Infrastructure as Code
Infrastructure as code (IaC) is the process of managing and provisioning computer data centers through machine-readable definition files, rather than physical hardware configuration or interactive configuration tools.[1] The IT infrastructure meant by this comprises both physical equipment such as bare-metal servers as well as virtual machines and associated configuration resources. The definitions may be in a version control system. It can use either scripts or declarative definitions, rather than manual processes, but the term is more often used to promote declarative approaches.
Infrastructure as code approaches are promoted for cloud computing, which is sometimes marketed as infrastructure as a service (IaaS). IaC supports IaaS, but should not be confused with it.
Tools
- Terrascan - 인프라 보안 검사 도구 오픈소스
- Infrastructure as Code를 위한 정적 코드 분석기
- 클라우드 인프라 전반의 보안취약성 및 컴플라이언스 위반 검증 도구, 사전 위험 체크