Stress, Load, and Performance Testing in Software and IT Systems
1. Overview
Performance has always played a pivotal role as a non-functional requirement in IT and software systems design.
Several reasons explain why this may be the case:
- Application performance directly impacts user experience and conversion rates — Research unequivocally shows that users will navigate away from slow websites, which has recently led Google to use page speed as a ranking factor in search results.
- Mission-critical IT systems require almost 100% uptime — IT system crashes or poor responsiveness can severely impact their reputation, clients, and business. Payment switches or stock trading platforms are two common examples.
- Response Time should be fast in high-volume, high-speed software systems supporting service stations like trains or supermarket POS machines that cannot afford long queues or turn customers back.
Stress and load testing became standard procedures and an integral part of testing and quality assurance in IT system implementations.
The purpose of this article is to provide the reader with a thorough understanding of what stress, load, spike and other types of performance tests are in software applications and systems.
It starts by explaining the architecture of an online transaction processing IT system. Next, it discusses the significant players that impact performance. Then, we discuss the three different types of performance testing before concluding with a guide on preparing, executing, and troubleshooting stress tests.
We hope that this guide can help you achieve the best results when stress testing your system.
3. Online IT systems
3.1 Definition
An Online IT system (OLTP for short) is a class of software applications typically deployed in multi-tier architectures and geared towards processing large numbers of transactions.
Examples of familiar OLTP systems are e-commerce websites, ATM and Point of Sale networks and switches, airline ticketing websites, Uber, and many others.
3.2 Transactions
A transaction is a set of exchanges between two (or more) parties where services are requested by the first party and provided by the others.
An example of a transaction is online shopping. In this scenario, an online user requests to purchase a consumable product or service. At least three parties in the background work together to fulfil this request.
First, the warehouse management system checks if the item is in stock, which might create a shipping order to the user’s address. The shipping company is the second party. The third one is the billing software system which ensures that funds from the user’s banking account are transferred to all service-providing parties involved in this transaction.
In 1983, Andreas Reuter and Theo Härder coined the term ACID, which stands for atomicity, consistency, durability, and isolation. These properties characterize the transaction concept which initially applied to database systems.
- Atomicity. Because a transaction can constitute multiple actions performed by several parties, an IT system must guarantee the atomicity of transactions, i.e., either all actions succeed or none. If an exception occurs, the applied actions must be rolled back to ensure data consistency.
- Consistency. The IT system must ensure data consistency at all times. When transactions are applied, data changes from one valid state to another.
- Isolation. Two transactions applied to the system concurrently should not impact each other. The end result would be the same as if the transactions were applied sequentially.
- Durability. This feature of IT systems ensures that committed transactions remain in that state.
The outcome of a transaction can be approved or rejected. A transaction can be declined in the following cases:
- The request is invalid.
- The data integrity is compromised.
- The user cannot be authenticated.
- A system malfunction has occurred.
- One of the parties involved in the transaction is unable to process transactions.
3.3 Multi-tier Architecture
A multi-tier (or n-tier) architecture is an application design pattern consisting of at least one data layer, business logic layer, and presentation layer.
The chief advantage of n-tier architecture is its functional separation of duties. Development, maintenance, upscaling, or other modifications can happen parallelly by different teams without impacting the different layers.
The figure above shows an application with the familiar three layers mentioned earlier.
The same system can be represented using its tiers (instead of layers) as follows:
3.4 Operation Patterns
IT systems display specific characteristics that differentiate them from other systems like Online Analytical Processing Systems (or OLAP):
- Short Response Times. IT systems should typically respond in a few seconds to retain a great user experience. In contrast, for example, OLAP systems are geared more toward manipulating large datasets and performing CPU-intensive analysis on them.
- Close to 100% Uptime. Transaction processors are usually mission-critical and need to guarantee an uptime of close to 100%. Single points of failure are eliminated with redundancy and high availability in such applications.
- High concurrency. The system is expected to handle a very large number of concurrent users or sessions. Load-balancing is one way of achieving such demanding rates.
- Multi-User Access. The system should guarantee many concurrent users’ access, authentication, and validation. The system must securely hold and manipulate user data for many users.
- High-level Transaction Volume. IT systems nowadays must be capable of writing, holding, and maintaining massive amounts of transaction data. Databases setup for OLTP use indexing, partitioning, and other advanced disk reading and writing techniques to achieve high performance.
- Frequent Data Modification. A singular aspect of IT systems is the high number of data modifications. Every transaction is typically expected to add at least a few records to the persistence layer in transaction or audit logs.
4. Performance of Online Systems
Various parameters can impact the performance of IT systems. In this section, we discuss some of the most influential ones.
4.1 Infrastructure
A few decades back, data centres consisted of racks, servers, and fiber optic cables to connect them. Applications ran on virtual machines that shared server resources amongst themselves.
Containerization, microservices, and cloud services have now changed the landscape dramatically. Despite running behind abstract layers of hosting, partitioning, and resource sharing tools, infrastructure remains one of the first factors to look at when tuning performance.
4.2 Application Architecture, Design, and Technology Stack
The tradeoff in every programming language is usually between speed and productivity; high-level languages increase productivity by providing built-in libraries that perform labour-intensive tasks such as memory management on behalf of the developer.
The downside is that these built-in libraries are not optimal for performance and are easily outmatched by manual operations.
Our view, however, might be a bit controversial; because of the record cheap cost of hardware compared to the development effort, the technology stack does not seem to be an issue these days.
Prioritizing mature technology stacks that favour productivity and a gentle learning curve can edge the competition.
It is possible to compensate for the slow technology stack using an innovative and modern design.
In most cases, however, the application has probably already been developed and tested if you are performing stress tests. There is little you can do in terms of technology stack selection. It’s important to recognize the difference in performance between high and low-level stacks.
4.3 Application Parameters
Enterprise and industry-grade applications typically have a whole set of parameters for performance tuning.
Unfortunately, these parameters do not usually get the same attention as other system parameters that impact functionality.
If you miss the stress test or do not take it seriously, your application parameters will not be optimized for the best performance.
5. Stress Testing Profiles
This section describes the five different performance test profiles that can be used.
A profile is defined by:
- Duration: or how long the test will be run.
- TPS: This represents the number of Transactions per Second that will hit the system.
5.1 Stress Test
5.1.1 Objective
The Stress Test ensures the system can handle above-average transaction loads for short durations, typically 1-2 hours.
In real-world scenarios, such variations in load can occur in peak times such as holidays or end-of-month periods. The system is expected to handle the load without any noticeable impact on response times or approval rates in this scenario.
5.1.2 Setup Profile
This type of test can be set up as follows.
| Parameter | Value |
|---|---|
| Duration | 1-2 hours |
| TPS | Variable, matches expected production load at peak times. |
| Users/Sessions | Variable, matches expected numbers observed at peak times. |
5.1.3 Metrics and Success Criteria
The following metrics and success criteria are observed.
The expected values, results, and any figures in the table below are just for illustration purposes and will vary from one system to another.
| Metric/Success Criteria | Expected Value/Result |
|---|---|
| Average Response Time | Less than 3 seconds |
| 95% of Response Times | Less than 5 seconds |
| Approval rates | Greater than 99.99% |
| System crashes, exceptions, failures | None |
5.2 Load Test
5.2.1 Objective
The Load Test ensures the system can handle average transaction loads for long durations, typically 2-3 days.
The system must run 24/7 for months and years in real-world scenarios without needing a restart. Typical exceptions you might observe when running a IT system for prolonged durations can be memory leaks, disk filling up, or backup failures.
5.2.2 Setup Profile
This type of test can be set up as follows.
| Parameter | Value |
|---|---|
| Duration | 2-3 days |
| TPS | Variable, matches expected production load at peak times. |
| Users/Sessions | Variable, matches numbers observed on production in nominal times. |
5.2.3 Metrics and Success Criteria
The following metrics and success criteria are observed.
The expected values, results, and any figures in the table below are just for illustration purposes and will vary from one system to another.
| Metric/Success Criteria | Expected Value/Result |
|---|---|
| Average Response Time | Less than 1.5 seconds |
| 95% of Response Times | Less than 3 seconds |
| Approval rates | Greater than 99.99% |
| System or process crashes, exceptions, failures | None |
| Uptime | 100% |
| Maintenance activities (purging tables and logs files, table partitioning, reporting, and monitoring) | Successful |
Notes:
- When running in normal modes, you would expect response times to be shorter than peak times hence the difference between the numbers in this table and the previous one.
5.3 Spike Test
5.3.1 Objective
The Spike Test ensures the system can handle sudden surges in transaction loads occurring for short durations. Once the spike ends, the system resumes operations in nominal mode.
Higher than average spikes in transaction load occasionally occur in real-world scenarios. A long-running report may cause a bottleneck that gets unclogged once the report completes. IT systems should respond to these spikes in demand without any incident.
5.3.2 Setup Profile
This type of test can be set up as follows.
| Parameter | Value |
|---|---|
| Duration | 1 hour |
| TPS | Variable, matches expected production load at normal times. |
| Users/Sessions | Variable, matches numbers observed at normal times. |
| Spike Count | 5 distributed randomly over the test period |
| Spike Height | 2x the peak TPS |
5.3.3 Metrics and Success Criteria
The following metrics and success criteria are observed.
The expected values, results, and any figures in the table below are just for illustration purposes and will vary from one system to another.
| Metric/Success Criteria | Expected Value/Result |
|---|---|
| Average Response Time | Less than 1.5 seconds |
| 95% of Response Times | Less than 3 seconds |
| Approval rates | Greater than 99.99% |
| System or process crashes, exceptions, failures | None |
5.4 Breaking Point Test
5.4.1 Objective
The Breaking Point Test is used to determine the system’s breaking point. Although not a very common test, it can be helpful to identify the point beyond which the system stops responding.
Another advantage of running such a test would be identifying the first one or two components that will fail and the consequences of those failures in terms of user experience, for example. This can help communicate useful messages to end-users.
The Breaking Point Test is more of an academic exercise as you typically would run your production systems well below the breaking point.
5.4.2 Setup Profile
This type of test can be set up as follows.
| Parameter | Value |
|---|---|
| Duration | Variable, until the system stops responding |
| TPS | Variable, ramps up until the system stops responding |
| Users/Sessions | Variable, ramps up with TPS |
5.4.3 Metrics and Success Criteria
There are no metrics associated with this type of performance test. A few observations, however, may apply.
- The definition of breaking point may vary. For example, we can define the breaking point as that beyond which 50% of transactions do not receive a response.
- Ideally, the breakpoint should be as far as possible from the expected peak times.
- The observations collected from running the test multiple times should be consistent.
5.5 Failover Test
5.5.1 Objective
Failover Tests are performed to ensure a cluster can handle the additional load if a node in that cluster suddenly goes down.
Clusters are, by definition, composed of several nodes, and a load balancer distributes the incoming requests evenly among the different nodes.
Nodes in a cluster can be brought down either due to failures or maintenance purposes, and additional nodes could be added if extra processing power is required.
The cluster is expected to be dynamic and flexible, and the purpose of the Failover Test is to ensure that that is the case.
5.5.2 Setup Profile
This type of test can be set up as follows.
| Parameter | Value |
|---|---|
| Duration | Usually completed in less than an hour, depending on scenarios to be tested. |
| TPS | Nominal TPS rates |
| Users/Sessions | Nominal user sessions |
| Setup | System setup in cluster mode |
| Node Management | Nodes can be brought down or up on demand |
5.5.3 Metrics and Success Criteria
The following metrics and success criteria are observed.
The expected values, results, and any figures in the table below are just for illustration purposes and will vary from one system to another.
| Metric/Success Criteria | Expected Value/Result |
|---|---|
| System crashes, exceptions, failures | None (aside from the controlled ones) |
| Response Times | Follow nominal patterns. |
| Data Inconsistency | Rare. Happens only for transactions on the fly. The system offers manual correction utilities for invalid values. |
| Approval rates | Close to 100%. Losing inflight transactions when a node is shut down is expected. |
| Load Handling | Depending on the specific requirements, the cluster should comfortably bear the nominal load even when one of its nodes is down. |
| Load Balancing | Load balancers are able to quickly detect fallen nodes and must automatically reroute transaction requests to active nodes in the cluster. |
6. Guide to Running Stress Tests
This section will provide a detailed guide on how to prepare, execute, and troubleshoot a stress test. We will also give some guidelines on preparing a stress test report.
6.1 Prerequisites
Before conduction performance tests, the following prerequisites should be ready.
6.1.1 Environment and Infrastructure
- The test environment, the system infrastructure, and the way it’s setup should be identical to production in every sense.
The architecture, OS platforms, deployment methods (cloud, local) all need to be similar if you want maximum reliability from the data you get. Even the network layout and connections between the different tiers in the system should be the same.
Due to the setup’s complexity, the results you get in one environment might not necessarily hold in a different one. The ideal setup would be as close as possible to production.
6.1.2 Application Version
- The application version you use in a performance test should be close to the one used on production.
This requirement means that the ideal timing of performance tests should be close to the end of the UAT.
You also want the application settings and parameters to be similar to production.
6.1.3 User Data
- To prevent caching and record-locking effects, the user data should be prepared in similar amounts and composition to production.
Most layers in a IT system use caching to enhance performance. If your test environment contains small amounts of data, queries and query results will be retrieved from the cache instead of files on disk. Small amounts of user data will exaggerate the performance impact of caching, and your results will look rosier than they would be.
Another downside to small user datasets is high concurrency in IT systems. Tools that generate transaction requests select user data randomly from available datasets. If the datasets are small enough, the chances that the same user is used for two concurrent transactions will be high. This simultaneous usage of the same data leads to record-locking, bringing performance down.
6.1.4 Production Statistics
- Statistical data is collected before performance tests and used to generate representative mixes of production transaction types and numbers.
- Needless to say that any expected future growth should be factored in.
Complex business logic applies to services of different types, with each transaction type taking separate paths in the system and consuming distinct amounts of resources.
To obtain meaningful results from performance tests, the transaction mix and the TPS rates should constitute a representative sample of what you usually observe on production.
To get this right, gather sample data from a typical day in your business’ life and make a statistical snapshot of what happened. Count the different transaction types and replicate the significant contributors. You don’t necessarily need to represent every single service your system offers, just the ones with the most considerable volume.
6.1.5 Transaction Generation
- Use transaction generation tools that can create accurate representations of production transactions.
This requirement applies to data fields, values, transaction type mix, cryptographic data, and message transfer protocol (HTTP or HTTPS, for example).
If you opt to use dummy data, you will inevitably find yourself turning off validation on the IT system, which makes the performance test look less like the production that you want it to be.
6.2 Preparation
Here are a few things to look for before you kick off a performance test.
- Start from a fresh environment for every run. Using containers and DevOps tools makes this task easy to accomplish.
- Make sure nobody else is using the system.
- Upgrade the OS, web server and application, and patch the database if necessary.
- Save the new image to your repository.
6.3 Execution
When executing the performance test, ensure you can immediately determine if something seriously wrong happens. Sophisticated stress testing tools or monitoring applications (like Zabbix or Nagios) should alert you when certain events get triggered.
6.4 Troubleshooting
By far, the most encountered issues in performance tests will be slow response times and an inability of the system to handle any additional load. Crashes, failures, and exceptions may also happen, but our experience says they will be less frequent.
In this subsection, we will focus on some of the most influential factors that can impact the performance of a system under load and which inevitably produce slowness in responses.
6.4.1 Computing Power
Today, the IBM Power series server can be fitted with 240 CPU cores. System admins can share these CPUs among tens or hundreds of virtual machines (VM), and it is possible to have a VM running on a fraction (like 0.1, for example) of a CPU.
If your performance tests experience issues, start by checking the number of CPUs allocated to your VM.
Because CPU power can be shared (you may be allocated 4 CPUs, but they will be shared with other VMs should these need them), check the system parameters to verify how much you are entitled to CPU power.
Ensure they match the vendor recommendations for the load you are running.
Tips:
- Use the top or htop commands to see a real-time view of CPU and RAM usage in addition to process info.
- Use the lscpu command to list the CPU details of your VM.
- The first thing to look for when running a stress test is the CPU usage when the application is down. If nothing else is consuming your resources, which is what you would expect, you should see a tiny number in the order of a few percentages.
6.4.2 Memory
RAM should rarely be an issue. At any rate, you should always check that the available RAM matches the vendor recommendations for the amount of load you are running.
Tips:
- Memory caching makes it tricky to spot how much memory is being used. Using the top command, you will notice that your memory is full, but the application is running fine. The OS caches data in RAM but will free it up when required.
6.4.3 Disk I/O Speed
Disks come in a variety of specs, and I/O speed will directly impact the performance of your application. A good system admin will, for example, install and run the database filesystem on fast disks.
Sometimes, faster disks may not be the solution, and the application might be writing unnecessary information (such as extensive log files) to the disk. This problem can be easily solved by turning application logging off or lowering the log levels to an acceptable level.
Tips:
- Use disk I/O commands to inpect I/O usage details. If I/O is high, consider lowering unnecessary logging activities or upgrading to faster disks.
6.4.4 Application Parameters
Almost all enterprise applications come with various parameters that can be tuned for better performance. Most of these parameters are autotuned by the application without any manual intervention.
What these parameters do depends wildly on how the application is designed. For example, let’s assume that the application uses a client/server model. The clients place all requests on a queue managed by a messaging system (like IBM MQ), and servers pick up those messages from the queue, process them, and place the response back on the queue.
One available option here is to increase the number of concurrent server processes.
Another option is to drop any further message beyond a certain maximum. The process is called throttling, and it prevents the system from choking.
Tips:
- Thoroughly understand how your application works vis-a-vis performance. The application design will significantly impact what can be done to improve performance.
- Familiarize yourself with the application parameters related to performance. You will probably find those in the user manuals.
6.4.5 Web Servers and Database Systems
Most performance parameters in enterprise applications like databases and web servers are autotuned by the application, and only in rare cases would you ever need to do any manual adjustment yourself.
What you can do, however, is ensure:
- Table indexes are active and healthy
- Queries running on large datasets are perfectly tuned for performance
- Large tables are partitioned
- Old data is backed up and purged
- Heavy reports are run after hours or on a different database server.
Tips:
- Familiarize yourself with the database or we server parameters directly related to performance.
- Monitoring resource consumption (RAM, CPU, Disk and Network I/O) is always a good place to start if you suspect any issues on those platforms.
6.4.6 Network Latency
Network latency is not much of an issue today with ultrafast network devices on the market. However, problems can still happen if one application tier is on a different or slow network.
Tips:
- Ping is an ultrasimple but potent tool to inspect network latency. Any roundtrip time larger than a few milliseconds is usually a sign of high latency.
- When security rules allow, make sure you have all your application tiers running on the same LAN without any routers or firewalls in the middle.
7. Stress Test Report Template
Create a report to share your stress test results with management or other stakeholders. Use our guidelines and best practices for writing technical documentation.
Below is a template to get you started with the stress test report.
- Overview or Introduction:
- It can be easily read and understood by anyone.
- Allows the reader to determine whether this document is helpful/accessible for them.
- Executive Summary
- Provides some context and background on why this performance test is being conducted.
- Write a summary of the performance test results.
- Requirement Details:
- List the metrics that will be observed and their target values
- Provide some background on why these values were chosen (for example current production load and future growth)
- Assumptions:
- In case you have made any decisions that might need justification.
- Stress Test Setup:
- Describe the lab environment used for running the test. This includes the hardware, application, and configuration data. Most applications will allow you to export their configuration data. Attach the export to the report for future reference.
- Explain how the user data was generated and the tables populated in case you have used any data migration tools.
- Provide information on the setup of any tools used to generate the transaction requests. This includes the transaction types and mix, the user data, and the performance test profile.
- Performance Test Execution Summary:
- Describe the performance test execution, and whether any problems were encountered and resolved.
- Stress Test Results:
- Include all data, graphs, and charts to explain the results obtained.
- Add any raw files as attachments or let the reader know where to find them.
- Provide ample analysis of the results.
- Recommendations:
- Any system changes that need to be applied are listed in this section.
- Link the changes to the observations and analysis from the previous section.
- Risks and Mitigation:
- Document any potential risks that may arise from the recommended changes, how to monitor the changes, and mitigate any risks.
- Appendices:
- Additional information could be too detailed or not strictly relevant to the topics discussed.
- It can be presented for completeness and clarity.
8. Final Words
Performance tests are part of the Testing and QA activities. They require good technical knowledge of IT concepts, applications, and tools.
Some final advice on performance tests.
- Keep your performance test environment ready.
- Use containerization and automation to your advantage.
- Include stress testing in your DevOps pipelines if feasible.
- Use stress testing to gauge any performance changes to your system after significant changes or upgrades.
- Do not substitute performance tests for other types of testing such as regression or functional tests; they are designed for different purposes and do not provide the same coverage.