book

Engineering Resilient Systems on AWS

by Kevin Schwarz, Jennifer Moran, Nate Bachmeier

October 2024

Intermediate to advanced

348 pages

9h 36m

English

O'Reilly Media, Inc.

Audio summary available

Read now

Unlock full access

Includes

Quizzes

Preface
Conventions Used in This BookUsing Code ExamplesO’Reilly Online LearningHow to Contact UsAcknowledgmentsFrom KevinFrom JenniferFrom Dr. Nate
I. Foundations
1. Introduction
People, Processes, and TechnologyThe Role of PeopleThe Role of ProcessesIntegrating People, Processes, and TechnologyShared Responsibility ModelAWS ResponsibilityCustomer ResponsibilitySetting ObjectivesWorkload ArchitectureNetworkingQuotasChange ManagementFailure ManagementObservabilityContinuous Testing and Chaos EngineeringCI/CD and AutomationContinuous ResilienceSummary
2. Prepare Your Working Environment
Hands-on Learning with MicroservicesAWS Account and PermissionsChoosing a Development OS and IDEGit and Code Samples RepositoryPython EnvironmentNPM and Node.jsAWS CDKAdditional SoftwareAWS CLIPython PackagesVue.js and ViteBootstrap CSSArtillery.iocurl and watchBoto3PostgreSQLLambda PowertoolsDocker DesktopCustom Domain and Route 53 Hosted ZoneSecurityEncryption in TransitEncryption at RestAuthentication and Authorization for API EndpointsTokenizationCode ScanningCleaning UpSummary
II. Reliable Trading Portal
3. Frontend Web Application
Technical RequirementsArchitecture OverviewDeploying the AWS CDK ApplicationUsing an Amazon CloudFront DomainAmazon CloudFrontAmazon Simple Storage ServiceAmazon Route 53Implementing ObservabilityInjecting Failure ModesIntroducing Excessive LoadIntroducing Excessive LatencyAddressing Single Points of FailureCleaning UpSummary
4. Serverless Account Open API
Technical RequirementsArchitecture Overview: An AWS Serverless ApproachDeploying the AWS CDK ApplicationSunny Day ScenarioStrongly Typed Service ContractsIdempotent ResponsesSelf-Healing with Message Queue RetriesRate Limiting: Throttle Unanticipated LoadSurviving a Poison PillSTOP: Business Continuity Regional SwitchoverReturning to Business as UsualBlue-Green TestingCleaning UpSummary
5. Containerized Trade Stock API
Technical RequirementsArchitecture OverviewDeploying the AWS CDK ApplicationVpcStackTradeDatabaseStackTradeOrderStackTradeConfirmsStackPrepare the DatabaseContainer Deployment FailuresDatabase Connection ExhaustionDatabase Password Rotation Login FailuresDatabase Primary Writer FailuresDependency Intermittent FailuresDetecting and Handling Availability Zone IssuesDependency OutagesCleaning UpSummary
6. Integrated AvailableTrade Frontend with APIs
Technical RequirementsArchitecture OverviewDeploying the AWS CDK ApplicationAutomating AvailableTrade Endpoint ConfigurationIntegrating AvailableTrade MicroservicesConfiguring Client TimeoutsGracefully Degrading FeaturesReal User MonitoringX-Ray for End-to-End TracingCleaning UpSummary
7. When Recovery Is Required
Architecture OverviewDeploying the AWS CDK ApplicationDeploy the AWS CDK Trade Stock Stack in Secondary RegionDeploying the AWS CDK Orchestration StackIntegrating Backend API to FrontendValidating the RegionDatabase Failover and SwitchoverFailoverSwitchoverScaling ComputeRouting at the Lambda LayerDNS FailoverImportance of BackupsAvoiding Configuration DriftFailover VerificationCleaning UpSummary

III. Discovering Trading Opportunities
8. Real-Time Market Data Analytics
Technical RequirementsDesigning a Reliable Data Ingestion LayerRole of Apache Kafka in Data IngestionDesigning the Kafka Topic StructureSecuring the Kafka ClusterImplementing Reliable ConsumersEnsuring Fault Tolerance and ScalabilityConsumer Groups and Record ProcessingHandling Invalid MessagesDealing with Downstream DependenciesIntegrating Consumers and APIsCreating the ConnectionDesigning Consumer StateImplementing State ManagementHandling ConcurrencyUsing RestartabilityStoring and Querying Processed Market DataHandling Firehose Failure ModesQuerying AthenaOptimizing Data Storage and Querying PerformanceMonitoring and ObservabilityTesting ResiliencyCleaning UpSummary
9. Building Reliable News Feed Ingestion and Search APIs
Technical RequirementsFetching and Processing News ArticlesProducer-Consumer Pattern for Article ProcessingLeader Election for Scheduler High AvailabilityScheduler Configuration Failure ModesAdditional Resiliency StrategiesSyncing Articles to OpenSearchServing Search TrafficCleaning UpSummary
10. Building Resilient Multi-Region Architectures
The Business Case for Multi-Region ArchitecturesMulti-Region Database ArchitecturesUnderstanding Consistency ModelsReplication StrategiesHandling Conflict ResolutionMulti-Region Streaming ArchitecturesReplicating Kafka Data Across RegionsHandling Active-Active Kafka DeploymentsStreaming Data to Other DestinationsMulti-Region Search Architectures with OpenSearchCross-Region Data Replication with OpenSearchOther Data Replication OptionsCaching in Multi-Region ArchitecturesSummary
11. Putting It All Together
Reviewing Core ConceptsReliability FrameworksFailure Modes with Reliability PatternsConnecting the Key LearningsLeading Resiliency Initiatives: Cultivating a Culture of ResilienceNurturing the Seeds of ResilienceBecoming the Go-To Resilience GuruSharpening Your Resilience RadarEmbracing Continuous ResilienceMaking Resilience a Daily HabitLooking to the FutureNavigating the Multicloud and Hybrid Cloud LandscapeHarnessing AI for ResilienceEmbracing Chaos EngineeringLeveraging ObservabilitySummary
Index
About the Authors

Overview

To ensure that applications are reliable and always available, more businesses today are moving applications to AWS. But many companies still struggle to design and build these cloud applications effectively, thinking that because the cloud is resilient, their applications will be too. With this practical guide, software, DevOps, and cloud engineers will learn how to implement resilient designs and configurations in the cloud using hands-on independent labs.

Authors Kevin Schwarz, Jennifer Moran, and Dr. Nate Bachmeier from AWS teach you how to build cloud applications that demonstrate resilience with patterns like back off and retry, multi-Region failover, data protection, and circuit breaker with common configuration, tooling, and deployment scenarios. Labs are organized into categories based on complexity and topic, making it easy for you to focus on the most relevant parts of your business.

You'll learn how to:

Configure and deploy AWS services using resilience patterns
Implement stateless microservices for high availability
Consider multi-Region designs to meet business requirements
Implement backup and restore, pilot light, warm standby, and active-active strategies
Build applications that withstand AWS Region and Availability Zone impairments
Use chaos engineering experiments for fault injection to test for resilience
Assess the trade-offs when building resilient systems, including cost, complexity, and operational burden

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9781098162412Errata Page

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills