scaling apis from 0 to 60k rpm
play

Scaling APIs from 0 to 60k RPM IN A FAST GROWING STARTUP PyParis - - PowerPoint PPT Presentation

Nov 18, 2022 •350 likes •745 views

Scaling APIs from 0 to 60k RPM IN A FAST GROWING STARTUP PyParis - 2018/11/14 Who Am I? Jean-Baptiste Aviat CTO & Co-founder of sqreen.io Former hacker at Apple (Red T eam) jb@sqreen.io @jbaviat Customer What is Sqreen, Login how

  1. Scaling APIs from 0 to 60k RPM IN A FAST GROWING STARTUP PyParis - 2018/11/14

  2. Who Am I? Jean-Baptiste Aviat CTO & Co-founder of sqreen.io Former hacker at Apple (Red T eam) jb@sqreen.io @jbaviat

  3. Customer What is Sqreen, Login how does it work? Rules Hearbeat Protects your app (HTTP) [empty] Hearbeat Few big reads [empty] Heartbeat Lots of small writes [empty] …

  4. Legal disclaimer The information contained in this presentation is for general guidance on matters of interest only. The application and impact of laws can vary widely based on the specific facts involved. Given the changing nature of laws, rules and regulations, and the inherent hazards of electronic communication, there may be delays, omissions or inaccuracies in information contained in this presentation. Accordingly, the information on this site is provided with the understanding that the authors and publishers are not herein engaged in rendering legal, accounting, tax, or other professional advice and services. As such, it should not be used as a substitute for consultation with professional accounting, tax, legal or other competent advisers. Before making any decision or taking any action, you should consult a professional. While we have made every attempt to ensure that the information contained in this site has been obtained from reliable sources, Keynote is not responsible for any errors or omissions, or for the results obtained from the use of this information. All information in this site is provided "as is", with no guarantee of completeness, accuracy, timeliness or of the results obtained from the use of this information, and without warranty of any kind, express or implied, including, but not limited to warranties of performance, merchantability and fitness for a particular purpose. In no event will Jb, its related partnerships or corporations, or the partners, agents or employees thereof be liable to you or anyone else for any decision made or action taken in reliance on the information in this Site or for any consequential, special or similar damages, even if advised of the possibility of such damages. Certain links in this site connect to other websites maintained by third parties over whom Sqreen has no control. Sqreen makes no representations as to the accuracy or any other aspect of information contained in other websites.

  5. Legal disclaimer The information contained in this presentation is for general guidance on matters of interest only. The application and impact of laws can vary widely based on the specific facts involved. Given the changing nature of laws, rules and regulations, and the inherent hazards of electronic communication, there may be delays, omissions or inaccuracies in information contained in this presentation. Accordingly, the information on this site is provided with the understanding that the authors and publishers are not herein engaged in rendering legal, accounting, tax, or other professional advice and services. As such, it should not be used as a substitute for consultation with professional accounting, tax, legal or other competent advisers. Before making any decision or PROD OUTAGES, YES BUT… taking any action, you should consult a professional. While we have made every attempt to ensure that the information contained in this site has been obtained from reliable sources, No impact on Sqreen customers production. Keynote is not responsible for any errors or omissions, or for the results obtained from the use of this information. All information in this site is provided "as is", with no guarantee of completeness, accuracy, timeliness or of the results obtained from the use of this information, and without warranty of any kind, express or implied, including, but not limited to warranties of performance, merchantability and fitness for a particular purpose. In no event will Jb, its related partnerships or corporations, or the partners, agents or employees thereof be liable to you or anyone else for any decision made or action taken in reliance on the information in this Site or for any consequential, special or similar damages, even if advised of the possibility of such damages. Certain links in this site connect to other websites maintained by third parties over whom Sqreen has no control. Sqreen makes no representations as to the accuracy or any other aspect of information contained in other websites.

  6. 0 RPM

  8. 10 RPM

  9. 10 RPM AWS • Free (startup in a co-working place) • Docker capable (ECS) • Security is great ( can be )

  10. 10 RPM 2015 = ECS early days • Need 2 instances • ELB need Docker to bind a static port • You cannot bind the same port twice on a machine… • No service interrupt on deploy: need 2 machines

  11. 10 RPM t2 = burstable instances…

  12. 100 RPM

  13. 100 RPM First scaling issue

  14. 100 RPM First scaling issue Let’s boot more machines! Keep focus on building the product

  15. 100 RPM With > 1 service… Read the logs? Monitor the machines? Catch exceptions?

  16. 100 RPM ALB (newer ELB) is released • Removed 1 service per machine limitation • Allows to build smaller services • Allows per service auto scaling • Enforce CPU limitations

  17. 100 RPM Auto scaling CPU bound: let’s scale on CPU!

  18. 1000 RPM

  19. 1 000 RPM Feed the Mongo SQS deploy Separate: • Dat a recording (from HTTP) • Business processing

  20. 1 000 RPM How to monitor SQS?

  21. ALERT Production Issue

  22. ALERT Production Issue • Login endpoint is taking too much time. • The machines cannot take it anymore. • RPM goes to 0.

  23. ALERT Production Issue • Login endpoint is taking too much time. • The machines cannot take it anymore. X I F Y C N E G R E M • E • Boot (way) more machines RPM goes to 0. • Use memcache to handle the login payload

  24. 🍻 Friday… Let’s have a beer! 9:32 PM

  25. 🍻 Friday… Let’s have a beer! 9:32 PM 10:02 PM 🚩🚩🚩🚩 Production issue!!!

  26. 🍻 Friday… Let’s have a beer! 9:32 PM 10:02 PM 🚩🚩🚩🚩 Production issue!!! 💼💼💼 🍻🍼🍸

  27. 💼💼💼 🍻🍼🍸 Big customer deploy 10:25 PM Friday evening /login endpoint was (still) too slow EMERGENCY FIX: Boot (way) more machines

  28. 1 000 RPM How do we fix this? 1 2 Pager Duty Change agent/server protocol Let’s get called! Login was 4 requests We made it 1 request

  29. 10 000 RPM

  30. 10 000 RPM Auto scaling - Take 2 Need to scale faster Good metric: incoming requests

  31. 10 000 RPM Auto scaling - Take 2 Better, but still too slow … We keep a “reserve”: services running all the time Allow to handle spikes of new customers

  32. 40 000 RPM

  33. 40 000 RPM Now, we cannot fail anymore Provisioned capacity. Load testing: • “Bees with machines guns” like • With a realistic payload • Simulate millions of servers using Sqreen • Good tool to do so: Kubernetes

  34. 60 000 RPM

  35. 60 000 RPM Now we got SLAs Queue + MongoDB… is not enough —> Kinesis, DynamoDB Better scaling More resiliency to sudden loads Lower operational costs

  36. 60 000 RPM We’re hiring! 
 Next challenges sqreen.io/jobs Smoother handling of specific customers Reduce cost Reduce latency Move all our detection algorithms to streams

  37. Today 60 K 413 M 37 B 17 K RPM Attacks Requests Attackers blocked protected detected last year last year

  38. We’re hiring! 
 sqreen.io/jobs Questions ?

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Scaling model training From flexible training APIs to resource management with Kubernetes Kelley

Scaling model training From flexible training APIs to resource management with Kubernetes Kelley

Scaling model training From flexible training APIs to resource management with Kubernetes Kelley Rivoire, Stripe Real World Machine Learning (@ Stripe) Stripe provides a toolkit to start and run an internet business We need to make

713 views • 44 slides
Analysis of Scaling Algorithms for Matrix & Operator Scaling Contents Scaling Algorithms

Analysis of Scaling Algorithms for Matrix & Operator Scaling Contents Scaling Algorithms

Rafael Oliveira University of Toronto Analysis of Scaling Algorithms for Matrix & Operator Scaling Contents Scaling Algorithms Three Step Analysis Generalization One More Application of Scaling Non-Negative Matrices &

604 views • 15 slides
Semi-Automa+cally Modeling Web APIs to Create Linked APIs

Semi-Automa+cally Modeling Web APIs to Create Linked APIs

Semi-Automa+cally Modeling Web APIs to Create Linked APIs Mohsen Taheriyan, Craig A. Knoblock, Pedro Szekely, and Jose Luis Ambite USC Information

321 views • 28 slides
AM-2 NIE API Gateway in NIE Who uses the APIs now and how is the adoption rate? The APIs are used

AM-2 NIE API Gateway in NIE Who uses the APIs now and how is the adoption rate? The APIs are used

AM-2 NIE API Gateway in NIE Who uses the APIs now and how is the adoption rate? The APIs are used by our faculty, our corporate mobile app users, corporate systems and students, the adoption rate is growing healthy at a steady rate. We are moving

452 views • 17 slides
APIs: Overdue or Overhyped? The Promise of APIs to Drive Interoperability Todays Speakers 2

APIs: Overdue or Overhyped? The Promise of APIs to Drive Interoperability Todays Speakers 2

1 APIs: Overdue or Overhyped? The Promise of APIs to Drive Interoperability Todays Speakers 2 Micky Tripathi Ryan Howells Kristen Valdes President & CEO Principal Founder & CEO Massachusetts eHealth Collaborative Leavitt

276 views • 8 slides
The current state of banking APIs Open APIs are high priority for financial institutions What are

The current state of banking APIs Open APIs are high priority for financial institutions What are

The current state of banking APIs Open APIs are high priority for financial institutions What are banks doing about it? How important are Open APIs to banks? 2 http://www.briansolis.com/2016/12/top-10-retail-banking-trends-predictions-2017/

449 views • 20 slides
Scaling From simple models to rich strategies PPPLab Day, November 30th Scaling: recent

Scaling From simple models to rich strategies PPPLab Day, November 30th Scaling: recent

Scaling From simple models to rich strategies PPPLab Day, November 30th Scaling: recent publications Insight Series Tool Animation The rationale for scaling As the SDGs require transformational change, scaling can provide: Reaching more

609 views • 37 slides
ETI se Scaling for many organizations Hierarchy Recursive vs T.to eRaokon traverses the

ETI se Scaling for many organizations Hierarchy Recursive vs T.to eRaokon traverses the

Discovery Naming or IN 5 Why name 172.217 11.14 or google.com Indirection Security Isafety concerns How name iEE f google.com Et Challenge Scaling Scaling for many clients Caching D y D ETI se Scaling for many organizations Hierarchy

215 views • 4 slides
STOR 390: APIs Marshall Markham Overview Intro to APIs Concept Steps to URI API Usage

STOR 390: APIs Marshall Markham Overview Intro to APIs Concept Steps to URI API Usage

STOR 390: APIs Marshall Markham Overview Intro to APIs Concept Steps to URI API Usage Google Maps Exercise What is an API API stands for Application Programming Interface Any body of code meant to be used by outside

476 views • 15 slides
www.pdl.cmu.edu/posix/ December 14, 2005 APIs for HPC IO POSIX IO APIs (open, close, read,

www.pdl.cmu.edu/posix/ December 14, 2005 APIs for HPC IO POSIX IO APIs (open, close, read,

POSIX I/O High Performance Computing Extensions Brent Welch (Speaker) Panasas www.pdl.cmu.edu/posix/ December 14, 2005 APIs for HPC IO POSIX IO APIs (open, close, read, write, stat) have semantics that can make it hard to achieve high

674 views • 24 slides
Outline Scaling Scalinga Plenitude of Power Laws Scaling-at-large Scaling-at-large

Outline Scaling Scalinga Plenitude of Power Laws Scaling-at-large Scaling-at-large

Scaling Outline Scaling Scalinga Plenitude of Power Laws Scaling-at-large Scaling-at-large Scaling-at-large Principles of Complex Systems Allometry Allometry Definitions Definitions Course 300, Fall, 2008 Examples Examples

568 views • 27 slides
Web APIs Web APIs Programming for Statistical Programming for Statistical Science Science

Web APIs Web APIs Programming for Statistical Programming for Statistical Science Science

Web APIs Web APIs Programming for Statistical Programming for Statistical Science Science Shawn Santo Shawn Santo 1 / 24 1 / 24 Supplementary materials Full video lecture available in Zoom Cloud Recordings Additional resources HTTP

609 views • 24 slides
So#ware Scaling Mo/va/on & Goals HW Configura/on & Scale Out So#ware Scaling

So#ware Scaling Mo/va/on & Goals HW Configura/on & Scale Out So#ware Scaling

So#ware Scaling Mo/va/on & Goals HW Configura/on & Scale Out So#ware Scaling Efforts System management Opera/ng system Programming environment PreAcceptance Work HW stabiliza/on & early scaling

390 views • 19 slides
API SHAPAVAL RAMAN 03.05.2017 What is the difference between traditional graphics APIs and new

API SHAPAVAL RAMAN 03.05.2017 What is the difference between traditional graphics APIs and new

API SHAPAVAL RAMAN 03.05.2017 What is the difference between traditional graphics APIs and new low-level APIs? High-level APIs like OpenGL are quite easy to use, because the developer declares what they want to do and how they want to do

634 views • 36 slides
UMBC A B M A L T F O U M B C I M Y O R T 1 (10/18/04) I E S R C E O V

UMBC A B M A L T F O U M B C I M Y O R T 1 (10/18/04) I E S R C E O V

Advanced VLSI Design Scaling CMPE 640 Scaling Technology scaling rate is approximately 13%/year, halving every 5 years. 100 10 m 1 0.1 1960 1970 1980 1990 2000 The size of the circuits also continues to increase. Besides increasing

362 views • 7 slides
Network impact of Web access to device APIs W3C Workshop on Security for Access to Device APIs

Network impact of Web access to device APIs W3C Workshop on Security for Access to Device APIs

Network impact of Web access to device APIs W3C Workshop on Security for Access to Device APIs from the Web December 10-11, 2008 Mat Ford http://www.isoc.org Background ISOC is focused on continued operation of the global Internet

512 views • 12 slides
Data Formats Omayma Said Data Scientist DataCamp Interactive Data Visualization with rbokeh

Data Formats Omayma Said Data Scientist DataCamp Interactive Data Visualization with rbokeh

DataCamp Interactive Data Visualization with rbokeh INTERACTIVE DATA VISUALIZATION WITH RBOKEH Data Formats Omayma Said Data Scientist DataCamp Interactive Data Visualization with rbokeh hdi_cpi_2015 Data DataCamp Interactive Data

702 views • 24 slides
POCT Testing for Ebola Patients: The Emory Experience Charles E. Hill, MD, PhD On Behalf of

POCT Testing for Ebola Patients: The Emory Experience Charles E. Hill, MD, PhD On Behalf of

POCT Testing for Ebola Patients: The Emory Experience Charles E. Hill, MD, PhD On Behalf of "Team Ebola" Serious Communicable Diseases Unit Emory University Hospital Associate Professor of Pathology and Laboratory Medicine Atlanta,

615 views • 27 slides
I have to tell you: NOTHING here has been evaluated by the FDA And NOTHING I am going to tell you

I have to tell you: NOTHING here has been evaluated by the FDA And NOTHING I am going to tell you

I have to tell you: NOTHING here has been evaluated by the FDA And NOTHING I am going to tell you about in this webinar is INTENDED TO DIAGNOSE, TREAT, CURE, OR PREVENT DISEASE. THIS IS PURELY EDUCATIONAL. PLEASE NOTE: THERE WILL BE TECHNICAL

1.81k views • 143 slides
The Steam Ship El Faro Tragedy: Human factors and the loss of the crew and the ship October 2,

The Steam Ship El Faro Tragedy: Human factors and the loss of the crew and the ship October 2,

United States Coast Guard The Steam Ship El Faro Tragedy: Human factors and the loss of the crew and the ship October 2, 2018 Mr. Keith Fawcett U. S. Coast Guard EL FARO Commandant Marine Board Marine Casualty Investigator 1 United States

486 views • 26 slides
Efficient FPGA Implementations of LowMC and Picnic Roman Walch PhD Student IAIK / Know-Center

Efficient FPGA Implementations of LowMC and Picnic Roman Walch PhD Student IAIK / Know-Center

SESSION ID: SESSION ID: CRYP-R02 Efficient FPGA Implementations of LowMC and Picnic Roman Walch PhD Student IAIK / Know-Center GmbH, Graz University of Technology @rw0x0 Joint work with: Daniel Kales, Sebastian Ramacher, Christian

499 views • 26 slides
Achieving Success As Vice President Public Relations Rick Lakin, ACS, ALB, Sweetwater Valley

Achieving Success As Vice President Public Relations Rick Lakin, ACS, ALB, Sweetwater Valley

Club Leadership Training Session Achieving Success As Vice President Public Relations Rick Lakin, ACS, ALB, Sweetwater Valley Toastmasters 1311A.4 District 5 Officer Training Rick Lakin, ACS, ALB rilakin@gmail.com Immediate Past

674 views • 28 slides
EE&F Action Items Requested EE&F Action Items Requested VSPC recommendations to the

EE&F Action Items Requested EE&F Action Items Requested VSPC recommendations to the

EE&F Action Items Requested EE&F Action Items Requested VSPC recommendations to the Public Service Board: Continue Geotargeting the St. Albans area** Co t ue Geota get g t e St ba s a ea Continue to Geotarget Susie

506 views • 15 slides
Communications, Electronics, Research, Development and Engineering Center (CERDEC) Army

Communications, Electronics, Research, Development and Engineering Center (CERDEC) Army

APPROVED FOR PUBLIC RELEASE Communications, Electronics, Research, Development and Engineering Center (CERDEC) Army Intelligence Industry day Patrick J. ONeill SES Director CERDEC APPROVED FOR PUBLIC RELEASE APPROVED FOR PUBLIC RELEASE

424 views • 14 slides

More recommend