All Products
Search
Document Center

Container Registry:What is Container Registry?

Last Updated:Sep 11, 2024

Alibaba Cloud Container Registry is a service that allows you to manage and distribute cloud-native artifacts that meet the standards of Open Container Initiative (OCI) in an effective manner. Container Registry Enterprise Edition provides end-to-end acceleration capabilities to support global image replication, distribution of large images at scale, and image building based on multiple code sources. The service seamlessly integrates with Container Service for Kubernetes (ACK) to help enterprises reduce delivery complexity and provides a one-stop solution for cloud-native applications.

Editions

Container Registry Enterprise Edition

Container Registry Enterprise Edition is a platform designed to manage the lifecycle of cloud-native application artifacts that meet the standards of OCI, including container images and Helm charts. Container Registry Enterprise Edition efficiently distributes large-scale application artifacts across multiple regions in different scenarios. The service seamlessly integrates with ACK, which simplifies the application delivery for enterprises.

Container Registry Personal Edition

Container Registry Personal Edition provides individual developers with basic features for container image management. The features include application image hosting, image building, and image access control. Personal Edition supports full lifecycle management of container images.

Features

Features of Container Registry Enterprise Edition

Feature

Description

Hosting of diverse OCI artifacts

Container Registry Enterprise Edition can manage multiple types of OCI artifacts, such as container images that are based on multiple architectures (such as Linux, Windows, and Arm), and charts of Helm 2 and Helm 3.

Accelerated application distribution

Container Registry Enterprise Edition can synchronize container images across different regions around the world to improve distribution efficiency. Container Registry Enterprise Edition supports image distribution in P2P mode.

Comprehensive security assurance

Container Registry Enterprise Edition ensures storage and content security by storing cloud-native application artifacts after encryption, supports image scanning to detect vulnerabilities, and generates vulnerability reports from multiple perspectives. Container Registry Enterprise Edition ensures secure access by providing network access control and fine-grained operation audit for container images and Helm charts.

Efficient and secure cloud-native application delivery

Container Registry Enterprise Edition allows you to create cloud-native application delivery chains that are observable, traceable, and configurable. Container Registry Enterprise Edition can automatically deliver applications all over the world upon source code changes in multiple scenarios based on delivery chains and blocking rules. This improves the efficiency and security of cloud-native application delivery.

Features of Container Registry Personal Edition

Feature

Description

Hosting of multi-arch images

Container Registry Personal Edition supports container images that are based on multiple architectures, including Linux, Windows, and Arm.

Flexible region selection

  • You can create and delete repositories in different regions based on your business requirements.

  • Each repository has three endpoints, which can be accessed over the Internet, internal network, and a virtual private cloud (VPC).

Architecture

The following figure shows the architecture of Container Registry. For more information about the functional components in the figure, see the help documentation.

产品架构图

Specifications of different editions

The following table describes the specifications of Container Registry Personal Edition and Enterprise Edition. In the following table, ticks (️✓) indicate that a feature is supported and crosses (×) indicate that a feature is not supported.

Warning

Container Registry Personal Edition is designed for individual developers. Alibaba Cloud does not provide service level agreement (SLA) guarantee and SLA penalties for Container Registry Personal Edition, and has limits on using the edition. Do not use Container Registry Personal Edition in your production and business.

Module

Feature

Personal Edition

Enterprise Edition

Basic Edition

Advanced Edition

Artifact management

Container images

Hosting

ACR对号

ACR对号

ACR对号

Namespace quota

3

15

50

Public repository quota

300

1000

5000

Private repository quota

VPC quota for Access Control List (ACL)

ACR叉号

Purchase based on needs

Helm Chart

Hosting

ACR叉号

ACR对号

ACR对号

Namespace quota

ACR叉号

15

50

Public repository quota

ACR叉号

1000

5000

Private repository quota

OCI Artifact

ACR叉号

ACR对号

ACR对号

Image tag immutability

ACR叉号

ACR对号

ACR对号

Image tag management (automatic tag deletion)

ACR叉号

ACR对号

ACR对号

Artifact building

Task quota for concurrent artifact building

1

3

10

Intelligent acceleration

ACR叉号

ACR对号

ACR对号

Multi-arch image building

ACR叉号

ACR对号

ACR对号

Artifact security

Artifact scan by using multiple engines

ACR叉号

ACR对号

ACR对号

Vulnerability fixing

ACR叉号

ACR对号

ACR对号

Risk blocking

ACR叉号

ACR叉号

ACR对号

Signing and signature verification

ACR叉号

ACR叉号

ACR对号

Network access control

ACR叉号

ACR对号

ACR对号

Operation audits

ACR叉号

ACR对号

ACR对号

Artifact distribution

Distribution performance or the maximum number of nodes that can concurrently pull an image

Not guaranteed

250

1000

Distribution in P2P mode

ACR叉号

ACR叉号

ACR对号

On-demand distribution

ACR叉号

ACR叉号

ACR对号

Image replication around the world

ACR叉号

ACR叉号

ACR对号

Artifact subscription

ACR叉号

5

30

Synchronization rule

ACR叉号

ACR叉号

60

Artifact delivery

Event notification

ACR叉号

ACR对号

ACR对号

Image pulls without using a secret

ACR对号

ACR对号

ACR对号

Cloud-native application delivery chains

ACR叉号

ACR叉号

ACR对号

Instance management

Custom domain names

ACR叉号

ACR对号

ACR对号

Fast image migration from Harbor registries

ACR叉号

ACR对号

ACR对号

Use Container Registry

Try Container Registry now.