a d a r k a n d s t o r m y n i g h t
play

A D A R K A N D S T O R M Y N I G H T @kiranb Kiran Bhattaram - PowerPoint PPT Presentation

Nov 20, 2022 •264 likes •711 views

TA L E S O F O P E R A B I L I T Y A N T I - PA T T E R N S A D A R K A N D S T O R M Y N I G H T @kiranb Kiran Bhattaram It was a dark and stormy night; the rain fell in torrents except at occasional intervals, when it was checked

  1. TA L E S O F O P E R A B I L I T Y A N T I - PA T T E R N S A D A R K A N D S T O R M Y N I G H T

  2. @kiranb Kiran Bhattaram

  3. It was a dark and stormy night; the rain fell in torrents — except at occasional intervals, when it was checked by a violent gust of wind which swept up the streets (for it is in London that our scene lies), rattling along the housetops, and fiercely agitating the scanty flame of the lamps that struggled against the darkness. B U LW E R - LY T T O N

  4. DEFINITIONS What is operability? ▸ The ability to keep a system in a safe and reliable functioning condition, according to pre-defined operational requirements.

  5. DEFINITIONS Characteristics of operability ▸ safety & reliability ▸ ease of upgrades ▸ scalability ▸ observability ▸ grace under pressure ▸ usability ▸ cultural practices around incidents ▸ AND MORE

  6. DEFINITIONS Characteristics of an operable system ▸ Converge towards a stable state. ▸ Give operators visibility and tools. ▸ Designed to be usable and unsurprising.

  7. DEFINITIONS Agenda Robustness Observability Usability Review!

  8. 1. ROBUSTNESS

  9. STORY 1 THE TALE OF THE SYSTEM THAT COULDN’T GIVE ANYTHING UP

  10. ROBUSTNESS Define your critical path.

  11. ROBUSTNESS Harvest, Yield and Scalable Tolerant Systems Yield = successful requests != uptime total requests * dropping requests data available Harvest = total data * degrading response

  12. ROBUSTNESS Controlling yield: load shedding upstream requests ▸ categories of load shedders: ▸ # of requests ▸ # of concurrent requests (protect against the long tail) ▸ overall fleet utilization (keep x% of workers for core traffic)

  13. ROBUSTNESS Controlling harvest: circuit breakers ▸ stop calling a dependency if it seems down! ▸ what do you return? ▸ cached data ▸ nil ▸ or propagate the error upstream

  14. ROBUSTNESS Controlling harvest: circuit breakers & compartmentalization http://idighardware.com/2013/10/fire-doors-everything-you-always-wanted-to-know-but-were-afraid-to-ask/

  15. ROBUSTNESS Putting it all together: giving things up ▸ Combine harvest/yield degradation in different ways to protect the critical path ▸ Monitor any degradation! ▸ Dark launch your rate limiters to check what they’d block.

  16. ROBUSTNESS Robustness, in review Converge to a stable state. ▸ know how the system sheds load ▸ know how it reacts to downstream failures

  17. 2. OBSERVABILITY

  18. STORY 2 THE TALE OF THE FRACTAL QUEUE

  19. OBSERVABILITY Instrument EVERYTHING ▸ especially with queues ▸ percentiles, not averages ▸ don’t intermingle logs (keep a searchable trace ID on requests)

  20. OBSERVABILITY Over-collect data, but build dashboards carefully ▸ work metrics ▸ is the system doing the thing it’s supposed to? ▸ resource metrics ▸ how are the components of the system behaving? ▸ build your dashboard with work metrics first.

  21. STORY 4 THE TALE OF THE 64 ALERT WEEK

  22. OBSERVABILITY Don’t normalize deviance

  23. OBSERVABILITY Knowing what to alert on ▸ Monitor the alert volume of your system! ▸ Pages should be actionable and represent user pain.

  24. OBSERVABILITY Observability: what we learned ▸ Kiran has a special vendetta against unmonitored queues. ▸ Building good dashboards: work metrics & resource metrics. ▸ Monitor alert volume, too!

  25. 3. USABILITY

  26. USABILITY A quick side note: Nielsen Heuristics 6. Recognition vs. recall 6. Recognition vs. recall 1. Visibility of system status 1. Visibility of system status 7. Flexibility and efficiency of use 2. Match between system and the real world 8. Aesthetic and minimalist design 3. User control and freedom 9. Help users recognize, diagnose, 9. Help users recognize, 3. User control and freedom and recover from errors diagnose, and recover from 4. Consistency and standards errors 10. Help and documentation 5. Error prevention 5. Error prevention

  27. Story 5: the tale of the special snowflake service

  28. USABILITY Heuristic 4. Consistency and Standards ▸ pattern-matching across similar systems is really valuable! ▸ Choose boring technology: spend your innovation tokens wisely!

  29. OBSERVABILITY Heuristic 3. User control and freedom ▸ Tooling is a part of the service! ▸ relatedly, deploy mechanisms are related to availability! ▸ Give operators the ability to change operational parameters.

  30. STORY 6 THE TALE OF THE OPS SPELL BOOK

  31. USABILITY Heuristic 6. Recognition v. recall ▸ Keep checklists minimal and heavily automated. ▸ long flowcharts in a runbook are :( ▸ relatedly: scripting user communications is helpful.

  32. USABILITY Heuristic 1. Visibility of system status ▸ which of these are changes to production? ▸ config changes ▸ deploys ▸ utility script runs ▸ failovers ▸ adding/decreasing capacity

  33. STORY 7 THE TALE OF THE AMBIGUOUS ERROR MESSAGE

  34. USABILITY Heuristic 9. Help users recognize, diagnose, and recover from errors ▸ error messages are a crucial part of your interface ▸ Writing a good alert message: ▸ expressed in plain language, precisely indicate the problem, and constructively suggest a solution (runbooks!) ▸ (ex.) CRITICAL: Served 5% 5xx results in the last 5 minutes! <link to runbook>

  35. USABILITY Usability, in review ▸ Operational experience matters! Consider: ▸ whether the system follows general conventions. ▸ how it alerts operators to errors clearly and unambiguously. ▸ how minimal and usable the tooling is.

  36. REVIEW Review ▸ Robustness ▸ Does your system converge to a stable state? ▸ Observability ▸ Can you infer what the internal state of the system looks like? ▸ Usability ▸ Do your operators have control over the state of the system? Do you adhere to general standards?

  37. : ( STORY THE LAST THE TALE OF THE SAD QUEUE

  38. STORY THE LAST A DARK AND STORMY NIGHT

  39. REVIEW Resources ▸ Harvest, Yield, and Scalable Tolerant Systems (Brewer & Fox) ▸ How Complex Systems Fail (Cook) ▸ "Going solid": a model of system dynamics and consequences for patient safety (Cook) ▸ Nielsen’s Usability Heuristics ▸ Choose Boring Technology (Dan McKinley) ▸ Site Reliability Engineering: How Google Runs Production Systems ▸ Stripe’s (upcoming) rate limiting blog post ▸ Collection of postmortems (Dan Luu)

  40. REVIEW On Designing and Deploying Internet-Scale Services, James Hamilton ▸ list of best practices, from design, to upgrades, to incident response

  41. T H A N K S ! Thanks to Ines Sombra, Charity Majors, Alyssa Frazee, Rachel Sanders, and Andy Bonventre for review!

  42. STUFF I COULDN’T GET TO APPENDIX

  43. OBSERVABILITY decouple deploys from releases ▸ get a minimal version in dark-reads into production asap ▸ corollary: have good kill switches! ▸ Know what rollbacks look like

  44. OBSERVABILITY collect operational metrics in this shadow phase ▸ Gain historical knowledge of what the system’s healthy state looks like. ▸ Tweak your alerts and SLAs. ▸ Gameday the system! Write runbooks!

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Roy Ben-Shalom UCSF Neurology Department CIN Center for Integrative Neuroscience Neural vs

Roy Ben-Shalom UCSF Neurology Department CIN Center for Integrative Neuroscience Neural vs

Neu euro roGPU GPU: : Ac Accel celerat erating ing Biophysical hysical Neu euro ronal nal Mode deling ng with CUD UDA Roy Ben-Shalom UCSF Neurology Department CIN Center for Integrative Neuroscience Neural vs Neuronal

324 views • 16 slides
State Learning Program Apprentice at School PUBLIC SCHOOL NETWORK OF CEAR STATE (1st, 2nd and

State Learning Program Apprentice at School PUBLIC SCHOOL NETWORK OF CEAR STATE (1st, 2nd and

State Learning Program Apprentice at School PUBLIC SCHOOL NETWORK OF CEAR STATE (1st, 2nd and 3rd GRADES OF SECONDARY EDUCATION) OFFER OF DIFFERENTIATED EDUCATION 711 SCHOOLS IN THE STATE - VOCATIONAL SCHOOLS - FULL-TIME SCHOOLS -

702 views • 42 slides
Remarks of Jim Hoecker Husch Blackwell LLP Counsel, WIRES Former Chairman, Federal Energy

Remarks of Jim Hoecker Husch Blackwell LLP Counsel, WIRES Former Chairman, Federal Energy

Remarks of Jim Hoecker Husch Blackwell LLP Counsel, WIRES Former Chairman, Federal Energy Regulatory Commission Governors Wind Energy Coalition Workshop June 19, 2015 Slides courtesy of The Brattle Group Drivers of Transmission Investment

79 views • 5 slides
CONFIDENTIAL 1 How to Secure Devices in a Smart City IoT devices in a Zero-Trust manufacturing

CONFIDENTIAL 1 How to Secure Devices in a Smart City IoT devices in a Zero-Trust manufacturing

CONFIDENTIAL 1 How to Secure Devices in a Smart City IoT devices in a Zero-Trust manufacturing and operational environment. CONFIDENTIAL 2 IoT market Gartner predicts: 20.4 billion connected things by 2020 7.4 billion of these are

330 views • 8 slides
Demystifying LEED for Homes v4.0 Jay Hall Jay Hall &amp; Associates, Inc. October 31, 2013

Demystifying LEED for Homes v4.0 Jay Hall Jay Hall &amp; Associates, Inc. October 31, 2013

Demystifying LEED for Homes v4.0 Jay Hall Jay Hall &amp; Associates, Inc. October 31, 2013 Overview 1. Process Changes 2. Rating System Changes 3. Examples Process V4 Roll Out Schedule 2015 2013 2014 1. 2. 3. 4. 5. 1. Immediately

608 views • 45 slides
One Neurosurgery Movement http://www.oneneurosurgery.com We Recognize AANS and CNS have

One Neurosurgery Movement http://www.oneneurosurgery.com We Recognize AANS and CNS have

One Neurosurgery Movement http://www.oneneurosurgery.com We Recognize AANS and CNS have contributed to our specialty since they were founded in 1931 and 1951, respectively. CNS and AANS are led by talented and dedicated individuals.

476 views • 20 slides
BUILDING OPTIX SHADERS FROM MDL MATERIALS Detlef Rttger, NVIDIA Andreas Mank, ESI Group

BUILDING OPTIX SHADERS FROM MDL MATERIALS Detlef Rttger, NVIDIA Andreas Mank, ESI Group

May 8-11, 2017 | Silicon Valley S7185 LEVERAGING NVRTC FOR BUILDING OPTIX SHADERS FROM MDL MATERIALS Detlef Rttger, NVIDIA Andreas Mank, ESI Group 2017-05-08 www.esi-group.com VISUALIZE REAL-WORLD LIGHTS AND MATERIALS 2 Introduction

920 views • 52 slides
SUGGESTED : STANDARD FOR THE COMPILATION OF THE SHUTDOWN PRESENTATION Introduction The

SUGGESTED : STANDARD FOR THE COMPILATION OF THE SHUTDOWN PRESENTATION Introduction The

SUGGESTED : STANDARD FOR THE COMPILATION OF THE SHUTDOWN PRESENTATION Introduction The presentation must briefly address the planned Period of the shutdown and a brief Planning process embark on. *Note: Brief on the Planning Process to

403 views • 3 slides
How the HotSpot and Graal JVMs Execute Java Code James Gough - @Jim__Gough About Me University

How the HotSpot and Graal JVMs Execute Java Code James Gough - @Jim__Gough About Me University

How the HotSpot and Graal JVMs Execute Java Code James Gough - @Jim__Gough About Me University of Warwick Graduate Interested in compilers and performance London Java Community Helped design and test JSR-310 (Date Time)

566 views • 31 slides
Christopher Lavin, Marc Padilla, Jaren Lamprecht, Philip Lundrigan Brent Nelson and Brad Hutchings

Christopher Lavin, Marc Padilla, Jaren Lamprecht, Philip Lundrigan Brent Nelson and Brad Hutchings

HMFlow: Accelerating FPGA Compilation with Hard Macros for Rapid Prototyping Christopher Lavin, Marc Padilla, Jaren Lamprecht, Philip Lundrigan Brent Nelson and Brad Hutchings FCCM May 2, 2011 Design Cycle Debug Edit Compile 2 The

306 views • 30 slides
Using the new OTC guidance to help compile a successful application An Update from the

Using the new OTC guidance to help compile a successful application An Update from the

Using the new OTC guidance to help compile a successful application An Update from the Complementary and Over-the-Counter Medicines Branch of the TGA Gaelene Pyke Principal Evaluator OTC Medicines Evaluation Section, Complementary and

465 views • 21 slides
OpenMP Offloading Verification and Validation: Workflow and Road to 5.0 Thomas Huber &amp; Joshua

OpenMP Offloading Verification and Validation: Workflow and Road to 5.0 Thomas Huber &amp; Joshua

OpenMP Offloading Verification and Validation: Workflow and Road to 5.0 Thomas Huber &amp; Joshua Davis (UD) Jose Monsalve Diaz (UD) Swaroop Pophale (ORNL) Sunita Chandrasekaran (UD) 1 Kyle Friedline (UD) Oscar Hernandez (ORNL) David E.

420 views • 22 slides
Formal verification of an optimizing compiler or: a software-proof codesign approach to the

Formal verification of an optimizing compiler or: a software-proof codesign approach to the

Formal verification of an optimizing compiler or: a software-proof codesign approach to the development of trusted compilers Xavier Leroy INRIA Rocquencourt MEMOCODE 2007 X. Leroy (INRIA) Formal compiler verification MEMOCODE 2007 1 / 61

969 views • 62 slides
Verification Verification and and Validation Validation 1 /41 1 /41 C2 C2 Overview

Verification Verification and and Validation Validation 1 /41 1 /41 C2 C2 Overview

C2 C2 Verification Verification and and Validation Validation 1 /41 1 /41 C2 C2 Overview Overview It is very simple to create a simulation ! It is very difficult difficult to model something to model something accurately .

736 views • 41 slides
MANEUVER BASED VALIDATION OF BMW xDRIVE VARIANTS BY USING VIRTUAL VEHICLE INTEGRATION AND HIL TEST

MANEUVER BASED VALIDATION OF BMW xDRIVE VARIANTS BY USING VIRTUAL VEHICLE INTEGRATION AND HIL TEST

19.09.2012 Matthias Prebeck, Dr. Peter Rissling; BMW Group Michael Folie; IPG Automotive MANEUVER BASED VALIDATION OF BMW xDRIVE VARIANTS BY USING VIRTUAL VEHICLE INTEGRATION AND HIL TEST METHODS. IPG TECHNOLOGY CONFERENCE, SEPTEMBER 18 -19,

448 views • 18 slides
Comprehensive and systematic validation of independent safety analysis tools (COVA) SAFIR2018

Comprehensive and systematic validation of independent safety analysis tools (COVA) SAFIR2018

VTT TECHNICAL RESEARCH CENTRE OF FINLAND LTD Comprehensive and systematic validation of independent safety analysis tools (COVA) SAFIR2018 interim seminar, 23.-24.3.2017 Seppo Hillberg, Ismo Karppinen, Ari Silde Critical assessment of

429 views • 6 slides
EAST Collection Analysis Rick Lugg &amp; Ruth Fischer Sustainable Collection Services/OCLC

EAST Collection Analysis Rick Lugg &amp; Ruth Fischer Sustainable Collection Services/OCLC

Brandeis University / June 22, 2015 EAST Collection Analysis Rick Lugg &amp; Ruth Fischer Sustainable Collection Services/OCLC Davidson College, January 2008 2 3 Sustainablecollections.co m Deselection: A Range of Options

797 views • 46 slides
Amesbury School District Aspen/X2 Update Amesbury School Information System October 1, 2013

Amesbury School District Aspen/X2 Update Amesbury School Information System October 1, 2013

Amesbury School District Aspen/X2 Update Amesbury School Information System October 1, 2013 Aspen/X2 Overview Aspen/X2 is a Fully Integrated School Information System All Student Data is stored in Aspen/X2 Special Education Data is

1.13k views • 16 slides
example, 30 60; 15 75, 22.5 67.5. It is clear

example, 30 60; 15 75, 22.5 67.5. It is clear

D AY 16 C OMPLEMENTARY AND SUPPLEMENTARY ANGLES I NTRODUCTION In geometry, we will come across pairs of angles whose sum is either 90 or 180 . In this lesson, we are going to take a look at such pairs of angles and some of their

512 views • 20 slides
Immunology and Immunotoxicity Immunology and Immunotoxicity of Nanomedicines of Nanomedicines

Immunology and Immunotoxicity Immunology and Immunotoxicity of Nanomedicines of Nanomedicines

Immunology and Immunotoxicity Immunology and Immunotoxicity of Nanomedicines of Nanomedicines Jacques DESCOTES , MD, PharmD, PhD, fellow ATS Jacques DESCOTES Professor and Head, Poison Center and Pharmacovigilance Department Lyon University

420 views • 17 slides
IMPAWATT IMPAWATT IMPlementAtion Work and Actions To change the energy culture

IMPAWATT IMPAWATT IMPlementAtion Work and Actions To change the energy culture

IMPAWATT IMPAWATT IMPlementAtion Work and Actions To change the energy culture https://www.impawatt.com/ The sole responsibility for the content of this publication lies with the IMPAWATT project consortium. It does not necessarily reflect the

327 views • 11 slides
CPs Complements Is everything that goes here a CP? Complement Phrases help us build

CPs Complements Is everything that goes here a CP? Complement Phrases help us build

CPs Complements Is everything that goes here a CP? Complement Phrases help us build questions. Well learn how during the transformations lecture. Complement Phrases also help us to create subordinate clauses using

940 views • 11 slides
fast-growing tree species in northern Europe Lars Rytter, Rose-Marie Rytter, Lars-Gran Stener

fast-growing tree species in northern Europe Lars Rytter, Rose-Marie Rytter, Lars-Gran Stener

Grey alder ( Alnus incana ) a complement to other fast-growing tree species in northern Europe Lars Rytter, Rose-Marie Rytter, Lars-Gran Stener IPC is in the process to include more genera with fast-growing deciduous species into their

522 views • 16 slides
Building Bridges from Education to Economic Prosperity YouthForce NOLA Overview May 3, 2019 WHY

Building Bridges from Education to Economic Prosperity YouthForce NOLA Overview May 3, 2019 WHY

Building Bridges from Education to Economic Prosperity YouthForce NOLA Overview May 3, 2019 WHY YOUTHFORCE NOLA A bridge from education to Our graduates are ~70K high-wage, economic prosperity does not more academically high-skills jobs

265 views • 13 slides

More recommend