Docker Trusted Registry
The architecture below depicts the infrastructure built via the CloudFormation template in this repo. It assumes that cfn-core has already been run and hence the VPC skeleton already exists.
Durability is provided via S3 for all Docker images. These images are also replicated to another region for redundancy.
This deployment of DTR is fairly HA and "chaos friendly". In the event of an instance failure or any other problem which prevents the ELB health check from passing the ASG will replace the instance and restore the Postgres database from the most recent backup (no more than 15 minutes prior). Typical time for this restart to occur is ~7 minutes.
Currently DTR does not horizontally scale due to the fact that the Postgres database is coupled into the DTR stack.