Crónica de una escala anunciada npm i dschenkelman

Building a product

Demand

Stabilize

Auth API Identity provider DB Scenario Client

Expected response times

Actual response times

Admit the problem

The problem

Flame graphs

T-shirt time

Password Hashing app.post('/authenticate', (req, res) => { // fetch the user by req.username from db db.users.findOne({ email: req.body.email }, (err, user) => { ... // compare bcrypt for req.password to db hash const success = bcrypt.compare(req.body.password, user.passwordHash); res.send(success ? 200 : 401); }); });

Scale

Faster Hash

Caching

Scale up

Multiple IdP instances ELB IdP IdP IdP IdP

BaaS app.use('/login', (req, res) => { // fetch the user by req.username from db db.users.findOne({ email: req.body.email }, (err, user) => { ... // compare bcrypt for req.password to db hash baas.compare(req.body.password, user.passwordHash).then((e success) => { res.send(err || !success ? 401 : 200); }); }); });

Auto Scaling Identity provider ELB BaaS BaaS BaaS BaaS

Cost comparison Price / (1M req) #req per sec / vCPU t2-micro $0.36 10.00 t2-medium $0.76 9.50 c4-large $1.53 10.00 c3-8xlarge $1.64 8.88

Fail gracefully

Bye

Links • http://security.stackexchange.com/a/83382 • http://www.brendangregg.com/FlameGraphs/ cpuflamegraphs.html • https://github.com/thlorenz/v8-perf/issues/4 • https://github.com/auth0/node-baas • http://docs.aws.amazon.com/AutoScaling/latest/ DeveloperGuide/US_SetUpASLBApp.html • https://gist.github.com/trevnorris/9616784

Thanks https://github.com/dschenkelman/bcrypt-sample @dschenkelman npm i dschenkelman