DevOps: Containers: Velocity Through Reduced Coordination

Containers have a profound impact on software organizational structure by providing a primitive which enables feature teams to fully control their system as well as application level dependencies. Containers decouple development and operations using a common interface, which can increase velocity by reducing the amount of external coordination required to deliver software.

There are many amazing technical overviews on what containers are and how to use and production-ize them. This post focuses on how containers shift the organizational structure and that shift’s affect on velocity of delivery. This post assumes knowledge of docker containers and high level knowledge of a Platform or Container Orchestrator (kubernetes, openshift, heroku, etc).

Decoupling Operations and Development

In many traditional (pre-container) organizations operations (ops) is responsible for both infrastructure (networking, storage, provisioning, etc) and system level resources (filesystem, system libraries such as runtime versions, operating system versions, shown below on left):

Containers shift responsibility by enabling development (dev) to control system level dependencies (shown on right in above image). Containers shift responsibilities; moving development one level down the level of software abstraction. Containers couple both application and system dependencies (libraries) together into a single artifact.

In addition, containers also introduce a new layer of abstraction inserting a new layer (the runtime/orchestrator or platform) between the infrastructure and the system. This acts as an interface (in the traditional software sense that decouples dev and ops:

This interface general exposes configuration around cpu memory, environment and number and type (web vs asynchronous queue based worker) of application instances. Combined with the container primitive which supports controlling application and system level dependencies, these provide development everything it needs to ship the majority of features without coordinating with ops. Containers redraw the traditional dependency lines.

This simple change has the affect of decoupling operations and development from deploys, enabling developers to own configuration, system libraries, application, and application configuration:

Containers increase velocity by reducing the number of times teams need to externally coordinate to deliver software.

Development/Deployment Overhead

Since services have a naturally strict coupling between applications and the systems they run on, traditional dev and ops models (pre containers) require much cross-team coordination in order to successfully deliver software. Configuration management often results in the highest risk changes, due to manual interactions and poor automated verification. This results in long feedback loops on infrastructure changes.

The traditional (pre-container) dev and ops relationship requires the feature team to synchronize with the operations team, which has a significant negative impact on throughput. The same synchronization is often required during incidents, which leads to the inverse affect on MTTR, prolonging application service outages and degradation. An example of this is shown in the sequence diagram below. Traditional (pre-container) software deployment requires dev to coordinate and work with ops in order to deliver software:

In many cases containerized model removes the need for developers to coordinate with operations (shown below):

Having separate teams involved with value delivery incurs the overhead of synchronization and organizational hops (meetings, background explanations, mitigation, pairing, all the general manual process risk reduction). These teams service multiple development teams and often have their own queue of work taking hours or days, or potentially longer.

Another way to see the affect of containers is to visualize where a team is spending its time during feature delivery. The gantt chart below shows a hypothetical example of a feature in a pre-container organization, that requires system or configuration related changes:

n this example the overhead is roughly ~30%. This may seem a lot but I have repeatedly found real life overheads to be around this amount. In a containerized world where dev is decoupled from ops and no coordination is required shows this reduction:

While these examples only focus on delivery there are many similar benefits across many aspects of development: system upgrades, rollbacks, incident response, standardization which all contribute to even larger impacts on deployment velocity. Additionally, traditional dev -> ops deployment hand offs create a nightmare for delivery accounting. This requires organizations to draw lines in the sand for what “done” means. Many organizations with traditional dev and ops roles have such long deployment loops stories are marked as DONE when they are merged into master and not when they are built and deployed.

Finally, in order to model the affect that containerization may have on delivery velocity it’s important to understand what percentage of deployments require cross team (dev & ops) coordination, and how long is spent performing that coordination.

I hope this post shows how containers redefine the traditional responsibilities of both dev and ops. By providing a primitive to development which cleanly couples application and system dependencies, containers are able to establish a clean interface between development and operations which removes the need for coordination and greatly increase delivery throughput. Developing an understanding of the rate of coordination and its affect on delivery times is critical to modeling the affect that containers may have on an organization. It’s exciting to open a project and see that Dockerfile is present with an orchestrator manifest (heroku.yml, kubernetes config), knowing that development is empowered to autonomously configure their application, system resources and system deployment. The State of DevOps report shows that companies that have this technical capability regularly outperform their competitors in deployment frequency and lead time.

Resources

• https://kubernetes.io/docs/concepts/overview/what-is-kubernetes/
• https://www.freecodecamp.org/news/demystifying-containers-101-a-deep-dive-into-container-technology-for-beginners-d7b60d8511c1/
• https://medium.com/dm03514-tech-blog/debugging-devops-using-valuestream-and-lightstep-e1f8e07f4eab
• https://en.wikipedia.org/wiki/Interface_(computing)#Software_interfaces
• https://medium.com/@dm03514/valuestream-devops-metrics-observing-delivery-across-multiple-systems-7ae76a6e8deb
• https://medium.com/hackernoon/why-capacity-planning-needs-queueing-theory-without-the-hard-math-342a851e215c
• http://services.google.com/fh/files/misc/state-of-devops-2018.pdf