Thursday 

Room 8 

13:40 - 14:40 

(UTC+02

Talk (60 min)

Have I Been Pwned: Serving billions of requests and terabytes of data without going broke!

Have I Been Pwned is a free service created by Troy Hunt, allowing people to check if their email, phone number or passwords have been leaked in data breaches.

Cloud
Serverless

The service has grown immensely in popularity over the years and the number of API requests with it, to the point that as of March 2022, Have I Been Pwned is serving over 1.6 billion requests per month for its Pwned Passwords API alone.

Running as an Azure Function, serving data in the number of terabytes and requests in the billions is not cheap. For a free service, this is a problem that needs to be solved.

I'm going to show you how Have I Been Pwned uses Cloudflare to reduce the potential cost by over 90%, all while making things faster and more efficient at the same time. And the best thing is, most websites can apply similar techniques with the same benefits!

Stefán Jökull Sigurðarson

Stefán Jökull has been a professional programmer for over 20 years, although he wrote his first BASIC program on an old Amstrad CPC 464 way back in 1986. He is a Principal Software Engineer at Lucinity in Iceland where he focuses on API design and observability. He has a lot of experience with systems that require attention to details and have high customer impact. He also maintains the open-source aspect of Have I Been Pwned with Troy Hunt.

Stefán is also a Microsoft MVP, a member of the .NET Foundation, and specializes in all things .NET with a focus on performance, security, and analytics/telemetry.

When he's not working, he enjoys time with the family, working on OSS software and having the occasional beer when meeting fellow developers.