Index

Numerics

2FA (two-factor authentication), 101–102, 103, 109–110

2PC (two-phase commit) algorithm, 210

A

ABAC (attribute-based access control), 94

Abadi, D., 65, 175

Abbott, M. L., 140

ACID (atomicity, consistency, isolation, and durability), 61, 64, 210

ACORD (Association for Cooperative Operations Research and Development), 248

agile, 8–9, 17, 49

architectural decisions, 30–31

and architecture, 10

feedback loops, 44

frameworks, 10

AI (artificial intelligence), 127–128, 225, 227, 231. See also emerging technologies

chatbots, 238

benefits of an architecture-led approach, 245

Elsie, 239–240, 241–245

for TFX, 239

alerts, 201–202

Allspaw, J., 193

Amazon, 11, 56, 63, 71, 123, 124, 125, 128, 148, 155, 164, 185, 190, 198, 234, 263, 270, 286, 290, 297

Amazon.com, 128, 185

API, 4, 41, 47, 48, 61, 71, 72, 74, 79, 81–84, 97, 98, 107, 108, 111, 113, 114, 121, 133, 141, 148, 149, 153, 154, 169, 171, 177, 181, 196, 197, 201, 207, 209, 211, 214–216, 250, 254, 257, 273–277, 285–287, 294

analytics, 55

Apple, 56, 263

application architecture, 6–7

microservices and serverless scalability, 147–150

performance tactics, 170

increaase resources, 172

increase concurrency, 172–173

increase resource efficiency, 171

limit rates and resources, 171

prioritize requests, 170

reduce overhead, 171

use caching, 173–174

stateless and stateful services, 145–146

applying, Continuous Architecture, 16, 17–18

ArchiMate, 51

architectural decisions, 26–27, 34, 44, 168

accountability, 27

and agile development, 30–31

and Continuous Architecture principles, 29–30

decision log, 31

delaying, 30, 35

guidelines, 28

integrating with product backlog, 30

Kanban board, 53

making, 28

measurement, 44

performance, 161

and scalability, 128

scalability, 126–127

technical debt, 36, 39

architecture, 38

capturing, 39–40

code, 37

definitions, 37

managing, 41

production infrastructure, 38

TFX (Trade Finance eXchange) system, 287–295

visibility, 28–29

architecture, 1, 2, 7, 10, 20–22, 262. See also application architecture; Continuous Architecture

and agile, 10

application

microservices, 147

serverless scalability, 147–150

stateless and stateful services, 145–146

architecture. See also software architecture

and availability, 104–105

balancing role of, 23–24

big data, 165

building, 260–261

conceptual integrity, 24

continuous, 12

and data, 263–264

data, 55, 56, 57–58

and emerging technologies, 226

essential activities, 24, 25–26

drive architectural decisions, 25

feedback loops, 25

focus on quality attributes, 24

managing technical debt, 25

feedback loops, 44

intentional, 10

and ML (machine learning), 232, 233–234

in the modern era, 267–268

and performance, 159–160

principles, 49

and resilience, 188–190

and scalability, 124, 134

security, 88–89

serverless, 148, 165–166–167

tactics definition, 34, 35

team-owned, 49–50

and threat mitigation, 101

artificial Intelligence. See AI

ASVS (application security verification standard), 91

asynchronous communications, 201–202

ATAM utility tree, 35

attack trees, 97–98, 120

auditing, 101, 106

authentication, 101–102, 103, 109–110

authorization, 101

automation, 25

availability, 104–105, 162–163, 189, 191–192

high, 187, 189–190, 196

MTBF (mean time between failures), 192–193

RPO (recovery point objective), 193–194

RTO (recovery time objective), 193–194

and security, 89

B

backpressure, 206–207

backups, 213–214

Barth, D., Zero Trust Networks, 110

Bass, L., 34

Software Architecture in Practice, 160, 170

Beck, K., 8

benefits

of Continuous Architecture, 15

of continuous testing, 46–48

Benioff, M., 187

big data, 165, 225

MapReduce, 177–178

Bitcoin, 246, 248, 299

Bittner, K., xix

blockchains, 246. See also DLTs (distributed ledger technologies); shared ledger

51% attack on, 300

capabilities, 248, 249

blueprints, 2–3, 6

Bondi, A. B., Foundations of Software and System Performance Engineering: Process, Performance Modeling,Requirements, Testing, Scalability, and Practice, 168

Brewer, E., 65, 212

Brooks, F., The Mythical Man Month, 24, 50

Brown, S., 10, 51

bulkheads, 204–205

C

C4, 51

caching, 140–141, 173–174, 205–206

application object, 141

CDN (content delivery network), 142

database object, 141

lookaside, 205

precompute, 142

proxy, 141–142, 205

static, 142

CAP theorem, 65, 212

CAPEC (Common Attack Pattern Enumeration and Classification), 100, 120

CDN (content delivery network), 142

chaos engineering, 218

chatbots, 238

for TFX, 239

CIA (confidentiality, integrity, availability) triad, 90–91

circuit breakers, 208–209

classification, 227

Clements, P., Software Architecture in Practice, 34, 160, 170

client analytics, 71–72

cloud computing, 4, 11, 161

containers, 133

FaaS (Function as a Service), 147

horizontal scalability, 132–134

load balancers, 133

public/commercial, performance, 165–166

scalability, 127

secrets management, 108

and software architecture, 8

cluster analysis, 228

commands, 69

compensation (for database consistency), 211–212

confidentiality, 90–91

configurability, 35

Continuous Architecture, 12, 23, 24, 25, 27, 28, 30, 31, 35, 38, 50, 51, 55, 56, 159, 167, 259, 261–262, 268

applying, 16, 17–18

benefits, 15

cost effectiveness, 162–163

cost-quality-time triangle, 15–16

and data, 55, 57

data ownership, 76–77, 78

definitions, 13–15

feedback loops, 42

continuous testing, 45–48

fitness function, 45

implementing, 43–44

microservices, 147

versus other software architecture approaches, 14–15

principles, 13, 29–30

scale dimension, 17–18

schema evolution

Expand and Contract pattern, 83

intercomponent, 82

intracomponent, 83

Postel’s law, 83

and software architecture, 14

software delivery speed, 17

and sustainability, 16–17

Corda Alastria, 299

Corda Network, 299

Corda R3, 299

cost effectiveness, 162–163

cost-quality-time triangle, 15–16

CQRS (Command Query Responsibility Segregation), 69

cross-tenant analytics, 73

cryptographic hashing, 102, 246

Cunningham, W., 36

D

DaD (Disciplined Agile Delivery), 10

data, 55, 56, 65, 83, 263. See also metadata

and architecture, 263–264

and Continuous Architecture, 57

creating a common language, 58–60

denormalization, 174–175

distribution, 81

Domain-Driven Design, 58–59

bounded contexts, 59

ubiquitous language, 59

integration, 79–80

lineage, 56, 79

managing, 60

NoSQL, 64

document database schema, 62, 66

graphs, 63

key-value, 62

technology type comparison, 63

wide columns, 62

ownership, 76–77, 78

polyglot persistence, 61

race conditions, 78

schema evolution, 82–84

Expand and Contract pattern, 83

intercomponent, 82

intracomponent, 83

Postel’s law, 83

data analytics, 70–71

client analytics, 71–72

cross-tenant analytics, 73

schema on read, 70

tenant analytics, 73

TFX analytics approach, 74–76

data architecture, 56

databases, 67–68. See also data technology; NoSQL; TFX (Trade Finance eXchange) system

backups, 213–214

caching, 140–141

application object, 141

CDN (content delivery network), 142

database object, 141

precompute, 142

proxy, 141–142

static, 142

checking, 213

data distribution, 139–140

partitioning, 139–140

performance tactics, 174

data denormalization, 174–175

full-text search, 176–177

indexes, 174

materialized views, 174

NoSQL, 175–176

relational, 65, 66, 68

replication, 73, 139–140, 212–213

scalability, 137–139

DDD (Domain-Driven Design), 163, 171

denial of service, 95–97, 104–105, 111

deep learning. See DL

DevOps, 5, 38, 218–219, 220

DevSecOps, 5

shifting security left, 91–92

DIKW pyramid, 57, 70

disaster recovery, 221–222

Distributed Saga pattern, 211–212

DL (deep learning), 227, 229. See also emerging technologies

neural networks, 229

DLTs (distributed ledger technologies), 246, 254–255

capabilities, 248, 249

smart contracts, 249

use cases, 247–248

Doctorow, C., 87

Domain-Driven Design, 29, 58–59

bounded contexts, 59

ubiquitous language, 59

E

elastic scalability, 166

elevation of privilege, 96

emerging technologies, 226

AI (artificial intelligence), 227, 231

chatbots, 238, 239, 245

Elsie, 239–240, 241–245

and architecture, 226

blockchains, 246

DL (deep learning), 227, 229

DLTs (distributed ledger technologies), 246

capabilities, 249

smart contracts, 249

ML (machine learning), 227

architecture concerns, 232

document classification for TFX, 232–233

reinforcement learning, 228–229

supervised learning, 227–228

for TFX, 230–231, 233–234–236–237, 238

training, 231

unsupervised learning, 228

and nontechnical stakeholders, 250

shared ledgers

benefits of an architecture-led approach, 256–257

capabilities, 248–250

comparison of technical implementations, 299–300

permissioned, 248–249

for TFX, 250–251, 254–255

use cases, 247–248

enterprise architects, 6–7, 12

Erder, M., Continuous Architecture: Sustainable Architecture in an Agile and Cloud-Centric World, 23, 50, 125, 147

Ethereum, 246, 248, 299

Evans, E., 59

Event Sourcing, 55, 67–69

events, 69

eventual consistency, 65, 211

Expand and Contract pattern, 83

expected maximum load testing, 169

Extreme Programming Explained, 8

F

FAANG (Facebook, Amazon, Apple, Netflix, and Google), 56, 263

FaaS (Function as a Service), 147

Facebook, 5, 56, 124, 125, 164, 190, 263

failures, 189. See also availability; resilience

allowing for, 195–199

inevitability of, 190–191

learning from success, 199

MTBF (mean time between failures), 192–193

MTTR (mean time to recover), 192–193

prevention, 191

Fairbanks, G., 10

faults, 189

feedback loops, 25, 42

agile, 44

and architecture, 44

continuous testing, 45–48

fitness function, 45

implementing, 43–44

Fisher, M. T., 140

five ages of software systems, 4–5

Ford, N., Building Evolutionary Architectures, 45

frameworks, agile, 10

full-text search engines, 176–177

functional requirements, 34

G

Gamma, E., Design Patterns, 52

Gang of Four, 52

GDPR (General Data Protection Regulation), 87, 99

Gilman, E., Zero Trust Networks, 110

GitHub, 27

Google, 5, 11, 56, 110, 123, 124, 125, 152, 155, 157, 164, 166, 187, 190, 221, 223, 263, 297, 306

Gorton, I., 165, 175

guidelines, 28, 48–49

H

Hacking Team, 109

health checks, 200–201

Helm, R., Design Patterns, 52

high availability, 189–190. See also availability; resilience

horizontal scalability, 129–132–134

I

International Federation for Information Processing (IFIP), 2

International Standards Organization and Institute of Electrical and Electronics Engineers (IEEE), 2

incident management, 202, 220–221

indexes, 174

information disclosure, 96

information integrity, 102–103

information privacy, 102–103

injection attacks, 113

intentional architecture, 10

intercomponent schema evolution, 82

Internet, 4, 56, 89

intracomponent schema evolution, 83

ISO/IEC 25010, 32

J-K

Johnson, R., Design Patterns, 52

Kanban board, 53

Kazman, R., Software Architecture in Practice, 34, 160, 170

Keras, 227

Kersten, M., 41

key rotation, 108

key-value, 62

KMIP (key management interoperability protocol), 108

Klein, J., 165, 175

Kruchten, P., 37

L

lambdas, 148, 149

latency, 160, 161, 167–168. See also performance

L/C (letters of credit), 58, 60, 97–98, 134, 226, 232, 270

issuance, 251–254

Leffingwell, D., 10

LeSS (Large Scale Scrum), 10

load balancers, 133, 200–201

load shredding, 207–208

logs, 217, 219–220

M

making architectural decisions, 28

managing

data, 60

technical debt, 41

machine learning. See ML

MapReduce, 177–178

materialized views, 174

measurement

performance, 161–163, 180–182

resilience, 199–200

TFX scalability, 151–152

message logging, 106–107

message-based asynchronous communication, 201–202

metadata, 79

metrics, 217, 219–220

microservices, 61, 147

and performance, 163–164

Microsoft, 3, 11, 95, 120, 171, 297, 304

minimum viable products (MVPs), 16

ML (machine learning), 225, 227. See also AI (artificial intelligence)

architecture concerns, 232

document classification for TFX, 232–233

pipelines, 233, 234, 235, 236, 238, 241

reinforcement learning, 228–229

supervised learning, 227–228

for TFX, 230–231, 233–234

benefits of an architecture-led approach, 238

common services, 238

data ingestion, 234–235

data preparation, 235–236

model deployment, 236–237

model monitoring, 237

training, 231

unsupervised learning, 228

monitoring, 217, 219

MTBF (mean time between failures), 192–193

MTTR (mean time to recover), 192–193

MVPs (minimum viable products), 16

N

Netflix, 56, 123, 124, 125, 152, 155, 164, 169, 190, 218, 223, 263

NLU (natural language understanding), 239, 241, 242, 244, 245

nonrepudiation, 103–104

Nord, R., Managing Technical Debt, 37

normal load testing, 169

NoSQL, 55, 60, 64, 65

CAP theorem, 65

data denormalization, 174–175

document database schema, 62, 66

eventual consistency, 65

graphs, 63

key-value, 62

performance, 164–165, 175–176

technology choices, 64, 164–165

technology type comparison, 63

wide columns, 62

O

OCR (optical character recognition), 231, 233, 235

OCTAVE (Operationally Critical Threat, Asset and Vulnerability Evaluation), 100, 120

Open Source, 7

operational visibility, 216–217, 219

OMG (Object Management Group), 51

OWASP (Open Web Application Security Project), 91, 115, 121

Ozkaya, I., Managing Technical Debt, 37

P

PACELC, 65, 175

Parsons, R., Building Evolutionary Architectures, 45

PASTA (Process for Attack Simulation and Threat Analysis), 100, 120

performance, 159, 266

achieving for TFX, 178–180

application architecture tactics, 170

increase resources, 172

increase concurrency, 172–173

increase resource efficiency, 171

limit rates and resources, 171

modeling and testing, 167, 168

prioritize requests, 170

reduce overhead, 171

use caching, 173–174

and architecture, 159–160

bottlenecks, 182–183, 243

databases, 174

data denormalization, 174–175

full-text search, 176–177

indexes, 174

materialized views, 174

NoSQL, 175–176

latency, 160, 161

MapReduce, 177–178

measurements, 161–163

measuring, 180–182

and microservice architectures, 163–164

modeling, 167–168

and NoSQL technology, 164–165

and public/commercial clouds, 165–166

resource demand, 161

and scalability, 160

and serverless architectures, 166–167

testing, 168–170

throughput, 160, 161

turnaround time, 161

polyglot persistence, 55, 61

Postel’s law, 83

principles, 48–49

of Continuous Architecture, 13, 29–30

privacy, 87. See also security

confidentiality, 90

information, 102–103

product backlog, integrating with architectural decisions, 30

Pureur, P., Continuous Architecture: Sustainable Architecture in an Agile and Cloud-Centric World, 23, 50, 125, 147

Q

quality attributes, 32–34, 125

and architectural tactics, 34, 213

availability, 189, 191–192

MTBF (mean time between failures), 192–193

RPO (recovery point objective), 193–194

performance, 159–160, 174, 266

architectural concerns, 161–163

bottlenecks, 182–183

data denormalization, 174–175

forces affecting, 160–161

full-text search, 176–177

increase resources, 172

increase concurrency, 172–173

increase resource efficiency, 171

indexes, 174

limit rates and resources, 171

MapReduce, 177–178

materialized views, 174

and microservice architectures, 163–164

modeling, 167–168

and NoSQL technology, 164–165, 175–176

prioritizing requests, 170

and public/commercial clouds, 165–166

reduce overhead, 171

serverless architecture, 166–167

testing, 168–170

TFX requirements and tactics, 178–180

use caching, 173–174

resilience, 187, 190, 194–195, 266–267

achieving, 214–215

allowing for failure, 195–199

architectural tactics, 200

backpressure, 206–207

backups, 213–214

bulkheads, 204–205

defaults and caches, 205–206

disaster recovery, 221–222

health checks, 200–201

incident management, 220–221

inevitability of failures, 190–191

load shredding, 207–208

maintaining, 216

measurement, 199–200

message-based asynchronous communication, 201–202

operational visibility, 216–217

in organizations, 195

replication, 212–213

rollback and compensation, 210–212

RPO (recovery point objective), 193–194

RTO (recovery time objective), 193–194

testing for, 217–218

TFX system requirements, 196–199

timeouts and circuit breakers, 208–209

watchdogs and alerts, 201–202

scalability, 123, 124, 125–127, 162–163, 265–266

architectural context, 124

and architecture, 134

asynchronous communications, 142–145

caching, 140–142

cloud computing, 127

database, 137–139

elastic, 166

failures caused by, 152

horizontal, 129–132–134

microservices, 147

and performance, 160

requirements, 125

serverless, 147–150

stateless and stateful services, 145–146

supply-and-demand forces, 128

TFX (Trade Finance eXchange) system, 128–129, 134–137, 151–152

vertical, 129

security, 87, 88–89, 90, 92, 94, 101, 264–265

architectural context, 88–89

availability, 104–105

CIA triad, 90–91

confidentiality, 90

continuous delivery, 116–117

implementation, 115

incident management, 202

information integrity, 102–103

Internet, 89

message logging, 106–107

monitoring, 106–107

nonrepudiation, 103–104

people, process, and technology, 115–116

preparing for failure, 117–118

secrets management, 107–109

shifting left, 91–92

social engineering mitigation, 109–110

specialists, 91

STRIDE, 95–97

TFX (Trade Finance eXchange) system, 111–115

threat modeling and mitigation, 92-93, 97–98, 100, 101–102

threats, 92, 95–96, 98–99

weakest link principle, 116

zero-trust networks, 110–111

utility tree, 35–36

working with, 35

Quorum, 299

R

ransomware attacks, 105

Rasa Open Source, 239

rate limiting, 207–208

RBAC (role-based access control), 94, 101

relational databases, 65, 66, 68

reliability, 189, 191. See also availability

replication, 212–213

repudiation, 96

resilience, 187, 190, 194–195, 266–267

architectural tactics, 200

backpressure, 206–207

backups, 213–214

bulkheads, 204–205

checks (for data consistency), 213

defaults and caches, 205–206

health checks, 200–201

load shredding, 207–208

message-based asynchronous communication, 202–203

replication, 212–213

rollback and compensation (for data consistency), 210–212

timeouts and circuit breakers, 208–209

watchdogs and alerts, 201–202

and architecture, 188–190

and continual improvement, 194–195

and DevOps, 218–219

disaster recovery, 221–222

failures, 189, 190–191, 195–199

faults, 189

four aspects of, 191

five nines, 192

incident management, 220–221

the inevitability of failure, 190–191

maintaining, 216

measurement, 199–200

MTBF (mean time between failures), 192–194

MTTR (mean time to recover), 192–193

operational visibility, 216–217

in organizations, 195

testing for, 217–218

types of resilience mechanisms, 198

RTO (recovery time objective), 193–194

testing for, 217–218

TFX (Trade Finance eXchange) system

achieving, 214–215

requirements, 196–199

resources, 81

increasing efficiency, 171

limiting, 171

and performance, 161

REST (representational state transfer), 81–82, 143, 163

robustness principle, 83

rollbacks, 210–212

RPO (recovery point objective), 193–194

RTO (recovery time objective), 193–194

RUP (Rational Unified Process), 9

S

SaaS (Software as a Service), 8

SAFe (Scaled Agile Framework), 10

SAFECode, 115, 121

Salesforce, 11, 297

scalability, 123, 124, 125–127, 162–163, 265–266

architectural context, 124

and architecture, 134

asynchronous communications, 142–145

caching, 140–141

application object, 141

CDN (content delivery network), 142

database object, 141

precompute, 142

proxy, 141–142

static, 142

cloud computing, 127

database, 137–139

elastic, 166

failures caused by, 152

horizontal, 129–132–134

microservices, 147

and performance, 160

requirements, 125

serverless, 147–150

stateless and stateful services, 145–146

supply-and-demand forces, 128

TFX (Trade Finance eXchange) system, 128–129, 134–137

achieving, 151

measuring, 151–152

vertical, 129

schema

evolution, 82–84

Expand and Contract pattern, 83

intercomponent, 82

intracomponent, 83

Postel’s law, 83

on read, 70

Schneier, B., 118

SDM (service delivery management), 220

secrets management, 107–109

key rotation, 108

passwords, 108–109

security, 87, 90, 264–265

architectural context, 88–89

availability, 104–105

CIA triad, 90–91

confidentiality, 90

continuous delivery, 116–117

implementation, 115

incident management, 202

information integrity, 102–103

Internet, 89

message logging, 106–107

monitoring, 106–107

nonrepudiation, 103–104

people, process, and technology, 115–116

preparing for failure, 117–118

secrets management, 107–109

shifting left, 91–92

social engineering mitigation, 109–110

specialists, 91

STRIDE, 95–97

TFX (Trade Finance eXchange) system, 111–115

theater, 118–119

threat modeling and mitigation, 92–93, 100

analyze, 93

architectural tactics for mitigation, 101

attack trees, 97–98

authentication, authorization, and auditing, 101–102

mitigate, 94

understand, 93

threats, 92

high-impact, 99

identification, 95–96

prioritizing, 98–99

weakest link, 116

zero-trust networks, 110–111

SEI (Software Engineering Institute), 27, 35, 38, 64, 121, 176, 185, 231, 256

Semantic Web, 80

serverless architecture

performance, 166–167

scalability, 147–150

shared ledgers, 225. See also DLTs (distributed ledger technologies); emerging technologies

benefits of an architecture-led approach, 256–257

capabilities, 248–250

comparison of technical implementations, 299–300

permissioned, 248–249

for TFX, 250–251

L/C issuance using a DLT, 251–254

L/C payment using a DLT, 254–255

use cases, 247–248

shifting security left, 91–92

smart contracts, 249

social engineering mitigation, 109–110

software architecture, 1–2, 11–12, 225, 259. See also Continuous Architecture

and agile, 8–9

blueprints, 2–3, 6

challenges, 5–6

cloud computing, 8

focus on business content, 6

perception of architects as not adding value, 6–7

slow architectural practices, 7–8

Continuous Architecture, 14–15

definitions, 2

deployment, 5

five ages of software systems, 4–5

future directions, 11

goals, 2–3

and the Internet, 4

key skills, 49–50

trends

models and notations, 51–52

patterns and styles, 52

principles as architecture guidelines, 48–49

team-owned architecture, 49–50

value of, 261

software delivery life cycle (SDLC), 15

software industry, 3

software systems

AI (artificial intelligence), 127–128

cloud computing, 166

functional requirements, 34

performance modeling, 167–168

quality attributes, 32–34

and architectural tactics, 34

utility tree, 35–36

working with, 35

scalability, 128

software supply chain, 89

solution architects, 6–7

spoofing, 96

sprints, 30

SQL, 60, 64. See also NoSQL

SSO (single sign on), 94

stateful services, 145–146

stateless services, 145–146

stress testing, 137, 138, 139, 169

STRIDE, 95–97

sustainability, 16–17

SWIFT (Society for Worldwide Interbank Financial Telecommunication), 248, 257

T

tampering, 96

team-owned architecture, 49–50

technical debt, 25, 36, 39

architecture, 38

capturing, 39–40

code, 37

definitions, 37

managing, 41

production infrastructure, 38

technology singularity, 39

tenant analytics, 73

TFX (Trade Finance eXchange) system, 19–20, 23, 47, 55, 59, 66, 99, 159, 214, 226, 270. See also security; trade finance case study

achieving performance, 178–180

achieving resilience, 214

achieving scalability, 151

achieving security, 111–115

architectural decisions, 287–295

architectural description, 271–272

deployment view, 285–287

functional view, 272–276

information view, 283–285

usage scenarios, 276–282

attack trees, 97–98

authentication, authorization, and auditing, 101–102

and availability, 105

bulkheads, 204–205

caching, 142, 205–206

chatbots, 239

data analytics, 70–71–72

database technology choices, 65

databases, 61–62

data distribution, replication, and partitioning, 139–140

technology choices, 64, 164–165

domain events, 69

Elsie, 239–240

federated architecture, 243–245

natural language interface, 241–242

performance and scalability, 242–243

query handling, 243

Good Tracking Service, 66

horizontal scalability, 129–132

information privacy and integrity, 103

L/C (letters of credit), 270

letter of credit use cases, 20–22

message bus, 144

ML (machine learning), 230–231

architecture approach, 233–234

common services, 238

data ingestion, 234–235

data preparation, 235–236

document classification, 232–233

model deployment, 236–237

model monitoring, 237

multitenancy, 296–297

performance

bottlenecks, 182–183

caching, 173–174

increasing concurrency, 172–173

increasing resource efficiency, 171

increasing resources, 172

limiting rates and resources, 171

measuring, 180–182

prioritizing requests, 170

reducing overhead, 171

requirements and tactics, 178–180

quality attribute requirements, 297

resilience, 187–188

achieving, 214–215

requirements, 196–199

RPO (recovery point objective), 194

RTO (recovery time objective), 194

scalability, 124, 128–129

achieving, 151

asynchronous communications, 142–145

bottlenecks, 136

database, 137–139

failures caused by, 152

measuring, 151–152

requirements, 134–137

stateless and stateful services, 145–146

security monitoring, 106–107

sensors, 127–128

shared ledgers, 250–251

L/C issuance using a DLT, 251–254

L/C payment using a DLT, 254–255

and STRIDE, 96–97

timeouts and circuit breakers, 209

threat modeling and mitigation, 92–93, 100. See also STRIDE

analyze, 93

architectural tactics for mitigation, 101

attack trees, 97–98

authentication, authorization, and auditing, 101–102

high-impact threats, 99

injection attacks, 113

mitigate, 94

nonrepudiation, 103–104

prioritizing threats, 98–99

ransomware attacks, 105

STRIDE, 95–97

understand, 93

throughput, 160, 161. See also performance

timeouts, 208–209

traces, 217, 219–220

U-V-W

UML (Unified Modeling Language), 51, 208, 214

URIs (uniform resource identifiers), 59

usability, 162–163

VAST (Visual Agile and Simple Threat) modeling, 100, 120

vertical scalability, 129

von Neumann, J., 39

watchdogs, 201–202

Web Service Definition Language (WSDL), 147

weakest link principle, 116

Weir, C., 120

Workday, 11

X-Y-Z

XP (Extreme Programming), 8, 9

Yates, A., 38

zero-trust networks, 110–111

zones of trust, 110