| AAD |
Azure Active Directory |
| AHAB |
Advanced High Assurance Boot |
| AES |
Advanced Encryption Standard |
| Ansible |
Ansible is an open-source software provisioning, configuration management, and application-deployment tool enabling infrastructure as code. |
| Ansible Vault |
Ansible encrypted storage. |
| API |
Application Programming Interface |
| Artifactory |
JFrog Enterprise Universal Repository Manager |
| AWS |
Amazon Web Services |
| CA |
Certificate Authority |
| CI/CD |
Combined practices of continuous integration, continuous delivery, and continuous deployment. |
| CP |
Certificate Policy is a named set of rules that indicates the applicability of a certificate to a particular community and class of application with common security requirements. For example, a particular CP might indicate the applicability of a type of certificate to the authentication of parties engaging in business-to-business transactions for the trading of goods or services within a given price range. rfc3647 |
| CPS |
Certificate Practice Statement is a statement of the practices that a certification authority employs in issuing, managing, revoking, and renewing or re-keying certificates. rfc3647 |
| CSF |
Command Sequence File (Used in HAB) |
| Docker |
Docker is a tool designed to make it easier to create, deploy, and run applications by using containers. Containers allow a developer to package up an application with all of the parts it needs, such as libraries and other dependencies, and deploy it as one package. |
| EC |
Elliptic Curve |
| ECDSA |
Elliptic Curve Digital Signature |
| EFK |
Elasticsearch, Fluentd, and Kibana for logging. |
| Fluentd |
An open-source data collector for unified logging layer. |
| Golang |
Golang is a statically typed, compiled programming language designed at Google. |
| HA |
High Availability. |
| HAB |
High Assurance Boot |
| HMAC |
Keyed-hash message authentication code |
| provides crypto processing. |
|
| HSM |
A Hardware Security Module (HSM) is a physical computing device that safeguards and manages digital keys for strong authentication and provides crypto processing. |
| HW |
Hardware |
| IMG |
Image signing certificate in HAB |
| IoT |
The Internet of things (IoT) is the extension of Internet connectivity into physical devices and everyday objects. |
| IP |
Intellectual Property |
| ISG |
Installation and Setup Guide |
| IV |
Initialization Vector |
| Jenkins |
Open source automation server www.jenkins.io |
| JWE |
JSON Web Encryption rfc7516 |
| Kubernetes(K8s) |
Kubernetes is an open-source system for automating deployment, scaling, and management of containerized applications. |
| K8s cluster |
Set of virtual machines implementing the K8 system. |
| MS Graph |
Microsoft Graph is the gateway to data and intelligence in Microsoft 365. |
| Nginx |
Nginx [engine x] is an HTTP and reverse proxy server, a mail proxy server, and a generic TCP/UDP proxy server. |
| OCI |
The Open Container Initiative (OCI) is a Linux Foundation project, started in June 2015 by Docker, to design open standards for operating-system-level virtualization (software containers), most importantly Linux containers. |
| PKI |
Public Key Infrastructure (PKI) is a set of roles, policies, and procedures needed to create, manage, distribute, use, store & revoke |
| digital certificates and manage public-key encryption. |
|
| Prometheus |
Prometheus is an open-source system monitoring and alerting toolkit. |
| R&D |
Research and Development |
| REST |
Representational State Transfer (REST) |
| RSA |
RSA (Rivest–Shamir–Adleman) is one of the first public-key cryptosystems. |
| SGK |
Subordinate key of the SRK key and is used to verify signatures across product software. |
| SRK |
Super Root Key. An RSA key pair, which forms the start of the boot-time authentication chain. |
| SRK Hash |
Hash value of the SRK table. |
| Sub-CA |
Subordinate Certificate Authority |
| SW |
Software |
| TLS |
Transport Layer Security |
| UML |
Unified Modeling Language |
| X.509 |
X.509 is a standard defining the format of public key certificates. rfc5280 |
| YAML |
(a recursive acronym for "YAML Ain't Markup Language") is a human-readable data-serialization language. |
| # |
Commands prefixed with this are run as root |
| $ |
Commands prefixed with this are run as user |