Technical Risk Prevention Platform: Building Fault Immunity for Financial Transaction Systems

At the early‑year Ant Financial ATEC City Summit, senior technical expert Wang Yahong presented "Technical Risk Prevention Platform: Building Fault Immunity for Financial Transaction Systems," introducing Ant Financial's technical risk assurance system and the TRaaS platform that shares years of practice with the financial ecosystem.

1. Challenges and Opportunities of Financial‑Grade Distributed Architecture

Software products are moving to distributed and micro‑service architectures, creating operational challenges such as frequent requirement changes, higher failure rates on PC servers, extensive regression testing, complex cross‑system call chains, and critical data consistency issues. Conversely, distributed systems enable online validation, gray‑release, rapid deployment, and real‑traffic stress testing, turning these challenges into opportunities.

Over the past decade, Ant Financial's operations team has leveraged architectural upgrades to maintain high availability while enjoying the benefits of new designs.

2. Ant Financial Technical Risk Assurance System

The system consists of four layers:

Goal Layer: Target 99.99% availability, zero major financial safety incidents, and zero operational cost.

Governance Layer: Institutionalize risk‑control policies, three‑blade principles (monitorable, gray‑releaseable, rollbackable), and a dedicated risk‑assurance department.

Operation Layer: Four defense lines – demand/research risk review, automated testing, gray/blue‑green release, and continuous system monitoring.

Platform Layer: Provides business monitoring, drill center, contingency center, and change‑control platforms.

3. TRaaS Technical Risk Prevention Platform

TRaaS encapsulates Ant Financial's risk‑control practices into a platform open to ecosystem partners. It focuses on three core loops: risk baseline, monitoring/inspection + self‑healing + drills, and strict change control.

Risk Baseline

Collects metadata of all risk‑related entities (applications, services, networks, containers, physical machines) and builds risk models that map entity attributes to required safeguards (monitoring, inspection, contingency plans, drills). This produces a Cartesian set that reveals current risk coverage and hidden gaps.

Risk Handling

The platform aggregates alerts from various monitoring systems into risk events, provides analysis engines (including custom ones) to surface abnormal traces, related changes, and principal components, then pushes automated or manual remediation plans. After resolution, new knowledge is fed back into the risk baseline.

Change Control

Since 80% of production incidents stem from code changes, the platform integrates all change sources via APIs, offering change orchestration, gray‑check, pre‑check, and result monitoring to ensure every change adheres to the three‑blade principle, enabling rapid rollback and reduced incident impact.

Additional SaaS Services

For smaller enterprises, lightweight SaaS offerings such as full‑link stress testing, fund‑safety monitoring, traffic simulation, high‑availability inspection, and intelligent monitoring are available on Ant Financial’s public or private cloud.

4. Practice Results

Internal data shows a dedicated blue‑team conducts continuous red‑blue attacks, generating over 500 fault scenarios every five minutes and more than 200 weekly drills. Prior to Double‑11, three months of full‑link stress testing and pre‑plan verification prepared the system for peak traffic. Weekly risk‑assurance activities (disaster‑recovery drills, high‑availability rehearsals, fund‑safety checks, self‑healing inspections) keep the platform resilient.

5. Enabling Partners

The next‑generation risk‑control system emphasizes anti‑fragile design, visibility, gray‑release, and automation. By sharing platform capabilities and risk‑knowledge models, Ant Financial helps partners co‑create stable, reliable online financial services.

For more details, click the "Read Original" link at the bottom left on Ant Financial’s official website.