Term 211
Container
A container is a lightweight, standalone software package that includes everything needed to run an application, such as code, runtime, system tools, and libraries.
Acronym study
Terms 211–240 of 1001 Cloud Digital Leader acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 211
A container is a lightweight, standalone software package that includes everything needed to run an application, such as code, runtime, system tools, and libraries.
Term 212
Container Analysis is the process of examining container images and running containers for security vulnerabilities, misconfigurations, and compliance issues before deployment.
Term 213
A container escape is a security exploit where an attacker breaks out of the isolated environment of a container to gain unauthorized access to the host operating system or other containers.
Term 214
Container image scan is the automated process of inspecting a container image for security vulnerabilities, misconfigurations, and exposed secrets before it is deployed.
Term 215
A container instance is a running software package created from a container image that includes its own code, runtime, and dependencies, isolated from the host system.
Term 216
A container registry is a centralized storage and distribution system for container images, enabling developers to push, pull, and manage versions of application snapshots across environments.
Term 217
Container scanning is the automated process of inspecting container images for known security vulnerabilities, misconfigurations, and compliance issues before they are deployed.
Term 218
Container security is the practice of protecting containerized applications and their underlying infrastructure from threats throughout the entire lifecycle.
Term 219
Containment is the incident response phase where security teams isolate a compromised system or network to prevent the threat from spreading further while preserving evidence.
Term 220
The control plane is the part of a network that makes decisions about how data should be forwarded, defining routes and policies without actually moving the data itself.
Term 221
A controller is a hardware chip or software program that manages data flow and communication between a computer's operating system and its connected devices or networks.
Term 222
Copper cable is a type of network cabling that uses copper wires to transmit data using electrical signals.
Term 223
A security measure that acts after an incident to limit damage, restore operations, and prevent recurrence.
Term 224
A correlation rule is a set of conditions in a security information and event management (SIEM) system that combines multiple log events from different sources to detect complex threats or patterns that a single event would miss.
Term 225
A cost allocation tag is a key-value pair attached to cloud resources to track and organize costs by department, project, or environment.
Term 226
Cost Explorer is an AWS tool that lets you visualize, understand, and manage your AWS spending and usage over time.
Term 227
Cost Management is the practice of planning, controlling, and optimizing spending on cloud resources to stay within budget and maximize value.
Term 228
The Cost Optimization pillar is a set of design principles and best practices in cloud computing aimed at minimizing expenditure while maximizing the value delivered from cloud resources.
Term 229
A countermeasure is any action, device, procedure, or technique that reduces a threat, vulnerability, or risk to an acceptable level.
Term 230
A covert channel is a hidden communication path that allows data to be transferred in ways that violate a system's security policy, often by using resources not intended for communication.
Term 231
Cross-Region Replication is the automated copying of data from a storage bucket in one geographic region to a bucket in a different geographic region for disaster recovery, compliance, or lower latency access.
Term 232
Cross-site request forgery (CSRF) is a web security vulnerability that tricks a user into unknowingly performing actions on a website where they are already authenticated.
Term 233
Cross-site scripting (XSS) is a security vulnerability that allows attackers to inject malicious scripts into web pages viewed by other users, often to steal data or hijack sessions.
Term 234
Cross-Site Request Forgery is an attack that tricks a user into performing an unwanted action on a web application where they are currently authenticated.
Term 235
A custom role is a user-defined set of permissions in Google Cloud that you can tailor to fit specific job functions beyond the predefined roles.
Term 236
Customer Lockbox is a Microsoft 365 service that gives customers explicit control over granting Microsoft support engineers temporary access to their tenant data for troubleshooting and issue resolution.
Term 237
DAST (Dynamic Application Security Testing) is a security testing method that finds vulnerabilities in running web applications by simulating real attacks from the outside.
Term 238
Data is raw, unprocessed information, like numbers, words, or measurements, that can be stored, processed, and analyzed by computers.
Term 239
A data catalog is a centralized inventory of data assets that helps people find, understand, and trust the data they need for analytics or business decisions.
Term 240
A Data Center Interconnect is a network connection that links two or more separate data centers together so they can share data, resources, and services as if they were a single facility.