Google Cloud Platform Glossary

Companies that own massive computer centers and rent out computing power. Think of them as tech landlords.

A hyperscaler is one of the world's largest cloud computing providers — companies that operate at an extraordinary scale with millions of servers, hundreds of data centers, and global infrastructure capable of serving billions of users simultaneously. The term refers to organizations that have built their own massive, global-scale computing platforms and offer them as public cloud services. Hyperscalers are distinguished by their ability to rapidly scale infrastructure up or down on demand, their global geographic reach across every continent, and their enormous investment in proprietary hardware, networking, and software. They provide the full spectrum of cloud services including compute, storage, databases, AI/ML, networking, and developer tools.

A building full of servers and networking equipment. Think of it as a giant computer warehouse.

Saving your files on someone else's computers via the internet instead of on your device. Like a safety deposit box for data.

Amazon EC2 (Elastic Compute Cloud) is AWS's virtual server service that lets you launch and manage compute instances in the cloud within minutes. Each EC2 instance is a virtual machine with a configurable amount of CPU, memory, storage, and networking capacity chosen from dozens of instance families — from general-purpose (t3, m6i) to compute-optimized (c6i) and memory-optimized (r6i). You pay only for what you use, by the second, and can start or stop instances at any time. EC2 integrates tightly with other AWS services: instances live inside VPCs for network isolation, attach EBS volumes for persistent storage, and sit behind Elastic Load Balancers for traffic distribution. The Azure equivalent is Azure Virtual Machines; the GCP equivalent is Compute Engine; OCI calls them Compute Instances. When would you use EC2? Use EC2 when you need full control over the operating system and runtime environment, when running long-running processes (batch jobs, background workers, traditional web servers), when your workload doesn't fit the stateless/short-execution model of serverless functions, or when you need specific hardware capabilities (GPUs, high-memory instances). Choose Lambda instead for short event-driven tasks; choose ECS/EKS instead when you want container-based workloads with orchestration. Common mistakes: running a single EC2 instance with no redundancy (always deploy across at least two Availability Zones behind a load balancer), not using Auto Scaling groups (your app will fall over under traffic spikes), and using On-Demand pricing for steady-state workloads when Reserved Instances or Savings Plans would cut costs by 30–70%.

Amazon S3 (Simple Storage Service) is AWS's object storage service that provides virtually unlimited, highly durable storage for any type of file — images, videos, logs, backups, static websites, and data lakes. Unlike a traditional file system, S3 organizes data as objects inside buckets, where each object consists of the data itself plus metadata and a unique key. S3 stores every object redundantly across multiple Availability Zones, delivering 99.999999999% (eleven nines) durability. You can control access with bucket policies and IAM permissions, enable versioning to recover accidentally deleted files, set lifecycle rules to automatically archive old data to S3 Glacier, and configure event triggers to invoke Lambda functions when new files arrive. The Azure equivalent is Azure Blob Storage; GCP's equivalent is Cloud Storage; OCI offers Object Storage. When would you use S3? Use S3 for any file that needs to be stored durably and accessed on demand: user-uploaded content (images, videos, documents), application logs and audit trails, static website hosting, machine learning training datasets, backups, and as the landing zone for data lake pipelines. It's also the default destination for services like CloudTrail, AWS Config, and ELB access logs. Common mistakes: making buckets publicly accessible by accident (always set Block Public Access at the account level), not enabling versioning on important buckets (a single accidental delete is unrecoverable without versioning), and forgetting that S3 is eventually consistent for overwrite and delete operations in some regions — plan read-after-write behavior accordingly.

AWS Lambda is a serverless compute service that runs your code in response to events without requiring you to provision or manage servers. You upload a function, define what triggers it (an HTTP request via API Gateway, a new file in S3, a message in SQS, a DynamoDB change), and Lambda handles everything else — execution, scaling, patching, and availability. Lambda scales automatically from zero to thousands of concurrent invocations, and you pay only for actual compute time measured in milliseconds. Functions can run for up to 15 minutes and can be written in Node.js, Python, Java, Go, Ruby, or custom runtimes. Cross-cloud equivalents: Azure Functions (Azure), Cloud Functions or Cloud Run (GCP), Oracle Functions (OCI). When would you use Lambda? Lambda is ideal for event-driven, short-duration workloads: processing file uploads, responding to API calls through API Gateway, reacting to database change streams, running scheduled tasks (like a cron job via EventBridge), sending notifications, and transforming data between services. It's particularly cost-effective for variable or bursty traffic patterns since you pay nothing when idle. Common mistakes: using Lambda for long-running processes (15-minute maximum execution time is a hard limit — use ECS Fargate or EC2 instead), ignoring cold start latency for latency-sensitive endpoints (use Provisioned Concurrency to keep functions warm), hitting concurrency limits without requesting quota increases in advance, and storing state in the function itself (Lambda functions are stateless — use DynamoDB, ElastiCache, or S3 for persistence between invocations).

A Virtual Private Cloud (VPC) is a logically isolated section of a cloud provider's network where you launch resources inside a virtual network you fully control. You define the IP address range using CIDR notation (e.g., 10.0.0.0/16), divide it into public and private subnets across multiple Availability Zones, configure route tables to direct traffic, attach Internet Gateways for public access, and use NAT Gateways to let private resources reach the internet without being directly exposed. Security Groups act as stateful firewalls at the instance level, while Network ACLs provide stateless filtering at the subnet level. VPCs are available on every major cloud provider under different names: AWS calls it VPC, Azure calls it Virtual Network (VNet), Google Cloud calls it VPC Network, and OCI calls it Virtual Cloud Network (VCN). When would you use a VPC? Almost always — any production workload should run inside a VPC. VPCs are mandatory when you need network-level isolation between environments (dev/staging/prod), when you must keep databases or internal services off the public internet, when connecting your on-premises network to the cloud via VPN or Direct Connect, or when you need to meet compliance requirements around network segmentation. Common mistakes: allocating VPC CIDR blocks that are too small (hard to expand later — use at least /16 for flexibility), placing databases or internal APIs in public subnets (they should always be in private subnets with no internet route), overlapping CIDR blocks between VPCs that you later need to peer together, and not planning subnet allocation across Availability Zones from the start — retrofitting multi-AZ into a single-AZ VPC design is painful.

Google's cloud computing services that help you build, deploy, and scale applications using Google's infrastructure. Like using Google's massive computer network for your projects.

Docker is the most widely used platform for building, packaging, and running containers — lightweight, portable execution environments that bundle an application together with all its dependencies (code, runtime, libraries, config files). A Dockerfile defines the exact steps to build an image; that image can then be run as a container on any machine with Docker installed, eliminating the classic 'it works on my machine' problem. Docker images are stored in registries (Docker Hub, Amazon ECR, Azure Container Registry, Google Artifact Registry). In production, individual Docker containers are typically orchestrated at scale by Kubernetes. Key concepts to understand: images are read-only templates; containers are running instances of images; layers make images efficient by reusing unchanged steps; and multi-stage builds keep final images small and secure by excluding build-time dependencies. When would you use Docker? Use Docker whenever you want consistent, reproducible environments: packaging microservices for deployment, standardizing developer environments, running CI/CD pipelines in isolated environments, migrating legacy applications to cloud-native infrastructure, or bundling scripts and tools with their exact runtime dependencies. If you're deploying to ECS, EKS, or Kubernetes, Docker images are required — they are the deployable unit. Common mistakes: running containers as root (always specify a non-root USER in the Dockerfile for security), using 'latest' image tags in production (pin to a specific version or digest for reproducible deployments), building bloated images by copying the entire build environment into the final image (use multi-stage builds to separate build-time from runtime dependencies), and committing secrets or credentials into Docker images — use environment variables or secrets managers instead.

Kubernetes (often abbreviated K8s) is an open-source container orchestration platform originally developed by Google that automates the deployment, scaling, and management of containerized applications across a cluster of servers. The core building block is the Pod — one or more containers that share a network and storage. Deployments manage how many Pod replicas run and handle rolling updates; Services expose Pods to network traffic with stable addresses; ConfigMaps and Secrets inject configuration without rebuilding images; and Horizontal Pod Autoscalers scale replica counts based on CPU or custom metrics. Every major cloud provider offers a managed Kubernetes service: AWS EKS, Azure AKS, Google GKE, and OCI OKE. When would you use Kubernetes? Kubernetes is appropriate when you're running multiple containerized microservices that each need independent scaling, when you need zero-downtime rolling deployments, when you're managing workloads that benefit from declarative infrastructure (desired-state management), or when you need portability across cloud providers. For simple single-service deployments, ECS Fargate, App Service, or Cloud Run may be simpler alternatives. Common mistakes: treating Kubernetes as a simple 'containers on a server' solution without understanding its operational complexity (networking, storage, RBAC, and observability all require deep investment), using latest image tags (always pin to a specific digest for production workloads), not setting resource requests and limits on containers (unset limits cause noisy-neighbor problems and unpredictable scheduling), placing stateful databases inside Kubernetes without understanding Persistent Volumes (many teams use RDS or managed databases instead), and skipping RBAC configuration (every workload should have the minimum permissions needed via dedicated ServiceAccounts).

Tensor Processing Unit - Google's custom AI accelerator chips optimized specifically for training and running neural networks. Like having a specialist tool designed exclusively for AI workloads.

Google Cloud service that provides private connectivity between your on-premises network and Google's network. Like building a private bridge between your building and Google's data center.

Google Cloud service that creates secure VPN connections between your on-premises network and your Google Cloud VPC. Like creating a secure, encrypted highway tunnel that connects two separate cities.

A configuration resource each cloud provider uses to describe the on-premises router that terminates a Site-to-Site VPN. Like the address book entry for the building on the other end of a private telephone line — the cloud needs to know its public IP, routing protocols, and CIDR ranges to negotiate the encrypted tunnel.

Cloud services available over the internet to anyone who wants to use them, shared among multiple organizations. Like renting an apartment in a building where multiple tenants share infrastructure.

A networking component that enables resources in a virtual network to communicate with the internet. Available as AWS Internet Gateway, Azure Internet routing, and implicit in GCP VPC networks. Like the main entrance of a building connecting inside to outside.

Network Address Translation Gateway - enables private subnet resources to access the internet for outbound traffic while blocking inbound connections. Available as AWS NAT Gateway, Azure NAT Gateway, GCP Cloud NAT, and OCI NAT Gateway. Like a secure mailroom that sends packages out but rejects unsolicited deliveries.

A set of rules (called routes) that determine where network traffic from subnets or gateways is directed. Each route specifies a destination (IP range) and a target (gateway, network interface, or connection). Available as AWS VPC Route Tables, Azure Route Tables (UDR), GCP VPC Routes, and OCI VCN Route Tables. Like a road sign system that tells cars which highway exit to take based on their destination.

Google Cloud's platform for building and hosting web applications without managing servers. Like renting a fully-managed restaurant kitchen where you just need to provide the recipes.

Google Cloud's serverless data warehouse for analyzing massive datasets quickly. Like having a super-computer that can answer complex questions about huge amounts of data in seconds.

Google Cloud's messaging service that allows applications to communicate asynchronously. Like a mail system where applications can send messages without waiting for replies.

Google Cloud's globally distributed database that combines the benefits of relational databases with horizontal scaling. Like having a database that works like a local one but can handle global-scale traffic.

Google Cloud's stream and batch data processing service. Like having a factory assembly line that can process both steady streams of data and large batches efficiently.

Google's mobile and web application development platform with real-time database and hosting. Like having a complete backend service that handles all server-side needs for mobile apps.

A secure computer that acts as a gateway for accessing private servers that aren't exposed to the internet. Like a security checkpoint at a building entrance - you must go through it to reach the protected areas inside.

Single Sign-On - authentication system that allows users to log in once and access multiple applications. Like having a master key for all doors in a building.

Using services from multiple cloud providers to avoid vendor lock-in and optimize performance. Like shopping at different stores to get the best deals and products.

AWS service for coordinating multiple AWS services into serverless workflows using visual state machines. Like a conductor orchestrating different musicians to play a symphony together. The cross-cloud equivalents are Azure Logic Apps / Durable Functions (Azure), Cloud Workflows (GCP), and OCI Process Automation (OCI).

Google Cloud's fully managed, cloud-native data integration service for building and managing ETL/ELT pipelines with a visual interface. Like having a drag-and-drop pipeline builder that connects all your data sources without writing code.

Google Cloud's fully managed service for securely connecting and managing IoT devices at scale. Note: Google Cloud deprecated this service in August 2023, recommending migration to partner solutions or third-party IoT platforms. Like a postal service that closed down, directing customers to alternative delivery services.

Google Cloud's serverless compute service that runs code in response to events. Like having helpers that automatically spring into action when specific things happen. It is GCP's equivalent of AWS Lambda for event-driven serverless functions.

Google Cloud's serverless platform for running containerized applications that scales automatically, including to zero. Like having a hosting service that adjusts resources based on demand. Alongside Cloud Functions, it serves as GCP's equivalent of AWS Lambda for flexible serverless compute.

Google Cloud's serverless workflow orchestration service for connecting and automating cloud services using HTTP-based state machines. Like a traffic controller directing requests between services in a defined sequence. It is GCP's equivalent of AWS Step Functions.

Google Cloud's fully managed cron job scheduler for automating tasks. Like having a reliable alarm clock that triggers your cloud operations on a schedule.

Google Cloud's object storage service for storing and retrieving any amount of data. Like having unlimited digital storage space accessible from anywhere.

Google Cloud's NoSQL wide-column database for real-time analytics. Like having a massive spreadsheet that can handle billions of rows and columns instantly.

Google Cloud's managed Apache Spark and Hadoop service for big data processing. Like renting a supercomputer cluster that's pre-configured for data analysis.

The Federal Risk and Authorization Management Program — a US government framework that standardizes how cloud products and services are security-assessed, authorized, and continuously monitored before federal agencies can use them. Think of it as a rigorous safety certification that cloud vendors must earn before the US government will trust them with sensitive workloads. FedRAMP defines three impact levels based on the potential harm of a data breach: Low (public data, minimal impact), Moderate (controlled unclassified information — the most common authorization, covering the vast majority of federal workloads), and High (data where a breach could cause severe harm — used for law enforcement, emergency services, and financial systems). AWS GovCloud and Azure Government regions hold FedRAMP High authorizations — the highest tier. Google Cloud Assured Workloads supports FedRAMP Moderate. Oracle Cloud Infrastructure (OCI) holds FedRAMP Moderate authorization for many core services. Firebase Cloud Messaging (FCM) is notably not FedRAMP authorized, meaning federal agencies cannot use it for regulated messaging workloads — AWS SNS or Azure Notification Hubs are the compliant alternatives.

Storing multiple copies of data to protect against loss and ensure availability. Like keeping backup copies of important files in different locations so you never lose them.

Google Cloud service for developing, deploying, and managing APIs. Like having a professional receptionist service that handles all API requests and manages access.

Google Cloud security service that provides DDoS protection and web application firewall. Like having a digital security guard that protects your applications from attacks.

Storing copies of data in multiple geographic locations to protect against regional disasters. Like keeping important documents in safe deposit boxes in different cities.

Google Cloud's modern business intelligence and analytics platform with a unique semantic modeling layer. Like having a data translator that ensures everyone in the company speaks the same data language and sees consistent metrics.

Google's unified machine learning platform for building, deploying, and scaling AI models. Like having Google's AI expertise available as a complete toolkit for your projects.

Google's global load balancing service that distributes traffic across regions. Like having a worldwide traffic management system that routes users to the best servers.

Google's service for dynamic routing in virtual networks using BGP. Like having an intelligent GPS system for network traffic that automatically finds the best paths.

Google Cloud's managed network address translation service that allows private instances to access the internet without exposing them to incoming connections. Like having a secure one-way door that lets your private servers reach out to the internet while keeping them hidden from outside traffic.

Google's service for monitoring performance and health of cloud applications. Like having a dashboard that shows the vital signs of all your applications in real-time.

Google Cloud's centralized logging service that collects, stores, and analyzes logs from all your applications and infrastructure. Like having a detailed diary that automatically records everything happening across your cloud environment.

Google Cloud's security and risk management platform that provides centralized visibility into your cloud assets, vulnerabilities, and threats. Like having a security control room that monitors your entire cloud environment for potential risks and compliance issues.

Google's machine learning service for image analysis and computer vision. Like giving applications the ability to see and understand visual content like humans do.

Google's service for understanding and analyzing human language. Like having an AI that can read and comprehend text with human-like understanding.

Google's advanced neural machine translation service. Like having Google Translate's power available for your applications with enterprise features.

Google's service for converting audio to text with high accuracy. Like having a professional transcriptionist that works instantly and supports many languages.

Google's service for converting text into natural-sounding spoken audio. Like having a professional voice actor that can read any text in multiple languages and voices.

Google's service for extracting structured data from documents using machine learning. Like having an AI assistant that can read and organize any type of document.

Google Kubernetes Engine - Google's managed Kubernetes service for container orchestration. Like having Google's container experts manage your application deployment infrastructure.

Google's service for storing and managing Docker container images. Like having a private warehouse for your containerized applications with version control.

Google's hybrid and multi-cloud application platform for modernizing applications. Like having a universal translator that makes applications work the same way across different cloud environments.

Google's enterprise-grade conversational AI platform for building complex chatbots and virtual agents with advanced conversation flows and natural language understanding. Like creating sophisticated customer service bots that can handle multi-turn conversations.

Google Cloud Contact Center AI Platform - an AI-first contact center as a service with omnichannel routing, Agent Assist for real-time agent guidance, and deep CRM integration. Like having Google's AI helping your support team in real-time.

Google's enterprise search service offering Google-quality search with semantic understanding, vector search, and RAG capabilities for building intelligent search experiences. Formerly known as Google Cloud Enterprise Search.

Google Cloud's implementation of Virtual Private Cloud, providing global-by-default networking that spans all regions. Unlike AWS VPCs which are regional, GCP VPC Networks can have subnets in different regions within the same network. Equivalent to AWS VPC, Azure VNet, and OCI VCN.

Google Cloud's virtual machine service that provides scalable, high-performance virtual machines.

Google Cloud's fully managed relational database service for MySQL, PostgreSQL, and SQL Server.

A website that helps you find information on the internet by typing keywords. Like a librarian who can instantly find any book or information you need.

Uniform Resource Locator - the web address you type to visit a specific website. Like a postal address that tells your browser exactly where to go.

When you become dependent on a specific cloud provider's proprietary services and switching to another provider becomes difficult or expensive. Like building your house with custom parts that only work with one supplier.

Global Positioning System - technology that uses satellites to determine your exact location on Earth. Like having a digital compass that always knows exactly where you are.

Using someone else's computers over the internet for specific tasks instead of doing everything on your own device. Like renting specialized equipment instead of buying it.

Applications that run on cloud servers instead of entirely on your device. Like using a tool that exists in a workshop you can visit anytime, rather than owning the tool yourself.

Working together on projects using cloud-based tools that let multiple people edit and share files in real-time. Like having a shared workspace that everyone can access simultaneously.

An Availability Zone (AZ) is a physically separate data center (or cluster of data centers) within a cloud region, connected to other AZs in the same region through low-latency, high-bandwidth private fiber links. Each AZ has independent power, cooling, and networking infrastructure so that a failure in one zone — a power outage, fire, or flooding — does not affect the others. Deploying across multiple AZs is the foundational pattern for building highly available systems: you run application instances in at least two AZs and sit them behind a load balancer so traffic automatically routes away from the failed zone. AWS regions typically have 3–6 AZs; Azure calls them Availability Zones; GCP uses zones within regions; OCI has Availability Domains. When would you use multiple Availability Zones? Always, for any production workload that needs to remain available during infrastructure failures. Practically this means: deploying your EC2 Auto Scaling groups or ECS tasks across at least two AZs, enabling Multi-AZ on your RDS databases (automatic standby replica in a different AZ), distributing subnets across AZs in your VPC, and using services like ELB or Route 53 that automatically route around unhealthy AZs. The cost trade-off is worth it — inter-AZ data transfer has a small fee, but the alternative is accepting downtime when (not if) a single AZ has an incident. Common mistakes: deploying all EC2 instances or containers in a single AZ to save on data transfer costs (this creates a single point of failure), confusing Availability Zones with Regions (AZs are within a region — multi-region is a separate, higher-level resilience pattern), and not testing failover behavior (run chaos engineering experiments to verify your application actually handles AZ failures gracefully).

Domain Name System - translates human-readable website names into computer addresses. Like a phone book that converts 'Pizza Place' into the actual phone number.

A subdivision of a virtual network that segments resources by IP range for security, organization, and routing control. Used across all cloud providers: AWS subnets within VPCs, Azure subnets within VNets, GCP subnets within VPC Networks, and OCI subnets within VCNs. Like dividing a building into floors with different access rules.

GCP managed build service that can both compile code and orchestrate deployment workflows. Like a versatile automation system that can handle the entire journey from source code to running application.

GCP service for advanced deployment orchestration with support for progressive rollouts and approval gates. Like a sophisticated deployment manager that carefully rolls out changes with safety checks.

Moving applications, data, or infrastructure from one environment to another, such as from on-premises servers to the cloud or between cloud providers. Like relocating a business to a new building while keeping everything running.

Google Cloud service for managing container images and language packages in one place. Like a universal warehouse for all your software building blocks.

Google Cloud managed Apache Airflow service for orchestrating data pipelines. Like having a professional conductor for your data workflows.

Google Cloud security analytics platform built on Google infrastructure for threat detection. Like having Google's security expertise watching over your organization's data.

Google Cloud's fully managed NoSQL document database designed for mobile, web, and server development. Like a filing cabinet that automatically organizes and syncs your documents across all devices.

A comprehensive suite of cloud services from a single provider that enables building, deploying, and managing applications. Like a complete toolkit for building in the cloud.

A software development practice where developers frequently merge code changes into a shared repository, with each change automatically built and tested. Like a quality control checkpoint on an assembly line that catches defects early, CI ensures code changes don't break existing functionality. AWS CodeBuild, Azure Pipelines, Google Cloud Build, and OCI DevOps all provide CI services.

A centralized repository of information used to store, organize, and retrieve knowledge for users or AI systems. In cloud computing, knowledge bases power AI assistants, customer support systems, and enterprise search. AWS Kendra and Bedrock Knowledge Bases, Azure AI Search, Google Cloud Vertex AI Search, and OCI Generative AI all provide managed knowledge base services.

A messaging pattern where senders (publishers) broadcast messages to a topic without knowing who receives them, and receivers (subscribers) listen to topics they're interested in. Like a radio station broadcasting to anyone tuned in, pub/sub decouples producers from consumers. AWS SNS, Azure Service Bus Topics, Google Cloud Pub/Sub, and OCI Notifications all implement this pattern.

The practice of copying data or resources across multiple geographic regions for disaster recovery, low-latency access, or compliance requirements. Like having backup copies of important documents in different cities, regional replication ensures data survives regional outages. AWS S3 Cross-Region Replication, Azure Geo-Redundant Storage, Google Cloud multi-regional storage, and OCI Cross-Region Replication all provide this capability.

A cloud-based collaboration platform that combines workplace chat, video meetings, file storage, and application integration. Part of the Microsoft 365 suite, Teams integrates deeply with Azure services for enterprise deployments. Similar collaboration tools exist across cloud ecosystems: AWS offers Amazon Chime, Google provides Google Meet and Chat, and Oracle offers Oracle Cloud collaboration features.

Secret tokens used to authenticate and authorize access to cloud services and APIs. Like a password for software applications, API keys identify the calling application and control what actions it can perform. AWS uses Access Keys and Secret Keys, Azure provides Subscription Keys and Service Principal credentials, GCP uses API Keys and Service Account Keys, and OCI uses API Signing Keys.

The practice of using code and tools to automatically provision, configure, and manage cloud infrastructure instead of manual processes. Like having robots build and maintain your data center, infrastructure automation ensures consistent, repeatable, and error-free deployments. Tools include Terraform, AWS CloudFormation, Azure Resource Manager, Google Cloud Deployment Manager, and OCI Resource Manager.

Strategies and practices for reducing cloud spending while maintaining performance and reliability. Like finding ways to reduce your utility bills without sacrificing comfort, cost optimization involves right-sizing resources, using reserved capacity, eliminating waste, and choosing cost-effective architectures. AWS offers Cost Explorer and Trusted Advisor, Azure provides Cost Management, GCP has Cost Management tools, and OCI offers Cost Analysis.

A network component that acts as an entry point or intermediary between different networks or services. Like a toll booth on a highway, gateways control and manage traffic flow. In cloud computing, common gateway types include API Gateway (manages API traffic), NAT Gateway (enables outbound internet access for private resources), VPN Gateway (connects on-premises networks), and Internet Gateway (connects VPCs to the internet). AWS, Azure, GCP, and OCI all offer managed gateway services.

A cloud virtual machine equipped with one or more Graphics Processing Units (GPUs) for accelerated computing workloads. Think of it like upgrading from a regular car to a race car — GPU instances provide massive parallel processing power needed for machine learning training, 3D rendering, video encoding, and scientific simulations. AWS offers P and G instance families, Azure provides NC and ND series, GCP has A2 and G2 machine types, and OCI offers GPU shapes with NVIDIA GPUs.

The process of determining the cloud resources needed to meet current and future workload demands while optimizing costs. Like planning how much food to buy for a growing family, capacity planning involves analyzing usage patterns, forecasting growth, and ensuring enough compute, storage, and network resources are available without over-provisioning. Cloud providers offer tools like AWS Compute Optimizer, Azure Advisor, GCP Recommender, and OCI Cloud Advisor to help right-size resources.

The automated process of identifying security weaknesses, misconfigurations, and known vulnerabilities in cloud infrastructure, applications, and container images. Like a home security inspector checking every door and window for weaknesses, vulnerability scanners systematically examine your systems against databases of known threats. AWS offers Inspector and ECR scanning, Azure provides Defender for Cloud, GCP has Security Command Center and Artifact Analysis, and OCI offers Vulnerability Scanning Service.

A centralized storage system for managing build outputs, software packages, container images, and deployment artifacts throughout the software delivery lifecycle. Like a warehouse that stores and organizes all the parts needed to assemble a product, artifact repositories version, secure, and distribute the components that make up your applications. AWS offers CodeArtifact and ECR, Azure provides Azure Artifacts and ACR, GCP has Artifact Registry, and OCI offers Container Registry.

A networking service that enables private connectivity between cloud resources and services without exposing traffic to the public internet. Like having a private tunnel between two buildings instead of walking through a busy street, Private Link creates secure, low-latency connections that stay within the cloud provider's backbone network. AWS offers PrivateLink, Azure provides Private Link, GCP has Private Service Connect, and OCI offers Private Endpoints.

A set of technologies, tools, and practices for collecting, integrating, analyzing, and presenting business data to support better decision-making. Like having a dashboard in your car that shows speed, fuel level, and engine health at a glance, BI platforms transform raw data into meaningful visualizations, reports, and insights. AWS offers QuickSight, Azure provides Power BI, GCP has Looker, and OCI offers Analytics Cloud — each providing interactive dashboards, data exploration, and reporting capabilities.

A visual representation of a system's components, their relationships, and how they interact within a cloud or software environment. Like a blueprint for a building, an architecture diagram shows the structural design of an application or infrastructure, including servers, databases, networks, and external services. Cloud architecture diagrams are essential for planning, documentation, and communication between teams. AWS provides the Architecture Icons library, Azure offers Visio templates, GCP has its architecture diagramming tool, and OCI provides reference architecture diagrams.

The arrangement and interconnection of cloud resources, services, and networks that make up a cloud infrastructure deployment. Like a city map showing roads, buildings, and utilities, cloud topology describes how compute instances, storage, databases, and networking components are organized and connected. Understanding topology is crucial for optimizing performance, ensuring redundancy, and maintaining security. Each cloud provider has specific topology patterns — AWS uses Regions and Availability Zones, Azure has Regions and Availability Zones, GCP uses Regions and Zones, and OCI has Regions and Availability Domains.

The practice of creating visual representations of cloud infrastructure to understand, monitor, and manage complex systems. Like using a GPS navigation app instead of written directions, infrastructure visualization transforms technical configurations into intuitive diagrams, dashboards, and maps. This includes generating architecture diagrams from code (such as Terraform), real-time infrastructure dashboards, and interactive topology maps. AWS provides CloudWatch dashboards and Architecture Center, Azure offers Azure Monitor visualization, GCP has Cloud Asset Inventory visualization, and OCI provides Console dashboards with topology views.

A pre-designed, best-practice cloud architecture template that solves a common use case and can be adapted for specific business needs. Like a model home that showcases standard layouts and features, reference architectures provide proven blueprints for building applications such as web apps, data pipelines, microservices, and machine learning platforms. AWS provides AWS Architecture Center with hundreds of reference diagrams, Azure offers Azure Architecture Center, GCP has Cloud Architecture Center, and OCI provides Reference Architecture documentation — all with detailed diagrams and implementation guides.

Cloud-based services for developing, simulating, testing, and managing robotic applications at scale. Like giving robots a brain in the cloud, these platforms offload heavy computation such as machine learning inference, path planning, and fleet management to powerful cloud servers while robots execute tasks locally. AWS RoboMaker provides simulation environments and ROS (Robot Operating System) support, Azure offers cloud-connected robotics through IoT Hub and Digital Twins, and GCP provides AI and ML services commonly integrated with robotic systems for navigation, object recognition, and decision-making.

A managed service that lets organizations create and distribute curated portfolios of approved cloud resources, applications, and configurations that users can deploy through a self-service portal. Like a company's internal app store with pre-approved items, service catalogs ensure teams can quickly provision resources that meet organizational standards for security, compliance, and cost. AWS Service Catalog lets admins define CloudFormation-based products, Azure offers Managed Applications for marketplace distribution, GCP provides Service Catalog for organizing cloud resources, and OCI has its own service marketplace for standardized deployments.

An AI-powered tool integrated into development environments that helps programmers write, complete, debug, and optimize code using large language models. Like having an experienced pair programmer who never sleeps, AI code assistants suggest entire functions, explain unfamiliar code, catch bugs before they happen, and translate natural language descriptions into working code. AWS offers Amazon Q Developer (formerly CodeWhisperer), Azure provides GitHub Copilot powered by OpenAI, GCP has Gemini Code Assist, and OCI offers OCI Generative AI code completion — each trained on vast code repositories and documentation.

Automated Machine Learning — a set of cloud services that automate the end-to-end process of building, training, and deploying machine learning models without requiring deep ML expertise. Like having a self-driving car for data science, AutoML handles feature engineering, algorithm selection, hyperparameter tuning, and model evaluation automatically. AWS provides SageMaker Autopilot, Azure offers Azure AutoML, GCP has Vertex AI AutoML, and OCI offers OCI Data Science AutoML — all enabling business analysts and developers to build production-quality ML models from their data with minimal code.

The practices, tools, and policies for managing AI and machine learning models responsibly throughout their lifecycle — from development through deployment and retirement. Like quality control and compliance for AI, model governance ensures models are fair, explainable, accurate, and compliant with regulations. This includes bias detection, model explainability, audit trails, version control, performance monitoring, and responsible AI principles. AWS offers SageMaker Model Governance, Azure provides Responsible AI tools, GCP has Vertex AI Model Monitoring and Explainability, and OCI offers OCI Data Science model management capabilities.

Cloud-based AI services that automatically extract text, data, tables, and insights from documents such as invoices, receipts, contracts, forms, and identity documents. Like having a tireless office assistant who can read and organize mountains of paperwork, document intelligence combines optical character recognition (OCR) with natural language understanding to not just read text but understand its meaning and structure. AWS offers Amazon Textract, Azure provides AI Document Intelligence (formerly Form Recognizer), GCP has Document AI, and OCI offers OCI Document Understanding.

Cloud services that convert audio and video files from one format, resolution, or bitrate to another, enabling content to play smoothly on any device or network speed. Like a universal translator for video files, transcoding services take a single high-quality source video and create optimized versions for smartphones, tablets, smart TVs, and web browsers — each with the right codec, resolution, and bitrate. AWS provides Elastic Transcoder and MediaConvert, Azure offers Media Services Encoder, GCP has Transcoder API, and OCI provides media processing through its media services.

A cloud messaging service that delivers real-time alerts and messages directly to users' mobile devices, web browsers, or applications — even when the app isn't actively open. Like a digital tap on the shoulder, push notifications enable apps to re-engage users with timely, relevant information. AWS offers Amazon SNS (Simple Notification Service) for mobile push, Azure provides Notification Hubs, GCP has Firebase Cloud Messaging (FCM), and OCI supports notifications through its Notification Service. These platforms handle device registration, message routing, platform-specific formatting (iOS, Android, web), and delivery tracking at massive scale.

One of the world's most popular open-source relational database management systems, widely offered as a fully managed cloud service. Like a well-organized digital filing cabinet that millions of websites rely on, MySQL stores structured data in tables with rows and columns and uses SQL (Structured Query Language) for data manipulation. AWS offers Amazon RDS for MySQL and Aurora MySQL, Azure provides Azure Database for MySQL, GCP has Cloud SQL for MySQL, and OCI offers MySQL Database Service (notably, Oracle acquired MySQL and provides the only cloud-native MySQL HeatWave service with integrated analytics).

A physical server in the cloud dedicated entirely to a single customer, with no virtualization layer or shared resources. Like renting an entire house instead of an apartment, bare metal gives you direct access to the hardware — every CPU core, every byte of RAM, and every disk operation — without the overhead of a hypervisor. This is essential for workloads requiring maximum performance, hardware-level security, or specialized configurations. AWS offers EC2 Bare Metal instances, Azure provides BareMetal Infrastructure, GCP has Sole-Tenant Nodes, and OCI is particularly known for its Bare Metal Compute instances with high-performance networking.

Google Cloud's AI-powered code assistance tool, built on the Gemini family of large language models. Like a knowledgeable colleague who understands both your codebase and Google Cloud's vast ecosystem, Gemini Code Assist provides intelligent code completions, generates code from natural language descriptions, explains complex code, and helps with debugging and refactoring. It offers deep integration with Google Cloud services, making it particularly effective for writing code that interacts with GCP resources like BigQuery, Cloud Storage, and Vertex AI. Available in Cloud Shell Editor, VS Code, JetBrains IDEs, and the Google Cloud Console.

Moving a database from one environment, platform, or version to another while maintaining data integrity and minimizing downtime. Like carefully relocating a filing cabinet full of important documents to a new building without losing or damaging any files. Cloud providers offer managed migration services like AWS DMS, Azure Database Migration Service, Google Cloud Database Migration Service, and OCI Database Migration to automate and simplify this process.

An intelligent search system that helps organizations find information across all their data — documents, emails, databases, and more — using natural language and machine learning. Like having a super-smart librarian who understands what you're really looking for, not just matching keywords. Services like AWS Kendra, Azure AI Search, and Google Vertex AI Search use AI to understand context and deliver the most relevant results.

An AI technique that identifies and locates specific objects within images or video streams, assigning labels and confidence scores. Like teaching a computer to spot and name things it sees, from cats and cars to defects in manufacturing. Cloud services like AWS Rekognition, Azure Computer Vision, Google Cloud Vision, and OCI Vision make it easy to add this capability to applications without building AI models from scratch.

Technology that lets you access and control a computer from another location over the internet. Like having a virtual window into another computer where you can see its screen and control its mouse and keyboard from anywhere. Cloud services like AWS WorkSpaces, Azure Virtual Desktop, and Google Cloud Workstations provide fully managed remote desktops that employees can access from any device.

Storage that multiple servers or computers can access and modify simultaneously over the network, enabling collaboration and data consistency. Like a shared document that everyone in your team can edit at the same time. Cloud providers offer managed shared storage like AWS EFS, Azure Files, Google Filestore, and OCI File Storage that scales automatically and handles complex networking.

The process of creating video games using specialized tools, engines, and cloud infrastructure to handle the demands of real-time graphics, multiplayer synchronization, and global distribution. Like orchestrating a complex live experience that responds instantly to millions of players worldwide. Cloud platforms like AWS GameLift, Azure PlayFab, and Google Cloud for Games provide the backend services that handle matchmaking, player data, and game analytics.

The process of examining large sets of data to uncover patterns, trends, and insights that drive better decisions. Like being a detective who sifts through clues to solve a mystery — except the clues are data points and the mystery is what your customers want or how to improve your business.

Using AI and neural networks to automatically translate text or speech from one language to another. Like having a multilingual friend who can instantly convert conversations between languages — except it's powered by deep learning models trained on billions of translated sentences.

A managed service that handles user sign-up, login, password recovery, and identity verification so developers don't have to build these from scratch. Like hiring a security company to manage building access instead of installing your own locks and badge system.

A browser-based command line terminal that comes pre-loaded with cloud management tools, letting you manage cloud resources directly from your web browser without installing anything on your computer. Like having a fully-equipped workshop that appears anywhere you open your laptop.

OCI's serverless compute service for running event-driven functions without managing infrastructure. Based on the open-source Fn Project, it is OCI's equivalent of AWS Lambda, Azure Functions, and GCP Cloud Functions.

The systematic recording and examination of activity across cloud infrastructure to ensure compliance, detect anomalies, and maintain accountability. Like a security camera system for your cloud — everything is logged so you can review who did what, and when. AWS CloudTrail, Azure Monitor Activity Log, GCP Audit Logs, and OCI Audit all provide native auditing.

Continuously processing data records as they arrive in real time, rather than storing them first and processing in bulk. Like a moving conveyor belt that processes items one by one as they flow through, rather than waiting for a full batch. Core services include Apache Kafka (AWS MSK, Confluent), AWS Kinesis, GCP Dataflow, Azure Stream Analytics, and Apache Flink.

Long-term, cost-optimized storage for data that is rarely accessed but must be retained — typically for compliance, legal, or historical purposes. Archival storage tiers offer the lowest cost per GB but have slower retrieval times (minutes to hours). Key services: AWS S3 Glacier / Glacier Deep Archive, Azure Archive Storage, GCP Archive Storage, OCI Archive Storage.

Human-readable addresses that map to IP addresses through the Domain Name System (DNS). In cloud architecture, domain management is a core networking concern — cloud providers offer managed DNS services that route traffic, enable failover, support weighted routing, and integrate with CDNs and load balancers. Key services: AWS Route 53, Azure DNS, Google Cloud DNS, OCI DNS.