Database Management SystemsThomas Write Rule

Thomas Write Rule

LevelIntermediate

Duration60 mins

TopicThomas Write Rule

5 / 5

Correctness

Proving the Thomas Write Rule Correct

Performance optimizations are worthless if they compromise correctness. The Thomas Write Rule ignores certain write operations—a seemingly dangerous proposition. How can we be certain that ignoring writes doesn't corrupt the database or violate isolation guarantees?

In this page, we'll rigorously examine the correctness of the Thomas Write Rule. We'll prove that it produces view serializable schedules, examine edge cases that might threaten correctness, and establish the precise conditions under which the rule is safe to apply.

This analysis is essential for anyone implementing or reasoning about timestamp-based concurrency control, where a subtle bug in concurrency handling can lead to silent data corruption.

What You Will Learn

By the end of this page, you will understand the formal proof of view serializability for the Thomas Write Rule, the precise conditions required for correctness, edge cases that could violate correctness if mishandled, and the relationship between the rule and ACID properties.

Review of Serializability Concepts

Before proving correctness, let's review the serializability concepts that form the foundation of our analysis.

Serial Schedule:

A schedule S is serial if transactions execute one after another without interleaving. If transaction T₁ starts, all of T₁'s operations complete before T₂ starts.

Serial schedules are trivially correct—each transaction sees a consistent state and produces a consistent result.

Serializable Schedule:

A schedule S is serializable if it is equivalent to some serial schedule. The database ends up in a state that could have been produced by executing transactions sequentially.

Conflict Serializability:

A schedule S is conflict serializable if it can be transformed into a serial schedule by swapping non-conflicting adjacent operations.

Two operations conflict if:

They belong to different transactions
They access the same data item
At least one is a write

View Serializability:

A schedule S is view serializable if it is view equivalent to some serial schedule S'. Two schedules are view equivalent if:

Initial reads: For each data item X, the same transaction reads the initial value in both S and S'
Read sources: For each read operation r_i(X), the same transaction wrote the value being read in both S and S'
Final writes: For each data item X, the same transaction performs the final write in both S and S'

Relationship Between Serializability Types

Conflict Serializable ⊂ View Serializable ⊂ Serializable

Every conflict serializable schedule is view serializable, but not vice versa. The Thomas Write Rule produces schedules that are view serializable but may not be conflict serializable. This is still correct—view serializability guarantees database consistency.

Why View Serializability is Sufficient:

View serializability ensures that:

Every read sees the same value it would see in the equivalent serial schedule
The final database state matches the equivalent serial schedule

These two guarantees are sufficient for application correctness. Application logic observes the same values and produces the same final state as a serial execution.

The difference between conflict and view serializability is theoretical—conflict serializability is easier to test (polynomial time) but view serializability is NP-complete in general. However, the Thomas Write Rule protocol guarantees view serializability by construction.

Formal Correctness Proof

We now prove that the Thomas Write Rule produces view serializable schedules.

Theorem: Let S be a schedule produced by the timestamp ordering protocol with the Thomas Write Rule. Then S is view serializable.

Proof Strategy: We show that S is view equivalent to the serial schedule S_s where transactions execute in timestamp order.

Let transactions be ordered T₁, T₂, ..., Tₙ where TS(Tᵢ) < TS(Tᵢ₊₁) for all i.

Proof of View Equivalence:

Part 1: Initial Reads

In schedule S, a transaction Tᵢ reads the initial value of data item X if no transaction Tⱼ with TS(Tⱼ) < TS(Tᵢ) has written X.

The timestamp protocol ensures this because:

Tᵢ can read X only if TS(Tᵢ) ≥ W-TS(X)
If W-TS(X) = 0 (no prior writes), Tᵢ reads the initial value
This is identical to the serial schedule S_s where earlier transactions execute first

✓ Initial reads match.

Part 2: Read Sources (the critical part)

In schedule S, when Tᵢ reads X, it reads the value written by some Tⱼ with TS(Tⱼ) ≤ TS(Tᵢ).

Specifically, Tᵢ reads the value written by the transaction with the largest timestamp ≤ TS(Tᵢ) that wrote X.

Now consider the serial schedule S_s:

All transactions with TS < TS(Tᵢ) have executed
The value of X is the result of the most recent write by some Tⱼ with TS(Tⱼ) < TS(Tᵢ)
This is exactly the value Tᵢ would read in S_s

What about ignored writes?

Suppose Tₖ's write to X was ignored (because TS(Tₖ) < W-TS(X) where W-TS(X) = TS(Tⱼ) for some Tⱼ).

In S, Tₖ's write never happened; X has Tⱼ's value
In S_s, Tₖ writes first, then Tⱼ writes (since TS(Tⱼ) > TS(Tₖ)); X has Tⱼ's value
The values match!

But what if some Tₘ with TS(Tₖ) < TS(Tₘ) < TS(Tⱼ) reads X?

The Thomas Write Rule only ignores Tₖ's write if R-TS(X) < TS(Tₖ)
This means no transaction Tₘ with TS(Tₘ) > TS(Tₖ) has read X yet when Tₖ attempts to write
Therefore, in S, Tₘ reads Tⱼ's value (not Tₖ's)
In S_s, Tₘ reads Tₖ's value (which is then overwritten by Tⱼ)... wait, this seems wrong!

Resolution: The key insight is timing.

The Timing Insight

When we decide to ignore Tₖ's write, we've verified that R-TS(X) < TS(Tₖ). This means no transaction between Tₖ and Tⱼ has read X yet. If Tₘ later reads X, Tₘ sees Tⱼ's value in both S (Tₖ's write was ignored) and S_s (Tₖ's write was overwritten before Tₘ's read in serial order). The view equivalence holds!

Part 3: Final Writes

In schedule S, the final write to X is performed by the transaction with the largest timestamp that wrote X.

This is exactly what happens in the serial schedule S_s:

Transactions execute in timestamp order
The last to execute that writes X performs the final write

What about ignored writes?

If Tₖ's write was ignored, it was because Tⱼ with larger timestamp already wrote
Tⱼ (or another transaction with even larger timestamp) performs the final write
This is identical in S_s: Tⱼ's write follows Tₖ's, making Tⱼ the final writer

✓ Final writes match.

Conclusion: S is view equivalent to S_s. Therefore, S is view serializable. ∎

Why Conflict Serializability May Not Hold

While the Thomas Write Rule ensures view serializability, it may produce schedules that are NOT conflict serializable. Let's examine why this is the case and why it doesn't matter for correctness.

Example of Non-Conflict-Serializable Schedule:

Consider transactions T₁ (timestamp 10) and T₂ (timestamp 20), and data item X:

Schedule S:
  T₂: write(X, 200)    [First to execute]
  T₁: write(X, 100)    [IGNORED by Thomas Write Rule]
  T₂: commit
  T₁: commit

Final state: X = 200

Conflict Analysis:

T₁'s write(X) and T₂'s write(X) are conflicting operations
In schedule S, T₂'s write appears before T₁'s write attempt
In the equivalent serial schedule (by timestamp): T₁ → T₂, T₁'s write should appear first
We cannot reorder S to match T₁ → T₂ by swapping non-conflicting operations
Therefore, S is NOT conflict serializable

But S is View Serializable:

Serial schedule S_s = T₁ → T₂: T₁ writes X=100, then T₂ writes X=200. Final: X=200
Schedule S (with ignored write): X=200. Final: X=200
Both have the same final state
No reads of X occurred, so no read source matching needed
View equivalent! ✓

The "Blind Write" Case

When a write is ignored and no read observed the would-be written value, we have a 'blind write' scenario. The conflict serializability test fails because it can't reorder the conflicting writes, but view serializability passes because the final state and all observable reads are identical.

Why View Serializability is Sufficient for Correctness:

Application Correctness: Applications observe the same read values and produce the same final state as a serial execution. This is all that matters for application logic.
ACID Properties:
- Atomicity: Unchanged—transactions commit or abort entirely
- Consistency: The final state is consistent (view equivalent to serial)
- Isolation: Transactions behave as if executed serially (view equivalent)
- Durability: Unchanged—committed data persists
No Observable Difference: There is no experiment an application can perform to distinguish between the Thomas Write Rule schedule and the equivalent serial schedule.

The Theoretical Gap:

The gap between conflict and view serializability is:

Conflict serializability: Testing is polynomial time (precedence graph)
View serializability: Testing is NP-complete in general

But the Thomas Write Rule protocol produces schedules that are guaranteed view serializable by construction—no testing needed. The protocol itself ensures correctness.

Conditions Required for Correctness

The Thomas Write Rule is correct only when specific conditions are met. Violating these conditions can lead to incorrect behavior.

Condition 1: No Intervening Reads (R-TS Check)

The rule applies only when TS(T) ≥ R-TS(X). This is non-negotiable.

Why: If a transaction Tₘ with TS(Tₖ) < TS(Tₘ) has read X, then:

In the serial schedule, Tₘ reads Tₖ's value
If we ignore Tₖ's write, Tₘ reads a different value
View equivalence breaks

What happens if we ignore this condition?

Scenario (BUG if R-TS check is skipped):
  T₂ (ts=20): write(X, 200)
  T₃ (ts=15): read(X) → sees 200
  T₁ (ts=10): write(X, 100) [INCORRECTLY IGNORED]

Serial schedule T₁ → T₃ → T₂:
  T₁ writes X=100
  T₃ reads X → should see 100!
  T₂ writes X=200

With buggy ignore:
  T₃ saw 200, but serial T₃ should see 100.
  View serializability VIOLATED!

Critical Implementation Rule

NEVER ignore a write when TS(T) < R-TS(X). This check must be performed BEFORE the W-TS check. The order of checks is: (1) Check R-TS for abort, (2) Check W-TS for ignore, (3) Execute write. Getting this order wrong causes silent data corruption.

Condition 2: Unique Timestamps

Transactions must have unique timestamps. If two transactions have the same timestamp, the ordering is ambiguous.

Why: The proof of view serializability relies on a strict ordering of transactions by timestamp. Equal timestamps create ambiguity in the equivalent serial schedule.

Mitigation: Use composite timestamps (logical clock + transaction ID) or ensure unique assignment through centralized counter.

Condition 3: Monotonic Timestamps (within a transaction)

A transaction's timestamp must not change during execution.

Why: If TS(T) changes, earlier operations may have used a different timestamp for their checks, violating the invariants.

Condition 4: Accurate Timestamp Tracking

W-TS(X) and R-TS(X) must accurately reflect the largest timestamps to have written/read X.

Why: If stale or incorrect, the comparisons yield wrong decisions.

Correctness Checklist

•R-TS check BEFORE W-TS check — Abort if TS(T) < R-TS(X); only then check for outdated write
•Unique timestamps per transaction — No two active transactions share a timestamp
•Immutable timestamp during transaction — Once assigned, a transaction's timestamp never changes
•Atomic timestamp updates — W-TS(X) and R-TS(X) updates must be atomic with the operation
•No partial application — Either apply write and update W-TS, or ignore both; never update W-TS without applying write

Edge Cases and Potential Pitfalls

Let's examine edge cases where correctness might be at risk and how to handle them properly.

Edge Case 1: Transaction Aborts After Ignored Write

Scenario:

T₁'s write to X is ignored (W-TS(X) > TS(T₁))
T₁ continues and performs other operations
T₁ later aborts (due to a read conflict on Y)

Question: Does the abort affect correctness?

Answer: No. The ignored write was never applied to the database, so there's nothing to undo. T₁'s abort correctly removes all of T₁'s effects (which didn't include the ignored write).

Edge Case 2: Cascading Aborts

Scenario:

T₂ reads value written by T₁
T₁'s write to X is later ignored (doesn't affect T₂'s read of Y)
T₁ aborts for another reason
Does T₂ need to abort?

Answer: If T₂ read a value written by T₁, and T₁ aborts, then T₂ may need to abort (cascading abort). But this is independent of the Thomas Write Rule—it's a standard cascading abort scenario. The ignored write on X doesn't affect this because T₂ didn't read X from T₁.

Edge Case 3: Out-of-Order Timestamp Assignment

Scenario:

Transaction T₁ starts, gets timestamp 10
Transaction T₂ starts, gets timestamp 20
T₂ completes quickly and writes to X (W-TS(X) = 20)
T₁ slowly reaches its write to X
T₁'s write is correctly ignored

Is this correct?: Yes. The Thomas Write Rule doesn't require transactions to execute in timestamp order—only that the final state matches a serial execution in timestamp order.

Edge Case 4: Same Item Written Multiple Times

Scenario:

T₁ writes X = 100 (W-TS(X) = 10, T₁'s timestamp)
T₂ writes X = 200 (W-TS(X) = 20, T₂'s timestamp)
T₁ attempts second write X = 150

Analysis:

TS(T₁) = 10 < W-TS(X) = 20
T₁'s second write is ignored
T₁'s first write was successful but is now overwritten by T₂
Final state: X = 200 (T₂'s value)

Is this correct?: Yes. In serial schedule T₁ → T₂: T₁ writes twice, then T₂ overwrites. Final is T₂'s value.

Implementation Pitfall

A common bug is updating W-TS(X) even when the write is ignored. This is WRONG. If you update W-TS(X) = TS(T₁) when ignoring, you're claiming T₁ wrote X when it didn't. This corrupts the timestamp state and breaks correctness for future operations.

Relationship with ACID Properties

Let's examine how the Thomas Write Rule affects each ACID property.

Atomicity:

Atomicity requires that a transaction either commits entirely or aborts entirely. Does ignoring a write violate atomicity?

Analysis: At first glance, it might seem that ignoring a write means only "part" of the transaction takes effect. However:

The ignored write is semantically equivalent to a write that was immediately overwritten
In the view-equivalent serial schedule, that write DID happen—it was just overwritten
From the perspective of atomicity, the transaction's logical intent was fully executed
The only difference is optimization: we skipped the physical write that would be immediately overwritten

Verdict: Atomicity is preserved. The transaction still executes atomically—we just optimized away invisible work.

Consistency:

Consistency requires that transactions maintain database invariants. Does ignoring writes affect consistency?

Analysis:

The final database state is view-equivalent to a serial schedule
Serial schedules preserve consistency (assuming transactions individually preserve it)
Therefore, view-equivalent schedules also preserve consistency

Verdict: Consistency is preserved.

Isolation:

Isolation requires that concurrent transactions appear to execute in isolation. The Thomas Write Rule produces view serializable schedules.

Analysis:

View serializability ensures every transaction sees values as if executing in some serial order
The Thomas Write Rule doesn't allow any transaction to see invalid values
The R-TS check ensures no intervening reads are affected

Verdict: Isolation is preserved at view serializable level (not conflict serializable).

Durability:

Durability requires that committed transactions persist. Does ignoring writes affect durability?

Analysis:

Ignored writes are never applied to the database
Therefore, there's nothing to persist for ignored writes
Committed state (after ignored writes discarded) is properly persisted
Recovery correctly restores this state

Verdict: Durability is preserved. Only the correct final state is persisted.

ACID Properties with Thomas Write Rule
Property	Status	Explanation
Atomicity	✓ Preserved	Transactions execute fully; ignored writes are logically 'overwritten'
Consistency	✓ Preserved	View equivalence to serial schedule maintains invariants
Isolation	✓ Preserved (View)	View serializability ensures isolated appearance
Durability	✓ Preserved	Correct final state is persisted and recovered

Correctness in Distributed Systems

The Thomas Write Rule was originally designed for distributed database systems. Let's examine correctness considerations in this context.

Challenge 1: Clock Synchronization

In distributed systems, different nodes may have unsynchronized clocks, affecting timestamp assignment.

Impact on Thomas Write Rule:

If timestamps are derived from local clocks, ordering may not reflect causal relationships
A write that appears "later" by timestamp may have causally preceded another write
The rule may ignore writes incorrectly

Mitigation:

Use logical clocks (Lamport timestamps) instead of physical clocks
Use hybrid logical clocks (HLC) for bounded physical-logical timestamps
Use central timestamp oracle (adds latency but ensures consistency)

Challenge 2: Network Partitions

During network partitions, different partitions may process writes to the same item.

Impact on Thomas Write Rule:

Partition A: T₁ writes X with timestamp 10
Partition B: T₂ writes X with timestamp 20
Neither knows about the other's write
After partition heals, which value is correct?

Mitigation:

The Thomas Write Rule alone doesn't solve partitions
Combine with partition-tolerant replication (eventual consistency, CRDT)
For strong consistency, require global coordination (Paxos, Raft)

Original Design Context

Robert Thomas developed this rule for the Early ARPAnet project where update operations from different sites needed conflict resolution. The rule was part of the 'last-writer-wins' conflict resolution strategy that is still used in many distributed systems today.

Challenge 3: Replication Lag

In replicated systems, different replicas may have different values of W-TS(X).

Impact on Thomas Write Rule:

Replica 1 has W-TS(X) = 20
Replica 2 has W-TS(X) = 10 (replication lag)
T₁ (timestamp 15) writes to Replica 2: write succeeds
T₁ (timestamp 15) writes to Replica 1: write is ignored
Inconsistent behavior!

Mitigation:

Ensure replicas see same W-TS before accepting writes
Use quorum-based protocols where majority must agree
Synchronize W-TS values as part of replication protocol

The Bottom Line for Distributed Systems:

The Thomas Write Rule provides a solid correctness foundation, but distributed systems add complexity that requires additional mechanisms. The rule is a building block, not a complete solution for distributed concurrency.

Summary: Correctness

We've rigorously examined the correctness of the Thomas Write Rule. Let's consolidate the key takeaways:

Key Takeaways

•The Thomas Write Rule produces view serializable schedules — Formal proof shows equivalence to serial schedule in timestamp order.
•View serializability is sufficient for correctness — Applications observe the same values and produce the same final state as serial execution.
•Conflict serializability may not hold — But this doesn't affect correctness; view serializability is the actual requirement.
•The R-TS check is critical — Without it, the rule would ignore writes that have observable effects, breaking correctness.
•All ACID properties are preserved — Atomicity, Consistency, Isolation, and Durability remain intact with the rule.
•Distributed systems require additional mechanisms — Clock sync, partition handling, and replica coordination are separate concerns.

Module Complete:

You have now completed the comprehensive study of the Thomas Write Rule. You understand:

What it is: An optimization to basic timestamp ordering that ignores obsolete writes
Why it works: Obsolete writes are invisible—their values would be immediately overwritten
How it's implemented: The R-TS and W-TS checks, the write buffer for read-own-write
When it helps: Write-heavy workloads with write-write conflicts
How to prove it correct: View serializability proof through view equivalence

This knowledge equips you to design and implement timestamp-based concurrency control systems that are both efficient and correct.

Module Complete

Congratulations! You have mastered the Thomas Write Rule—from its motivation and definition through its implementation, performance characteristics, and formal correctness proof. This fundamental optimization technique is essential knowledge for anyone working with database concurrency control.

5 / 5

Loading learning content...

Database Management SystemsThomas Write Rule

Thomas Write Rule

LevelIntermediate

Duration60 mins

TopicThomas Write Rule

5 / 5

Correctness

Proving the Thomas Write Rule Correct

This analysis is essential for anyone implementing or reasoning about timestamp-based concurrency control, where a subtle bug in concurrency handling can lead to silent data corruption.

What You Will Learn

Review of Serializability Concepts

Before proving correctness, let's review the serializability concepts that form the foundation of our analysis.

Serial Schedule:

A schedule S is serial if transactions execute one after another without interleaving. If transaction T₁ starts, all of T₁'s operations complete before T₂ starts.

Serial schedules are trivially correct—each transaction sees a consistent state and produces a consistent result.

Serializable Schedule:

A schedule S is serializable if it is equivalent to some serial schedule. The database ends up in a state that could have been produced by executing transactions sequentially.

Conflict Serializability:

A schedule S is conflict serializable if it can be transformed into a serial schedule by swapping non-conflicting adjacent operations.

Two operations conflict if:

They belong to different transactions
They access the same data item
At least one is a write

View Serializability:

A schedule S is view serializable if it is view equivalent to some serial schedule S'. Two schedules are view equivalent if:

Initial reads: For each data item X, the same transaction reads the initial value in both S and S'
Read sources: For each read operation r_i(X), the same transaction wrote the value being read in both S and S'
Final writes: For each data item X, the same transaction performs the final write in both S and S'

Relationship Between Serializability Types

Conflict Serializable ⊂ View Serializable ⊂ Serializable

Why View Serializability is Sufficient:

View serializability ensures that:

Every read sees the same value it would see in the equivalent serial schedule
The final database state matches the equivalent serial schedule

These two guarantees are sufficient for application correctness. Application logic observes the same values and produces the same final state as a serial execution.

Formal Correctness Proof

We now prove that the Thomas Write Rule produces view serializable schedules.

Theorem: Let S be a schedule produced by the timestamp ordering protocol with the Thomas Write Rule. Then S is view serializable.

Proof Strategy: We show that S is view equivalent to the serial schedule S_s where transactions execute in timestamp order.

Let transactions be ordered T₁, T₂, ..., Tₙ where TS(Tᵢ) < TS(Tᵢ₊₁) for all i.

Proof of View Equivalence:

Part 1: Initial Reads

In schedule S, a transaction Tᵢ reads the initial value of data item X if no transaction Tⱼ with TS(Tⱼ) < TS(Tᵢ) has written X.

The timestamp protocol ensures this because:

Tᵢ can read X only if TS(Tᵢ) ≥ W-TS(X)
If W-TS(X) = 0 (no prior writes), Tᵢ reads the initial value
This is identical to the serial schedule S_s where earlier transactions execute first

✓ Initial reads match.

Part 2: Read Sources (the critical part)

In schedule S, when Tᵢ reads X, it reads the value written by some Tⱼ with TS(Tⱼ) ≤ TS(Tᵢ).

Specifically, Tᵢ reads the value written by the transaction with the largest timestamp ≤ TS(Tᵢ) that wrote X.

Now consider the serial schedule S_s:

All transactions with TS < TS(Tᵢ) have executed
The value of X is the result of the most recent write by some Tⱼ with TS(Tⱼ) < TS(Tᵢ)
This is exactly the value Tᵢ would read in S_s

What about ignored writes?

Suppose Tₖ's write to X was ignored (because TS(Tₖ) < W-TS(X) where W-TS(X) = TS(Tⱼ) for some Tⱼ).

In S, Tₖ's write never happened; X has Tⱼ's value
In S_s, Tₖ writes first, then Tⱼ writes (since TS(Tⱼ) > TS(Tₖ)); X has Tⱼ's value
The values match!

But what if some Tₘ with TS(Tₖ) < TS(Tₘ) < TS(Tⱼ) reads X?

The Thomas Write Rule only ignores Tₖ's write if R-TS(X) < TS(Tₖ)
This means no transaction Tₘ with TS(Tₘ) > TS(Tₖ) has read X yet when Tₖ attempts to write
Therefore, in S, Tₘ reads Tⱼ's value (not Tₖ's)
In S_s, Tₘ reads Tₖ's value (which is then overwritten by Tⱼ)... wait, this seems wrong!

Resolution: The key insight is timing.

The Timing Insight

Part 3: Final Writes

In schedule S, the final write to X is performed by the transaction with the largest timestamp that wrote X.

This is exactly what happens in the serial schedule S_s:

Transactions execute in timestamp order
The last to execute that writes X performs the final write

What about ignored writes?

If Tₖ's write was ignored, it was because Tⱼ with larger timestamp already wrote
Tⱼ (or another transaction with even larger timestamp) performs the final write
This is identical in S_s: Tⱼ's write follows Tₖ's, making Tⱼ the final writer

✓ Final writes match.

Conclusion: S is view equivalent to S_s. Therefore, S is view serializable. ∎

Why Conflict Serializability May Not Hold

While the Thomas Write Rule ensures view serializability, it may produce schedules that are NOT conflict serializable. Let's examine why this is the case and why it doesn't matter for correctness.

Example of Non-Conflict-Serializable Schedule:

Consider transactions T₁ (timestamp 10) and T₂ (timestamp 20), and data item X:

Schedule S:
  T₂: write(X, 200)    [First to execute]
  T₁: write(X, 100)    [IGNORED by Thomas Write Rule]
  T₂: commit
  T₁: commit

Final state: X = 200

Conflict Analysis:

T₁'s write(X) and T₂'s write(X) are conflicting operations
In schedule S, T₂'s write appears before T₁'s write attempt
In the equivalent serial schedule (by timestamp): T₁ → T₂, T₁'s write should appear first
We cannot reorder S to match T₁ → T₂ by swapping non-conflicting operations
Therefore, S is NOT conflict serializable

But S is View Serializable:

Serial schedule S_s = T₁ → T₂: T₁ writes X=100, then T₂ writes X=200. Final: X=200
Schedule S (with ignored write): X=200. Final: X=200
Both have the same final state
No reads of X occurred, so no read source matching needed
View equivalent! ✓

The "Blind Write" Case

Why View Serializability is Sufficient for Correctness:

Application Correctness: Applications observe the same read values and produce the same final state as a serial execution. This is all that matters for application logic.
ACID Properties:
- Atomicity: Unchanged—transactions commit or abort entirely
- Consistency: The final state is consistent (view equivalent to serial)
- Isolation: Transactions behave as if executed serially (view equivalent)
- Durability: Unchanged—committed data persists
No Observable Difference: There is no experiment an application can perform to distinguish between the Thomas Write Rule schedule and the equivalent serial schedule.

The Theoretical Gap:

The gap between conflict and view serializability is:

Conflict serializability: Testing is polynomial time (precedence graph)
View serializability: Testing is NP-complete in general

But the Thomas Write Rule protocol produces schedules that are guaranteed view serializable by construction—no testing needed. The protocol itself ensures correctness.

Conditions Required for Correctness

The Thomas Write Rule is correct only when specific conditions are met. Violating these conditions can lead to incorrect behavior.

Condition 1: No Intervening Reads (R-TS Check)

The rule applies only when TS(T) ≥ R-TS(X). This is non-negotiable.

Why: If a transaction Tₘ with TS(Tₖ) < TS(Tₘ) has read X, then:

In the serial schedule, Tₘ reads Tₖ's value
If we ignore Tₖ's write, Tₘ reads a different value
View equivalence breaks

What happens if we ignore this condition?

Scenario (BUG if R-TS check is skipped):
  T₂ (ts=20): write(X, 200)
  T₃ (ts=15): read(X) → sees 200
  T₁ (ts=10): write(X, 100) [INCORRECTLY IGNORED]

Serial schedule T₁ → T₃ → T₂:
  T₁ writes X=100
  T₃ reads X → should see 100!
  T₂ writes X=200

With buggy ignore:
  T₃ saw 200, but serial T₃ should see 100.
  View serializability VIOLATED!

Critical Implementation Rule

Condition 2: Unique Timestamps

Transactions must have unique timestamps. If two transactions have the same timestamp, the ordering is ambiguous.

Why: The proof of view serializability relies on a strict ordering of transactions by timestamp. Equal timestamps create ambiguity in the equivalent serial schedule.

Mitigation: Use composite timestamps (logical clock + transaction ID) or ensure unique assignment through centralized counter.

Condition 3: Monotonic Timestamps (within a transaction)

A transaction's timestamp must not change during execution.

Why: If TS(T) changes, earlier operations may have used a different timestamp for their checks, violating the invariants.

Condition 4: Accurate Timestamp Tracking

W-TS(X) and R-TS(X) must accurately reflect the largest timestamps to have written/read X.

Why: If stale or incorrect, the comparisons yield wrong decisions.

Correctness Checklist

•R-TS check BEFORE W-TS check — Abort if TS(T) < R-TS(X); only then check for outdated write
•Unique timestamps per transaction — No two active transactions share a timestamp
•Immutable timestamp during transaction — Once assigned, a transaction's timestamp never changes
•Atomic timestamp updates — W-TS(X) and R-TS(X) updates must be atomic with the operation
•No partial application — Either apply write and update W-TS, or ignore both; never update W-TS without applying write

Edge Cases and Potential Pitfalls

Let's examine edge cases where correctness might be at risk and how to handle them properly.

Edge Case 1: Transaction Aborts After Ignored Write

Scenario:

T₁'s write to X is ignored (W-TS(X) > TS(T₁))
T₁ continues and performs other operations
T₁ later aborts (due to a read conflict on Y)

Question: Does the abort affect correctness?

Answer: No. The ignored write was never applied to the database, so there's nothing to undo. T₁'s abort correctly removes all of T₁'s effects (which didn't include the ignored write).

Edge Case 2: Cascading Aborts

Scenario:

T₂ reads value written by T₁
T₁'s write to X is later ignored (doesn't affect T₂'s read of Y)
T₁ aborts for another reason
Does T₂ need to abort?

Edge Case 3: Out-of-Order Timestamp Assignment

Scenario:

Transaction T₁ starts, gets timestamp 10
Transaction T₂ starts, gets timestamp 20
T₂ completes quickly and writes to X (W-TS(X) = 20)
T₁ slowly reaches its write to X
T₁'s write is correctly ignored

Is this correct?: Yes. The Thomas Write Rule doesn't require transactions to execute in timestamp order—only that the final state matches a serial execution in timestamp order.

Edge Case 4: Same Item Written Multiple Times

Scenario:

T₁ writes X = 100 (W-TS(X) = 10, T₁'s timestamp)
T₂ writes X = 200 (W-TS(X) = 20, T₂'s timestamp)
T₁ attempts second write X = 150

Analysis:

TS(T₁) = 10 < W-TS(X) = 20
T₁'s second write is ignored
T₁'s first write was successful but is now overwritten by T₂
Final state: X = 200 (T₂'s value)

Is this correct?: Yes. In serial schedule T₁ → T₂: T₁ writes twice, then T₂ overwrites. Final is T₂'s value.

Implementation Pitfall

Relationship with ACID Properties

Let's examine how the Thomas Write Rule affects each ACID property.

Atomicity:

Atomicity requires that a transaction either commits entirely or aborts entirely. Does ignoring a write violate atomicity?

Analysis: At first glance, it might seem that ignoring a write means only "part" of the transaction takes effect. However:

The ignored write is semantically equivalent to a write that was immediately overwritten
In the view-equivalent serial schedule, that write DID happen—it was just overwritten
From the perspective of atomicity, the transaction's logical intent was fully executed
The only difference is optimization: we skipped the physical write that would be immediately overwritten

Verdict: Atomicity is preserved. The transaction still executes atomically—we just optimized away invisible work.

Consistency:

Consistency requires that transactions maintain database invariants. Does ignoring writes affect consistency?

Analysis:

The final database state is view-equivalent to a serial schedule
Serial schedules preserve consistency (assuming transactions individually preserve it)
Therefore, view-equivalent schedules also preserve consistency

Verdict: Consistency is preserved.

Isolation:

Isolation requires that concurrent transactions appear to execute in isolation. The Thomas Write Rule produces view serializable schedules.

Analysis:

View serializability ensures every transaction sees values as if executing in some serial order
The Thomas Write Rule doesn't allow any transaction to see invalid values
The R-TS check ensures no intervening reads are affected

Verdict: Isolation is preserved at view serializable level (not conflict serializable).

Durability:

Durability requires that committed transactions persist. Does ignoring writes affect durability?

Analysis:

Ignored writes are never applied to the database
Therefore, there's nothing to persist for ignored writes
Committed state (after ignored writes discarded) is properly persisted
Recovery correctly restores this state

Verdict: Durability is preserved. Only the correct final state is persisted.

ACID Properties with Thomas Write Rule
Property	Status	Explanation
Atomicity	✓ Preserved	Transactions execute fully; ignored writes are logically 'overwritten'
Consistency	✓ Preserved	View equivalence to serial schedule maintains invariants
Isolation	✓ Preserved (View)	View serializability ensures isolated appearance
Durability	✓ Preserved	Correct final state is persisted and recovered

Correctness in Distributed Systems

The Thomas Write Rule was originally designed for distributed database systems. Let's examine correctness considerations in this context.

Challenge 1: Clock Synchronization

In distributed systems, different nodes may have unsynchronized clocks, affecting timestamp assignment.

Impact on Thomas Write Rule:

If timestamps are derived from local clocks, ordering may not reflect causal relationships
A write that appears "later" by timestamp may have causally preceded another write
The rule may ignore writes incorrectly

Mitigation:

Use logical clocks (Lamport timestamps) instead of physical clocks
Use hybrid logical clocks (HLC) for bounded physical-logical timestamps
Use central timestamp oracle (adds latency but ensures consistency)

Challenge 2: Network Partitions

During network partitions, different partitions may process writes to the same item.

Impact on Thomas Write Rule:

Partition A: T₁ writes X with timestamp 10
Partition B: T₂ writes X with timestamp 20
Neither knows about the other's write
After partition heals, which value is correct?

Mitigation:

The Thomas Write Rule alone doesn't solve partitions
Combine with partition-tolerant replication (eventual consistency, CRDT)
For strong consistency, require global coordination (Paxos, Raft)

Original Design Context

Challenge 3: Replication Lag

In replicated systems, different replicas may have different values of W-TS(X).

Impact on Thomas Write Rule:

Replica 1 has W-TS(X) = 20
Replica 2 has W-TS(X) = 10 (replication lag)
T₁ (timestamp 15) writes to Replica 2: write succeeds
T₁ (timestamp 15) writes to Replica 1: write is ignored
Inconsistent behavior!

Mitigation:

Ensure replicas see same W-TS before accepting writes
Use quorum-based protocols where majority must agree
Synchronize W-TS values as part of replication protocol

The Bottom Line for Distributed Systems:

Summary: Correctness

We've rigorously examined the correctness of the Thomas Write Rule. Let's consolidate the key takeaways:

Key Takeaways

•The Thomas Write Rule produces view serializable schedules — Formal proof shows equivalence to serial schedule in timestamp order.
•View serializability is sufficient for correctness — Applications observe the same values and produce the same final state as serial execution.
•Conflict serializability may not hold — But this doesn't affect correctness; view serializability is the actual requirement.
•The R-TS check is critical — Without it, the rule would ignore writes that have observable effects, breaking correctness.
•All ACID properties are preserved — Atomicity, Consistency, Isolation, and Durability remain intact with the rule.
•Distributed systems require additional mechanisms — Clock sync, partition handling, and replica coordination are separate concerns.

Module Complete:

You have now completed the comprehensive study of the Thomas Write Rule. You understand:

What it is: An optimization to basic timestamp ordering that ignores obsolete writes
Why it works: Obsolete writes are invisible—their values would be immediately overwritten
How it's implemented: The R-TS and W-TS checks, the write buffer for read-own-write
When it helps: Write-heavy workloads with write-write conflicts
How to prove it correct: View serializability proof through view equivalence

This knowledge equips you to design and implement timestamp-based concurrency control systems that are both efficient and correct.

Module Complete

5 / 5