same name to coexist by separating them into different namespaces.
Git Notes

Git Notes

A way to add or inspect object notes, allowing additional information to be attached to Git objects without changing their SHA-1 hash.
Git Object Storage

Git Object Storage

The system Git uses to store all the versions of files, commits, and other objects in a content-addressable filesystem.
Git Pack Files

Git Pack Files

Compressed files containing Git objects, used to efficiently store and transfer repository data.
Git Packfile Format

Git Packfile Format

The internal format used by Git to store multiple objects efficiently in a single file, reducing disk usage and improving performance.
Git Partial Clone

Git Partial Clone

A feature allowing users to clone a repository without downloading all of its objects, saving bandwidth and storage.
Git Patch

Git Patch

A file format representing changes between versions, used for sharing and applying modifications across different repositories.
Git Plumbing Commands

Git Plumbing Commands

Low-level Git commands that expose the internal workings of Git, primarily used for scripting and advanced operations.
Git Porcelain Commands

Git Porcelain Commands

User-friendly commands for everyday tasks, like git status and git commit, designed for ease of use and clear output.
Git Protocol

Git Protocol

The native network protocol used by Git for efficient data transfer between repositories.
Git Prune

Git Prune

A command that removes objects that are no longer reachable from any references in the repository.

Hybrid Blockchain-Cloud Solutions

Systems integrating blockchain technology with traditional cloud services for enhanced security and transparency.

Hybrid Cloud Management

Tools and practices for managing resources across public and private cloud environments.

Hybrid Cloud Monitoring

Tracking performance and health of resources spanning both public and private cloud environments.

Hybrid Cloud Orchestration

Coordinating and automating workflows across multiple cloud environments and on-premises infrastructure.

Hybrid Cloud Storage

Data storage solutions that span both on-premises and cloud environments, offering flexible and scalable data management.

Hybrid Connectivity

Network solutions that connect on-premises infrastructure with cloud services, enabling seamless integration and data flow.

Hybrid Identity Management

Managing user identities and access across both on-premises systems and cloud services.

Hybrid Integration Platforms

Tools for connecting applications, data, and processes across on-premises and cloud environments.

Hybrid Quantum-Classical Algorithms

Computational methods combining quantum and classical processing in cloud environments.

Hybrid Quantum-Classical Computing

Using both quantum and classical computing resources in tandem for cloud-based problem-solving.

Hybrid Transactional/Analytical Processing (HTAP)

Database systems supporting both real-time transactions and analytics in cloud environments.

Hyperconverged Infrastructure (HCI)

Integrated compute, storage, and networking in a single cloud-managed system, simplifying data center architecture.

Hyperparameter Tuning

Process of optimizing machine learning model parameters in cloud-based environments.

Hypervisor

Software layer that manages virtual machines in cloud computing environments, enabling efficient resource utilization and isolation.

IAM Roles and Policies

Defined permissions and access controls for users and services in cloud environments.

ISO 27001 Certification

International standard for information security management in cloud environments.

Identity-Aware Proxies

Security tools that verify user identity before granting access to cloud applications.

Image Scanning

Automated process of examining container images for vulnerabilities in cloud environments.

Immutable Infrastructure Security

Security approach based on replacing rather than modifying cloud infrastructure components.

Immutable Storage

Cloud storage that prevents data modification after writing, ensuring data integrity and compliance.

In-Memory Database (e.g., Amazon ElastiCache, Azure Cache for Redis)

Database system that primarily uses main memory for data storage in cloud environments.

In-Memory Grid Computing

Distributed computing using the collective memory of networked computers in the cloud.

In-Network Computing

Processing data within network devices to reduce latency and bandwidth use in cloud architectures.

Incremental Computing Frameworks

Systems for efficiently updating computation results when input data changes in cloud environments.

Indexing

Process of organizing data to optimize query performance in cloud databases, enhancing search and retrieval efficiency.

Infrastructure as Code (IaC) Security Scanning

Automated tools for identifying security issues in infrastructure definition files.

Infrastructure as Code (IaC) Testing

Validating infrastructure definitions before deployment in cloud environments, ensuring reliability and consistency.

Infrastructure as a Service (IaaS)

Cloud-based provision of virtualized computing resources over the internet, including servers, storage, and networking.

Infrastructure-from-Code

Generating cloud infrastructure configurations directly from application code, streamlining development and deployment processes.

Instance Types (e.g., General Purpose, Compute Optimized, Memory Optimized)

Predefined virtual server configurations optimized for different use cases in cloud environments.

Integration Flow Designer

Visual tool for creating and managing data integration processes in cloud environments.

Integration Monitoring and Analytics

Tools for tracking and analyzing the performance of integrated cloud systems and processes.

Intelligent Tiering

Automated data storage class selection based on access patterns in cloud environments.

Intelligent Tiering for Storage

Automatic movement of data between storage tiers based on usage patterns in the cloud.

Intent-Based Networking

Network management approach using AI to automate configuration based on business intent.

Internet Gateway

Network node that connects cloud VPCs to the internet, enabling communication with external resources.

Interplanetary File System (IPFS) Cloud Storage

Decentralized storage system for distributing and accessing files in the cloud, enhancing data availability and resilience.

Intrusion Detection System (IDS)

Security tool that monitors network traffic for suspicious activity in cloud environments.

Intrusion Prevention System (IPS)

Security system that not only detects but also blocks potential threats in cloud networks.

IoT Analytics

Processing and analyzing data from Internet of Things devices in cloud environments.

IoT Anomaly Detection

Identifying unusual patterns in data from IoT devices using cloud-based analytics.

IoT Central (Azure)

Fully managed IoT application platform in the Azure cloud for connecting, monitoring, and managing IoT devices at scale.

IoT Data Ingestion

Process of collecting and importing data from IoT devices into cloud systems for storage, analysis, and processing.

IoT Data Lake

Centralized repository in the cloud for storing large volumes of IoT device data.

IoT Device Management

Cloud-based systems for monitoring, updating, and controlling IoT devices, ensuring efficient operation and security at scale.

IoT Device Provisioning

Process of setting up and configuring IoT devices for secure cloud connectivity.

IoT Device SDK

Software development kit for building applications that connect IoT devices to cloud services.

IoT Edge

Deploying cloud intelligence directly to IoT devices for local processing and analytics.

IoT Edge Computing

Processing data from IoT devices locally before sending to the cloud, reducing latency and bandwidth usage.

IoT Greengrass (AWS)

AWS service for running local compute, messaging, and data caching for connected IoT devices.

IoT Hub

Central message hub for bi-directional communication between IoT applications and devices.

IoT Integration Frameworks

Tools for connecting and managing diverse IoT devices and data streams in cloud environments.

IoT Lifecycle Management

Cloud-based tools for managing IoT devices from deployment through retirement, ensuring efficient device administration.

IoT Over-the-Air (OTA) Updates

Remote software updates for IoT devices managed through cloud platforms, ensuring device security and functionality.

IoT Platform as a Service (PaaS)

Cloud-based platform for developing, managing, and integrating IoT applications and devices.

IoT Protocols (MQTT, CoAP)

Lightweight communication protocols designed for IoT devices in cloud environments.

IoT Rules Engine

Cloud service for processing and acting on data from IoT devices based on predefined conditions.

IoT Security

Measures to protect IoT devices, data, and infrastructure in cloud-connected environments.

IoT Streaming Analytics

Real-time processing and analysis of data streams from IoT devices in the cloud.

Key Management Service (KMS)

Cloud service for creating and managing cryptographic keys for data encryption, ensuring secure data protection.

Knative

Kubernetes-based platform for building, deploying, and managing serverless workloads.

Kubeless

Kubernetes-native serverless framework enabling function deployment without managing underlying infrastructure.

Kubernetes Network Policies

Rules for controlling network traffic between pods in Kubernetes clusters, enhancing security in cloud-native environments.

Kubernetes Security Posture Management (KSPM)

Tools for assessing and improving security configurations in Kubernetes environments.

Kubernetes Services (e.g., Amazon EKS, Azure AKS, Google GKE)

Managed Kubernetes platforms offered by major cloud providers for container orchestration.

Kustomize

Kubernetes native configuration management tool for customizing application configurations.

Lambda@Edge (AWS)

AWS service for running Lambda functions at edge locations to customize content delivery.

Launch Configuration

Template for EC2 instance settings used in Auto Scaling groups, defining instance type, AMI, and other parameters.

Least Privilege Principle

Security concept of granting only the minimum permissions necessary in cloud environments.

License Optimization for Cloud

Managing software licenses efficiently to reduce costs in cloud environments, ensuring compliance and cost-effectiveness.

Lift and Shift

Migration strategy of moving applications to the cloud without significant modifications.

Lightweight VMs (like Firecracker)

Minimalist virtual machines designed for fast startup and low resource usage in cloud environments.

Linkerd

Lightweight service mesh for Kubernetes, providing observability, reliability, and security for microservices.

Liquid Cooling for High-Density Compute

Using liquid to dissipate heat in densely packed cloud data centers for improved efficiency.

Load Balancer (Application, Network, Classic)

Service that distributes incoming network traffic across multiple servers to ensure no single server becomes overwhelmed.

Log Analytics

Process of collecting, analyzing, and visualizing log data from cloud resources for insights and troubleshooting.

Log Intelligence

AI-driven analysis of log data to identify patterns, anomalies, and insights in cloud environments.

Low-Code Integration Platforms

Tools for building application integrations with minimal hand-coding in cloud environments.

Low-Code/No-Code Development Platforms

Cloud-based tools for creating applications with little to no traditional programming.

Low-Code/No-Code Platforms

Cloud services enabling app development with minimal coding, using visual interfaces and pre-built components.

MQTT Protocol

Lightweight messaging protocol designed for IoT devices and low-bandwidth networks in cloud ecosystems.

Machine Learning Platforms (e.g., Amazon SageMaker, Azure Machine Learning)

Cloud-based services for building, training, and deploying machine learning models at scale.

Master Data Management (MDM) in the Cloud

Centralized management of critical business data entities in cloud environments.

Meta-Learning Frameworks

Tools for developing AI models that can learn how to learn, improving adaptability in cloud environments.

Metadata Management Services

Cloud tools for organizing, integrating, and governing metadata across various data sources.

Metamaterial Antennas for Cloud Connectivity

Advanced antenna designs using engineered materials to enhance cloud network performance.

Metric Collection

Gathering and storing quantitative data about cloud resource performance and usage.

Micro-Frontends

Architectural style where frontend apps are composed from independently deployable components in the cloud.

Microsegmentation Orchestration

Automating the process of dividing cloud networks into secure zones for enhanced protection.

Microservices Integration

Connecting and coordinating interactions between independent microservices in cloud architectures.

Migration Planning

Strategic process of preparing and scheduling the move of applications and data to cloud environments.

Mixed Reality as a Service

Cloud-based platforms for developing and deploying mixed reality applications, combining virtual and physical environments.

Mobile Edge Computing

Bringing cloud computing capabilities closer to mobile users to reduce latency and improve performance.

Mobile Edge Computing (MEC)

Extending cloud computing capabilities to the edge of mobile networks for lower latency.

Model Deployment

Process of making machine learning models available for use in cloud production environments.

Model Explainability

Techniques for understanding and interpreting decisions made by AI models in cloud environments.

Model Monitoring

Tracking the performance and behavior of deployed machine learning models in cloud environments.

Model Registry

Centralized repository for storing and managing machine learning models in cloud environments.

Model Serving

Process of making trained machine learning models available for real-time predictions in cloud environments.

Model Training

Process of teaching machine learning algorithms to make predictions using data in cloud environments.

Metrics Pipeline

System for collecting, processing, and storing performance metrics from containerized applications and infrastructure.

Metrics Server

Kubernetes add-on that collects resource metrics from kubelets for use in autoscaling and monitoring.

Metrics Server Optimization

Techniques for improving the performance and efficiency of the Kubernetes Metrics Server for better monitoring.

MicroK8s

Lightweight, CNCF-certified Kubernetes distribution designed for developer workstations, IoT devices, and CI/CD.

Microservices Chassis Pattern

Reusable base structure for building microservices, providing common functionalities like logging and monitoring.

MinIO Object Storage

High-performance, S3-compatible object storage system, often used for persistent storage in container environments.

Mount Propagation

Feature allowing containers to share mounted volumes, enabling advanced storage scenarios in Kubernetes.

Multi-Container Pod Patterns

Design patterns for deploying multiple containers within a single pod, such as sidecar, ambassador, or adapter patterns.

Multi-architecture Images

Container images supporting multiple CPU architectures, enabling deployment flexibility across diverse hardware.

Multi-cluster Management

Tools and practices for administering and orchestrating multiple Kubernetes clusters as a unified system.

Multi-cluster Networking

Technologies and configurations enabling network connectivity and service discovery across multiple Kubernetes clusters.

Multi-cluster Orchestration

Coordinated management and deployment of containerized applications across multiple Kubernetes clusters.

Multi-cluster Service Discovery

Mechanisms for locating and accessing services deployed across multiple Kubernetes clusters.

Multi-cluster Service Mesh

Implementation of service mesh functionalities spanning multiple Kubernetes clusters for unified traffic management.

Multi-stage Builds

Dockerfile technique using multiple stages to create optimized, smaller container images by separating build and runtime environments.

Multitenancy Benchmarks

Performance and isolation tests for evaluating the effectiveness of multi-tenant Kubernetes cluster configurations.

Multus

CNI plugin enabling attachment of multiple network interfaces to pods in Kubernetes, supporting advanced networking scenarios.

Multus CNI

Container Network Interface plugin allowing multiple CNI plugins to be used simultaneously, enabling multi-network support for pods.

Multus CNI for Multiple Networks

Use of Multus to attach pods to multiple networks, enabling complex networking scenarios in Kubernetes.

Mutating Webhooks

Admission controller webhooks that can modify resource requests before they are persisted, enabling dynamic resource manipulation.

Mutual TLS (mTLS)

Security protocol ensuring both client and server authenticate each other, commonly used in service mesh implementations.

NIST SP 800-190

Observability platform offering performance monitoring and analytics for containerized applications and infrastructure.

NSM (Network Service Mesh)

Cloud-native approach to solving L2/L3 use cases and service chain provisioning in Kubernetes.

NUMA-aware Scheduling

Kubernetes feature considering Non-Uniform Memory Access topology for optimal pod placement.

Namespace

Kubernetes abstraction for creating multiple virtual clusters within a physical cluster, providing a scope for names and resources.

Namespaces

Kubernetes feature for partitioning clusters into virtual sub-clusters, enabling resource isolation and access control.

Network Address Translation (NAT)

Process of modifying network address information in packet headers for routing in container networks.

Network Function Virtualization (NFV)

Concept of replacing dedicated network appliances with virtualized functions, often containerized.

Network Microsegmentation

Security technique dividing networks into isolated zones, enhancing container and microservices security.

Network Policies

Kubernetes resources specifying how groups of pods are allowed to communicate with each other and other network endpoints.

Network Policy

Specification of how groups of pods are allowed to communicate with each other and other network endpoints.

Network Policy Logging

Feature enabling logging of allowed and denied network connections based on Kubernetes Network Policies.

Network Segmentation

Practice of dividing a network into smaller segments or subnets, improving security and performance in container environments.

Network Service Mesh (NSM)

Cloud-native solution providing layer 2/3 network services to Kubernetes workloads, enhancing networking capabilities.

NetworkPolicy

Kubernetes resource defining rules for pod-to-pod and pod-to-external communication, implementing network segmentation.

NeuVector for Container Firewall

Security platform providing real-time container firewall, vulnerability management, and compliance for Kubernetes.

New Relic Container Monitoring

Observability platform offering performance monitoring and analytics for containerized applications and infrastructure.

Node

Basic unit of a distributed application in many systems, often referring to individual machines or processes.

Node Affinity

Kubernetes feature allowing pods to be scheduled on nodes with specific characteristics based on labels.

Node Authorization

Kubernetes authorization mode controlling kubelet access to the API server, enhancing cluster security.

Node Auto-provisioning

Feature automatically adjusting the number of nodes in a Kubernetes cluster based on workload demands.

Node Exporter

Prometheus exporter for hardware and OS metrics exposed by *NIX kernels, used for node-level monitoring in Kubernetes.

Node Feature Discovery

Kubernetes add-on detecting hardware features and system configuration, facilitating hardware-aware scheduling.

Node Name

Unique identifier for a node in a Kubernetes cluster, used in various operations and configurations.

Node Pressure Eviction

Process of removing pods from a node when it experiences resource pressure, ensuring stability.

Node Problem Detector

Kubernetes add-on monitoring and reporting node health issues, enhancing cluster reliability.

Node Restriction Admission Plugin

Kubernetes plugin limiting node and pod modifications to increase security and prevent privilege escalation.

Node Selector

Kubernetes feature for constraining pods to nodes with specific labels, enabling basic scheduling control.

Node Upgrade Process

Procedure for updating the software stack on Kubernetes nodes while minimizing disruption to running workloads.

Node-level Logging

Capture and management of system and container logs at the node level in a Kubernetes cluster.

NodeLifecycleController

Kubernetes controller managing the lifecycle of nodes, handling node registration and decommissioning.

NodeLocal DNSCache

Kubernetes add-on running a dns caching agent on cluster nodes to improve DNS performance.

NodePort

Kubernetes service type exposing the service on each node's IP at a static port, enabling external access.

NodePort Services

Kubernetes services that expose applications on a static port on each node, facilitating external access.

Non-root User Containers

Security practice of running containers with non-privileged users to reduce potential attack surface.

North-South Traffic

Network communication between external clients and services within a Kubernetes cluster, typically through ingress.

Notary

Open-source project providing secure content distribution and verification for container registries.

Notary for Content Trust

Implementation of Notary to ensure the integrity and authenticity of container images, enhancing supply chain security.

OCI Distribution Spec

Open Container Initiative specification defining an API protocol for distributing container images.

OCI Image Spec

Open Container Initiative specification defining the format of container images, ensuring interoperability.

OCI Image Specification

Detailed standard for container image format, ensuring interoperability between different container technologies.

OCI Runtime Specification

Standard defining the configuration, execution environment, and lifecycle of containers, ensuring compatibility.

OOM Killer

Linux kernel mechanism for terminating processes when the system runs out of memory, affecting container reliability.

OVN-Kubernetes for Open Virtual Networking

Integration of Open Virtual Network with Kubernetes for advanced software-defined networking.

Octant Dashboard

Open-source developer-centric web interface for visualizing Kubernetes cluster state and workloads.

Open Container Initiative (OCI) Runtime Spec

Industry standard for container runtime implementations, ensuring compatibility across platforms.

Open Policy Agent (OPA)

General-purpose policy engine for cloud-native environments, often used for Kubernetes admission control.

Open Policy Agent (OPA) Constraint Framework

OPA-based system for declaring, managing, and enforcing policies in Kubernetes environments.

OpenEBS

Container-attached storage solution providing persistent storage for stateful workloads in Kubernetes.

OpenEBS Local PV

OpenEBS feature for provisioning local persistent volumes, optimizing performance for I/O intensive workloads.

OpenFaaS

Framework for building serverless functions with Docker and Kubernetes, simplifying the deployment of event-driven workloads.

OpenID Connect Tokens

JSON Web Tokens used for authentication in Kubernetes, often integrated with external identity providers.

OpenTelemetry Collector

Vendor-agnostic way to receive, process, and export telemetry data in various formats for observability.

OpenTracing

Vendor-neutral API for distributed tracing, facilitating the instrumentation of microservices for observability.

OpenYurt

Kubernetes extension designed for edge computing scenarios, enabling efficient management of edge nodes.

Operator Lifecycle Manager (OLM)

Kubernetes extension that oversees installation, upgrades, and management of Operators in a cluster.

Operator Metering

Feature for usage reporting and billing in Kubernetes clusters, often used with Operators.

Operator Metrics

Performance and health indicators exposed by Kubernetes Operators for monitoring and alerting.

Operator Pattern

Kubernetes extension pattern for automating application-specific operational knowledge and tasks.

Operator SDK

Framework for building Kubernetes Operators, simplifying the development process with high-level APIs.

Operator Scorecard

Tool for validating Operators against best practices and providing suggestions for improvements.

OperatorHub

Public registry for finding and sharing Kubernetes Operators, facilitating discovery and distribution.

Out-of-Tree Plugins

Kubernetes plugins developed and maintained outside the main Kubernetes repository, enabling extensibility.

Outbox Pattern for Reliable Messaging

Design pattern ensuring consistency between database and message broker in distributed systems.

Outlier Detection

Process of identifying abnormal behavior in containerized applications or infrastructure for troubleshooting.

Overhead

Additional resource consumption introduced by container runtimes and orchestration systems.

Overlay Filesystems

Layered filesystem used by container runtimes to efficiently manage image layers and container writes.

Overlay Networks

Virtual networks created on top of existing networks, enabling container-to-container communication across hosts.

Parent Image

Base container image upon which other images are built, providing foundational layers for child images.

Peer Authentication

Service mesh feature ensuring mutual authentication between services using mTLS, enhancing security.

Persistent Volume Claims (PVC)

Kubernetes resource representing a request for storage by a user, abstracting storage implementation details.

Persistent Volumes (PV)

Kubernetes abstraction for a piece of storage in the cluster, managed independently of individual pods.

PersistentVolume

Kubernetes resource representing a piece of storage in the cluster that has been provisioned by an administrator.

PersistentVolumeClaim

Kubernetes resource representing a request for storage by a user, abstracting the details of the underlying storage implementation.

Pipeline as Code

Practice of defining CI/CD pipelines using code, often stored alongside application code for version control and review.

Pixie

Open-source observability tool for Kubernetes, providing automatic data collection and real-time debugging capabilities.

Pixie for Kubernetes Observability

Use of Pixie to gain deep insights into Kubernetes cluster performance and application behavior without code changes.

Pod

Smallest deployable unit in Kubernetes, consisting of one or more containers sharing storage and network resources.

Pod Affinity

Kubernetes scheduling constraint that allows pods to be co-located with other pods based on labels.

Pod Affinity/Anti-Affinity

Kubernetes features for influencing pod scheduling based on the topology of the cluster and other pods.