INTERMEDIATE // REAL TIME RESPONSE

MODULE 07 // RESILIENCE

Error Recovery.

ABIS may be unavailable or return errors. Build resilient applications that gracefully degrade while maintaining security posture.

GRACEFUL DEGRADATION

ABIS unavailability shouldn't halt your application. Implement fallback strategies that maintain reasonable security while ABIS recovers. The key decision: fail-open (allow) or fail-closed (deny) when ABIS is down.

For most applications, fail-open with enhanced monitoring is appropriate. Allow transactions but flag them for post-hoc review when ABIS recovers. This maintains UX while creating an audit trail.

Implement circuit breakers to prevent cascade failures. After N consecutive ABIS errors, stop calling and use fallback logic. Periodically test recovery to close the circuit when ABIS is healthy.

HEALTHY

Normal Operation

ABIS responding normally. All requests processed through standard risk assessment.

DEGRADED

Fallback Active

ABIS errors detected. Using fallback rules, flagging for later review.

CIRCUIT OPEN

ABIS Bypassed

Repeated failures triggered circuit breaker. All traffic using fallback until recovery.

KNOWLEDGE CHECK // Q07

When should an application fail-closed (deny) vs fail-open (allow) during ABIS outages?

Previous All Modules Next