The Problem With UUIDs

00:00

this video is sponsored by Planet scale

00:01

I've wanted to do a video about uyu IDs

00:03

for a while so much so that this is my

00:06

third time filming it over 2 years last

00:08

time I filmed it was on my couch in my

00:10

old living room and the time before that

00:11

was a random stream filming like kind of

00:13

what I'm doing here neither of these

00:15

were good enough for me to release

00:16

because there's just so many details

00:17

about uyu IDs I wanted to make sure I

00:19

got right and even though one of those

00:21

videos was edited I never ended up

00:22

posting it and I wanted to take the time

00:24

to get it exactly right thankfully I

00:26

don't have to because one of my sponsors

00:28

Planet scale actually went and did it

00:29

for me they made a phenomenal blog post

00:31

the problem with using a uid primary key

00:34

in my SQL that I want to use as a

00:36

starting point to have this discussion

00:37

Planet skill does sponsor the channel

00:39

and they are sponsoring this video but

00:40

they have given me no input whatsoever I

00:42

don't even think they know what I'm

00:43

covering here they just wrote this blog

00:45

post knowing I wanted it as something to

00:46

cover and now I get to cover it so yeah

00:49

I know Planet scale is a bit of a spicy

00:50

topic right now but they're still a

00:52

phenomenal resource for a lot of

00:53

Education stuff and this is a good blog

00:55

post to start with so let's go in the

00:57

problem with using a uid primary key in

01:00

MySQL understand the different versions

01:02

of uu IDs and why using them as a

01:04

primary key in MySQL can hurt DB

01:06

performance interesting is going to be a

01:07

performance thing I'm even more Curious

01:10

now I'll lay out my biases ahead of time

01:12

I think having the ability to order your

01:14

IDs is particularly nice when you can

01:17

and there's a lot of cases where it's

01:18

nice to know when something was created

01:20

and using the time as a way to make your

01:23

unique values more uniques Not a Bad

01:25

Thing cuid V2 in particular is something

01:28

that I'm a bit of a shill of that I've

01:30

been pushing pretty hard for a while now

01:33

and I'll probably be coming back to cuid

01:35

2 during this because it is my goto my

01:38

preferred standard for IDs although I

01:40

have rolled my own both with my own

01:42

crazy requirements as well as following

01:43

along with the things that planet scale

01:45

recommends but I'm curious what they're

01:46

recommending here universally unique

01:48

identifiers also known as uu IDs are

01:50

designed to allow developers to generate

01:52

unique IDs in a way that guarantees

01:54

uniqueness without knowledge of other

01:56

systems this is the key piece here where

01:58

uu IDs are meant to be so unique that if

02:01

you generate them in multiple places at

02:03

the same time the likelihood of a

02:04

collision is effectively zero that

02:07

across the whole universe you'll never

02:08

generate the same ID twice there have

02:10

now been multiple times that uu IDs

02:12

collided so this is just sadly not true

02:15

when you also add in the fact that

02:16

random number generators aren't always

02:18

particularly random and those are being

02:20

used to then generate these uu IDs

02:22

things can get messy fast yeah sadly the

02:25

universal promise of uu IDs for many

02:27

reasons has not been true for a bit

02:29

thankfully these things are changing I

02:30

already see people in chat dropping that

02:32

the version 8 fixes some of the issues I

02:34

was talking about around time I'll open

02:36

this up so we have it to reference in a

02:38

bit but as someone else already pointed

02:40

out as well if you need eight versions

02:41

of the standard to make it right it's

02:43

probably the standard that's awful to be

02:45

determined let's keep reading these are

02:47

especially useful in distributed

02:48

architecture where you have a number of

02:50

systems and databases responsible for

02:52

creating records again very handy when

02:54

you have lots of things writing to your

02:56

database at once if they're all writing

02:58

with the same ID generator

03:00

those can never Collide if two things

03:02

are trying to write to the database at

03:03

the same time with the same ID you're

03:05

you might think that using uyu

03:06

IDs as a primary key in a database is a

03:08

great idea when used incorrectly they

03:10

can drastically hurt DB performance and

03:12

here we go let's see how this can affect

03:14

things in this article you learn about

03:16

the downsides of uids as primary keys in

03:18

your mySQL database I am almost positive

03:20

this isn't just for MySQL either way I

03:22

promise this video will be valuable even

03:24

if you're not a MySQL Dev and you're

03:26

just using other SQL Solutions or maybe

03:27

not even SQL at all I want to talk about

03:29

these idas they're very interesting and

03:31

contrasting the different solutions is

03:33

something we can all learn from the many

03:34

versions of uu IDs at the time of this

03:36

writing there are five official versions

03:38

of uu IDs and three proposed versions so

03:41

that V8 by the way that's not official

03:43

yet six seven and eight are all proposed

03:45

still yes there's three future versions

03:47

proposed that we haven't accepted yet V1

03:50

is known as a time-based uid and can be

03:52

broken down as follows we have the Time

03:55

Low Time mid Time Low inversion clock

03:57

sequence inversion so this is where some

03:59

of the random comes from and then the

04:00

general random node while much of modern

04:03

Computing uses the Unix Epoch time which

04:05

is January 1st 1970 God imagine how

04:08

convenient it would be if you were

04:09

actually born on January ver 1970 like

04:11

every system would be very trivial it

04:13

would almost be like free to

04:14

mathematically compute your birthday

04:16

anyways since that's the base uids

04:18

actually use a different date of October

04:20

10th 15 why why would you use your own

04:22

thing I didn't even know this what which

04:25

is the date that the Gregorian calendar

04:26

started to be more widely what did

04:29

anybody hear know already what October

04:31

10th 1568 was the start of the calendar

04:34

okay somebody said it in chat that's the

04:35

start of the calendar one person knew it

04:38

this feels like it's meant to be a like

04:40

a a pop quiz type thing not a technical

04:43

implementation detail what the what

04:45

the is that like that's ice spice's

04:48

original

04:50

birthday like this feels like somebody

04:53

putting in like the well actually the

04:55

calendar started in 1568 so that that

04:58

should be our starting point you never

04:59

know and somebody might need to generate

05:00

an ID in the 1600s even though we're

05:03

inventing this in the '90s yeah anyways

05:06

I don't want to talk about goryan

05:07

calendars I want to talk about uu ID

05:09

which we'll do here the embedded time

05:11

stamp within a uuu ID grows in 100 nond

05:14

increments from this date which is then

05:16

used to set the Time Low Time mid and

05:17

time high segments of the uid the third

05:20

segment of the uuid contains the version

05:22

as well as the time high and it occupies

05:24

the first character of that segment this

05:26

is true for all versions of uu IDs as

05:28

shown in subsequent examples the reserve

05:30

portion is also known as the variant of

05:32

the uid which determines how the bits

05:34

within the uuid are meant to be used

05:36

finally the last segment of The UU ID is

05:38

the node which is the unique address for

05:40

the system generating that uu ID most of

05:43

the little bits here like the reserved

05:45

and the node not super important but the

05:47

node is how it knows which of your

05:49

systems was the one doing the generation

05:52

so about V2 next version two of the uid

05:54

implemented a change compared to version

05:56

one yeah no obviously version two

05:58

is changing things from version one duh

06:00

That's How versions work anyways imagine

06:03

if it didn't change anything if version

06:05

two implemented no changes compared to

06:06

version one that would be more

06:07

interesting that's something I'd put a

06:09

sentence in here for but since it

06:10

changed something let's see what it

06:11

changed the low time segment of the

06:13

structure was replaced with a posix user

06:14

ID the theory was that these uu IDs

06:17

could be traced back to the user account

06:19

that generated them this sounds like a

06:20

terrible idea this sounds like an

06:22

atrocious idea I don't know why they

06:23

would do this since the low time segment

06:26

is where much of the variability of uu

06:27

IDs reside replacing the segment

06:29

increases the chances of collision as a

06:31

result this version of uu ID is rarely

06:33

used yeah I would hope so this is a

06:36

disaster uuid V3 and V5 versions three

06:39

and five of uids are very similar I

06:42

dislike that three and five are similar

06:43

and four isn't this kind of feels like

06:46

what happened with like the Final

06:47

Fantasy versions where like most Final

06:48

Fantasy games have nothing in common but

06:50

then like seven and 10 have two

06:52

characters that are overlapping even

06:54

though different universes this is chaos

06:57

versions three and five of uu IDs are

06:59

very similar the goal of these versions

07:00

is to allow uu IDs to be generated in a

07:02

deterministic way so that given the same

07:04

information the same uu IDs can be

07:06

generated I'm getting more scared as

07:09

this goes these implementations use two

07:11

pieces of information a namespace which

07:13

is itself a Hu ID oh boy nested U IDs

07:16

yeah it's going to go well so we have

07:17

the name space as well as a name these

07:19

values are run through a hashing

07:20

algorithm to generate 128bit value that

07:23

can be represented as a uu ID the key

07:25

differences between these versions is

07:27

that version 3 uses an md5 hashing

07:29

algorithm and version five uses an S1 oh

07:32

boy so how is four different cuz four is

07:34

what I see basically everyone using

07:36

version four is known as the random

07:37

variant because as the name implies the

07:39

value of the uid is almost entirely

07:42

random how how did we let this happen by

07:45

the way how are V3 and V5 including

07:48

meaningful information and we just have

07:50

this one version between the two though

07:51

it's like yeah what if we just made it

07:53

all random that will solve the problem

07:55

and there's since been a six and a seven

07:57

proposed and I hope we get to those in

07:59

here so version 4 is the one that almost

08:01

everyone uses because it's entirely

08:02

random the exception to this is the

08:04

first position in the third segment of

08:05

the uuid which will always be a four to

08:07

signify the version used so if you see a

08:09

four in this third section and it's

08:11

eight digits four digits four digits

08:13

this is a four it's probably a uid

08:15

before version six and here's where we

08:18

get into those ones that are proposed

08:20

version six is nearly identical to

08:22

version why we have to diagram this so

08:25

v1's become V6 V3 has for the most part

08:30

become V5 and then V4 is what we

08:33

actually use does this correctly explain

08:36

the history of uuid versions up to V6 so

08:39

far because it only gets worse from here

08:40

this is our starting point back to this

08:43

article version six is nearly identical

08:46

to version one the only difference is

08:47

that the bits used to capture the time

08:49

stamps are flipped meaning the most

08:51

significant portions of the time stamp

08:52

are stored first so time high is now in

08:55

the front revolutionary huge the graphic

08:58

below demonstrates you yeah yeah cool

09:00

makes sense the main reason for this is

09:01

to create a value that's compatible with

09:03

version one while allowing these values

09:04

to be more sortable since the most

09:06

significant portion of the time stamp is

09:07

up front this was an attempt to make uid

09:09

sortable and it failed if you want a

09:11

sortable uuid you probably want a CU uid

09:12

we go there in a bit though now for

09:15

version 7 version 7's also a time-based

09:17

uid variant but it integrates the more

09:19

commonly used Unix Epoch timestamp

09:21

instead of the Gregorian calendar used

09:23

by version one progress be cool if they

09:24

use like primagen birthday or something

09:26

that's pretty close to the like Epoch

09:29

time for uh Unix right those would be

09:31

pretty close the other key difference is

09:33

that the node which is the value based

09:35

on the systems generating the uid is

09:36

replaced with Randomness making these

09:38

uids less trackable back to their Source

09:41

also cool including the system that's

09:42

generating the uid is disgusting very

09:45

happy that they have ditched that but

09:48

now we have to update our diagram to

09:50

include V7 which um is I guess most

09:53

accurately represented by breaking off

09:56

this fixes

10:00

cool keep going uid V8 version 8 is the

10:04

latest version that permits vendor

10:05

specific implementations while adhering

10:07

to RFC standards oh boy let's solve the

10:10

problem by letting everyone introduce

10:12

their own problems that sounds great the

10:13

only requirement for uid V8 is that the

10:16

versions be specified in the first

10:17

portion of the third segment as all

10:19

other

10:20

versions so uui v8's barely even a

10:23

standard if I'm understanding this

10:25

correctly apparently I broke where V3 is

10:27

pointing yeah V3 should oops oh star to

10:29

do there fix that so V3 is still

10:31

pointing at V5 and I have to add V8

10:33

which when I add it's going to move all

10:34

the arrows we love that so fix that so

10:37

it's pointing there I'll fix this again

10:40

I want to properly emphasize that this

10:41

one's like

10:44

imaginary this is barely a

10:48

standard more A vibe cool I think that

10:53

accurately communicates how I'm feeling

10:55

thus far I wanted to maybe change the

10:57

font family of V8 but I there's nothing

11:00

here that is what I I want for it this

11:02

looks like a Kingdom Hearts playthrough

11:06

chart you're not wrong yeah uh I'm not

11:10

going to go any further if you know you

11:12

know anyways air from V4 to V7 does does

11:15

V4 go to V7 it seemed like it's based on

11:18

version one and V4 is its own thing that

11:20

doesn't have any of the date time

11:22

yeah it's almost entirely random the

11:24

only thing that in V4 that isn't random

11:26

is this digit everything else is random

11:27

and all of the others time is faked in

11:29

which is why V4 is so different oh so so

11:32

V7 is version one plus version 4 with

11:35

the random so I guess yeah the other key

11:38

difference is that the node the values

11:39

based on is replaced with Randomness so

11:41

there a little more random there's just

11:43

the node is random which the node isn't

11:44

a big part okay I guess the no's a big

11:47

part fine the no's a big part I

11:49

guess by technicality that V4 does kind

11:53

of also go into V7 cool looking better

11:56

by the minute guys sure that yeah this

11:58

will defin defitely not confuse anybody

12:01

anyways let's keep reading this post

12:03

we're going to be here forever yeah the

12:05

version 8 is a Vibe it's not a standard

12:07

let's see how we're actually using this

12:08

uu IDs and MySQL using U IDs mostly

12:11

guarantees uniqueness across all systems

12:13

in your architecture so you might be

12:15

inclined to use them as primary keys for

12:16

your records be aware that there are

12:18

several trade-offs to doing so when

12:19

compared to an auto incrementing integer

12:22

interesting that they're comparing to

12:23

Auto incrementing integers primarily we

12:24

we'll see where this goes I'm not

12:26

necessarily the biggest fan of just

12:27

using ins as our database IDs but we'll

12:30

see what they have to say insert

12:31

performance whenever a new record is

12:33

inserted into a table in MySQL the index

12:35

associated with the primary Keys needs

12:37

to be updated so querying the table is

12:39

performant indexes in MySQL take the

12:42

form of a B+ tree which is a multi-layer

12:44

data structure that allows queries to

12:46

quickly find the data that they need

12:47

there's a bunch of words for their going

12:49

through the IDS in fancy data structure

12:51

formats to actually find the things

12:53

you're looking for the following diagram

12:54

shows what this looks like with six

12:55

entries with values from 1 to six a

12:57

query comes asking for five my equal

12:59

will start at the root and know from

13:00

there if it has to Traverse to the right

13:02

for what it's looking for cool this is a

13:04

standard binary tree instead of a B+

13:05

tree the key difference is a B plus tree

13:07

the leaf nodes contain a reference to

13:08

the data while on a b tree the leaf

13:10

nodes do not cool be balanced not binary

13:13

sorry brain fart it happens make fun of

13:16

me in the comments anyways B tree we

13:18

have four is where we're at and it

13:20

points in the two different directions

13:22

one is to where 1 2 and three are and

13:24

the other is to where five and six are

13:25

so we're looking for five and we're

13:26

starting here we know we need to go to

13:28

the right and we'll find it pretty quick

13:30

cool if values 7 through 9 are added my

13:32

SQL will split the right node and

13:33

rebalance accordingly so now once we

13:35

have these new nodes we split the tree

13:37

so we have four and seven and we know

13:38

four points to 1 2 3 on the left and

13:40

five and six on the right and seven

13:41

points 5 six on the left and 8 n on the

13:43

right process is known as page splitting

13:46

and the goal is to keep the b+3

13:47

structure balanced so that MySQL can

13:49

quickly find the data it's looking for

13:51

with sequential values this process is

13:53

relatively straightforward however when

13:55

Randomness is introduced into the

13:56

algorithm it can take significantly

13:58

longer for my to rebalance the tree on a

14:00

high volume database this can hurt users

14:02

experience as MySQL tries to keep the

14:04

tree in Balance learning things already

14:06

oh boy yeah things for us to think about

14:09

for our databases cool for more

14:11

information about how B+ trees work we

14:13

have a dedicated video in our MySQL for

14:15

developers course good to know yeah RP

14:17

Aon who created this wonderful course

14:20

that is fully freely available highly

14:22

recommend checking it out if you haven't

14:23

it's one of the best ways to learn SQL

14:25

and it's dope that they made this free I

14:27

have actually considered doing this

14:28

whole thing myself as a video just to

14:30

show you guys how little I actually know

14:32

about SQL and how much I can do with it

14:34

but uh someday anyways oh we even have

14:37

people in chat saying that that video by

14:38

Aaron is dope and worth watching so very

14:41

worth checking out higher storage

14:42

utilization this I'll be honest is

14:44

something I care about a lot less

14:46

overall but I'm curious how important

14:48

they think it is all primary keys in my

14:50

SQL are indexed by default an auto

14:51

incrementing integer will consume 32

14:53

bits of storage per value compare this

14:55

with uu IDs if store in a compact binary

14:57

format a single uu ID would cons consume

14:59

128 bits on dis already that's four

15:02

times the consumption of a 32-bit

15:03

integer If instead you chose to use a

15:05

more human readable string based

15:06

representation each uid could be stored

15:08

as a care 36 consuming a whopping 688

15:12

bits per uuid I can't remember last time

15:14

I broke a sweat over 688 bits anyways

15:17

this means that each record would store

15:18

over 20 times more data than the 32-bit

15:21

integer it's a record it has other

15:22

things on it yes it adds up but if I

15:25

have like a URL or a username or a name

15:29

on these things it can get big this does

15:31

get bad for indexing though which is I'm

15:32

sure what we're about to get to in

15:34

addition to the default index created on

15:36

the primary key secondary indexes will

15:38

also consume more space this is because

15:40

secondary indexes use the primary key as

15:42

a pointer to the actual row meaning they

15:44

need to be stored with the index this is

15:46

a good point in order for a an index

15:48

that will help you find data in your

15:49

database faster to work it needs to have

15:52

all of the IDS as well so if you now for

15:55

all of your indexes have to store 20

15:57

times more data your database indes are

15:59

suddenly massive and also have to be

16:01

held in memory so that they can be

16:02

performed and if these are moving to

16:03

disc cuz they're too big now you're

16:04

getting yes I understand this can

16:07

lead to significant increases in storage

16:09

requirements for your database depending

16:10

on how many indexes are created on

16:12

tables using uuids as the primary key

16:14

this point alone is big enough that I'm

16:16

I'm swaying my my feelings here you're

16:19

making good points finally page

16:21

splitting as described in the previous

16:22

section can also negatively impact

16:24

storage utilization as well as

16:26

performance INB assumes that the primary

16:28

key will increment predictably either

16:30

numerically or lexicography

16:32

lexicographically I was going to assume

16:34

this is lexor graphically but the lexico

16:36

well I have to worry about prime reading

16:37

this article if true INB will fill the

16:39

pages to about 94% of the page size

16:42

before creating a new page when the

16:43

primary key is random the amount of

16:45

space utilized for each page can be as

16:47

low as 50% also huge due to this using

16:49

EU IDs that incorporate Randomness can

16:51

lead to excessive usage of pages to

16:53

store the index okay I've seen this this

16:56

is funny because this is a case against

16:57

the one good type of ID which was V4 and

17:00

now it's saying that the randomness

17:01

means that you have to store

17:03

significantly more data Jesus yeah good

17:06

to

17:08

know best ways to use a uid primary key

17:10

with SQL you absolutely need to use uids

17:13

as the unique identifier for records in

17:14

your table there's a few best practices

17:16

you can follow to minimize the negative

17:17

side effects of doing so first is you

17:19

can use the binary data type well uids

17:21

are often sometimes often sometimes I

17:25

just thought I was having a stroke for a

17:26

second

17:27

uh this is not a sentence I feel yeah no

17:31

I don't think the author had a stroke I

17:32

think the author made a typo or deleted

17:34

the wrong word and it made me feel like

17:35

I was having a stroke but yeah while

17:37

uids are often represented as 36

17:39

character strings they can also be

17:41

represented in their native binary

17:42

format as well if converted to a binary

17:44

value you can store it in a binary 16

17:46

column which reduces the storage

17:48

requirement down to 16 bytes this is

17:50

still quite large compared to a 32-bit

17:51

integer but certainly better than

17:53

storing the uid is a care

17:55

36 bits versus bites by the way I'm not

17:58

telling you what the difference is there

17:59

that's your problem hopefully you know

18:01

that if you made it this far in anyways

18:03

here we have a table of uu IDs U ID is

18:05

character 36 binary binary 16 inserted

18:09

with both and we can see that as binary

18:11

it's able to represent it much smaller

18:13

and take a Plus data good to know next

18:16

option use an ordered uid variant using

18:18

a uid version that supports ordering can

18:20

mitigate some of the performance and

18:21

storage impacts of using uids by making

18:23

the generated values more sequential and

18:25

by doing such you are able to avoid some

18:27

of the page splitting issues described

18:28

earlier I don't really recommend using

18:31

uu IDs as a primary ID unless you're

18:33

doing something like this I'm going to

18:34

use this opportunity to plug CU ID which

18:36

has been my go-to for this type of thing

18:37

for a while if I want like a big unique

18:40

ID that can be written from any of many

18:42

different places without having to worry

18:43

about collisions Co ID is proven to be a

18:45

very very good and secure solution which

18:48

allows me to sort properly so it handles

18:51

a lot of these problems but it's also

18:53

handling a ton of uniqueness which

18:55

significantly lowers the chance that

18:58

you'll have cion you'd have to reach

19:00

some crazy multi- trillion trillion

19:03

number to reach 50% chance of having a

19:05

collision insane oh I forgot uh it's not

19:08

good for sequential because it's not

19:10

technically sortable as a V2 apparently

19:12

they disagree about the

19:20

sortabad at Fields instead according to

19:22

this author since we have created at

19:24

fields we don't have to worry about

19:25

sorting this is something that is a big

19:27

disagreement they even call out here

19:29

that one of the reasons to use

19:31

sequential Keys is to avoid ID

19:32

fragmentation which can require a large

19:34

amount of dis space for databases with

19:35

billions of Records however at such a

19:37

large scale modern systems often use

19:39

cloud native databases that are designed

19:41

to handle terabytes of data efficiently

19:43

and at a low cost Additionally the

19:45

entire database may be stored in memory

19:46

providing fast random access Lookout

19:47

performance not if you can't fit it in

19:49

memory because you're using a giant ID

19:51

standard and have to index it all over

19:52

the place yeah this is where these

19:55

disagree if we go back to this diagram

19:57

if you can't sort the ID

19:59

you can't split the table up logically

20:01

based on an ID so if somebody wanted to

20:03

look up ID 4 and they have to find that

20:05

through your crazy tree and you can't

20:07

use the Sorting of the IDS to do that

20:09

now you have to look through everything

20:11

to find your way there utter chaos as

20:14

such I yeah I don't like that these

20:16

disagree because no offense to the cuid

20:19

guys CU as you all know I massively

20:22

respect y'all and I use cuid for a bunch

20:24

of the fact that they have backed

20:27

out of having sort ability is scary

20:29

there is a fair point that they can

20:30

cause hot spots in the database like if

20:32

you have a system that generates a large

20:33

number of IDs in a short period the IDS

20:35

will be generated in sequential order

20:37

causing the tree to become unbalanced

20:39

which will force frequent rebalancing

20:40

the counter point there is that the

20:42

rebalancing is much more expensive if

20:44

the IDS can't be like quickly identified

20:47

as which way they go if the value is

20:49

going in a random you have to rebalance

20:51

much more often because as they said

20:53

when a primary key is random the amount

20:54

of space utilized for each page can be

20:56

as low as 50% so you're rebalance Bing

20:59

almost twice as much off of this alone

21:01

so like yeah it's cheaper to do the

21:03

rebalance with sequential IDs than not

21:05

I'm I'm not vibing with the cuid post

21:07

anymore and it's crazy how quickly my

21:09

own stance on these things is changing

21:11

as I read this so yeah I happy that I'm

21:15

reading this and that we're learning so

21:17

back to this bit of using a ordered uid

21:19

variant because apparently my cuid V2 is

21:21

not something I can rely on anymore

21:22

using a uid version that supports

21:24

ordering can mitigate some of the

21:25

performance and storage impacts of using

21:27

uids by making the generated values more

21:30

sequential which avoids some of the page

21:31

splitting issues described earlier even

21:33

when they are being generated on

21:34

multiple systems time based uid such as

21:37

version 6 or 7 can guarantee uniqueness

21:39

while keeping values as close to

21:40

sequential as possible the exception to

21:42

this is uid V1 which has the least

21:44

significant portion of the time stamp

21:45

first uid V1 was such a fumble in so

21:48

many ways I can't believe they recovered

21:49

from that funny enough the main reason

21:51

people are recommending cid2

21:54

specifically the original maintainers of

21:55

cv1 is that by having the IDS be

21:58

sortable and auto incremented they

22:00

believe this introduces security issues

22:02

like unauthorized password resets via

22:04

guessable IDs unauthorized access to

22:07

gitlab Via guessable IDs unauthorized

22:09

password resets via gu ID all things

22:11

that our friend Eva absolutely loves I

22:14

haven't seen her say anything in the

22:16

last few seconds so I'm going to go

22:17

through her chat history where she said

22:18

some stuff about this earlier love uu

22:20

IDs from a Dev perspective I like

22:22

incremental IDs as a security pentester

22:24

not because they're good just because

22:25

they're easy to pentest yeah it's a lot

22:28

easier to test things when you can guess

22:31

IDs just by generating them yourself

22:34

that said if your service can be

22:36

compromised through an ID being known

22:38

you need to rethink the way that service

22:40

works because it should take a lot more

22:41

data than that IDs are still ID even if

22:44

random yes if your IDs are all it takes

22:46

to compromise your system then you need

22:47

to fix that not the ID system itself I

22:50

get it now we want super small

22:51

performance sortable unique access

22:53

across the world support a fast access

22:55

insert removal Etc okay simple yeah

22:57

super easy go build it shouldn't be that

22:59

hard at all anyways other options that

23:02

are provided here are using the built-in

23:03

MySQL uid functions probably an option

23:06

worth considering I'm sure that their

23:07

implementation is better never mind how

23:10

does anyone take the standard seriously

23:12

I yeah while it is not a great practice

23:15

to use them by themselves there's a

23:16

helper function in my SQL called uid to

23:18

bin not only does this function convert

23:21

the string value to Binary but you can

23:22

use the option swap flag which will

23:24

reorder the timestamp portion to make

23:26

the resulting binary more sequential

23:28

[Music]

23:32

I'm going

23:33

insane and the other option use an

23:35

alternative ID Type U IDs are not the

23:38

only type of identifier that provides

23:39

uniqueness with a distributed

23:40

architecture consider that they were

23:42

first created in 1987 there has been

23:44

plenty of time for other professionals

23:46

to propose different formats such as

23:48

snowflake IDs UL IDs and even Nano IDs

23:51

which is what they use at Planet scale I

23:52

actually really like this post I don't

23:53

know if I've covered this before but I

23:55

use Nano IDs for a bunch of random stuff

23:57

because of this post they even have a

23:59

little Link in here the Nano ID

24:01

Collision tool that is super useful as

24:03

you restrict things because something I

24:05

did with RS is I didn't want to include

24:08

lowercase letters because I didn't want

24:09

users to have to like if they're typing

24:11

in a a page based on the ID which was a

24:13

real use case for what we were building

24:15

I didn't want them to have to worry

24:16

about those characters so I deleted all

24:18

of that so it's just letters and numbers

24:20

and I also think I got rid of zero and O

24:22

because they look like numbers I think I

24:24

got rid of I too for the same reason to

24:26

make it a little easier to to read this

24:28

but now that we have that we can pick

24:31

different lengths and see how long it

24:32

takes for a 1% probability of a

24:36

collision and you can even change the

24:38

speed at which you're generating over

24:39

that time too super super handy tool if

24:42

you want to generate your own Nano IDs

24:44

and like know how realistic it is to hit

24:46

a collision I liked this a lot so check

24:49

out that post if you're curious about

24:50

more there so yeah they recommend all of

24:52

those options all of which make sense

24:53

did not know snowflake IDs were just

24:55

numbers and like really big ones

24:57

interesting

24:59

conclusion using a uid primary key in

25:01

MySQL can nearly guarantee uniqueness in

25:03

a distributed system however it comes

25:05

with several trade-offs luckily with the

25:07

many versions available as well as

25:08

several Alternatives you have options

25:10

that can better address some of these

25:12

trade-offs after reading this article

25:13

you should be in a better position to

25:15

make an informed decision about the ID

25:17

that you choose to use while

25:18

architecting your next database yeah

25:20

this is pretty solid let me go post the

25:23

uid chaos on Twitter quick

25:31

thank you to the Kingdom Hearts

25:32

referencer earlier that will live in my

25:35

head rentree forever that's all I to say

25:37

about yuu IDs I'm so happy this video is

25:39

finally done and people can stop asking

25:40

for it let me know in the comments how

25:42

you feel and thank you again to Planet

25:43

scale for letting me finally put this

25:45

one to rest once and for all and more

25:47

importantly showing me that cuid has the

25:49

same problems as well and until next

25:51

time peace NS