Term 181
Container registry
A container registry is a centralized storage and distribution system for container images, enabling developers to push, pull, and manage versions of application snapshots across environments.
Acronym study
Terms 181–210 of 956 220-1102 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 181
A container registry is a centralized storage and distribution system for container images, enabling developers to push, pull, and manage versions of application snapshots across environments.
Term 182
Container scanning is the automated process of inspecting container images for known security vulnerabilities, misconfigurations, and compliance issues before they are deployed.
Term 183
Container security is the practice of protecting containerized applications and their underlying infrastructure from threats throughout the entire lifecycle.
Term 184
Containment is the incident response phase where security teams isolate a compromised system or network to prevent the threat from spreading further while preserving evidence.
Term 185
A Content Delivery Network is a system of distributed servers that deliver web content to users based on their geographic location, improving speed and reliability.
Term 186
Control Panel is a central graphical interface in Windows operating systems used to configure system settings, manage hardware, and control user preferences.
Term 187
The control plane is the part of a network that makes decisions about how data should be forwarded, defining routes and policies without actually moving the data itself.
Term 188
A security measure that acts after an incident to limit damage, restore operations, and prevent recurrence.
Term 189
A correlation rule is a set of conditions in a security information and event management (SIEM) system that combines multiple log events from different sources to detect complex threats or patterns that a single event would miss.
Term 190
A corrupted profile is a user account on a computer that has become damaged or dysfunctional, preventing the user from logging in or accessing their personal settings and files.
Term 191
A cost allocation tag is a key-value pair attached to cloud resources to track and organize costs by department, project, or environment.
Term 192
Cost Explorer is an AWS tool that lets you visualize, understand, and manage your AWS spending and usage over time.
Term 193
Cost Management is the practice of planning, controlling, and optimizing spending on cloud resources to stay within budget and maximize value.
Term 194
The Cost Optimization pillar is a set of design principles and best practices in cloud computing aimed at minimizing expenditure while maximizing the value delivered from cloud resources.
Term 195
A countermeasure is any action, device, procedure, or technique that reduces a threat, vulnerability, or risk to an acceptable level.
Term 196
A covert channel is a hidden communication path that allows data to be transferred in ways that violate a system's security policy, often by using resources not intended for communication.
Term 197
Credential Guard is a security feature in Windows that uses virtualization to protect sensitive credentials like passwords and hashes from being stolen by malware.
Term 198
Cross-site request forgery (CSRF) is a web security vulnerability that tricks a user into unknowingly performing actions on a website where they are already authenticated.
Term 199
Cross-site scripting (XSS) is a security vulnerability that allows attackers to inject malicious scripts into web pages viewed by other users, often to steal data or hijack sessions.
Term 200
Cross-Site Request Forgery is an attack that tricks a user into performing an unwanted action on a web application where they are currently authenticated.
Term 201
Customer Lockbox is a Microsoft 365 service that gives customers explicit control over granting Microsoft support engineers temporary access to their tenant data for troubleshooting and issue resolution.
Term 202
DAST (Dynamic Application Security Testing) is a security testing method that finds vulnerabilities in running web applications by simulating real attacks from the outside.
Term 203
Data classification is the process of organizing data into categories based on its sensitivity, value, and criticality to an organization, so that appropriate security controls can be applied.
Term 204
An entity that determines the purposes and means of processing personal data.
Term 205
A data custodian is the person or team responsible for the safe handling, storage, and transport of data on behalf of the data owner.
Term 206
Data Loss Prevention (DLP) is a set of tools and processes that help organizations stop sensitive information from being shared, leaked, or stolen, whether accidentally or on purpose.
Term 207
Data masking is a security technique that replaces sensitive data with realistic but fictional data so it can be used safely in non-production environments.
Term 208
A senior-level person who is accountable for the classification, protection, and appropriate use of a specific set of data within an organization.
Term 209
The part of a network device that actually forwards data packets from one interface to another based on decisions made by the control plane.
Term 210
A data processor is a person or organization that processes personal data on behalf of a data controller, following the controller's instructions and under their authority.