Why should audit logs be append-only?

Append-only logs prevent unauthorized changes and ensure data integrity.

What is a key benefit of logging every attempt in a payment process?

Logging every attempt allows for thorough analysis of failures.

What advantage does partitioning audit tables provide?

Partitioning allows for faster queries by limiting the amount of data scanned.

What is a challenge in designing audit logs for a notification system?

Tracking multiple states in a notification lifecycle adds complexity.

What is a key rule for audit tables?

Every event should be logged as a new entry in audit tables.

What does "append-only" mean for an audit table?

Append-only means only INSERT is allowed; existing rows can never be updated or deleted, preserving a permanent tamper-proof record.

Why is it dangerous to allow UPDATE on audit logs?

Allowing UPDATE lets anyone silently alter historical records, enabling fraud or cover-ups with no trace left behind.

If a payment amount was recorded incorrectly in an audit log, what is the correct fix?

Audit logs are immutable. The fix is always a new corrective INSERT row with the corrected value and a reason field — never UPDATE or DELETE.

Which of the following is NOT a valid reason to use append-only audit logs?

Audit logs grow with every event — they never shrink. The other three are genuine benefits of append-only logging.

A notification goes through: CREATED → QUEUED → SENDING → FAILED → RETRYING → DELIVERED. How many audit rows should be inserted?

There are 5 transitions: CREATED→QUEUED, QUEUED→SENDING, SENDING→FAILED, FAILED→RETRYING, RETRYING→DELIVERED. Each transition is one INSERT row.

What is partition pruning?

Partition pruning means the query planner skips partitions that cannot contain matching rows, dramatically reducing the data scanned.

Your audit table has 500M rows across 3 years. You query for today's data. Without partitioning, what happens?

Without partitioning the database scans every row to find today's records — a full scan of all 500M rows regardless of any indexes.

Which SQL clause do you use to create a range-partitioned table in PostgreSQL?

PostgreSQL uses PARTITION BY RANGE in CREATE TABLE to declare a range-partitioned table, commonly paired with a date column.

What is the best partition granularity for an audit table receiving 50 million rows per day?

Daily partitions keep each partition manageable at ~50M rows, enable efficient date-range queries, and simplify per-day archival.

In a notification audit system, why should you log FAILED state transitions even if the notification eventually succeeds?

Failed attempts reveal failure patterns, problematic gateways, and retry latency. Logging only the final success hides all debugging information.

What does non-repudiation mean in the context of audit logs?

Non-repudiation means the append-only log proves an action occurred — a user cannot later claim they never performed it.

In the arcade payment system, why must you log balance_before and balance_after in each audit row?

Logging both values lets you verify the balance at any moment and detect discrepancies between expected and actual balance changes.

A search audit log records result_count = 0 for many queries. What is the most useful thing this tells you?

Zero-result queries reveal what users want but can't find — a direct signal of content or inventory gaps to fill.

Which storage tier is most appropriate for audit data from 2 years ago that is rarely accessed?

Cold storage (S3/Glacier) is ideal for rarely accessed older audit data — cheap, durable, and compliant with long retention requirements.

What is the difference between from_state and to_state columns in a notification audit table?

from_state captures the state before a transition; to_state captures the resulting state. Together they form a complete record of every change.

Which PostgreSQL feature lets you enforce that an audit table can never be updated?

A PostgreSQL RULE can intercept UPDATE statements and replace them with nothing, enforcing append-only behavior at the database level.

Why do arcade payment audit logs need a session_id column?

session_id groups all game events under one arcade session, letting fraud analysts see the full sequence of actions per play.

In the search audit schema, what does index_version help you track?

index_version identifies which search algorithm or index version answered a query, enabling A/B comparison of search quality across deployments.

What does "hot → warm → cold" partition lifecycle mean?

Hot (fast SSD) stores recent data; warm (cheaper HDD) stores older data; cold (object store) archives the oldest data at minimal cost.

A player claims they never requested a refund, but your arcade payment audit log shows refund_requested for their player ID. What property of audit logs does this demonstrate?

Non-repudiation: the append-only log is tamper-proof, so the recorded action is reliable evidence the player did request the refund.

Append-Only Audit Tables — System Design Concept

Q: What is the primary function of an audit table?

Audit tables are designed to log actions in a system.

🍪 TechCookies

Free

📚Append-Only Audit TablesFree

7 sections

~29 min total

26 quick quizzes

7 SD challenges linked

0 of 7 done·~30 min left

Concepts›Append-Only Audit Tables›What Is an Audit Table?

0 / 7

7 sections~29 min

What Is an Audit Table?

Audit tables are append-only structures that log system actions.

ReadQuiz

~5 min

⋯

Why Audit Logs Must Never Be Updated — Only Inserted

Updating logs can lead to data tampering and loss of accountability.

ReadQuizCode

~5 min

⋯

Recording Every Attempt vs Only the Final State

Logging every attempt provides insights into failures and user behavior.

ReadQuizCode

~5 min

⋯

Partitioning Audit Tables by Date for Query Performance

Partitioning improves query performance by reducing data scan sizes.

ReadQuizCode

~5 min

⋯

Relevant System Design Questions

Designing audit logs involves understanding state transitions and user actions.

ReadQuizCode

~5 min

⋯

Quick Reference Cheat Sheet

A concise guide to audit table best practices and design patterns.

ReadQuizCode

~5 min

⋯

Practice test

26 questions

~9 min

Section 1 of 7ReadQuick quiz

What Is an Audit Table?

Audit tables are append-only structures that log system actions.

~5 min read

2 quick quizzes

Imagine a security camera in a bank. It records every single thing that happens — who walked in, who opened which drawer, what was moved, when. You can never erase that footage. It is a permanent record.

An audit table is the database version of that security camera.

It records every important action that happens in a system:

Action	Example
A user sends a notification	`notification_sent` at 10:23 AM
A payment is attempted	`payment_attempted` for ₹500
A search query is run	`search_run` for "shoes"
A login happens	`login_attempted` by user u_42

Key rule: You can only INSERT new rows into an audit table. You can NEVER UPDATE or DELETE existing rows.

This is what makes it "append-only."

☑ Quick check 1/2

What is the primary function of an audit table?

ATo update records

BTo delete records

CTo log actions

DTo summarize data

Answer the quiz to continue

Notes

🔍

Loading…