Patrick Meenan, profile picture
Uploaded byPatrick Meenan
PDF, PPTX4,235 views

Frontend SPOF

The document discusses the frontend single point of failure (SPOF) problem caused by blocking JavaScript and CSS files. It provides examples of popular websites, code libraries, widgets, and content management systems that contribute to frontend SPOFs. The document recommends solutions for browsers, widget owners, CMS developers, and site owners to address this issue through asynchronous loading of resources and better monitoring of frontend performance.

Embed presentation

Download as PDF, PPTX
Frontend SPOF Patrick Meenan Google Confidential and Proprietary
Credit where credit is due June 2010 - Steve Souders http://www.stevesouders.com/blog/2010/06/01/frontend-spof/ Google Confidential and Proprietary
See what it looks like: http://youtu.be/prToLDpjmPw Google Confidential and Proprietary
All Because of... <script src="https://platform.twitter.com/anywhere.js?id=ZV0JHq7YJkjozsfohDIleQ&v=1" type="text/javascript" ></script> Google Confidential and Proprietary
What Monitoring Says... Active Monitoring ○ Server Monitoring ✔ Base page responded in 1.5 Seconds ○ Full-Browser Monitoring ✔ Page loaded in 29 Seconds (test timeout is 60) Real-User Reporting ○ Analytics Page Views ✔ Analytics loaded and executed asynchronously ○ RUM Performance ✔ If user bailed before onload there is no performance data Google Confidential and Proprietary
It Gets Worse! Windows Socket Connect Timeout: 20s Mac/Linux Socket Connect Timeout: Much Higher PER CONNECTION Google Confidential and Proprietary
There's More! On that one page, all before the main content: <script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js"></script> <script type="text/javascript" src="http://scripts.verticalacuity.com/vat/mon/vt.js?1329448814"></script> <script type="text/javascript" src="http://cdn.sailthru.com/scout/v1.js?1329448814"></script> <script type="text/javascript" src="//cdn.optimizely.com/js/20728634.js?1329448814"></script> <script src="https://platform.twitter.com/anywhere.js?..." type="text/javascript"></script> Google Confidential and Proprietary
But I'd notice it is down... Google Confidential and Proprietary
In Iran? Google Confidential and Proprietary https://blogs.akamai.com/2012/02/a-view-of-the-iranian-internet-blockade-from-akamais-intelligent-platform.html
or China? Google Confidential and Proprietary http://calendar.perfplanet.com/2011/frontend-spof-in-beijing/
We have solutions... Google Confidential and Proprietary
Async Snippet Good for code with no dependencies (widgets): Google Confidential and Proprietary
Async Loaders Help for chaining together dependencies Control.js ○ http://stevesouders.com/controljs/ LABjs ○ http://labjs.com/ ● Remember to load the loader safely ● Requires a fair bit of manual work Google Confidential and Proprietary
Put scripts at the bottom Google Confidential and Proprietary http://stevesouders.com/examples/rule-js-bottom.php
Well... Google Confidential and Proprietary
Almost... Blocks onload except on IE and iOS 4 Google Confidential and Proprietary http://www.stevesouders.com/blog/2012/01/13/javascript-performance/
So, How are we doing? Google Confidential and Proprietary
Widgets Google Analytics: Async Google +1: Async Twitter: Async Facebook: Async Delicious: Async (image/href) StumbleUpon: Async Digg: Async Reditt: Blocking AddThis: Blocking ShareThis: Blocking (as of February 2012) Google Confidential and Proprietary
Code Libraries (samples) Jquery: Blocking in the head Closure Library: Blocking in the head YUI: Blocking Dojo: Blocking in the head Moo Tools: Blocking in the head Google API's: Blocking (default, Async available in docs) Google Confidential and Proprietary
Popular CMS's Wordpress: Blocking in the head Drupal: Blocking in the head Joomla: Blocking in the head Google Confidential and Proprietary
Testing for Frontend SPOF Google Confidential and Proprietary
Routing to localhost Fails FAST! (connections are rejected) Not good for testing real failure scenarios Google Confidential and Proprietary
You need a black hole blackhole.webpagetest.org 72.66.115.13 Hosts File On WebPagetest setDnsName ajax.googleapis.com blackhole.webpagetest.org 72.66.115.13 ajax.googleapis.com setDnsName apis.google.com blackhole.webpagetest.org 72.66.115.13 apis.google.com setDnsName www.google-analytics.com blackhole.webpagetest.org 72.66.115.13 www.google-analytics.com setDnsName connect.facebook.net blackhole.webpagetest.org setDnsName platform.twitter.com blackhole.webpagetest.org 72.66.115.13 connect.facebook.net ... 72.66.115.13 platform.twitter.com navigate your.url.com ... Google Confidential and Proprietary http://blog.patrickmeenan.com/2011/10/testing-for-frontend-spof.html http://www.jpl.nasa.go/spaceimages/details.php?id=PIA13168
How pervasive is the problem? Google Confidential and Proprietary
"Broken" Sites ● CNN ● MSNBC ● New York Times ● LA Times ● Bloomberg ● ABC News ● CNet news.com ● Pinterest ● ESPN ● AARP ● Business Insider ...From just 20 minutes of looking Google Confidential and Proprietary
What do we need to do? Google Confidential and Proprietary
Browsers ● Provide an easier way to asynchronously load complex dependency chains ○ async does not maintain order ○ defer does not work for inline scripts ■ and is broken in several versions of IE ● Not block onload for Async scripts ○ Sadly, the spec requires onload blocking ● Implement Resource Timing Google Confidential and Proprietary
Widget Owners ● Never EVER provide blocking snippets ● All examples should be asynchronous ● Do not force HTTPS if it isn't required ● Where possible, allow for sites to self-host any critical code Google Confidential and Proprietary
CMS Developers ● Build frameworks that encourage async code loading (and encourage their use for default operation) ● Provide a mechanism for tracking the performance of individual plugins Google Confidential and Proprietary
Site Owners ● Never load resources that you do not control synchronously (and refuse 3rd party code that doesn't have an async option) ● Do not rely on onload for important functionality ● Make sure your monitoring has aggressive time limits (under 20 seconds) ● Make sure your RUM reporting has an aggressive timeout ● Track RUM failures by region ● Leverage Resource Timing and field RUM analytics when available Google Confidential and Proprietary

More Related Content

PPTX
Cache is King
bySteve Souders
 
PPTX
High Performance Snippets
bySteve Souders
 
PPTX
Your Script Just Killed My Site
bySteve Souders
 
PDF
Measuring Web Performance (HighEdWeb FL Edition)
byDave Olsen
 
PDF
High Performance JavaScript (Amazon DevCon 2011)
byNicholas Zakas
 
PDF
State of the resource timing api
byAaron Peters
 
PDF
Java REST API Framework Comparison - PWX 2021
byMatt Raible
 
PPTX
High Performance Mobile (SF/SV Web Perf)
bySteve Souders
 
Cache is King
bySteve Souders
 
High Performance Snippets
bySteve Souders
 
Your Script Just Killed My Site
bySteve Souders
 
Measuring Web Performance (HighEdWeb FL Edition)
byDave Olsen
 
High Performance JavaScript (Amazon DevCon 2011)
byNicholas Zakas
 
State of the resource timing api
byAaron Peters
 
Java REST API Framework Comparison - PWX 2021
byMatt Raible
 
High Performance Mobile (SF/SV Web Perf)
bySteve Souders
 

What's hot

PDF
Prebrowsing - Velocity NY 2013
bySteve Souders
 
PDF
Progressive Enhancement 2.0 (Conference Agnostic)
byNicholas Zakas
 
PPTX
@media - Even Faster Web Sites
bySteve Souders
 
PPT
Web 2.0 Expo: Even Faster Web Sites
bySteve Souders
 
PPTX
Browser Wars Episode 1: The Phantom Menace
byNicholas Zakas
 
PPTX
High Performance HTML5 (SF HTML5 UG)
bySteve Souders
 
PDF
Mobile Web Speed Bumps
byNicholas Zakas
 
PDF
Front End Development for Back End Java Developers - Jfokus 2020
byMatt Raible
 
PDF
[jqconatx] Adaptive Images for Responsive Web Design
byChristopher Schmitt
 
PPTX
Word campktm speed-security
byDigamber Pradhan
 
PDF
Performance on the Yahoo! Homepage
byNicholas Zakas
 
PDF
High Performance JavaScript (YUIConf 2010)
byNicholas Zakas
 
PDF
How to investigate and recover from a security breach in WordPress
byOtto Kekäläinen
 
PDF
implement lighthouse-ci with your web development workflow
byWordPress
 
PPTX
do u webview?
bySteve Souders
 
PDF
Clojure Web Development
byHong Jiang
 
PPTX
Javascript Security - Three main methods of defending your MEAN stack
byRan Bar-Zik
 
PDF
Case Study: Migrating Hyperic from EJB to Spring from JBoss to Apache Tomcat
byVMware Hyperic
 
PDF
Apache Roller, Acegi Security and Single Sign-on
byMatt Raible
 
PPTX
Optimizing your WordPress website
bymwfordesigns
 
Prebrowsing - Velocity NY 2013
bySteve Souders
 
Progressive Enhancement 2.0 (Conference Agnostic)
byNicholas Zakas
 
@media - Even Faster Web Sites
bySteve Souders
 
Web 2.0 Expo: Even Faster Web Sites
bySteve Souders
 
Browser Wars Episode 1: The Phantom Menace
byNicholas Zakas
 
High Performance HTML5 (SF HTML5 UG)
bySteve Souders
 
Mobile Web Speed Bumps
byNicholas Zakas
 
Front End Development for Back End Java Developers - Jfokus 2020
byMatt Raible
 
[jqconatx] Adaptive Images for Responsive Web Design
byChristopher Schmitt
 
Word campktm speed-security
byDigamber Pradhan
 
Performance on the Yahoo! Homepage
byNicholas Zakas
 
High Performance JavaScript (YUIConf 2010)
byNicholas Zakas
 
How to investigate and recover from a security breach in WordPress
byOtto Kekäläinen
 
implement lighthouse-ci with your web development workflow
byWordPress
 
do u webview?
bySteve Souders
 
Clojure Web Development
byHong Jiang
 
Javascript Security - Three main methods of defending your MEAN stack
byRan Bar-Zik
 
Case Study: Migrating Hyperic from EJB to Spring from JBoss to Apache Tomcat
byVMware Hyperic
 
Apache Roller, Acegi Security and Single Sign-on
byMatt Raible
 
Optimizing your WordPress website
bymwfordesigns
 

Viewers also liked

PDF
Front End Tooling and Performance - Codeaholics HK 2015
byHolger Bartel
 
PDF
Frontend automation and stability
byMáté Nádasdi
 
PDF
Sinau Bareng Frontend Web Development @ DiLo Malang
byMoch. Zamroni
 
PDF
Webinar: Front End Web Development - Trendy Web Designs Using HTML5
byEdureka!
 
PDF
User eXperience & Front End Development
byandreafallaswork
 
PPTX
Front end Tips Tricks & Tools
bySandeep Ramgolam
 
PDF
Architecting your Frontend
byRuben Teijeiro
 
PDF
Grunt js for the Enterprise Vol.1: Frontend Performance with Phantomas
byDavid Amend
 
PDF
建立前端开发团队 (Front-end Development Environment)
byJoseph Chiang
 
PDF
Wrangling Large Scale Frontend Web Applications
byRyan Roemer
 
PDF
A modern front end development workflow for Magnolia at Atlassian
byMagnolia
 
PPTX
Frontend technologies
byJose Ramon Roblero Ruiz
 
PDF
How to Build Front-End Web Apps that Scale - FutureJS
byPhil Leggetter
 
PPTX
W3 conf hill-html5-security-realities
byBrad Hill
 
PDF
Frontend at Scale - The Tumblr Story
byChris Miller
 
PPTX
Modern Frontend Technology
byShip Hsu
 
PDF
TechTalk #85 : Latest Frontend Technologies
bybincangteknologi
 
PDF
Front End Development Workflow Tools
byAhmed Elmehri
 
PDF
The Frontend Developer Landscape Explained and the Rise of Advanced Frontend ...
byPrasid Pathak
 
PDF
engage 2015 - Domino App Development - Where should I go now?
byRené Winkelmeyer
 
Front End Tooling and Performance - Codeaholics HK 2015
byHolger Bartel
 
Frontend automation and stability
byMáté Nádasdi
 
Sinau Bareng Frontend Web Development @ DiLo Malang
byMoch. Zamroni
 
Webinar: Front End Web Development - Trendy Web Designs Using HTML5
byEdureka!
 
User eXperience & Front End Development
byandreafallaswork
 
Front end Tips Tricks & Tools
bySandeep Ramgolam
 
Architecting your Frontend
byRuben Teijeiro
 
Grunt js for the Enterprise Vol.1: Frontend Performance with Phantomas
byDavid Amend
 
建立前端开发团队 (Front-end Development Environment)
byJoseph Chiang
 
Wrangling Large Scale Frontend Web Applications
byRyan Roemer
 
A modern front end development workflow for Magnolia at Atlassian
byMagnolia
 
Frontend technologies
byJose Ramon Roblero Ruiz
 
How to Build Front-End Web Apps that Scale - FutureJS
byPhil Leggetter
 
W3 conf hill-html5-security-realities
byBrad Hill
 
Frontend at Scale - The Tumblr Story
byChris Miller
 
Modern Frontend Technology
byShip Hsu
 
TechTalk #85 : Latest Frontend Technologies
bybincangteknologi
 
Front End Development Workflow Tools
byAhmed Elmehri
 
The Frontend Developer Landscape Explained and the Rise of Advanced Frontend ...
byPrasid Pathak
 
engage 2015 - Domino App Development - Where should I go now?
byRené Winkelmeyer
 

Similar to Frontend SPOF

PDF
YouTube Mobile Webapp: On the edge of Html5
bySMART DevNet
 
PDF
Latency Kills by Shishir Birmiwal
byPravin Nirmal
 
PDF
Google Analytics Bootcamp Bogota Junio 28 2012 Dia 4
byComercio Electronico
 
PDF
Mobile Web Rock
byIdo Green
 
PDF
Stephen McHenry - Chanecellor of Site Reliability Engineering, Google
byIE Group
 
PDF
Boot camp 2010_app_engine_101
byikailan
 
PDF
What is App Engine? O
byikailan
 
PDF
Google Analytics Presentation
byDiane Jones
 
PDF
AdWords API and OAuth 2.0
bymarcwan
 
PDF
Entrepreneurship Tips With HTML5 & App Engine Startup Weekend (June 2012)
byIdo Green
 
PPTX
Two Birds, One Stone - A New Methodology for Online Survey Research
byLucy James
 
PDF
OAuth 2.0
bymarcwan
 
PDF
Perspectives on Cloud COmputing - Google
byACMBangalore
 
PPTX
A Brave New World
bySensePost
 
PDF
Good Peering Practices
byBangladesh Network Operators Group
 
PPTX
Mb make the web work for you final
byJellyfish Agency
 
PDF
Google's internal systems
byguestcc91d4
 
PDF
Google's internal systems
byguestcc91d4
 
PDF
Data Mining - GCPCUG May 2011
byGreater Cleveland PC Users Group
 
PDF
Layer 7: Securing Web 2.0 - What You Need to Know
byCA API Management
 
YouTube Mobile Webapp: On the edge of Html5
bySMART DevNet
 
Latency Kills by Shishir Birmiwal
byPravin Nirmal
 
Google Analytics Bootcamp Bogota Junio 28 2012 Dia 4
byComercio Electronico
 
Mobile Web Rock
byIdo Green
 
Stephen McHenry - Chanecellor of Site Reliability Engineering, Google
byIE Group
 
Boot camp 2010_app_engine_101
byikailan
 
What is App Engine? O
byikailan
 
Google Analytics Presentation
byDiane Jones
 
AdWords API and OAuth 2.0
bymarcwan
 
Entrepreneurship Tips With HTML5 & App Engine Startup Weekend (June 2012)
byIdo Green
 
Two Birds, One Stone - A New Methodology for Online Survey Research
byLucy James
 
OAuth 2.0
bymarcwan
 
Perspectives on Cloud COmputing - Google
byACMBangalore
 
A Brave New World
bySensePost
 
Good Peering Practices
byBangladesh Network Operators Group
 
Mb make the web work for you final
byJellyfish Agency
 
Google's internal systems
byguestcc91d4
 
Google's internal systems
byguestcc91d4
 
Data Mining - GCPCUG May 2011
byGreater Cleveland PC Users Group
 
Layer 7: Securing Web 2.0 - What You Need to Know
byCA API Management
 

More from Patrick Meenan

PPTX
Resource Prioritization
byPatrick Meenan
 
PPTX
HTTP/2 Prioritization
byPatrick Meenan
 
PPTX
Getting the most out of WebPageTest
byPatrick Meenan
 
PDF
Http2 in practice
byPatrick Meenan
 
PPTX
Resource loading, prioritization, HTTP/2 - oh my!
byPatrick Meenan
 
PPTX
How fast is it?
byPatrick Meenan
 
PPT
Scaling Front-End Performance - Velocity 2016
byPatrick Meenan
 
PPTX
Machine Learning RUM - Velocity 2016
byPatrick Meenan
 
PPTX
TLS - 2016 Velocity Training
byPatrick Meenan
 
PPTX
Service workers - Velocity 2016 Training
byPatrick Meenan
 
PPTX
Front-End Single Point of Failure - Velocity 2016 Training
byPatrick Meenan
 
PPTX
Measuring performance - Velocity 2016 Training
byPatrick Meenan
 
PPT
Service Workers for Performance
byPatrick Meenan
 
PDF
Velocity 2014 nyc WebPagetest private instances
byPatrick Meenan
 
PDF
WebPagetest Power Users - Velocity 2014
byPatrick Meenan
 
PDF
Mobile web performance - MoDev East
byPatrick Meenan
 
PDF
Tracking Performance - Velocity NYC 2013
byPatrick Meenan
 
PPTX
Image optimization
byPatrick Meenan
 
PPTX
Measuring the visual experience of website performance
byPatrick Meenan
 
PPT
Velocity EU 2012 - Third party scripts and you
byPatrick Meenan
 
Resource Prioritization
byPatrick Meenan
 
HTTP/2 Prioritization
byPatrick Meenan
 
Getting the most out of WebPageTest
byPatrick Meenan
 
Http2 in practice
byPatrick Meenan
 
Resource loading, prioritization, HTTP/2 - oh my!
byPatrick Meenan
 
How fast is it?
byPatrick Meenan
 
Scaling Front-End Performance - Velocity 2016
byPatrick Meenan
 
Machine Learning RUM - Velocity 2016
byPatrick Meenan
 
TLS - 2016 Velocity Training
byPatrick Meenan
 
Service workers - Velocity 2016 Training
byPatrick Meenan
 
Front-End Single Point of Failure - Velocity 2016 Training
byPatrick Meenan
 
Measuring performance - Velocity 2016 Training
byPatrick Meenan
 
Service Workers for Performance
byPatrick Meenan
 
Velocity 2014 nyc WebPagetest private instances
byPatrick Meenan
 
WebPagetest Power Users - Velocity 2014
byPatrick Meenan
 
Mobile web performance - MoDev East
byPatrick Meenan
 
Tracking Performance - Velocity NYC 2013
byPatrick Meenan
 
Image optimization
byPatrick Meenan
 
Measuring the visual experience of website performance
byPatrick Meenan
 
Velocity EU 2012 - Third party scripts and you
byPatrick Meenan
 

Recently uploaded

PDF
7 Essential Types of Penetration Testing Services Every Business Should Under...
bypandeydevika621
 
PDF
Agentic-Document-Extraction-2026-Presentation.pdf
byTamanna
 
PDF
Taxonomy Alignment for SDG Tagging - ASHA Case Study
byEnterprise Knowledge
 
PPTX
TechSprint WinterHack — Top 10 Teams Pitching Session we are excited for pit...
bybajpaitusharoffon678
 
PDF
Computer-Based Training (CBT) The Backbone of Modern Technical & Defence Trai...
bycomputerbasedtrainin1
 
PPTX
The Lex Wire Precedent: A Technical Standard for Machine-Mediated Authority ...
byJeff Howell
 
PDF
Transcript: What Thema can do: Leveraging metadata to support the discoverabi...
byBookNet Canada
 
PDF
Build Next-Gen Spatial & Sensor Workflows: Secure, Scalable Processing in Sno...
bySafe Software
 
PDF
What Thema can do: Leveraging metadata to support the discoverability of Firs...
byBookNet Canada
 
PDF
The Enterprise Web3 Landscape - a view from Kaleido based on the past 10 year...
byPeter Broadhurst
 
PDF
React Mastery: Visual Mental Models to Understand React Deeply
byThomas Gaye
 
PDF
ICT500 - CRITICAL AND CREATIVE THINKING FOR INFORMATION TECHNOLOGY SOLUTIONS:...
by2024432452
 
PDF
Pneumatic Pressure Pump PPP01 for Calibration & Testing
bySERRAX TECHNOLOGIES LLP
 
PDF
Enterprise Data Services_ A Development Guide with Use Cases, Trends and Impl...
by2601harsh23
 
PPTX
INSY_7213_Theme Sessions 47 & 48 Advanced databases.pptx
bystormzy56
 
PDF
Afsar Ahmed - Digital Marketing Portfolio
byAfsar Ahmed
 
PDF
Certified AI-Native Foundations Professional.pdf
byMarc Entsminger SPC6, RTE, SSM, SA, SDP
 
PDF
2026_01_28 - OpenMetadata Community Meeting.pdf
byOpenMetadata
 
PDF
Dev Dives: Build and deploy agentic automations - the unified way
byUiPathCommunity
 
PDF
Real-Time AI Masterclass: Vector Search at Scale
byScyllaDB
 
7 Essential Types of Penetration Testing Services Every Business Should Under...
bypandeydevika621
 
Agentic-Document-Extraction-2026-Presentation.pdf
byTamanna
 
Taxonomy Alignment for SDG Tagging - ASHA Case Study
byEnterprise Knowledge
 
TechSprint WinterHack — Top 10 Teams Pitching Session we are excited for pit...
bybajpaitusharoffon678
 
Computer-Based Training (CBT) The Backbone of Modern Technical & Defence Trai...
bycomputerbasedtrainin1
 
The Lex Wire Precedent: A Technical Standard for Machine-Mediated Authority ...
byJeff Howell
 
Transcript: What Thema can do: Leveraging metadata to support the discoverabi...
byBookNet Canada
 
Build Next-Gen Spatial & Sensor Workflows: Secure, Scalable Processing in Sno...
bySafe Software
 
What Thema can do: Leveraging metadata to support the discoverability of Firs...
byBookNet Canada
 
The Enterprise Web3 Landscape - a view from Kaleido based on the past 10 year...
byPeter Broadhurst
 
React Mastery: Visual Mental Models to Understand React Deeply
byThomas Gaye
 
ICT500 - CRITICAL AND CREATIVE THINKING FOR INFORMATION TECHNOLOGY SOLUTIONS:...
by2024432452
 
Pneumatic Pressure Pump PPP01 for Calibration & Testing
bySERRAX TECHNOLOGIES LLP
 
Enterprise Data Services_ A Development Guide with Use Cases, Trends and Impl...
by2601harsh23
 
INSY_7213_Theme Sessions 47 & 48 Advanced databases.pptx
bystormzy56
 
Afsar Ahmed - Digital Marketing Portfolio
byAfsar Ahmed
 
Certified AI-Native Foundations Professional.pdf
byMarc Entsminger SPC6, RTE, SSM, SA, SDP
 
2026_01_28 - OpenMetadata Community Meeting.pdf
byOpenMetadata
 
Dev Dives: Build and deploy agentic automations - the unified way
byUiPathCommunity
 
Real-Time AI Masterclass: Vector Search at Scale
byScyllaDB
 

Frontend SPOF

  • 1.
    Frontend SPOF Patrick Meenan Google Confidential and Proprietary
  • 2.
    Credit where creditis due June 2010 - Steve Souders http://www.stevesouders.com/blog/2010/06/01/frontend-spof/ Google Confidential and Proprietary
  • 3.
    See what itlooks like: http://youtu.be/prToLDpjmPw Google Confidential and Proprietary
  • 4.
    All Because of... <scriptsrc="https://platform.twitter.com/anywhere.js?id=ZV0JHq7YJkjozsfohDIleQ&v=1" type="text/javascript" ></script> Google Confidential and Proprietary
  • 5.
    What Monitoring Says... ActiveMonitoring ○ Server Monitoring ✔ Base page responded in 1.5 Seconds ○ Full-Browser Monitoring ✔ Page loaded in 29 Seconds (test timeout is 60) Real-User Reporting ○ Analytics Page Views ✔ Analytics loaded and executed asynchronously ○ RUM Performance ✔ If user bailed before onload there is no performance data Google Confidential and Proprietary
  • 6.
    It Gets Worse! WindowsSocket Connect Timeout: 20s Mac/Linux Socket Connect Timeout: Much Higher PER CONNECTION Google Confidential and Proprietary
  • 7.
    There's More! On thatone page, all before the main content: <script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js"></script> <script type="text/javascript" src="http://scripts.verticalacuity.com/vat/mon/vt.js?1329448814"></script> <script type="text/javascript" src="http://cdn.sailthru.com/scout/v1.js?1329448814"></script> <script type="text/javascript" src="//cdn.optimizely.com/js/20728634.js?1329448814"></script> <script src="https://platform.twitter.com/anywhere.js?..." type="text/javascript"></script> Google Confidential and Proprietary
  • 8.
    But I'd noticeit is down... Google Confidential and Proprietary
  • 9.
    In Iran? Google Confidential and Proprietary https://blogs.akamai.com/2012/02/a-view-of-the-iranian-internet-blockade-from-akamais-intelligent-platform.html
  • 10.
    or China? Google Confidential and Proprietary http://calendar.perfplanet.com/2011/frontend-spof-in-beijing/
  • 11.
    We have solutions... Google Confidential and Proprietary
  • 12.
    Async Snippet Good forcode with no dependencies (widgets): Google Confidential and Proprietary
  • 13.
    Async Loaders Help forchaining together dependencies Control.js ○ http://stevesouders.com/controljs/ LABjs ○ http://labjs.com/ ● Remember to load the loader safely ● Requires a fair bit of manual work Google Confidential and Proprietary
  • 14.
    Put scripts atthe bottom Google Confidential and Proprietary http://stevesouders.com/examples/rule-js-bottom.php
  • 15.
    Well... Google Confidential and Proprietary
  • 16.
    Almost... Blocks onload except on IE and iOS 4 Google Confidential and Proprietary http://www.stevesouders.com/blog/2012/01/13/javascript-performance/
  • 17.
    So, How arewe doing? Google Confidential and Proprietary
  • 18.
    Widgets Google Analytics: Async Google+1: Async Twitter: Async Facebook: Async Delicious: Async (image/href) StumbleUpon: Async Digg: Async Reditt: Blocking AddThis: Blocking ShareThis: Blocking (as of February 2012) Google Confidential and Proprietary
  • 19.
    Code Libraries (samples) Jquery:Blocking in the head Closure Library: Blocking in the head YUI: Blocking Dojo: Blocking in the head Moo Tools: Blocking in the head Google API's: Blocking (default, Async available in docs) Google Confidential and Proprietary
  • 20.
    Popular CMS's Wordpress: Blockingin the head Drupal: Blocking in the head Joomla: Blocking in the head Google Confidential and Proprietary
  • 21.
    Testing for FrontendSPOF Google Confidential and Proprietary
  • 22.
    Routing to localhost FailsFAST! (connections are rejected) Not good for testing real failure scenarios Google Confidential and Proprietary
  • 23.
    You need ablack hole blackhole.webpagetest.org 72.66.115.13 Hosts File On WebPagetest setDnsName ajax.googleapis.com blackhole.webpagetest.org 72.66.115.13 ajax.googleapis.com setDnsName apis.google.com blackhole.webpagetest.org 72.66.115.13 apis.google.com setDnsName www.google-analytics.com blackhole.webpagetest.org 72.66.115.13 www.google-analytics.com setDnsName connect.facebook.net blackhole.webpagetest.org setDnsName platform.twitter.com blackhole.webpagetest.org 72.66.115.13 connect.facebook.net ... 72.66.115.13 platform.twitter.com navigate your.url.com ... Google Confidential and Proprietary http://blog.patrickmeenan.com/2011/10/testing-for-frontend-spof.html http://www.jpl.nasa.go/spaceimages/details.php?id=PIA13168
  • 24.
    How pervasive isthe problem? Google Confidential and Proprietary
  • 25.
    "Broken" Sites ● CNN ● MSNBC ● New York Times ● LA Times ● Bloomberg ● ABC News ● CNet news.com ● Pinterest ● ESPN ● AARP ● Business Insider ...From just 20 minutes of looking Google Confidential and Proprietary
  • 26.
    What do weneed to do? Google Confidential and Proprietary
  • 27.
    Browsers ● Provide aneasier way to asynchronously load complex dependency chains ○ async does not maintain order ○ defer does not work for inline scripts ■ and is broken in several versions of IE ● Not block onload for Async scripts ○ Sadly, the spec requires onload blocking ● Implement Resource Timing Google Confidential and Proprietary
  • 28.
    Widget Owners ● NeverEVER provide blocking snippets ● All examples should be asynchronous ● Do not force HTTPS if it isn't required ● Where possible, allow for sites to self-host any critical code Google Confidential and Proprietary
  • 29.
    CMS Developers ● Buildframeworks that encourage async code loading (and encourage their use for default operation) ● Provide a mechanism for tracking the performance of individual plugins Google Confidential and Proprietary
  • 30.
    Site Owners ● Never load resources that you do not control synchronously (and refuse 3rd party code that doesn't have an async option) ● Do not rely on onload for important functionality ● Make sure your monitoring has aggressive time limits (under 20 seconds) ● Make sure your RUM reporting has an aggressive timeout ● Track RUM failures by region ● Leverage Resource Timing and field RUM analytics when available Google Confidential and Proprietary