System Failure, Not Human Error

Explore the deeper causes of system failures by analyzing incidents where human error is a symptom, not the root cause. This lesson helps you understand how control plane tools and processes can fail humans, how repeated playbook use may hide risks, and the importance of learning from both failures and near misses to build more resilient distributed systems.

We'll cover the following...

Amazon outage
Human error
Observing anomalies

Amazon outage

Amazon clearly states that:

"[a]n authorized S3 team member using an established playbook executed a command which was intended to remove a small number of servers for one of the S3 subsystems that is used by the S3 billing process. Unfortunately, one of the inputs to the command was entered incorrectly and a larger set of servers was removed than intended.”

Parsing that just a little bit, we can understand that someone mistyped a command. First and foremost, whoever that was has our deepest sympathies. I ...

1.Living in Production

2.The Exception That Grounded an Airline

3.Stabilize Your System

4.Stability Antipatterns

5.Failures And Blockages

6.Force Multiplier

7.Stability Patterns

8.Launching An Online Store

9.Foundations

10.Processes on Machines

11.Interconnect

12.Control Plane

13.Security

14.Design for Deployment

15.Handling Versions

16.Case Study: Trampled by Your Own Customers

17.Adaptation

18.System Architecture

19.Information Architecture

20.Chaos Engineering

21.Bibliography

System Failure, Not Human Error

Amazon outage