Architecture Weekly #149 - 16th October 2023
Sponsor: Do you build complex software systems? See how NServiceBus makes it easier to design, build, and manage software systems that use message queues to achieve loose coupling. Get started for free. Welcome to the new week! Let’s start with an invitation; on Wednesday 25th we’ll run the next webinar for our community. This time, a special guest Mateusz Jendza, with the topic: Why Verified Credentials is the Future of Digital Identity! Verifiable Credentials are an intriguing topic, something like Blockchain but without Blockchain (luckily!). They are an open standard for digital credentials. They can represent information found in physical credentials, such as a passport or license, and new things with no physical equivalent, such as bank account ownership. They can be used to verify our identity by trusted providers and do it securely as they're digitally signed, which makes them tamper-resistant and instantaneously verifiable. Mateusz is a Principal Technical Architect at SoftwareOne. In the last few years, he has focused on helping companies use Identity Management solutions correctly (with a focus on Entra ID and Azure AD B2C). He’s also a member of our community, my friend and a go-to person for me on those topics. Feel invited, become paid subscribers and join us live. Click here to see all the details. I think I mentioned that already, but I dislike the split between "domain" and "integration" events. The split is highly misleading. All of them should be domain events and represent business facts. I prefer to split them into internal and external (or, as Nick Tune, into private and public). That helps to understand that those events are just understandable in different contexts: Understanding this split is essential in defining the event-driven API. Yes, API. Events should be treated as such. I wrote longer on how to tackle this topic: If you’re searching for other resources, check Marc Klefter talk: He explained it in a calm, systematic way. The only asterisk I’d add is that I prefer Summary Event over Event-State Carried Transfer. But besides that, really good explanations of whys and hows. Marc’s talk was recorded at the Axon Conference, and I saw that live as I joined as a guest. Typically, product conferences are mostly about selling stuff and overfocusing on the product details. This conference was different and had good talks showing the wider picture. The best talk and the highlight for me were: I encourage you to watch it even if you’re not interested in Privacy, Event Sourcing or Axon. It’s an intriguing case study showing how to make proper buy vs build decisions (e.g. instead of writing their own case management tool, they just used an off-the-shelf product). Plus, it also nicely shows how research works like: And incorporate them into the product. Plus, the talk was well delivered. Some say Serverless is dead, but those reports are greatly exaggerated. Serverless is here to stay, and as with each technology, we get complaints when it’s getting mature. Wrong usage, mishaps and lessons learned are part of the adoption curve. The trick is whether we learn from them or will blindly repeat past mistakes. The best way to learn is to see successful attempts and analyse them. So let’s bring them in! Serverless is a great approach if we need to evaluate the idea quickly, aren’t sure about the expected usage characteristics or can charge clients per usage. Also, we should remember that we don’t have to choose the architecture style for a lifetime. We can pivot when our initial environment changes (e.g. we learned more about the actual usage and can drive other decisions from it). Speaking on learning the right usage and busting the wrong explanation. That’s precisely what I did on the webinar last week explaining the details of modelling in Event Sourcing. I redid my DDDEU talk, explaining again why adding temporal aspects to your event model will improve it (e.g. using Accounting Month instead of Account as your domain model). Even if you saw this talk already, I encourage you to check the recording, as in the end, we had a longer Q&A part. All of the biggest cloud providers faced the biggest DDoS attack so far. It was based on the zero-day vulnerability in the HTTP/2 protocol, termed the “HTTP/2 Rapid Reset”. This exploit leverages a feature in HTTP/2 where attackers continuously send and then promptly cancel requests, causing servers to become overwhelmed and resulting in a denial of service. This exploit targets the HTTP/2’s stream cancellation function, emphasizing the importance of understanding and securing web infrastructure. In light of these revelations, companies like Cloudflare, Google, AWS, and Microsoft wrote summaries of how they dealt with it. Read more in:
All of them are intriguing and in-depth case studies. It’s also interesting that all companies openly wrote about it simultaneously. I complained a few times about companies delaying the threat report, but here, all looks fair. Sharding and partitioning are one of the most foundational tools for scaling systems. Some techniques can be applied on the application level by properly grouping logically your features, yet some have to be provided by your tooling, for instance, databases. Check the latest episode of .NET Rocks, Oren Eini goes deep into explaining the challenges and potential solutions: If you’re curious how and why it can become complex in a cloud environment, it’s definitely a must-listen. Check also other links! p.s. I invite you to join the paid version of Architecture Weekly. It already contains the exclusive Discord channel for subscribers (and my GitHub sponsors), monthly webinars, etc. It is a vibrant space for knowledge sharing. Don’t wait to be a part of it! p.s.2. Ukraine is still under brutal Russian invasion. A lot of Ukrainian people are hurt, without shelter and need help. You can help in various ways, for instance, directly helping refugees, spreading awareness, and putting pressure on your local government or companies. You can also support Ukraine by donating, e.g. to the Ukraine humanitarian organisation, Ambulances for Ukraine or Red Cross. Architecture
DevOpsDatabasesAPIAWSJVM.NET
Coding LifeManagementIndustry
SecurityYou're currently a free subscriber to Architecture Weekly. For the full experience, upgrade your subscription. |
Older messages
Architecture Weekly #148 - 9th October 2023
Monday, October 9, 2023
This time we look at case studies showing why a boring tech stack wins, and helps you scale out. Quirks like Oracle hosting Postgres, the whole Slack team slacking on internal training. And many more
Architecture Weekly #147 - 2nd October 2023
Monday, October 2, 2023
Check the latest release, to see resources around fighting with coupling and setting the boundaries right. Speaking about fighting,you'll find also commentary and links about the recent US
Architecture Weekly #145 - 25th September 2023
Monday, September 25, 2023
This week, we have a look deeper at modelling, handling and managing distributed business workflows. We also discussed why delivering our systems is a joint effort. Why it's important to make them
Architecture Weekly #145 - 18th September 2023
Monday, September 18, 2023
Welcome to the next release, the first one as the Substack Bestseller! As always, you'll find here a set of links that will boost your design skills and architecture knowledge!
Webinar #13 - Yves Goeleven - The Fantastic 9
Sunday, September 17, 2023
Watch now (82 mins) | This time, a special guest Yves Goeleven, showed us Fantastic 9. What's that? Let's give Yves to explain it: There are thousands of design patterns to choose from, but in
You Might Also Like
Tuesday Triage #200 and giveaway
Tuesday, May 14, 2024
Your weekly crème de la crème of the Internet is here! The 200th edition featuring annual subscriptions giveaway, thoughts on nearly four years of ...
🎮 How AI Tools Are Changing Game Development — Grab a Pixel 8a Instead of Waiting for Pixel 9
Tuesday, May 14, 2024
Also: Sharing Your Google Maps Trip Progress, and More! How-To Geek Logo May 14, 2024 Did You Know In a bid to keep the ingredients secret, WD-40 was never patented. 🤖 The New GPT It's Tuesday!
Meta shuts down Workplace
Tuesday, May 14, 2024
Plus: Everything that happened at Google I/O and AWS CEO steps down View this email online in your browser By Christine Hall Tuesday, May 14, 2024 Hello, and welcome back to TechCrunch PM. The team
Flattening Lists of Lists, Python 3.13, Sets, and More
Tuesday, May 14, 2024
Flattening a List of Lists in Python #629 – MAY 14, 2024 VIEW IN BROWSER The PyCoder's Weekly Logo Flattening a List of Lists in Python In this video course, you'll learn how to flatten a list
Daily Coding Problem: Problem #1441 [Easy]
Tuesday, May 14, 2024
Daily Coding Problem Good morning! Here's your coding interview problem for today. This problem was asked by Google. UTF-8 is a character encoding that maps each symbol to one, two, three, or four
Noonification: 3 Quick Ways to Optimize RecyclerView
Tuesday, May 14, 2024
Top Tech Content sent at Noon! Get Algolia: AI Search that understands How are you, @newsletterest1? 🪐 What's happening in tech today, May 14, 2024? The HackerNoon Newsletter brings the HackerNoon
Using 97 fewer cores thanks to PGO
Tuesday, May 14, 2024
Plus an HNSW indexed vector store library, a new Go game hits the Steam store, and is 'ok' ok?. | #507 — May 14, 2024 Unsub | Web Version Together with Stytch logo Go Weekly Reclaiming CPU for
Ranked | The Top 6 Economies by Share of Global GDP (1980-2024) 📈
Tuesday, May 14, 2024
Gain a unique perspective on the world's economic order from this graphic showing percentage share of global GDP over time. View Online | Subscribe Presented by: Data that drives the
Free online event this Thursday: Getting ahead with time series data
Tuesday, May 14, 2024
Free Online Event Do you know how your competitors use time series data to get ahead? Join us on Thursday, May 16 at 10am PT/1pm ET for a free, hour-long online fireside chat called “Unleash the Full
Here's the deal
Tuesday, May 14, 2024
We wanted you to be among the first to know about our plans to relaunch the Gigantic training courses that Product Collective now powers! Here's the deal: From May 20th - May 31st, anybody that