Amazon Crashes Friday, Site Complexity Blamed

Written by Evan Schuman
June 6th, 2008

E-Commerce leader completely crashed for almost three hours on Friday afternoon (June 6), with one Web site performance firm attributing the crash to excessive site complexity.

"One thing that is true about Amazon’s site is that it is very complex, utilizing numerous backend database, proxy servers, distributed application and Web servers, lots of dynamic images, etc.," said Shawn White, director of external operations at Web site performance tracking firm Keynote. "Even accessing the homepage involves complex multi-step interactions between the Web browser and a number of backend systems within Amazon."

"To do what Amazon does, in providing a highly personalized user experience with the visual richness users have come to expect, this complexity shouldn’t be a surprise," White said. "However, the challenge in the IT world is that the more complex something is, the more likely it is to break or be broken. That is what I believe may be going on here."

The site started crashing at 10:16 AM (PDT), displaying a 503 Service Unavailable message. Within five minutes, White said, "the Web site was completely offline: 100 percent unavailable."

Over the next 2 hours, 44 minutes, the site slowly began to increase its availability, to about 10 percent availability. "Users who are able to access the homepage are experiencing very slow download times," roughly four times slower than normal, White said, "to the point where browsing the site is almost impractical."

By 1:00 PM (PDT), Amazon said, the site was back to normal.

Internet chatter during the incident pointed to several possible causes, including some releases of very popular products. But White dismissed such theories, pointing to Amazon’s strong history of anticipating and handling such traffic peaks.

Amazon is "very used to high loads and user demands. Amazon was one of the few sites that performed very well during Keynote’s coverage of Black Friday and Cyber Monday last year," White said. "Keynote has a hard time believing their site is succumbing to some type of peak-load issues. They know how to handle load."

That led White to suspect Amazon’s server sophistication. The same attributes that allow strong customization could also fuel a crash. White tried to explain why he also was inclined to rule out other rumored causes.

"We do not know what exactly is not working correctly or if this is something within the control of Amazon or from an outsourced vendor they may be using. It is possible that a simple typo or misconfiguration is involved. In either case, most maintenance and changes are done during non-peak periods, not at 10:16 in the morning (Pacific time)," White said. "It is surprising to me that if maintenance or configuration changes were the cause of this current issue, why were they being done during a presumably busy period? The other thought would be some type of deliberate or malicious cause. While possible, given the technical sophistication, experience and high-profile nature of Amazon, I have to assume this is not likely, as they have very strong security policies in place."


Comments are closed.


StorefrontBacktalk delivers the latest retail technology news & analysis. Join more than 60,000 retail IT leaders who subscribe to our free weekly email. Sign up today!

Most Recent Comments

Why Did Gonzales Hackers Like European Cards So Much Better?

I am still unclear about the core point here-- why higher value of European cards. Supply and demand, yes, makes sense. But the fact that the cards were chip and pin (EMV) should make them less valuable because that demonstrably reduces the ability to use them fraudulently. Did the author mean that the chip and pin cards could be used in a country where EMV is not implemented--the US--and this mis-match make it easier to us them since the issuing banks may not have as robust anti-fraud controls as non-EMV banks because they assumed EMV would do the fraud prevention for them Read more...
Two possible reasons that I can think of and have seen in the past - 1) Cards issued by European banks when used online cross border don't usually support AVS checks. So, when a European card is used with a billing address that's in the US, an ecom merchant wouldn't necessarily know that the shipping zip code doesn't match the billing code. 2) Also, in offline chip countries the card determines whether or not a transaction is approved, not the issuer. In my experience, European issuers haven't developed the same checks on authorization requests as US issuers. So, these cards might be more valuable because they are more likely to get approved. Read more...
A smart card slot in terminals doesn't mean there is a reader or that the reader is activated. Then, activated reader or not, the U.S. processors don't have apps certified or ready to load into those terminals to accept and process smart card transactions just yet. Don't get your card(t) before the terminal (horse). Read more...
The marketplace does speak. More fraud capacity translates to higher value for the stolen data. Because nearly 100% of all US transactions are authorized online in real time, we have less fraud regardless of whether the card is Magstripe only or chip and PIn. Hence, $10 prices for US cards vs $25 for the European counterparts. Read more...
@David True. The European cards have both an EMV chip AND a mag stripe. Europeans may generally use the chip for their transactions, but the insecure stripe remains vulnerable to skimming, whether it be from a false front on an ATM or a dishonest waiter with a handheld skimmer. If their stripe is skimmed, the track data can still be cloned and used fraudulently in the United States. If European banks only detect fraud from 9-5 GMT, that might explain why American criminals prefer them over American bank issued cards, who have fraud detection in place 24x7. Read more...

Our apologies. Due to legal and security copyright issues, we can't facilitate the printing of Premium Content. If you absolutely need a hard copy, please contact customer service.