Newsletter
Black Friday’s 99% Dependency: The Architectural Bankruptcy of E-Commerce
Today is Black Friday. Right now, as you read this, billions of euros in transactions are flowing through digital arteries that most executives couldn't name if their quarterly bonus depended on it. And just days ago, one of those arteries nearly ruptured.
On November 19th, Cloudflare, the infrastructure company that routes approximately 20% of global web traffic, experienced an outage that froze major store and payment platforms, APIs, and commerce flows. The timing couldn't have been worse: right before the most revenue-critical weekend of the year.
Here's the number that should keep every CEO awake tonight: 99.3% of Shopify's storefronts run on Cloudflare's network. That's over 6 million e-commerce stores hanging on a single thread.
The Reality Nobody Wants to Admit
Let me be blunt: We have built a trillion-euro digital economy on architectural foundations we don't own, don't understand, and can't control.
The Cloudflare outage wasn't an isolated incident. It came shortly after massive outages at AWS and Microsoft Azure that caused their own waves of disruption. The Financial Conduct Authority in the UK has already warned that nations need to "strengthen" their oversight of foreign tech providers, noting "how heavily the financial system now relies on a small number of foreign companies."
The data paints a damning picture:
92% of enterprise e-commerce merchants experienced payment outages or disruption in the past two years
40% of retail executives have experienced a website outage in the past three years
24% don't even have a plan if their websites go down during peak shopping periods
Among those able to quantify impact, half reported losses of £1.1–10 million per outage
The Architectural Bankruptcy
What we're witnessing isn't a technology failure: it's an architecture failure. And I use the word "bankruptcy" deliberately.
Consider what "digital transformation" has actually produced:
Single Points of Failure Everywhere: Organizations have consolidated onto a handful of cloud providers and CDNs. When Cloudflare routes 20% of global web traffic, that's not efficiency, it's systemic risk disguised as simplification.
Invisible Dependencies: Most executives couldn't tell you what Cloudflare is, yet their entire revenue stream depends on it. As one industry expert noted: "Cloudflare going dark today should snap every merchant back to reality."
Governance Gaps: CIOs signed contracts with SaaS vendors who depend on cloud providers who depend on CDNs—creating dependency chains that no one is managing holistically.
Resilience as Afterthought: The focus has been on features, not failure modes. On growth, not graceful degradation.
What Enterprise Architects Have Been Saying All Along
For years, Enterprise Architects have warned about concentration risk in digital infrastructure. We've been labeled "bottlenecks" and "overhead" for asking uncomfortable questions about vendor dependencies and failure scenarios.
But the Cloudflare outage, and the AWS, Azure, and countless other outages, prove that these questions aren't academic. They're existential.
"Even the most sophisticated global tech firms are not immune to outages or cyber-attacks, and the consequences for customers and markets can be significant." — UK Financial Conduct Authority
Enterprise Architecture provides the strategic lens to address this crisis:
Dependency Mapping: Understanding the full chain of dependencies from customer click to transaction completion
Multi-vendor Architecture: Designing for redundancy across providers, not just within them
Graceful Degradation: Ensuring that when components fail, critical business functions continue
Recovery Planning: Building and testing incident response before crises, not during them
A Payment System Veteran's View
Having spent over a decade building high-performance payment applications, I can tell you that the payments industry learned these lessons the hard way decades ago. Payment networks are designed with redundancy, failover, and settlement guarantees because the cost of failure is measured in trust, not just transactions.
E-commerce has grown up without those disciplines. And now, with digital payment volumes exceeding physical retail, the chickens are coming home to roost.
When customers can't complete payments, or worse, when system wobbles cause duplicate payments, the chaos extends far beyond the initial outage. Customers retry purchases, cards get hit twice, confirmation pages stall—and suddenly merchants are left cleaning up charges they never intended to send in the first place.
A Framework for Architectural Resilience
Organizations need to move from reactive crisis management to proactive architectural governance. Here's a framework:
| Domain | Key Questions | EA Actions |
|---|---|---|
| Dependency Visibility | Can you name every third party your payments flow through? | Map full dependency chain from storefront to settlement |
| Vendor Diversification | If your primary CDN fails, what happens? | Design multi-vendor architecture with automated failover |
| Graceful Degradation | What minimum functionality must survive an outage? | Define fallback modes for every critical service |
| Recovery Testing | When did you last simulate a major vendor outage? | Implement chaos engineering and regular DR drills |
| Contract Governance | Do your SLAs cover cascade failures from vendor dependencies? | Review and strengthen vendor accountability clauses |
The Uncomfortable Question
If Cloudflare went down for 24 hours instead of minutes, what would happen to your business? If your answer is "I don't know," you've just identified your most urgent strategic priority.
Digital transformation without architectural governance isn't transformation: it's organized dependency. And dependency, as this week has proven, is fragility waiting to manifest.
Key Takeaways
Concentration is the New Risk: When a single infrastructure provider can impact 20% of global web traffic, we've traded efficiency for systemic fragility.
Resilience Requires Architecture: Recovery plans on paper aren't enough. Resilience must be designed into your systems from the foundation up.
EA Is Not Optional: Enterprise Architecture provides the strategic oversight needed to identify and mitigate dependencies before they become disasters.
Test Before You Need To: The worst time to discover your recovery plan doesn't work is during a crisis. Simulate failures regularly.
In the digital era, resilience isn't just about survival, it's about competitive advantage. The organizations that invest in architectural governance today will be the ones still standing when the next outage hits.
- payments
- enterprise architecture
- digital transformation
- resilience
Related editions
- Stop Putting AI Governance Under IT. Here’s Where It Actually Belongs.Why the most important new function in your enterprise keeps getting filed in the wrong drawer.
- Four Regulators. One Incident. Eighteen Months Too Late.Brussels Has Promised to Make Europe’s Overlapping Cyber Rules Report Once and Share Many. The Single Front Door Arrives in 2028. The NIS2 Audit, the AI Act High-Risk Deadline, and Live DORA Supervision All Arrive This Summer.
- Thirty Partners. Seventy-Two Hours. The Machines Got a Wallet.The Card Networks Just Minted Identity for AI Agents. Europe Still Has Not Decided Who Pays When the Agent Spends Outside Its Mandate.
Have a similar challenge?
Book a 30-minute call to talk through AI governance, architecture or payments — no pitch, just a senior second opinion.
Book a 30-min call