Skip to main content

Menu

LEVEL 0
0/5 XP
HomeAboutTopicsPricingMy VaultStatsPractice TestsCertifications

Categories

🎓 Certifications
🤖 Artificial Intelligence
☁️ Cloud and Infrastructure
💾 Data and Databases
💼 Professional Skills
🎯 Programming and Development
🔒 Security and Networking
📚 Specialized Topics
CheatGrid
HomeAboutTopicsPricingMy VaultStatsPractice TestsCertifications
LVLEVEL 0
0/5 XP
GitHub
© 2026 CheatGrid™. All rights reserved.
Privacy PolicyTerms of UseAboutContact

CaaS (Containers as a Service) Cheat Sheet

CaaS (Containers as a Service) Cheat Sheet

Back to Containers Orchestration
Updated 2026-05-25
Next Topic: Cilium and eBPF Networking Cheat Sheet

CaaS (Containers as a Service) is a cloud delivery model in which providers manage the underlying infrastructure so teams can build, run, and scale containerized workloads without owning servers. It sits between IaaS and PaaS: you supply container images, the platform handles scheduling, networking, scaling, and availability. The runtime layer — the component that actually executes containers — and the orchestrator above it together determine latency, isolation, cost, and operational complexity; choosing the right combination for each workload is the central decision in CaaS architecture.

What This Cheat Sheet Covers

This topic spans 24 focused tables and 154 indexed concepts. Below is a complete table-by-table outline of this topic, spanning foundational concepts through advanced details.

Table 1: Container RuntimesTable 2: Container Orchestration PlatformsTable 3: Container Registry ServicesTable 4: Container Networking & CNI PluginsTable 5: Container Storage & VolumesTable 6: Container Image BuildingTable 7: Serverless Container PlatformsTable 8: Container Security & ScanningTable 9: Container Monitoring & ObservabilityTable 10: Container Deployment StrategiesTable 11: Service Mesh SolutionsTable 12: Container LoggingTable 13: Container AutoscalingTable 14: Container Health ChecksTable 15: Secrets ManagementTable 16: Ingress & Load BalancingTable 17: Policy Enforcement & Admission ControlTable 18: Backup & Disaster RecoveryTable 19: GitOps & CI/CD for ContainersTable 20: Cost OptimizationTable 21: Configuration & Package ManagementTable 22: Supply Chain SecurityTable 23: TLS & Certificate ManagementTable 24: Multi-Tenancy & Cluster Isolation

Table 1: Container Runtimes

The container runtime is the lowest-level component that pulls images, creates namespaces and cgroups, and starts processes inside a container. Understanding the distinction between high-level runtimes (containerd, CRI-O) that implement the CRI and low-level runtimes (runc, Kata Containers) that implement the OCI runtime spec is essential when troubleshooting scheduling failures, security incidents, or performance issues.

RuntimeExampleDescription
containerd
ctr run --rm docker.io/library/nginx:latest mynginx
• Industry-standard high-level CRI runtime
• manages image pull, snapshots, and lifecycle
• default runtime in Kubernetes, EKS, GKE, and AKS
CRI-O
crictl pull nginx:latest
• Lightweight CRI runtime built specifically for Kubernetes
• no daemon restart needed for config changes
• default in OpenShift
Docker Engine
docker run -d -p 80:80 nginx
• Full container platform with CLI, build, and daemon
• uses containerd internally since v23
• still dominant for local development and CI builds.
runc
runc run mycontainer
• Reference OCI low-level runtime
• spawns container processes directly via Linux namespaces and cgroups
• used by containerd and CRI-O under the hood

More in Containers Orchestration

  • Backstage Developer Portal Cheat Sheet
  • Cilium and eBPF Networking Cheat Sheet
  • Argo Rollouts and Progressive Delivery Cheat Sheet
  • Container Management Cheat Sheet
  • Docker Cheat Sheet
  • Knative Serverless on Kubernetes Cheat Sheet
View all 38 topics in Containers Orchestration