For the best experience on desktop, install the Chrome extension to track your reading on news.ycombinator.com
Hacker Newsnew | past | comments | ask | show | jobs | submit | history | authleap's commentsregister

Client-side encryption in MongoDB offers a compelling way to protect sensitive data by ensuring encryption happens before the data leaves the client. This is particularly powerful for applications that handle PII, PHI, or financial information, as even database administrators can’t view the encrypted fields. However, in a multi-tenant environment, where the same database and its collections are shared across tenants, things become more challenging. As we set out to implement field-level encryption at DevRev, we carried out an in-depth evaluation of how MongoDB’s native encryption features align with our needs. This blog shares some of the key insights from that journey.


Effective latency optimization in complex distributed systems hinges on a simple principle: you can’t improve what you can’t measure. Having a comprehensive, multi-layered measurement baseline that offers a granular, end-to-end view of the request path helps isolate whether delays originate at the client, the network, the CDN, the load balancer, or deep within origin services. At DevRev, we track how much latency each hop from the end user to the origin services contributes, and this allows us to consistently refine our system and deliver the best value to our customers. Today, we’ve accumulated over 10 billion latency records across different APIs, giving us unparalleled visibility into performance.

By analyzing these latency datasets, we’ve uncovered patterns that aren’t always visible in small-scale tests like hidden queuing delays under burst traffic, cross-region routing inefficiencies, or subtle inconsistencies introduced by third-party dependencies. More importantly, we’ve learned that latency issues often don’t come from a single bottleneck, but from the compounded effect of several small inefficiencies across layers. In this blog, we delve into the lessons we learned while uncovering blind spots in improving end-to-end latency across DevRev API traffic.


I’d argue that there’s a corporate ideology that privileges throughput over latency and often it is a struggle to get latency taken seriously. Try submitting a ticket to, say, Adobe or Microsoft about how it takes 5 seconds for a keystroke to register in one of their products and see how much they care.


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search:

HN For You