Curated topic

dist

Posts tagged with dist

Cloudflare BlogJun 3, 2026

Why it matters: BGP hijacks using forged paths threaten global internet stability. Enforcing First AS checks prevents peers from advertising routes they do not actually transit, closing a security gap that RPKI and ASPA alone may miss. This is vital for maintaining routing integrity and trust.

Recent BGP hijacks involve attackers forging AS_PATHs with unused ASNs to misdirect traffic and conceal their identity.
Analysis of these hijacks reveals implausible routing relationships, such as unused regional ASNs appearing behind global transit providers.
First AS enforcement is a critical BGP security mechanism that verifies a peer's ASN is the first entry in an advertised route.
While RPKI-ROV and ASPA improve security, they can be bypassed if attackers use valid origin ASNs, making First AS checking a necessary defense.
Cloudflare's research indicates that some major networks fail to enforce First AS checks, allowing forged paths to propagate globally.

#security #dist

Read original

Netflix Tech BlogJun 3, 2026

Dynamic Repartitioning for Time Series Workloads

Why it matters: Managing wide partitions is a classic Cassandra scaling challenge. Netflix's automated re-partitioning and dynamic bucketing provide a blueprint for maintaining low-latency performance in massive time-series datasets without manual intervention or over-provisioning.

Netflix utilizes Apache Cassandra 4.x for its TimeSeries Abstraction layer to manage petabytes of temporal data with millisecond latency.
Wide partitions in Cassandra caused significant performance degradation, including high tail latency, GC pauses, and CPU spikes.
The system employs a hierarchical partitioning strategy using time slices, time buckets, and event buckets to break up large datasets.
A background monitoring worker was implemented to analyze partition histograms and automatically tune configurations for future time slices.
Dynamic Event Bucketing (DEB) was developed to handle data outliers by splitting event buckets once they reach a specific size threshold.
These automated re-partitioning techniques significantly improved P99/P999 read latencies and overall cluster stability.

#data #sre #dist

Read original

Cloudflare BlogJun 1, 2026

How we reduced core unit boot time from hours to minutes

Why it matters: Inefficient boot sequences can paralyze large-scale infrastructure maintenance. This case study highlights how low-level firmware quirks impact fleet-wide automation and demonstrates the importance of explicit configuration over default discovery in bare-metal environments.

Cloudflare's Gen12 core servers experienced boot delays of up to four hours following a firmware update due to inefficient network boot interface probing.
The root cause was a linear search through multiple network boot protocols (IPv4 HTTPS, iPXE, IPv6), with each failed attempt incurring a five-minute timeout.
Because firmware upgrades require multiple sequential reboots, these 20-minute per-boot penalties compounded into hours of idle time across a 2,000-unit fleet.
Engineers optimized the process by explicitly declaring the correct boot interface early in the pre-boot PXE stage, bypassing the automated search.
The solution involved implementing state validation to handle configuration resets post-upgrade and managing vendor-specific NIC string formats.
This optimization restored boot times to minutes, significantly reducing maintenance windows and accelerating the deployment of new capacity.

#sre #dist

Read original

Netflix Tech BlogMay 29, 2026

High-Throughput Graph Abstraction at Netflix: Part I

Why it matters: This architecture demonstrates how to scale graph databases for extreme OLTP workloads by building on top of existing KV and TimeSeries abstractions. It provides a blueprint for balancing high throughput, low latency, and data consistency in large-scale distributed systems.

Netflix's Graph Abstraction is optimized for OLTP use cases, supporting 10 million operations per second across 650 TB of data with low latency.
The system is built on top of existing Netflix abstractions, utilizing Key-Value stores for real-time indexing and TimeSeries stores for historical data.
It employs a strongly typed Property Graph model, defining nodes, edges, and properties to ensure data quality and consistent exports.
Data is partitioned into isolated namespaces, allowing for automated hardware provisioning based on specific throughput and latency requirements.
An in-memory metadata graph validates relationships at runtime, enabling early rejection of non-conforming data and optimizing query execution.

#dist #data

Read original

Netflix Tech BlogMay 29, 2026

From Silos to Service Topology: Why Netflix Built a Real-Time Service Map

Why it matters: In complex microservice architectures, understanding runtime dependencies is crucial for rapid incident response. Netflix's service map provides real-time visibility into service relationships, helping engineers identify root causes and assess blast radius during critical outages.

Netflix developed a real-time Service Topology map to visualize dependencies across thousands of microservices.
The system integrates three data sources: eBPF flow logs for network connectivity, IPC metrics for application context, and distributed traces for request flows.
Engineers use the map to quickly identify blast radius, upstream/downstream dependencies, and root causes during incidents.
The platform provides sub-second query performance to support high-pressure troubleshooting scenarios at 3am.
Beyond visualization, the tool offers programmatic API access for automated resilience frameworks and incident response automation.
The solution bridges the gap between fragmented signals like logs and metrics by providing a unified, steady-state view of the architecture.

#sre #dist

Read original

Salesforce EngineeringMay 27, 2026

Agentforce’s Agent Script: Building Deterministic Control for Enterprise AI Workflows

Why it matters: Engineers need ways to bridge the gap between unpredictable LLM reasoning and the deterministic requirements of enterprise systems. Agent Script provides a structured control plane that ensures security and consistency while allowing agents to remain flexible and easy to develop.

Agent Script is an open-source programming language and control plane designed to provide deterministic control over AI agent workflows.
The platform addresses the limitations of probabilistic LLM reasoning in security-sensitive areas like authentication and permissions.
A single executable script file replaces fragmented metadata, simplifying the developer experience and agent orchestration.
The team solved a dual source-of-truth problem by implementing robust roundtripping between visual UI and code-based representations.
The architecture evolved from a rigid parser to a schema-driven system to improve extensibility and maintainability.
Engineers utilized AI-assisted workflows and explored CRDT-inspired models to ensure state synchronization across distributed interfaces.

#mlp #security #dist

Read original

Salesforce EngineeringMay 27, 2026

Agentforce’s AgentScript: Building Deterministic Control for Enterprise AI Workflows

Why it matters: Engineers must balance LLM flexibility with enterprise reliability. AgentScript provides a deterministic control plane for AI agents, ensuring security-sensitive workflows like authentication remain predictable while maintaining the reasoning power of modern large language models.

AgentScript is an open-source programming language and control plane designed to provide deterministic control over Agentforce AI agents.
The platform addresses the limitations of probabilistic LLM reasoning by allowing developers to define structured execution paths for security-sensitive tasks.
A major technical challenge involved synchronizing CodeView and UIView representations to prevent state corruption and data loss during edits.
The architecture evolved into a schema-driven system to improve extensibility and maintainability across the parser and execution layers.
The team utilized AI-assisted engineering workflows to prototype and refine the parser's roundtripping behavior and error robustness.

#mlp #dist #security

Read original

Engineering at MetaMay 26, 2026

SilverTorch: Index as Model — A New Retrieval Paradigm for Recommendation Systems

Why it matters: SilverTorch breaks the performance ceiling of microservice-based recommendation systems. By unifying retrieval into a single GPU-accelerated model, engineers can reduce latency, lower TCO, and eliminate the friction between ML and infrastructure development cycles.

Introduces SilverTorch, a unified 'Index as Model' architecture that replaces traditional microservice-based retrieval with a single neural network.
Consolidates user towers, item indices, eligibility filters, and scoring layers into integrated PyTorch model modules.
Achieves up to 23.7x higher throughput and 20.9x better cost efficiency compared to traditional CPU-based microservice baselines.
Eliminates latency overhead from network round-trips and data serialization by executing the entire retrieval pipeline in a single forward pass.
Solves version inconsistency issues by ensuring all retrieval components update simultaneously within a single deployment artifact.
Enables sub-100ms latency for processing millions of items while increasing model complexity and candidate evaluation volume.

#mlp #dist #data

Read original

Pinterest EngineeringMay 21, 2026

Making User-Sequence Data More Cost-Efficient, Faster, and Easier to Use

Why it matters: Managing user-sequence data is notoriously expensive and prone to training-serving skew. This unified architecture reduces operational costs and ensures data consistency across the ML lifecycle, enabling faster iteration on sequence-aware models like Transformers for recommendation systems.

Redesigned the user-sequence platform using a 'one definition, many runtimes' approach to unify real-time and batch processing.
Eliminated training-serving skew by ensuring that offline training datasets and online inference services consume the same enriched signal definitions.
Optimized for cost-efficiency by reducing storage and network overhead while maintaining low-latency performance for production ranking and retrieval.
Streamlined onboarding for new event types and enrichments through a configuration-driven system, replacing bespoke pipeline development.
Implemented a multi-tenant architecture that supports diverse ML workloads across Home feed, Search, and Ads surfaces.

#mlp #data #dist

Read original

Airbnb EngineeringMay 19, 2026

Scaling Airbnb’s identity graph with a unified knowledge graph infrastructure

Why it matters: Scaling graph databases for real-time applications is difficult. Airbnb's move to an internal JanusGraph platform demonstrates how to decouple storage from logic to achieve high performance, reliability, and operational control for massive identity resolution workloads.

Airbnb migrated its identity graph from a third-party SaaS to an internally managed platform built on JanusGraph and DynamoDB.
The system manages massive scale with 7 billion nodes and 11 billion edges, processing 5 million new edges daily for real-time identity resolution.
By using JanusGraph with a pluggable DynamoDB backend, Airbnb decoupled the graph logic layer from the storage persistence layer.
Technical optimizations include parallelizing high-fanout queries via the getMultiSlices interface and implementing custom transaction strategies.
The platform provides a unified, multi-tenant infrastructure that replaces fragmented relational, offline, and DIY graph implementations.

#data #dist #security

Read original

Page 2 of 34

Prev 1 2 3 4...34 Next