Design WhatsApp

Interview-Ready Approach

1) Clarify Scope and SLOs

• •Problem statement: Design WhatsApp's messaging platform - E2E encryption, group chats, media, and offline delivery for 2 B users.
• •Design for a peak load target around 80,000 RPS (including burst headroom).
• •Monthly active users: 2,000,000,000
• •Messages per day: ~100,000,000,000
• •Peak messages/second: ~5,000,000
• •Max group size: 1,024 members
• •Message delivery (online): < 500 ms

2) Capacity Planning Method

• •Convert traffic and growth constraints into request rate, storage growth, and concurrency budgets.
• •Keep at least 2-3x safety margin per tier (ingress, compute, storage, async workers).
• •Reserve explicit latency budgets per hop so p95 can be defended in review.

3) Architecture Decisions

• •WebSockets: Use persistent connection gateways and decouple fanout via pub/sub or queues.
• •Databases: Define a clear system-of-record and design read/write paths separately before adding optimizations.
• •Auth: Centralize identity verification and keep authorization checks close to domain resources.
• •Replication: Separate primary write path from replicated read path and define lag tolerance per feature.
• •Geo Distribution: Route users to nearest region/edge while keeping write-consistency boundaries explicit.
• •Consistency: Classify operations by consistency requirement: strong for money/inventory, eventual for feeds/analytics.

4) Reliability and Failure Strategy

• •Track connection churn, backpressure, and session resumption behavior.
• •Use strong write constraints (transactions or conditional writes) and explicit backup/restore strategy.
• •Use short-lived tokens and secure key rotation workflows.
• •Monitor replication lag and have failover runbooks with recovery point objectives.
• •Design region failover and data residency controls as first-class requirements.

5) Validation Plan

• •Run one peak-load test, one dependency-degradation test, and one failover test.
• •Verify idempotency for all retried writes and async consumers.
• •Track user-facing SLOs first: p95 latency, error rate, and successful throughput.

6) Trade-offs to Call Out in Interviews

• •WebSockets: WebSockets reduce interaction latency but complicate scaling and state management.
• •Databases: SQL gives stronger transactional guarantees; NoSQL often gives better write scaling and flexibility.
• •Auth: Central auth simplifies policy, but makes auth service availability/security critical.
• •Replication: Replication improves read scale and DR posture but complicates consistency semantics.
• •Geo Distribution: Global latency improves, but cross-region consistency and operations become harder.

Practical Notes

• •Each user maintains a persistent connection (WebSocket/MQTT) to a gateway server. A connection registry maps user → gateway server.
• •Messages are stored in an ordered queue per recipient - dequeued and deleted after delivery confirmation.
• •Signal Protocol: each chat has a ratcheting key. The server stores ciphertext only; key exchange happens client-side.