Skip to content
Tech News
← Back to articles

Simple and Correct Snapshot Isolation

2026-04-30 | original
read original get Database Snapshot Isolation Guide → more articles
Why This Matters

This article highlights a breakthrough in database concurrency control by fixing the longstanding issues with Snapshot Isolation (SI). The proposed method simplifies ensuring serializability, which is crucial for data consistency, making database systems more reliable and easier to implement for both developers and consumers. This advancement has the potential to improve the correctness and performance of high-concurrency database applications in the tech industry.

Key Takeaways

Simple and Correct Snapshot Isolation

Snapshot isolation (SI) is a popular approach to concurrency control in databases systems. It avoids many forms of anomalies, yet provides a high degree of concurrency, especially for read-heavy workloads. Yet, as shown by a classic paper (Berenson et al. 1995), SI does not guarantee serializability. A concurrent execution of a set of transactions is said to be serializable if it is equivalent to executing the transactions in sequence. Serializability is therefore the strongest guarantee of correctness for database transactions, analogous to sequential consistency in general concurrent programming. This has led to attempts to "patch up" SI, including serializable snapshot isolation (SSI) (Cahill, Röhm, and Fekete 2009) which adds addtional checks on top of the standard SI implementation. SSI has been adopted by mainstream systems including PostgreSQL. Personally, I find SSI to be unsatisfying, as it feels like a bolt-on solution to fix the already-broken SI. I was therefore delighted to stumble upon A Critique of Snapshot Isolation (Yabandeh and Gómez Ferro 2012) which describes a method to fix SI by addressing the root cause and guarantee serializability, all by changing one single line of code. I'll distill the core idea of WSI in the rest of this post, and hopefully after reading, you'll feel like you could have come up with the algorithm yourself.

Snapshot isolation

Another benefit of SI is that it's so simple to implement: you fork the DB at the beginning of the transaction, run your queries over your fork, then try to merge the DB back in. If you've used git, this will feel just like merging a branch, and you'd be right to feel that. Under SI, each DB item (say a row) has a timestamp recording the last committed update, then for each transaction at commit time, we check if each item the transaction wants to write has been overwritten since the transaction started. If so, the transaction aborts. In other words, SI avoids writing over "stale values".

For example, consider the following sequence diagram, where T 1 sets Z to X+1, and T 2 sets Z to Y+1. Because T 2 updated Z as T 1 is running, when T 1 wants to commit, the Z value it sees has already become stale, so T 1 aborts. Concretely, T 2 would increment Z's timestamp when it commits, and T 1 will see that the last updated time of Z is after T 1 's own start time.

For another example, suppose T 1 wants to set Y to X+1, and T 2 wants to set X to Y+1. As the diagram below shows, neither of the transactions is writing over stale value, so both of them succeed.

The pair of examples also demonstrate the issue with SI: the first execution is serializable, yet aborted by SI, whereas the second is allowed by SI, but not serializable! In particular, the first example is equivalent to the serial execution where T 2 runs before T 1 , in which case T 1 would overwrite T 2 anyways. In the second example, both X and Y would be incremented by 1 at the end of execution, but in any serial schedule, one of them would be incremented by 1, and the other one by 2. Overall, this means SI both forbids certain correct executions (false negatives) and permits incorrect ones (false postives).

Write-snapshot isolation

The issue of snapshot isolation stems from the conflict check: SI checks for write-write conflicts, and aborts upon finding one. But that doesn't really make sense! In fact, you may have felt slightly uneasy when reading "stale writes" above - if a value becomes stale, why is it bad to overwrite it? Because it is not! What we really should be worrying about is stale reads. Intuitively, a transaction would only read a value to calculate what values it should write. Therefore, a stale read would mean the written values based on that read were calculated using outdated data, thereby resulting in inconsistencies in the database. The write-snapshot isolation (WSI) algorithm following (Yabandeh and Gómez Ferro 2012) checks exactly for such stale reads. During WSI execution, we still record the last-updated time for each DB item. But for each transaction T that is about to commit, we check if any value read by T has been overwritten, i.e., become stale. If so, T aborts.

Let's revisit the examples. In the first example, because X has not been updated since T 1 read it, the value is still fresh, and T 1 successfully commits, even though T 2 has written to X in the mean time. T 2 's write is simply overwritten, and the execution is equivalent to a serial one where T 1 runs after T 2 .

... continue reading

Explore topics: snapshot isolation serializable snapshot isolation postgresql berenson yabandeh
Related:
pgxbackup: Continuity Support for pgBackRest
Durable queues, streams, pub/sub, and a cron scheduler – inside your SQLite file
Honker – Durable queues, streams, pub/sub, and cron scheduler in a SQLite file
Linux 7.0 Broke PostgreSQL: The Preemption Regression Explained
Barman – Backup and Recovery Manager for PostgreSQL

© 2026 GoKawiil

About | Editorial Policy | Contact