Document checks for documents with PDF417 barcodes (primarily US driving licences) erroneously returned a result of “consider”, due to flagging of data consistency (comparison between OCR extracted and barcode extracted data) between 00:00 and 3:10 UTC on July 31st. This affected customers with our default “missing barcode” configuration, which requires the barcode to be present to successfully process a check, otherwise resulting in a “caution” response.
At 2021-07-31 00:00 UTC, a licence for a 3rd party library utilised by the underlying barcode-extraction service expired, causing the component to fail to correctly identify and extract PDF417 barcodes. This caused upstream document checks to fail when comparing OCR extracted data and barcode extracted data, as the latter was not present.
A renewed licence had been updated within the service’s secret repository by the responsible team prior to July 31st, but the service had not been restarted to pick up the new licence values. Contributing Factors Four other factors contributed to this issue:
The barcode-extraction service swallowed the “license expired” error; while a warning message was output into service logs, the service APM tracing did not report a degradation in overall error rate. Due to this, our service-level error rate monitors did not trigger; it also lengthened the investigation as it was more difficult to pinpoint the source of discrepancy. Due to lower volume out of hours (Saturday AM), our overall result monitoring took a lengthier than expected period of time to detect and notify anomalous levels of document flagging, compared to if this incident had occurred during a higher volume period. The time taken to triage the issue and update the customer-facing status page was too long, and should have been prioritised in the response The on-call team did not have immediate access to the licence server for this component, nor earlier visibility of the potential expiry date.
During the response, we:
Following on from this incident, we will: