CAP Theorem

Fundamental Trade-offs in Distributed Database Systems

Introduction

CAP Theorem: fundamental result in distributed systems theory. States: any distributed system can guarantee at most two of three properties (Consistency, Availability, Partition tolerance). Proposed by Eric Brewer (2000), proved by Gilbert and Lynch (2002).

Revolutionary: shaped distributed database design. Explains trade-offs: why no perfect system. Forces choice: consistency/availability, consistency/partition-tolerance, or availability/partition-tolerance. Influenced NoSQL movement.

Practical impact: guides database selection. Motivates eventual consistency, consensus algorithms, replication strategies. Understanding CAP essential for distributed system design.

"CAP Theorem reveals fundamental impossibility in distributed computing. Forces conscious choice of priorities: consistency guarantees vs. availability under failures. No universal perfect solution." -- Distributed systems theory

CAP Theorem Definition

Formal Statement

Distributed system cannot simultaneously guarantee all three: (1) Consistency: all nodes see same data at same time, (2) Availability: system responds to requests (no downtime), (3) Partition tolerance: system continues despite network partitions.

Network Partition

Network partition: communication between nodes fails. Nodes isolated, cannot coordinate. Real-world reality: networks unreliable, partitions happen. Any distributed system must handle.

Implication

Choose two of three. (CA): consistent & available, but fails under partition. (CP): consistent & partition-tolerant, but may refuse requests (unavailable). (AP): available & partition-tolerant, but inconsistent temporarily.

Key Insight

Partition tolerance usually mandatory (network unreliability unavoidable). Practical choice: (CP) or (AP). Consistency vs. Availability trade-off.

Consistency Property

Definition

Consistency: all nodes/replicas see same data. Write to one node visible to all others. No stale data. Transactions ensure ACID properties.

Strong Consistency

Immediate visibility: after write, all reads see new value. Strongest guarantee. Risk: slow (requires synchronization). Under partitions, may be unavailable.

Weak Consistency

Eventual visibility: read may return old value temporarily, but eventually consistent. Faster. Risk: temporary inconsistency.

Practical Implications

Strong consistency: slow, unavailable under partitions. Weak consistency: fast, available. User experience trade-off: correctness vs. responsiveness.

Examples

Banking: strong consistency (money cannot be in two accounts). Social media: weak consistency (likes may appear delayed). Different systems, different needs.

Availability Property

Definition

Availability: system always responsive. Every request receives response (success or failure, not timeout). No downtime. Replicas ensure: if one fails, others respond.

Implementation

Replication across multiple nodes. Request to any node succeeds. Failures absorbed: system continues. No single point of failure.

Trade-offs

High availability: more replicas, more complexity. Consistency harder: replicas may diverge. Eventual consistency necessary.

Measurement

Uptime percentage: 99.9% (three 9s) = 43 minutes downtime/month. 99.99% (four 9s) = 4 minutes downtime/month. Higher availability more expensive.

User Perception

Availability critical for user experience. Unavailable system worse than incorrect data (temporarily). Influences design: prefer availability when choosing between trade-offs.

Partition Tolerance Property

Definition

Partition tolerance: system continues despite network partitions. Nodes isolated, unable to communicate. System must function (possibly degraded).

Realistic Necessity

Networks unreliable. Partitions happen (router failures, cable cuts, congestion). Any deployed distributed system must handle. Not optional.

Implications

Cannot assume reliable communication. Nodes cannot coordinate (partition prevents). Must decide: diverge (availability) or stop (consistency)?

Example Scenario

Partition: Node A and B separated
A receives write, B doesn't receive (isolated)
A: write succeeds (available, inconsistent)
B: doesn't know about write (partition)

Choice: Accept inconsistency (AP) or reject writes (CP)?

Modern Reality

Partition tolerance unavoidable. Practical systems cannot ignore. Forces choice between consistency and availability during partitions.

Fundamental Trade-offs

CA: Consistency and Availability

No partition tolerance: assumes reliable network (unrealistic). Example: traditional SQL databases without clustering. Work well in LANs, fail under WAN partitions.

CP: Consistency and Partition Tolerance

No availability: during partition, system may refuse requests (consistent, but unavailable). Example: HBase, MongoDB (strong consistency mode). Finance, insurance favor this: correctness over availability.

AP: Availability and Partition Tolerance

No strong consistency: during partition, nodes diverge (inconsistent, but available). Eventually consistent. Example: Cassandra, DynamoDB. Web services favor this: responsiveness over immediate correctness.

Trade-off Table

System Consistency Availability Partition Tol. Category
Traditional SQL Yes Yes No CA
HBase Yes No Yes CP
Cassandra No Yes Yes AP

Domain-Specific Choices

Banking: CP (consistency paramount). Social media: AP (availability paramount). Health records: CP (consistency critical). Analytics: AP (eventual consistency acceptable).

Application to Distributed Systems

Replication Challenges

Replicate data across servers for availability. Synchronization required for consistency. Partitions prevent synchronization. Forces choice: diverge or block.

Consensus Algorithms

Algorithms (Raft, Paxos) solve consensus: all nodes agree despite failures. Expensive: ensures consistency but may reduce availability during partitions.

Replication Strategies

Synchronous: all replicas updated before write returns (consistent, slow). Asynchronous: one replica updated, others later (fast, inconsistent temporarily). CAP trade-off determines strategy.

Cluster Design

Single cluster (no partitions): CA possible. Multi-cluster: partition tolerance necessary. Choose AP (eventual consistency) or CP (possible unavailability).

Failure Modes

Network partition: nodes isolated. Choose: continue independently (inconsistent) or stop (unavailable). CAP says cannot do both.

Database System Choices

Relational Databases (CA/CP)

ACID transactions ensure consistency. Single-node: CA. Clustered: CP (priority consistency, may become unavailable). Examples: PostgreSQL, MySQL.

NoSQL AP Systems

Availability priority: Cassandra, DynamoDB, Riak. Asynchronous replication: fast writes, eventual consistency. Accept temporary inconsistency.

NoSQL CP Systems

Consistency priority: HBase, MongoDB (strong consistency mode). Synchronous replication or consensus: slower, unavailable during partitions.

Hybrid Approaches

Many systems tune: adjust consistency/availability balance. Example: DynamoDB offers strong consistency option (slower). MongoDB with replication: can choose consistency level. Flexibility: choose per operation.

Selection Criteria

Requirements: consistency vs. availability priority? Domain: finance (CA/CP), social (AP), analytics (AP). Scale: large-scale often requires AP.

Eventual Consistency

Definition

Eventual consistency: temporary inconsistency tolerated, system converges to consistency over time. Enables availability (AP). After partition heals, replicas synchronize.

Mechanism

Nodes accept writes independently during partition. Data diverges. Conflict resolution: merge strategies, timestamps, causal ordering. Eventually same data.

Guarantees

Not immediate consistency. But if no new writes, eventually consistent. Reads may return stale data temporarily. Acceptable for many applications (social media, analytics).

Implementation

Vector clocks, timestamps, causal ordering track changes. Merging: last-write-wins, application-defined. Anti-entropy repairs inconsistencies.

User Perception

Invisible to users (usually): inconsistencies resolved quickly. Occasional stale data: acceptable cost for availability. Critical systems: not suitable.

Practical Implications

Design Decisions

Understand requirements: consistency or availability priority? Scale: single-server (consistency easier), distributed (trade-off necessary). CAP guides choice.

Cost Trade-off

Strong consistency: expensive, slower, complex. Eventual consistency: cheap, fast, simpler. Choose based on domain.

Failure Handling

Partition happened: what then? Stop (CP) or continue (AP)? CAP says cannot do both. Prepare: understand your choice beforehand.

Monitoring

AP systems: monitor divergence. Eventual consistency: how long until convergence? Acceptable bounds? Monitor: catch issues early.

Testing

Partition testing: simulate network failures. Verify: system behaves per choice (consistency or availability). Chaos engineering: inject failures, verify resilience.

Criticisms and Refinements

Brewer's Clarification

Brewer later clarified: CAP binary (impossible guarantees) but trade-offs continuous. Modern systems adjust: not strict CA/CP/AP but spectrum. Partial consistency, tunable.

Network Reliability

Modern networks more reliable: partitions rare. Some argue: not strict partition tolerance necessary. But networks still fail: assumption risky.

Latency Trade-off

Latency vs. Consistency (newer PACELC theorem): choice beyond CAP. Consistency requires latency (synchronization). Modern systems: optimize all three.

Practical Spectrum

Real systems: tune, not binary. Cassandra: tunable consistency (read/write quorums). MongoDB: configurable replication. Flexibility: choose per scenario.

Limits

CAP provides framework, not complete guidance. Other factors: latency, cost, complexity. Practical systems consider multiple dimensions beyond CAP.

Real-World Applications

Financial Systems

Banks: CP (consistency paramount). Cannot lose money. Tolerate temporary unavailability. ACID transactions essential. Correctness over responsiveness.

Social Media

Facebook, Twitter: AP (availability paramount). Users tolerate occasional stale data (delayed likes, comments). Downtime unacceptable. Eventual consistency acceptable.

E-Commerce

Mixed: inventory (CP consistency critical), recommendations (AP eventual consistency fine). Multi-database: relational (inventory) + NoSQL (recommendations).

Cloud Services

AWS DynamoDB, S3: AP (availability). Google Cloud Firestore: configurable. Azure Cosmos DB: tunable consistency. Flexibility: choose per requirement.

IoT and Analytics

Time-series data: AP (eventual consistency fine). Millions of sensors: availability critical. Consistency less important (aggregates, analytics).

References

  • Brewer, E. A. "Towards Robust Distributed Systems." Keynote, Symposium on Principles of Distributed Computing (PODC), 2000.
  • Gilbert, S., and Lynch, N. A. "Brewer's Conjecture and the Feasibility of Consistent, Available, Partition-Tolerant Web Services." ACM SIGACT News, vol. 33, no. 2, 2002, pp. 51-59.
  • Kleppmann, M. "Designing Data-Intensive Applications: The Big Ideas Behind Reliable, Scalable, and Maintainable Systems." O'Reilly Media, 2017.
  • Abadi, D. "Consistency Tradeoffs in Modern Distributed Database System Design." IEEE Computer, vol. 45, no. 2, 2012, pp. 37-42.
  • Fox, A., and Brewer, E. A. "Harvest, Yield, and Scalable Tolerant Systems." Proceedings of Hotos VII, 1999.