uk There is also an ENGLISH VERSION of this site

Jan 2015
What are concurrent users?
Performance and availability monitoring in levels
Nov 2014
Een impressie van het LAC 2014
Jul 2014
UX/UI has no business rules
Jun 2014
Technical debt: a time related issue
Solution shaping workshops
Mei 2014
Architecture life cycle
Project managers and architects
Sep 2013
Using ArchiMate for describing infrastructures
Jul 2013
Kruchten’s 4+1 views for solution architecture
Jun 2013
The SEI stack of solution architecture frameworks
TOGAF and infrastructure architecture
Mei 2013
The Zachman framework
An introduction to architecture frameworks
Apr 2013
How to handle a Distributed Denial of Service (DDoS) attack
Architecture Principles
Mrt 2013
Views and viewpoints explained
Stakeholders and their concerns
Skills of a solution architect architect
Feb 2013
Solution architects versus enterprise architects
Definition of IT Architecture
Dec 2012
Infrastructure Architecture - Infrastructure Building Blocks and Concepts
What is Big Data?
How to make your IT "Greener"
What is Cloud computing and IaaS?
Purchasing of IT infrastructure technologies and services
IDS/IPS systems
IP Protocol (IPv4) classes and subnets
Infrastructure Architecture - Course materials
Nov 2012
Introduction to Bring Your Own Device (BYOD)
IT Infrastructure Architecture model
Okt 2011
Fire prevention in the datacenter
Sep 2011
IT Infrastructuurmodel gepubliceerd in XR Magazine
Where to build your datacenter
Jul 2011
Availability - Fall-back, hot site, warm site
Reliabilty of infrastructure components
Jun 2011
Human factors in availability of systems
Business Continuity Management (BCM) and Disaster Recovery Plan (DRP)
Mei 2011
Performance - Design for use
Performance concepts - Load balancing
Performance concepts - Scaling
Apr 2011
Performance concept - Caching
Perceived performance
Mrt 2011
Ethical hacking
Feb 2011
Computer crime
Introduction to Cryptography
Jan 2011
Introduction to Risk management
The history of UNIX and Linux
Dec 2010
The history of Microsoft Windows
Engelse woorden in het Nederlands
The history of Novell NetWare
Nov 2010
The history of operating systems - MS-DOS
Infosecurity beurs 2010
Okt 2010
Wat is infrastructuur?
The history of Storage
The history of Networking
Sep 2010
History of servers
Jul 2010
Guru4Pro - Cloud computing
Jun 2010
Cloud: waar staat mijn data?
Mei 2010
Tips voor het behalen van uw ITAC certificaat
Apr 2010
Ervaringen met het bestuderen van TOGAF
De beveiliging van uw data in de cloud
Mrt 2010
Proof of concept
Een consistente back-up? Nergens voor nodig.
Feb 2010
Measuring Enterprise Architecture Maturity
Jan 2010
The Long Tail
Dec 2009
Master Certified IT Architect
ITAC Certification
Sep 2009
Human factors in security
Google outage
Apr 2009
SAS 70
Feb 2009
De Mythe van de Man-Maand
Jan 2009
TOGAF 9 - wat is veranderd?
DYA: Ontwikkelen Zonder architectuur
Nov 2008
Landelijk Architectuur Congres LAC 2008
InfoSecurity beurs 2008
Okt 2008
Spam is big business
Sep 2008
Waarom IT projecten mislukken
Stroom en koeling
Aug 2008
Laat beheerders meedraaien in projecten
De zeven eigenschappen van effectief leiderschap
Jul 2008
Jun 2008
Een ontmoeting met John Zachman
ITAC - IT Architect certification
Mei 2008
Persoonlijk Informatie Eigendom
The Irresistible Forces Meet the Movable Objects
Apr 2008
Live computable webcast
Lezing Trends in IT Security
Hardeningscontrole en hacktesting
Mrt 2008
Information Lifecycle Management - Wat is ILM
Jan 2008
LEAP: de trip naar Redmond
LEAP: De laatste Nederlandse masterclasses
Nov 2007
Scada systemen
LEAP - Halverwege de Nederlandse masterclasses
Okt 2007
Beveiliging van data - Het kasteel en de tank
Sep 2007
Waarom je geen ICT architect moet worden
Non-functional requirements
Aug 2007
Redenen om te backuppen
Log analyse - gebruik logging informatie
Jul 2007
LEAP - Microsoft Lead Enterprise Architect Program
Jun 2007
Patterns in IT architectuur
Mei 2007
Tot de dood ons scheidt
Apr 2007
High Availability clusters
Feb 2007
Hoe geef ik een goede presentatie
Lagen in ICT Beveiliging
Jan 2007
Zachman architectuur model
Dec 2006
High performance clusters en grids
Redenen om te kiezen voor Open Source software
Monitoring door systeembeheerders
Nov 2006
Wat is VMS?
IT Architectuur certificeringen
Okt 2006
Storage Area Network's (SAN's)
Systeembeheer documentatie
Wat zijn Rootkits
Sep 2006
Virtualisatie van operating systems
Kenmerken van Open Source software
Linux certificering: RHCE en LPI
99,999% beschikbaarheid
Aug 2006
Het infrastructuur model

Genootschap voor Informatie Architecten
Ruth Malan
Informatiekundig bekeken
Gaudi site
XR Magazine
Esther Barthel's site on virtualization


XML: RSS Feed 
XML: Atom Feed 

What are concurrent users?

Vrijdag 23 Januari 2015

I found that there is no clear definition of the number of concurrent users a system must support.

When a system is used by a large group of users, not all users are active all the time. For instance, if your organization has 10,000 employees, not everyone is in the office working every day. People have holidays, or can be sick. And if they are in the office, they are not behind their desks all the time, as they can be in meetings, standing at the coffee machine, etc. And when they are at their desk, using the system, they are not always active using the system’s back-end systems. For instance, when they are reading an article fetched from the internet, only the fetching of the document puts a load on the system. The time the user is reading the text, does not put a load on the system.

Consider the following example.

Total number of employees 10000
Only 80% is at the office 8000
 70% of their time is spent at their desk  5600
 At their desk, they use the system 70% of the time  3920

 In that time, they only perform actions that put a
load on the infrastructure for 5% of the time


This means that during the day, on average, of all employees, only 196 people are actively using the infrastructure at any given moment.

As an alternative, we can use the ratio between usage of the system and “thinking time”. In our example, the percentage thinking time is 100% - 10000/196 = 98%.

A further breakdown could show how the system is used:

Action Example
Load file  Open file in an office application (like Excel or Word)
Save file Save document from an office application
Browse files Open file explorer
Send HTTP request Push a button in a browser-based application, leading to sending data, or use AJAX calls
Receive HTTP data Receive data from a webserver when using a browser-based application, or use AJAX calls
Send data to the Internet Push a button on an internet page, use AJAX calls or send data using protocols like FTP
Receive data from the Internet Receive a web page from the internet, use AJAX calls or receive data using protocols like FTP
Send email/calendar Send a typed email to the email server, or update calendar items
Receive email/calendar updates Receive new emails from the email server
Send VDI/SBC data In a SBC or VDI environment, send keyboard and mouse input to the server
Receive VDI/SBC data In a SBC or VDI environment, receive screen output from the server
Send and receive data from DNS Use DNS to resolve IP addresses
Send and receive data from AD Use AD to handle login/logout or to check credentials
Other Other uses of the infrastructure

Using such a categorization, the actual load on the infrastructure can be calculated, if we know how the system is setup, how the actions relate to a certain load and what a typical user’s behavior is. Not all users are alike. By observing groups of people, their typical behavior can be mapped to the defined categories over time. For instance, a group called secretaries will typically:

  • Open 25 existing Word documents
  • Save 40 Word documents (including new documents)
  • Send 25 emails
  • Receive 25 emails

Based on these numbers, and with the insight in the setup of the system, the actual load on the various parts of the infrastructure can be calculated. This calculation can then be used to shape performance tests.

Performance and availability monitoring in levels

Vrijdag 09 Januari 2015

The availability of an IT component can be obtained by measuring (monitoring) the performance of that component. If the performance is below a certain threshold, the IT components is reported unavailable.

Monitoring IT systems can be done using a variety of tools. Vendors like IBM, HP, BMC and others provide tools to:

  • Measure performance
  • Capture logging
  • Generating alarms based on thresholds
  • Report the collected data in dashboards or other overviews

Typically, the number of measuring points in an IT landscape is quite overwhelming. When installed out of the box, monitoring tools will typically detect many issues per second, leading to many false alarms. Therefore, it is essential to tune the monitoring system to only generate useful alarms and to create reports containing useful information for specific stakeholders.

Performance measurement (and as derivate – availability detection) can be done on multiple levels:

  • Business process level
  • Application component level
  • Infrastructure component level

It is important to have separated performance measurements on all three levels and to have processes to solve issues on all individual levels.

For the end user of the system, only the business process level is important – as soon as the performance of this level is too low, the end users will be in trouble. Therefore, the business process level should be measured. Today’s tools are able to measure individual business process steps either by measuring their normal use or by measuring the effect of generated business actions. For instance, it can be measured how long it takes to print an invoice and it can be measured how long a simulated fake order takes to be processed in a certain business step.


If the performance on the business process level is below the set threshold, first the performance of the underlying application component(s) should be verified. Since every layer is responsible for its own performance, it could be that there is a problem in the application component layer causing the performance issue in the business process layer. And the application component layer could have performance issues due to a performance issue in the infrastructure component layer. Therefore it is important to separate these layers and give systems managers specific responsibilities for a certain layer. Between the layers, service level agreements should be agreed (Service Level Agreements – SLAs).

If the performance of the business process level is too low and there is no problem in the underlying application components, the solution to the performance issue must be found in the business process layer itself. If this is not the case, then there is a mismatch between the layers – a certain business process issue is apparently not detected in the lower application service layer.

Of course, this reasoning is also valid for the relation between the application components layer and the infrastructure component layer.

On the application component level, performance can be measured effectively if the application components contains “hooks” that the monitoring tool can use to verify the performance of a software component. Without these hooks, measuring can only be done on a much lower granularity. Especially when bespoke software is developed it is advised to invest in building these hooks in the software as part of the regular development process. Typical measurements are the number of times a (part of an) application component is used and how long it takes to finish a certain task. In software, typically there are some hot spots – parts of the code that are used much more frequently than others. By measuring using hooks in the software, these hot spots can be found, monitored, and optimized for performance.

On the infrastructure component level, the performance of each individual component can be measured. Examples are:

  • CPU load
  • Memory usage
  • Network response time
  • Network load
  • Storage response time
  • Storage load

Based on these measurements, low performance, or even unavailability of a certain component or a set of components can be detected.

Systems managers can react on the detection of low performance by addressing the issue at hand. It is important to acknowledge that early detection and resolving of performance issues is essential to avoid performance problems at the higher layers. Early detection and resolving keeps the systems managers busy, but reduces the risk that end users experience performance issues.

It is like the people who work hard to keep the trains running on time. If they do their work well, no one will notice…

Een impressie van het LAC 2014

Vrijdag 28 November 2014

Op 26 en 27 november werd in Nieuwegein weer het Landelijk Architectuur Congres (LAC) gehouden. Het LAC is hét jaarlijkse evenement voor de IT architect in Nederland. Het was al enkele jaren geleden dan ik er voor het laatst ben geweest – meestal het gevolg van drukke inzet bij de klant. Het was daarom goed om zien wat er sinds de laatste keer dat ik er was is veranderd.

Het eerste wat mij opviel was dat bij de sponsors van het evenement de grote organisaties ontbraken. De huidige sponsoren zijn vooral kleinere architectenbureaus in plaats van de grote system integrators. Verder viel me op dat er relatief veel sessies waren die gingen over communicatie en andere soft skills in plaat van over “harde” techniek.

De eerste dag werd energiek gestart met een keynote presentatie van Rick van de Lans, die inging op de manier waarop we met data (al dan niet big data) omgaan. Hij benadrukte dat veel Business Intelligence en Datawarehouse technieken zich vooral richten op interne data en niet op beschikbare externe data. Ook wordt data nog niet gezien als een primair product maar vooral als een bijproduct van de bestaande processen. Verder gaf hij aan dat we in Europa aan het achterlopen zijn op dit gebied – grote spelers richten zich vooral op Amerika en op Azië, en laten Europa links liggen, vooral omdat de acceptatie van nieuwe technieken er zo langzaam gaat.

De tweede keynote was van Bert Hooyman van Philips. Hij vertelde over een groot transformatieprogramma binnen Philips. Ik moet zeggen dat me weinig is bijgebleven van deze presentatie. Het valt dan ook niet mee om na een “kanon” als Rick van der Lans te moeten presenteren.

Hierna was er keuze uit maar liefst 6 parallelle tracks en een interactieve sessie. Elke track bestond uit 4 presentaties. Ik koos voor de track over de waardebepaling van architectuur. Helaas mis je daardoor natuurlijk een groot aantal – waarschijnlijk ook zeer interessante – presentaties, maar gelukkig zijn deze na afloop van het LAC allemaal op de site van het LAC na te kijken.

De track die ik koos werd deels gepresenteerd door studenten die onderzoeken op het gebied van waardebepaling van architectuur hadden uitgevoerd. Iemand die ik eruit wil lichten is Wendy Günther, die een aansprekende en humorvolle presentatie wist te geven. Heel goed!

In de pauzes tussen de presentaties was er ruim de tijd om bij te praten met vakgenoten en om oude contacten aan te halen. Altijd leuk en leerzaam.

De eerste dag werd afgesloten met een keynote van Lineke Sneller, hoogleraar Toegevoegde Waarde van IT van de Nyenrode universiteit. Zij was ook lid van de klankbordgroep van de commissie Elias, over de problemen bij IT projecten bij de overheid. De presentatie ging vooral over hoe architecten zich beter konden presenteren in de boardroom. De belangrijkste tip was om vooral de architectuurplaten thuis te laten, evenals de technische termen, en je te richten op de taal die in de boardroom wordt gesproken – de taal van de euro’s. Als de architect de essentie van een probleem of een oplossing in euro’s weet te vertalen is de kans veel groter dat hij aansluiting vindt en begrepen wordt.

De tweede dag werd gestart met een keynote van Philippe Kruchten (een van de grondleggers van RUP en de bedenker van het 4+1 architectuurmodel). Hij vertelde – na wat overbodige slides over wat een architect nu precies is en doet (zucht) – vooral over de wet van Conway, die stelt dat de organisatie van een softwareontwikkelafdeling weerspiegeld wordt in de uiteindelijke architectuur van de software die wordt ontwikkeld. En omdat de architectuur vaak onafhankelijk van de ontwikkelaars wordt opgesteld, kan er frictie ontstaan. Een frictie die lijkt op technical debt. Ook ging hij in op de mismatch die vaak ontstaat tussen ontwikkelaars en de beheergroep, of de infrastructuur waarop software moet gaan draaien. Dit is een erkend issue en de oplossing hierbij is DevOps – een werkwijze waar de architecten nog aan moeten wennen. Professor Kuchten stelde dan ook dat je altijd rekening moet houden en afstemming moet zoeken met drie “tures”: Architecture, Organisation Structure en Infrastructure.

Na de keynote werd de traditionele NAF penning en architectuurprijs uitgereikt, waarna er weer tijd was voor parallelle tracks. Ik koos voor de track “Boardroom skills voor architecten” – een track die bijzonder populair bleek. Een presentatie die ik zeker wil vermelden was die van Kees-Jan Koster, die – om aan architecten duidelijk te maken hoe communicatie werkt – de presentatie verduidelijkte met een taal die architecten wel begrijpen: UML diagrammen.

De dag werd afgesloten met een keynote van Stefan Willems van Sandvik uit Zweden, die met een zeer goed verhaal met veel humor liet zien dat het vertellen van een goed verhaal over een toekomstige architectuur veel meer waarde heeft dat welke architectuurplaat dan ook. Ook liet hij zien hoe je met een geanimeerd whiteboard filmpje grote groepen mensen in je organisatie kunt bereiken.

Het was goed om weer eens op het LAC te zijn – wat mij betreft volgend jaar weer.

UX/UI has no business rules

Vrijdag 18 Juli 2014

I am involved in a project that designs a browser based application. The customer has very specific ideas about the way the UI/UX aspects. As Forrester states: “Ultimately any service must meet the customer’s needs, be easy to use and enjoyable – the three facets of customer experience.”

UI (User Interface) and UX (User Experience) are related concepts. In practice the difference is fuzzy, to say the least. In theory, UI is about the buttons, drop-down lists, colors, and other elements on a user interface, while UX is about the whole user experience (like how easy can one switch between tasks, or how responsive a user interface is to user actions). UX is mostly about the joy of using a user interface.

I found that it can be hard to define the demarcation point between the UI/UX part and the rest of the application. In older applications, there was no real border between both. But splitting the UI/UX layer from the rest of the application components is very beneficial.  

The main rule is that the UI/UX layer should not have any business logic; all business logic must be implemented in the underlying application. This allows using multiple user interfaces with the same application. For instance, a modern browser, but also older browser versions, mobile apps on tablets of phones, an interface for disabled people, or whatever comes next.

The user interface should only help users to get a better experience. In theory, a text-based interface (green screen) should suffice to operate the application via its API services. The UI/UX layer is just helpful for humans, but does not improve or extend the business functions of the application.

For instance, the user interface could have a drop-down list to select a value. In theory, such a value could also be entered manually with the same functionality (but it could lead to errors when a value is mistyped). Therefore, drop-down lists are part of the UI/UX layer. When the user interface is ported to a mobile app, this app could use another interface to select a value. In all cases, the application and its API service is unchanged. This means that UI/UX is all about non-functional requirements, not about application or business functionalities.

In general, the release cycle of user interfaces like mobile apps is much faster than that of functional management, or software development. Where software development to create new functions typically takes months to get into production, and changes on the functional management layer could take weeks, changes on the UI/UX layer could be done in days. This allows for frequent updates of the user interface and a constant increase of the user experience.

But to allow a new version of a user interface to work seamlessly with the underlying application, it is essential for the app to have no business logic. Instead it should use the API services of the underlying application(s) on the server. This allows for instance for changing one user interface to benefit from the latest browser enhancements, while still providing an unaltered user interface to users of older browsers, without changing anything on the appliation or its API services.

The question is how to handle functionalities like spell checkers or auto-fill fields like Google uses. Strictly speaking, these functionalities are only helping the user to get a better experience. For instance, most applications would still work when words are mistyped in a text editor. The spell checker is only helping the user and enhancing the user experience. Therefore, a spell checker is part of the UI/UX. But to have a functional spell checker, system calls are needed (it makes little sense to load a full dictionary in the user interface of a web browser; the typed words are typically checked against a dictionary on a server using a API service). Therefore, a API service is needed, which is a service-side application component. As this type of UI/UX functionality is typically used in a number of applications, in most cases one generic service is used by the UI/UX layers of multiple applications. But architecturally, it is still a UI/UX component, as it has no business function.

Technical debt: a time related issue

Zaterdag 28 Juni 2014

According to Wikipedia, Technical Debt refers to the eventual consequences of poor software architecture and software development within a codebase. The debt can be thought of as work that needs to be done before a particular job can be considered complete. If the debt is not repaid, then it will keep on accumulating interest, making it hard to implement changes later on. Unaddressed technical debt increases software entropy.

So, technical debt is creating a solution that is not complying to the architecture or detailed design. The reason for this is most of the time lack of time. In some circumstances, shortcuts are needed in order to deliver a project on time. This is not necessarily bad – there can be good economic, commercial or political reasons for this. Such a shortcut is known as technical debt. Technical debt can be compared to Development without architecture, as described in the DYA architecture method. I posted an article about this some time ago. Technical debt must be “paid back”; the chosen shortcut solution must be temporarily by definition and the definitive solution – according to the architecture – must be built eventually. This means that besides the extra effort to run the solution in the suboptimal way, money must be reserved to build the definitive solution. Preferably, building the definitive solution should be started immediately – in parallel with building the technical debt. I think technical debt can very well be extended to include infrastructure technical debt, or solution architecture technical debt for that matter. Just like technical debt can occur in software, it can be interoduced in infrastructures as well. Such technical debt can be introduced by creating an infrastructure solution that is deviating from the defined infrastructure architecture. This deviation can lead to additional cost, for instance in terms of increased systems management effort, replacing hardware before the economic life span is reached, or temporarily using additional software licenses. Nobody likes technical debt. It is a temporary solution to a problem that needs to be solved anyway. The only real reason for creating technical debt is time constraints. If enough time is available, it is always best to create the definitive solution right away. But because of time constraints, extra money is spent creating a temporarily solution quickly, and redo it later. It must be understood by the stakeholders that by creating technical debt, they are actually paying extra for their impatience.

Over Sjaak Laan

Sjaak Laan

Sjaak Laan (1964) werkt als Principal IT Architect bij CGI en heeft meer dan 25 jaar IT-ervaring.


Twitter LinkedIn Facebook RSS

Mijn boek


Cursusmateriaal t.b.v. opleidingen


Deze site bevat mijn eigen mening, en niet noodzakelijkerwijs die van mijn werkgever of van de klanten waar ik voor werk.

The postings on this site are my opinions and do not necessarily represent CGI’s strategies, views or opinions.


Copyright Sjaak Laan