that no chaos engineering software in manufacturing right now can reply: Did your final experiment check the proper factor?
Not ‘Did it keep inside funds?’ That’s what SLO error-budget gating handles. Not ‘Did the system survive?’ That’s what abort circumstances measure. The query is whether or not the experiment was designed to validate a particular perception about your system’s habits, and whether or not its end result modified what your staff is aware of about failure propagation via your stack.
In case your sincere reply is ‘we terminated some pods, and so they recovered,’ you ran a secure experiment. Whether or not you discovered something helpful is a separate query that present tooling doesn’t ask.
This text makes a concrete argument: chaos engineering has a mature security layer and an virtually nonexistent intent layer. Security tells you the way a lot to interrupt. Intent tells you what breaking it’s going to train. These are completely different design issues requiring completely different tooling, and conflating them is why chaos packages at scale are inclined to accumulate scripts with out accumulating perception.
The argument is grounded within the structure I developed and patented (US12242370B2, Intent-Based mostly Chaos Engineering for Distributed Techniques), and in observations from practitioners throughout Intuit, GPTZero, Insurance coverage Panda, Fruzo, and Coders.dev who’ve independently identified the identical structural hole. I’ll present you the structure, stroll via the information mannequin with code, and clarify why that is an AI downside, not simply an orchestration downside.
1. The Security Layer Is Good. It Is Additionally Incomplete.
Begin by giving the present mannequin its due. The SLO error-budget framework, popularized by Google’s SRE apply, gave chaos engineering its first principled security mechanism. Tying experiment execution to the remaining error funds means you don’t inject failure right into a system already consuming its reliability headroom [3]. AWS Fault Injection Service’s cease circumstances, Gremlin’s reliability rating, and Harness ChaosGuard’s Rego insurance policies all symbolize mature, production-ready implementations of this concept.
These instruments reply a well-posed query: given the present state of my system, is it secure to run an experiment proper now? The reply is computable, automatable, and fairly correct. The query they don’t reply is equally essential: given the present state of my system, which experiment can be most informative to run proper now?
Security and informativeness are orthogonal. An experiment can fulfill each security constraint, keep inside funds, set off no aborts, trigger no measurable degradation, and nonetheless produce nothing helpful. If it examined a element not within the important path of any user-facing habits, you spent funds studying nothing. If it repeated a failure mode your system has survived a dozen occasions with out updating your understanding of the propagation path, similar end result.
Core distinction: An experiment is secure when it stays inside acceptable value. An experiment is informative when its end result updates your mannequin of the system’s failure habits. These require completely different design standards, and solely the primary has mature tooling.
There’s a second structural downside. Scripts are static for the time being of authorship. They encode assumptions about service topology, site visitors patterns, and dependency habits which may be correct when written and silently unsuitable six months later. As microservice architectures change weekly, script-to-reality drift accumulates. The script nonetheless runs. It assessments a world that now not exists.
2. How Practitioners Describe the Ceiling
The next observations had been gathered from practitioners through Qwoted, a platform connecting area consultants with researchers and journalists. A cross-industry survey of engineers who’ve constructed chaos packages in manufacturing converges on the identical structural hole from completely different angles.
Abhishek Pareek, Founder and Director at Coders.dev, builds distributed programs tooling. His framing is the sharpest prognosis of the issue:
“What we don’t have is an understanding of intent-based resiliency. Current instruments are primarily script-based, and we have to create instruments that may mannequin the consequences of a particular failure on numerous microservices earlier than executing the experiment. We want AI that understands the reasoning behind the failure along with the mechanics of the failure.” — Abhishek Pareek, Founder & Director, Coders.dev [6]
The phrase ‘reasoning’ is doing actual work right here. A script captures mechanics: terminate these pods, inject this latency. It doesn’t seize reasoning: we’re operating this experiment as a result of we imagine the checkout circuit breaker ought to journey earlier than user-facing error charges climb above 0.1%, and we wish to know if it really does. That reasoning, the speculation, is what makes an experiment informative. When it lives solely within the engineer’s head, it evaporates as groups and programs change.
Edward Tian, CEO of GPTZero, runs AI inference infrastructure at scale and has developed exact language for what’s lacking:
“Present chaos instruments inject arbitrary factors of failure however don’t present any significant route for the consumer when it comes to what they’re making an attempt to validate. The subsequent evolution of chaos will contain concentrating on particular questions on resiliency, ‘can our programs maintain a degradation within the retrieval of knowledge?’ or ‘are we able to tolerating a mannequin being unavailable on account of a timeout?’, moderately than the usage of a one-size-fits-all script.”
– Edward Tian, Founder & CEO, GPTZero [7]
“Can our programs maintain a degradation within the retrieval of knowledge?” is a behavioral speculation. It names a goal habits, a failure situation, and an implicit success criterion. That’s extra data than any present chaos software accepts as enter. It’s the minimal data wanted to design a check that solutions the query.
3. The Intent-Based mostly Structure
US Patent 12242370B2 describes a system wherein chaos experiment parameters are derived from behavioral intent specs moderately than hardcoded by engineers. Right here is how the structure works.
3.1 System Overview
The system has 4 layers. Every layer does one thing the script-based mannequin can not. The experiment generator replaces ‘decide a script’ with ‘derive the proper experiment from what you wish to be taught.’ The security evaluator provides behavioral context to the blast-radius calculation. The result recorder turns experiment outcomes into mannequin updates moderately than postmortem notes.
3.2 The Intent Specification
The specification is the enter the system requires earlier than producing any experiment. Here’s a concrete instance for a checkout resilience check:
Itemizing 1 – Intent specification for a checkout resilience experiment
# intent_spec.yaml
intent:
id: exp-checkout-inv-2025-01
target_behavior: checkout_completion
speculation: >
The checkout stream completes inside SLO when the stock
service experiences elevated learn latency (p99 > 500ms).
The circuit breaker on inventory_read journeys earlier than the
user-facing error fee exceeds 0.1%.
acceptance_criteria:
checkout_p99_latency_ms: 400
checkout_error_rate_pct: 0.1
slo_budget_fraction: 0.001 # max 0.1% of each day error funds
exclusion_zones:
- payment_auth
- fraud_detection
- session_management
min_steady_state_window: 15m # require secure baseline earlier than injection
max_experiment_duration: 20mDiscover what this encodes {that a} typical chaos script doesn’t: the speculation is a falsifiable assertion about system habits, not an outline of what is going to be damaged. The acceptance standards outline what ‘cross’ means in behavioral phrases. The exclusion zones and steady-state window implement constraints most groups deal with manually and inconsistently.
3.3 From Specification to Experiment Candidates
The experiment generator traverses the service dependency graph to search out all parts on the important path of the goal habits. Here’s a simplified Python sketch of that traversal:
Itemizing 2 – Simplified critical-path traversal utilizing a weighted dependency graph
from typing import Listing, Dict
import networkx as nx
def get_critical_path_components(
graph: nx.DiGraph,
target_behavior: str,
exclusion_zones: Listing[str]
) -> Listing[Dict]:
candidates = []
for node in nx.descendants(graph, target_behavior):
if node in exclusion_zones:
proceed
edge_data = graph.edges[target_behavior, node]
candidates.append({
'element': node,
'call_frequency': edge_data.get('call_freq', 0),
'degradation_sensitivity': edge_data.get('sensitivity', 0),
'in_blast_radius_of': record(nx.ancestors(graph, node))
})
return sorted(
candidates,
key=lambda x: x['degradation_sensitivity'] * x['call_frequency'],
reverse=True
)The sting weights, call_frequency, and degradation_sensitivity are discovered from previous experiments and from observability telemetry (traces, service mesh metrics). A element that sits on each checkout request AND whose degradation traditionally propagates to user-facing errors ranks highest. One which sits on a background job ranks close to zero.
4. Actual-Time Security Analysis: Past Static Thresholds
Ishu Anand Jaiswal, Senior Engineering Chief at Intuit, identifies the element that makes security analysis genuinely clever moderately than simply automated:
“What’s lacking for really clever chaos is an AI planner that understands stay topology and ‘resilience funds.’ It ought to constantly estimate how a lot extra latency, loss, or useful resource depletion the system can take in, then choose and sequence experiments that maximize studying whereas staying inside that funds, updating its mannequin from each run and from actual incidents.” — Ishu Anand Jaiswal, Senior Engineering Chief, Intuit [8]
The ‘resilience funds’ idea is completely different from the SLO error funds. The error funds measures how a lot reliability you may have already consumed this era. The resilience funds is potential: given the system’s present state, how a lot extra stress of a particular kind can it take in earlier than behaviors exterior the experiment’s scope start to degrade?
Desk 1 under reveals how static threshold gating compares to real-time resilience scoring throughout 5 key alerts:
| Sign | Static Threshold Gating | Actual-Time Resilience Scoring |
|---|---|---|
| SLO error funds | Checked as soon as at experiment begin | Repeatedly monitored; abort triggered if burn fee spikes |
| Dependency well being | Not checked | p99, error fee, circuit-breaker state learn from service mesh earlier than and through injection |
| Blast radius | Fastened fraction of replicas (e.g. 10%) | Dynamically estimated from dependency graph + historic sensitivity weights |
| Abort sign | Infrastructure metric crosses threshold | Goal habits degradation (e.g. checkout completion fee drops > 2%) |
| Topology consciousness | None, script targets fastened parts | Dwell dependency graph; experiment reroutes if goal element already degraded |
| Studying | None, script unchanged after run | Predicted vs. precise blast radius delta updates edge weights for future runs |
The abort sign row is the place the behavioral framing produces its most concrete distinction. As a substitute of halting when service latency crosses a threshold, an intent-aware experiment halts when the goal habits, checkout completion, degrades past the acceptance criterion. A latency spike on an irrelevant element doesn’t cease the experiment. A latency spike on the checkout important path stops it instantly, no matter what the infrastructure dashboards present.
5. The Person-Context Downside Infrastructure Metrics Can not Clear up
Isabella Rossi, CPO at Fruzo, has constructed chaos mechanisms on high of behavioral alerts moderately than infrastructure metrics. Her statement cuts to an issue blast-radius management can not deal with:
“Chaos engineering instruments sometimes deal with system resilience as a static property. They inject stress based mostly on time of day or load thresholds, which misses how brittle a system may be in a single consumer context and completely secure in one other. A database timeout throughout signup is catastrophic. The identical timeout throughout an non-obligatory function is barely noticeable. Present instruments don’t make that distinction.” – Isabella Rossi, Chief Product Officer, Fruzo [9]
That is technically exact, not simply intuitive. A write timeout to the consumer registration desk throughout a signup stream terminates a session. A write timeout to a feature-flag learn cache throughout a preferences web page falls again to defaults silently. Each occasions look equivalent on infrastructure dashboards, elevated timeout fee on a database connection pool. Their consumer affect differs by orders of magnitude.
Desk 2 illustrates how the identical fault, on the identical element, produces wildly completely different blast-radius severity relying on which consumer habits is energetic:
| Fault | Element | Person Context | Blast-Radius Severity |
|---|---|---|---|
| DB write timeout | user_profile_db | Signup stream | CRITICAL, session terminated, consumer misplaced |
| DB write timeout | user_profile_db | Preferences replace | LOW, silent fallback to defaults, invisible to consumer |
| Pod termination | inventory_service | Energetic checkout | HIGH, checkout could fail or stall past SLO |
| Pod termination | inventory_service | Nightly batch sync | NEGLIGIBLE, batch retries routinely |
| Latency +200ms | recommendation_api | Homepage load | LOW, async; web page renders with out suggestions |
| Latency +200ms | recommendation_api | Checkout upsell step | MEDIUM, synchronous name; provides +200ms to checkout |
A script-based chaos software has no method to populate the ‘Person context’ column. It doesn’t know which consumer behaviors are energetic when the experiment runs. An intent-based system can, as a result of the intent specification names the goal habits, and the experiment generator solely considers parts in that habits’s important path below present site visitors.
6. The Enterprise-Sign Extension: Blast Radius in {Dollars}
When you anchor experiments to behaviors moderately than parts, the logical extension of that precept reaches additional than most SRE apply goes right now.
James Shaffer, Managing Director at Insurance coverage Panda, has rebuilt his total chaos program round income alerts:
“Static scripts are rubbish. They don’t respect the community’s present state. We tied our fault injection engine on to stay enterprise metrics, not simply server masses. If energetic quote completions drop by even two p.c, the check immediately kills itself. It’s an automatic kill swap based mostly on income, not latency. What’s lacking from genuinely clever chaos testing isn’t higher AI to interrupt issues. It’s AI that understands the blast radius in greenback quantities. A microservice failing would possibly appear like a catastrophic outage to an SRE. But when it doesn’t cease a consumer from shopping for an auto coverage, who cares? Good chaos must be taught the distinction between technical noise and precise monetary bleeding.” — James Shaffer, Managing Director, Insurance coverage Panda [10]
Shaffer’s kill swap, triggered by a 2% drop in quote completions, is a direct manufacturing implementation of a behavioral acceptance criterion. The abort sign is the enterprise transaction fee, not a p99 latency threshold. Here’s what that appears like within the end result knowledge mannequin:
# outcome_record.yaml
end result:
experiment_id: exp-checkout-inv-2025-01
hypothesis_result: SUPPORTED # circuit breaker tripped as predicted
abort_reason: null # experiment ran to completion
# behavioral alerts (acceptance standards)
checkout_p99_latency_ms: 312 # handed: < 400ms
checkout_error_rate_pct: 0.04 # handed: < 0.1%
checkout_completion_rate_delta: -0.3% # handed: < 2% threshold
# blast radius: predicted vs precise
predicted_blast_radius:
- inventory_read_service
actual_blast_radius:
- inventory_read_service
- cart_service # DISCOVERED dependency, not in graph mannequin
budget_consumed_pct: 0.00083
# mannequin replace alerts
graph_updates:
- add_edge: [checkout, cart_service]
sensitivity_weight: 0.34
blast_radius_prediction_error: 0.34Essentially the most worthwhile line on this file is the found dependency: cart_service was not within the graph mannequin, however the experiment revealed it responds to inventory_read degradation. That replace propagates ahead, the following checkout experiment will embrace cart_service in its blast-radius analysis. That is how the system’s mannequin of itself improves over time, with out human curation.
7. Why This Is an AI Downside, Not Simply an Orchestration Downside
The affordable objection at this level is that every part described above appears like engineering work, dependency graph traversal, threshold comparability, structured logging. Do we actually want AI for this, or simply higher plumbing?
The plumbing handles deterministic choices: if burn fee exceeds X, abort. If latency crosses Y, halt. These are the guardrails present instruments implement. They’re worthwhile and closed below identified assumptions. The issues that require discovered fashions are those the place the choice area just isn’t enumerable:
- Blast-radius prediction on novel topologies. Predicting second-order results of a fault on parts circuitously focused requires generalization from behavioral patterns in previous experiments. You can’t enumerate all attainable service graphs at authoring time.
- Speculation era. Translating ‘check checkout resilience below stock degradation’ right into a ranked record of fault varieties ordered by anticipated informativeness just isn’t rule execution. It requires reasoning about semantic relationships between service behaviors.
- Sensitivity weight studying. The sting weights within the dependency graph should not static properties. They shift with site visitors patterns, caching habits, and deployment modifications. They have to be discovered constantly from experimental outcomes.
- Anomaly attribution throughout experiments. When a number of alerts transfer concurrently throughout an experiment, figuring out which motion is brought on by the injected fault versus pre-existing circumstances requires a counterfactual mannequin. That could be a causal inference downside.
This final level is the place the sphere is furthest from an answer. Adaptive chaos instruments are respectable at correlating alerts however can not clarify why a particular fault cascades the way in which it does via a given topology [4]. Constructing that functionality requires one thing no present chaos software makes an attempt: a causal mannequin of failure propagation that may be up to date from experiment outcomes and interrogated with counterfactual queries.
8. The Counterargument, Taken Significantly
Mature groups already write speculation statements. The Chaos Engineering ideas from Basiri et al. (2016) require defining steady-state habits earlier than injection [2]. Netflix, Google, and Intuit run disciplined packages the place engineers doc what they anticipate to occur earlier than operating experiments. Is ‘intent-based chaos engineering’ only a description of what cautious practitioners already do?
The objection is partially appropriate. Mature groups do preserve speculation statements. The issue is that they preserve them in documentation, not in tooling. The speculation exists in a Notion web page. The chaos software that executes the experiment has no entry to it. This creates 4 particular gaps:
• The software can not confirm that the experiment design really assessments the said speculation, a mismatch between documented intent and configured fault is rarely caught
• The software can not adapt the experiment based mostly on real-time system state relative to the speculation, it runs no matter whether or not present circumstances make the check significant
• The software can not replace a dependency mannequin based mostly on the delta between predicted and precise blast radius, that sign is misplaced to a postmortem doc
• The software can not forestall the identical speculation from being examined redundantly, script libraries develop, perception doesn’t
The distinction between ‘groups do that manually’ and ‘tooling does this computable’ is the distinction between a apply that scales with the staff and one that doesn’t. When the engineer who wrote the speculation assertion leaves, so does the intent. When the system topology modifications, the speculation could now not correspond to any actual experiment design, and nothing catches that.
9. Three issues the sphere must construct
The structure exists. The security primitives it relies on are mature. The observability infrastructure it requires is extensively deployed. Three particular gaps stay between the place the sphere is and the place it must go.
Hole 1: A typical intent specification schema
Each staff that does hypothesis-driven chaos engineering makes use of its personal format, a Notion template, a runbook part, a JIRA ticket kind. None of those are machine-readable by chaos tooling. The 5 fields in Itemizing 1 above (target_behavior, speculation, acceptance_criteria, budget_fraction, exclusion_zones) seize the important construction. Standardizing this schema, analogous to how OpenAPI standardized service interface descriptions, would let tooling ingest, validate, and act on hypotheses moderately than ignoring them.
Hole 2: Structured experiment end result knowledge
Blast-radius prediction requires coaching knowledge. Nearly no groups at present file experiment outcomes in a structured, queryable format. Outcomes stay in Slack threads and postmortem paperwork. The result schema in Itemizing 4 is a place to begin. Instrumenting current chaos instruments to emit structured outcomes routinely, and storing them in a queryable format alongside the dependency graph, would generate the coaching sign that predictive fashions want.
Hole 3: Speculation-quality analysis
Chaos packages are at present evaluated on protection (what number of companies have been examined) and survival (did the system maintain). Neither measures whether or not experiments had been informative. A hypothesis-quality rating, did this run’s end result change the staff’s perception in regards to the system, and by how a lot?, would give practitioners a sign for bettering experiment design moderately than simply accumulating scripts. None of those require new analysis. They require the sphere to agree on representations and put money into the information infrastructure that makes studying from experiments computable moderately than anecdotal.
Conclusion
Chaos engineering has the proper security primitives. What it lacks is an equally principled method to informativeness. With out an intent layer, chaos packages have a tendency towards two failure modes: scripts that check the identical issues repeatedly, and experiments that keep inside funds whereas producing nothing price studying.
The intent-based structure addressed on this article doesn’t exchange the protection mechanisms the sphere has constructed. It provides a layer that makes these mechanisms extra significant, grounding them in what the operator is definitely making an attempt to be taught, deriving experiments from behavioral specs moderately than engineering folklore, and accumulating a mannequin of the system’s failure dynamics that improves with every run.
The hole is actual, structural, and solvable. The query is whether or not the sphere builds the infrastructure to shut it, or retains writing scripts.
References
[1] M. P. Amador, Ok. P. Annamali, S. Jeuk, S. Patil, M. F. Ok. Wielpuetz, Intent-Based mostly Chaos Stage Creation to Variably Take a look at Environments, US12242370B2 (2025), Cisco Expertise Inc., United States Patent and Trademark Workplace
[2] A. Basiri, N. Behnam, R. de Rooij, L. Hochstein, L. Kosewski, J. Reynolds, C. Rosenthal, Chaos Engineering (2016), IEEE Software program, 33(3), 35–41
[3] B. Beyer, C. Jones, J. Petoff, N. R. Murphy, Web site Reliability Engineering: How Google Runs Manufacturing Techniques (2016), O’Reilly Media
[4] D. Kikuta, H. Ikeuchi, Ok. Tajiri, ChaosEater: Absolutely Automating Chaos Engineering with Massive Language Fashions (2025), arXiv:2501.11107
[5] L. C. Opara, O. N. Akatakpo, I. C. Ironuru, Ok. Anyaene, B. O. Enobakhare, Chaos Engineering 2.0: A Evaluation of AI-Pushed, Coverage-Guided Resilience for Multi-Cloud Techniques (2025), Journal of Laptop, Software program, and Program, 2(2), 10–24
[6] A. Pareek, Skilled Practitioner Response on Intent-Based mostly Resiliency (2025), Qwoted — Coders.dev
[7] E. Tian, Skilled Practitioner Response on Speculation-Pushed Chaos Engineering (2025), Qwoted — GPTZero
[8] I. A. Jaiswal, Skilled Practitioner Response on AI Planning and Resilience Budgets (2025), Qwoted — Intuit
[9] I. Rossi, Skilled Practitioner Response on Person-Context Resilience (2025), Qwoted — Fruzo
[10] J. Shaffer, Skilled Practitioner Response on Enterprise-Metric Chaos Engineering (2025), Qwoted — Insurance coverage Panda
