Welcome!

FinTech Journal Authors: Elizabeth White, Rajeev Kozhikkattuthodi, Yeshim Deniz, Liz McMillan, William Schmarzo

Related Topics: FinTech Journal, Microservices Expo, Linux Containers, Containers Expo Blog, @DevOpsSummit

FinTech Journal: Article

Art of Rollback | @DevOpsSummit #API #APM #DevOps #ContinuousTesting

Learn about rollback strategies for static and dynamic objects and how to set your rollback budget

Art of Rollback III: Rollback Strategies Through the Ages
By Pierre-Boris Bonafous

Let's recap what we learned from the previous chapters in the series: episode 1 and episode 2.

We learned that a good rollback mechanism cannot be designed without having an intimate knowledge of the application architecture, the nature of your components and their dependencies. Now that we know what we have to restore and in which order, the question is how?

There are always different possible strategies available to restore your services. The only criteria for deciding which one to choose is speed. For this reason, the rollback must be automated and the best rollback features available must be leveraged for each of your application components and technologies. The automation tool will be in charge of the orchestration of the different technologies involved in the rollback process.

How Much Money Should You Spend on Rollback?
Always go for the fastest process you can afford. No company can afford data loss, data corruption and service interruption. Never cut cost on this part. Trying to reuse old backup systems or mutualized backup, for example, is not advisable, as investing in new technologies can give you more reactivity with an immediate ROI.

The budget of rollback implementation should be calculated at the beginning of your project, according to the cost of an error for the business and not by looking at best solution price or providers' bundles available on the market.

The acceptable cost of an error should not be estimated by Ops or Devs but by the business itself, as it can be a mix of unexpected factors. Some are part of the company plan and should not be shared internally. For example, it can be related to the company share price, risk assessment, compliance and compensation, SLA and penalties, customer retention, sales objectives, transactions per days and so on...

Time is money, so the equation is really easy to solve for Ops: the maximum recovery time objective (RTO) of an application depends on the maximum acceptable loss for the business. Your company may already have defined this metric in the disaster recovery plan.

Unfortunately, like most other technical services, the rollback system is too often taken in account at the end of a project. This is a big mistake as the cost of implementing the rollback can be huge, sometimes higher than essential features like automated deployment or monitoring. The rollback cost does not only include the cost of the implementation and the possible additional tools but also the cost of maintenance and regular testing of the rollback system.

Automic is helping his customers to create value with automation. Automated deployments and automated rollbacks must be considered together as a whole when you want to cover the Release Automation activities.

Static Components
Let's take a look at the most popular rollback strategies implemented today for static components. There are two different ways to manage immutable components: restore and switch.

Restore Rollback: This is the traditional way to roll back, from a time when applications were installed on premise, on physical boxes, and when the materials and software were expensive. Thanks to virtualization, containers and automated provisioning, the restore approach has enjoyed a renaissance. The original intent was to simply to reinstall the previous version of the application(s). That can be done by overriding files, uninstalling/reinstalling binaries or going back to a restoration point.

Today it's more about redelivering the previous complete application stack, pre-configured: the OS, the middleware and the application layer itself. Virtualization has paved the way with templates and Gold VMs. But container technologies like Docker do even better, as you can instantiate a container from an image in a couple of seconds. You have to re-instantiate a container from the previous images instead of delivering old binaries

Automic Release Automation enables you to define rollback at the workflow or job/task level. When the default rollback is activated, you can assign backup and rollback tasks. The backup task will be executed before the main action, while the rollback task will be executed in case of failure.

However, not every application today is a good candidate for containerization. If this is the case, you can go for the switch strategy, to achieve the same outstanding performance but for old systems.

Switch Rollback: Switch rollback maintains two releases of your application in parallel but makes only one accessible to your users while the other remains offline. When you want to deploy a new application release, you install the new release on the offline system. Once the new version is ready you just have to put the old version offline and new version online. If you want to rollback your application, you just switch back.

The switch can be really transparent when the application is a bunch of files in a flat directory. All you have to do is to switch two repositories with the old and the new release content. Sometimes it can be trickier if you rely on an application server or a cluster.

Blue-green deployment is a typical example of switch rollback. The blue environment is offline and the green is online. An environment can be a cluster or collection of machines. The switch (or change of color) can be done quickly by reassigning the IP addresses between the blue and the green machines in the DNS, in the load balancer or at the proxy level. Another advantage of blue-green deployment is that the rollback does not need a specific procedure because it the same procedure used for the initial rollout.

How much does this cost? Well, you must maintain a duplicated platform. That can be quite expensive if your platform is a cluster or a server farm. However, virtualization and automated provisioning can help you to limit the cost of administration, licenses and maintenance of the blue platform if you build and destroy the environments on the fly.

Dynamic Components
As you may be aware, immutable components are not an issue anymore. The problem we must solve today is rolling back dynamic components. Data is now stored on various formats: files, relational databases, NoSQL databases and so on... each technology with its own properties for recovery management.

In this scenario it's difficult to rollback without downtime or data loss if you do not have specific features embedded in the application itself. Some examples of possible function could be a data resilience system, a database virtualization layer, a data cache mechanism or treating your database structure as code.

Let's take an even more simple use case: a database upgrade with zero downtime. Not all databases can support that feature. There is no set plan to follow so you must exploit the best technologies available on the market like checkpoints or point-in-time recovery for databases and snapshots for virtual machines when your software architecture does not support rollback natively.

In fact, the only way to achieve zero downtime and to keep control of your data during deployments and rollbacks is to design backward and forward compatibility in the application itself. But this is another story...

Next Episode
Rolling forward; Why is it better than rollback? Because rolling forward is the best way of accepting that we, Dev and Ops, are intimately involved in time-flow, no matter what Albert Einstein or Brian Green told us! Stay tuned.

More Stories By Automic Blog

Automic, a leader in business automation, helps enterprises drive competitive advantage by automating their IT factory - from on-premise to the Cloud, Big Data and the Internet of Things.

With offices across North America, Europe and Asia-Pacific, Automic powers over 2,600 customers including Bosch, PSA, BT, Carphone Warehouse, Deutsche Post, Societe Generale, TUI and Swisscom. The company is privately held by EQT. More information can be found at www.automic.com.

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


@ThingsExpo Stories
The current age of digital transformation means that IT organizations must adapt their toolset to cover all digital experiences, beyond just the end users’. Today’s businesses can no longer focus solely on the digital interactions they manage with employees or customers; they must now contend with non-traditional factors. Whether it's the power of brand to make or break a company, the need to monitor across all locations 24/7, or the ability to proactively resolve issues, companies must adapt to...
Artificial intelligence, machine learning, neural networks. We’re in the midst of a wave of excitement around AI such as hasn’t been seen for a few decades. But those previous periods of inflated expectations led to troughs of disappointment. Will this time be different? Most likely. Applications of AI such as predictive analytics are already decreasing costs and improving reliability of industrial machinery. Furthermore, the funding and research going into AI now comes from a wide range of com...
"When we talk about cloud without compromise what we're talking about is that when people think about 'I need the flexibility of the cloud' - it's the ability to create applications and run them in a cloud environment that's far more flexible,” explained Matthew Finnie, CTO of Interoute, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
Internet of @ThingsExpo, taking place October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 21st Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The Internet of Things (IoT) is the most profound change in personal and enterprise IT since the creation of the Worldwide Web more than 20 years ago. All major researchers estimate there will be tens of billions devic...
SYS-CON Events announced today that MobiDev, a client-oriented software development company, will exhibit at SYS-CON's 21st International Cloud Expo®, which will take place October 31-November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. MobiDev is a software company that develops and delivers turn-key mobile apps, websites, web services, and complex software systems for startups and enterprises. Since 2009 it has grown from a small group of passionate engineers and business...
SYS-CON Events announced today that GrapeUp, the leading provider of rapid product development at the speed of business, will exhibit at SYS-CON's 21st International Cloud Expo®, which will take place October 31-November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Grape Up is a software company, specialized in cloud native application development and professional services related to Cloud Foundry PaaS. With five expert teams that operate in various sectors of the market acr...
SYS-CON Events announced today that Ayehu will exhibit at SYS-CON's 21st International Cloud Expo®, which will take place on October 31 - November 2, 2017 at the Santa Clara Convention Center in Santa Clara California. Ayehu provides IT Process Automation & Orchestration solutions for IT and Security professionals to identify and resolve critical incidents and enable rapid containment, eradication, and recovery from cyber security breaches. Ayehu provides customers greater control over IT infras...
In this presentation, Striim CTO and founder Steve Wilkes will discuss practical strategies for counteracting fraud and cyberattacks by leveraging real-time streaming analytics. In his session at @ThingsExpo, Steve Wilkes, Founder and Chief Technology Officer at Striim, will provide a detailed look into leveraging streaming data management to correlate events in real time, and identify potential breaches across IoT and non-IoT systems throughout the enterprise. Strategies for processing massive ...
SYS-CON Events announced today that Cloud Academy named "Bronze Sponsor" of 21st International Cloud Expo which will take place October 31 - November 2, 2017 at the Santa Clara Convention Center in Santa Clara, CA. Cloud Academy is the industry’s most innovative, vendor-neutral cloud technology training platform. Cloud Academy provides continuous learning solutions for individuals and enterprise teams for Amazon Web Services, Microsoft Azure, Google Cloud Platform, and the most popular cloud com...
In his session at Cloud Expo, Alan Winters, an entertainment executive/TV producer turned serial entrepreneur, presented a success story of an entrepreneur who has both suffered through and benefited from offshore development across multiple businesses: The smart choice, or how to select the right offshore development partner Warning signs, or how to minimize chances of making the wrong choice Collaboration, or how to establish the most effective work processes Budget control, or how to ma...
SYS-CON Events announced today that Enzu will exhibit at SYS-CON's 21st Int\ernational Cloud Expo®, which will take place October 31-November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Enzu’s mission is to be the leading provider of enterprise cloud solutions worldwide. Enzu enables online businesses to use its IT infrastructure to their competitive advantage. By offering a suite of proven hosting and management services, Enzu wants companies to focus on the core of their ...
With major technology companies and startups seriously embracing Cloud strategies, now is the perfect time to attend 21st Cloud Expo October 31 - November 2, 2017, at the Santa Clara Convention Center, CA, and June 12-14, 2018, at the Javits Center in New York City, NY, and learn what is going on, contribute to the discussions, and ensure that your enterprise is on the right path to Digital Transformation.
SYS-CON Events announced today that IBM has been named “Diamond Sponsor” of SYS-CON's 21st Cloud Expo, which will take place on October 31 through November 2nd 2017 at the Santa Clara Convention Center in Santa Clara, California.
We build IoT infrastructure products - when you have to integrate different devices, different systems and cloud you have to build an application to do that but we eliminate the need to build an application. Our products can integrate any device, any system, any cloud regardless of protocol," explained Peter Jung, Chief Product Officer at Pulzze Systems, in this SYS-CON.tv interview at @ThingsExpo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA
SYS-CON Events announced today that CA Technologies has been named "Platinum Sponsor" of SYS-CON's 21st International Cloud Expo®, which will take place October 31-November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. CA Technologies helps customers succeed in a future where every business - from apparel to energy - is being rewritten by software. From planning to development to management to security, CA creates software that fuels transformation for companies in the applic...
Amazon started as an online bookseller 20 years ago. Since then, it has evolved into a technology juggernaut that has disrupted multiple markets and industries and touches many aspects of our lives. It is a relentless technology and business model innovator driving disruption throughout numerous ecosystems. Amazon’s AWS revenues alone are approaching $16B a year making it one of the largest IT companies in the world. With dominant offerings in Cloud, IoT, eCommerce, Big Data, AI, Digital Assista...
Multiple data types are pouring into IoT deployments. Data is coming in small packages as well as enormous files and data streams of many sizes. Widespread use of mobile devices adds to the total. In this power panel at @ThingsExpo, moderated by Conference Chair Roger Strukhoff, panelists looked at the tools and environments that are being put to use in IoT deployments, as well as the team skills a modern enterprise IT shop needs to keep things running, get a handle on all this data, and deliver...
In his session at @ThingsExpo, Eric Lachapelle, CEO of the Professional Evaluation and Certification Board (PECB), provided an overview of various initiatives to certify the security of connected devices and future trends in ensuring public trust of IoT. Eric Lachapelle is the Chief Executive Officer of the Professional Evaluation and Certification Board (PECB), an international certification body. His role is to help companies and individuals to achieve professional, accredited and worldwide re...
With the introduction of IoT and Smart Living in every aspect of our lives, one question has become relevant: What are the security implications? To answer this, first we have to look and explore the security models of the technologies that IoT is founded upon. In his session at @ThingsExpo, Nevi Kaja, a Research Engineer at Ford Motor Company, discussed some of the security challenges of the IoT infrastructure and related how these aspects impact Smart Living. The material was delivered interac...
IoT solutions exploit operational data generated by Internet-connected smart “things” for the purpose of gaining operational insight and producing “better outcomes” (for example, create new business models, eliminate unscheduled maintenance, etc.). The explosive proliferation of IoT solutions will result in an exponential growth in the volume of IoT data, precipitating significant Information Governance issues: who owns the IoT data, what are the rights/duties of IoT solutions adopters towards t...