ASP.NET Core offers three caching layers: IMemoryCache (in-process), IDistributedCache (Redis/SQL), and Response Caching (HTTP middleware)
IMemoryCache is fastest but isolated per server — use only in single-server deployments
IDistributedCache with Redis provides shared state across multiple instances at the cost of a network hop
Response Caching caches full HTTP responses before your controller runs — ideal for public, anonymous endpoints
All caching must pair sliding expiration with an absolute cap to avoid immortal stale data
Biggest mistake: using IMemoryCache in a load-balanced cluster, leading to inconsistent data across servers
✦ Definition~90s read
What is Caching in ASP.NET Core?
Caching in ASP.NET Core is a performance optimization technique that stores frequently accessed data in a fast-access layer to avoid redundant computation or database queries. It exists because I/O operations (database calls, API requests, file reads) are orders of magnitude slower than memory access — a single database round trip can take 10-50ms, while an in-memory cache hit is sub-microsecond.
★
Imagine a librarian who, instead of walking to the back storeroom every time you ask for the same popular book, keeps a copy right at their desk.
The ecosystem offers three primary caching approaches: in-memory caching via IMemoryCache (single-server, fast but not shared), distributed caching via IDistributedCache (multi-server, using Redis, SQL Server, or NCache), and response caching at the HTTP middleware layer (caches entire HTTP responses based on headers like Cache-Control). The critical distinction is that response caching operates at the HTTP level — it caches the full response including headers and body — while in-memory and distributed caches store arbitrary objects you control explicitly.
Where most teams go wrong is treating ResponseCache as a simple performance knob without understanding its security implications. The [ResponseCache] attribute and middleware cache responses by URL and query string, meaning if User A visits /account/details and User B visits the same URL, User B gets User A's cached response — a classic cross-user data leak.
This is fundamentally different from IMemoryCache or IDistributedCache, where you control cache keys and can include user identity (e.g., user_123_account_details). Response caching is only safe for truly public, unauthenticated content — think static assets, public product listings, or CDN-friendly resources.
For any user-specific data, you must use the lower-level caching APIs with explicit key scoping.
When NOT to use response caching: any endpoint that returns user-specific data, requires authentication, or varies by user role. Instead, use IMemoryCache for single-server apps (e.g., a small internal tool serving 100 users) or IDistributedCache for multi-server deployments (e.g., a SaaS app behind a load balancer).
Real-world numbers: Redis-backed distributed caching can handle 100,000+ operations per second on a modest instance, while in-memory caching on a single server is limited by RAM and CPU. The two-level caching pattern (L1 in-memory, L2 distributed) gives you the speed of local memory with the consistency of a shared store — but adds complexity around invalidation.
Cache invalidation strategies (time-based expiry, sliding expiration, event-driven removal via pub/sub or database change tracking) are where most production bugs live; a stale cache serving old data is often worse than no cache at all.
Plain-English First
Imagine a librarian who, instead of walking to the back storeroom every time you ask for the same popular book, keeps a copy right at their desk. The first request is slow — they have to fetch it — but every request after that is instant. Caching in ASP.NET Core is exactly that librarian. Your app 'remembers' expensive results — database queries, API calls, computed values — and hands them back instantly for repeat requests. The trick is knowing when the book at the desk is too old and needs replacing.
Every millisecond your API spends fetching the same database row it fetched three seconds ago is a millisecond wasted — and under load, those milliseconds stack up into seconds that cost you users. Caching is not a micro-optimisation; it is the difference between an app that collapses under real traffic and one that scales gracefully. High-traffic systems like e-commerce product pages, news feeds, and dashboards owe most of their performance not to faster hardware, but to well-designed caches.
The core problem caching solves is the cost of repetition. Database queries, HTTP calls to third-party APIs, and complex in-memory computations all take time proportional to their complexity — not proportional to how often you call them. Without caching, a product page hit 10,000 times a minute fires 10,000 identical SQL queries. With caching, it fires one, and returns the stored result for the other 9,999. The challenge — and the reason most developers get caching wrong — is deciding what to cache, for how long, and when to throw it away.
By the end of this article you will understand the three main caching layers available in ASP.NET Core (In-Memory, Distributed, and Response), know exactly which one to reach for in a given situation, and be able to implement each with production-grade patterns including cache-aside, sliding expiration, and cache invalidation. You will also walk away knowing the mistakes that silently destroy cache effectiveness in real apps.
Why ResponseCache Leaks User Data
ASP.NET Core caching stores frequently accessed data in memory or distributed stores to reduce redundant processing. The core mechanic is simple: after the first request, the response is saved and served directly for subsequent identical requests, bypassing controller logic and database calls. This is not a silver bullet — it introduces statefulness into a stateless HTTP pipeline.
Key properties: cache duration (absolute expiration), cache key (typically URL + query string), and cache scope (in-memory vs distributed). The critical nuance is that ResponseCache works at the middleware level — it caches the entire HTTP response, including headers. If your endpoint returns user-specific data (e.g., 'Welcome, Alice'), the next user hitting the same URL gets 'Welcome, Alice' too. This is not a bug; it's a feature misapplied.
Use ResponseCache only for truly public, anonymous data — product listings, static content, or API responses that are identical for all users. Never apply it to authenticated endpoints or any response that varies by user identity. The moment you cache a per-user response, you've introduced a cross-user data leak that is silent, consistent, and hard to debug.
User Data Leak
ResponseCache caches the entire response — including user-specific content. If your endpoint returns different data per user, do not use ResponseCache.
Production Insight
Team cached a 'GetUserProfile' endpoint with ResponseCache. User B saw User A's profile data for 60 seconds.
Symptom: intermittent 'wrong user' reports that cleared on refresh — classic stale-cache leak.
Rule: never cache any response that includes user identity, roles, or personalized content at the middleware level.
Key Takeaway
ResponseCache caches the full HTTP response, not just data — user-specific headers leak.
Only use ResponseCache for truly public, anonymous endpoints — never for authenticated ones.
For per-user caching, use IDistributedCache with a cache key that includes the user ID.
thecodeforge.io
ASP.NET Core Caching: User Data Leak & Solutions
Caching Aspnet Core
In-Memory Caching with IMemoryCache — Fast, Simple, Single-Server
In-Memory caching stores data directly in the RAM of your web server process. It is the fastest cache available because there is zero network round-trip — the data lives in the same memory space as your application. ASP.NET Core exposes this through the IMemoryCache interface, which you register once and inject anywhere.
The pattern you will use 99% of the time is called cache-aside (also known as lazy loading): you try to get the value from cache first; if it is not there (a 'cache miss'), you fetch it from the real source, store it in cache, then return it. On the next call, you get a 'cache hit' and skip the expensive work entirely.
In-memory cache is the right choice when you have a single server deployment or when the cached data is local to one server (like a per-user preferences object). It is the wrong choice when you run multiple server instances behind a load balancer — because each server has its own isolated cache, and a user hitting Server A might get stale data that Server B already updated. That is the scenario where distributed caching becomes essential.
MemoryCache entries support both absolute expiration (evict after exactly N minutes) and sliding expiration (evict if nobody reads it for N minutes). Use sliding expiration for 'warm' data that is accessed frequently; use absolute for data that must stay fresh regardless of traffic.
ProductService.csCSHARP
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
usingMicrosoft.Extensions.Caching.Memory;
usingSystem;
usingSystem.Threading.Tasks;
// Register IMemoryCache in Program.cs:// builder.Services.AddMemoryCache();publicclassProductService
{
privatereadonlyIMemoryCache _cache;
privatereadonlyIProductRepository _repository;
// Cache key constants prevent typos across the codebaseprivateconststringProductCacheKeyPrefix = "product_";
privatestaticreadonlyTimeSpanProductCacheDuration = TimeSpan.FromMinutes(10);
publicProductService(IMemoryCache cache, IProductRepository repository)
{
_cache = cache;
_repository = repository;
}
publicasyncTask<Product?> GetProductByIdAsync(int productId)
{
// Build a unique key per product so we can invalidate one without flushing allstring cacheKey = $"{ProductCacheKeyPrefix}{productId}";
// TryGetValue returns true on a cache HIT — we skip the database entirelyif (_cache.TryGetValue(cacheKey, outProduct? cachedProduct))
{
Console.WriteLine($"[CACHE HIT] Returning product {productId} from memory cache.");
return cachedProduct;
}
// Cache MISS — go to the real data sourceConsole.WriteLine($"[CACHE MISS] Fetching product {productId} from database.");
Product? product = await _repository.GetByIdAsync(productId);
if (product is not null)
{
// Configure cache entry options before storingvar cacheOptions = newMemoryCacheEntryOptions()
// Evict this entry if it hasn't been accessed in 5 minutes (sliding)
.SetSlidingExpiration(TimeSpan.FromMinutes(5))
// But always evict after 10 minutes regardless of access (absolute)
.SetAbsoluteExpiration(ProductCacheDuration)
// Mark as normal priority — the runtime can evict under memory pressure
.SetPriority(CacheItemPriority.Normal);
_cache.Set(cacheKey, product, cacheOptions);
Console.WriteLine($"[CACHE SET] Product {productId} stored in memory cache.");
}
return product;
}
// Call this when a product is updated so the next read fetches fresh datapublicvoidInvalidateProductCache(int productId)
{
string cacheKey = $"{ProductCacheKeyPrefix}{productId}";
_cache.Remove(cacheKey);
Console.WriteLine($"[CACHE INVALIDATED] Removed product {productId} from cache.");
}
}
// --- Simulated output for two sequential calls to GetProductByIdAsync(42) ---// First call:// [CACHE MISS] Fetching product 42 from database.// [CACHE SET] Product 42 stored in memory cache.//// Second call (within 5 minutes):// [CACHE HIT] Returning product 42 from memory cache.
Output
[CACHE MISS] Fetching product 42 from database.
[CACHE SET] Product 42 stored in memory cache.
[CACHE HIT] Returning product 42 from memory cache.
Watch Out: Sliding + Absolute Expiration Together
Always pair sliding expiration with an absolute expiration cap. Without the absolute cap, a cache entry that gets read every 4 minutes with a 5-minute sliding window will NEVER expire — even if the underlying data changed hours ago. The absolute ceiling guarantees freshness no matter how popular the entry is.
Production Insight
In production, IMemoryCache eviction under memory pressure is silent — entries disappear without warning.
This can cause sudden latency spikes when many keys expire simultaneously, known as the 'thundering herd'.
Rule: always use cache-aside so the first miss repopulates, and add jitter to absolute expirations to avoid batch expiration.
Key Takeaway
IMemoryCache is fastest but server-isolated.
Pair sliding + absolute expiration always.
Thundering herd risk: use jitter and cache-aside.
When to Choose IMemoryCache
IfSingle server deployment (no load balancer)
→
UseUse IMemoryCache — it's the fastest option and you avoid serialisation overhead.
IfData is per-user or local to a server instance
→
UseUse IMemoryCache — user session data doesn't need to be shared across servers.
IfMulti-server (load-balanced) deployment
→
UseDo NOT use IMemoryCache alone. Switch to IDistributedCache or use two-level caching.
IfCache pressure causes high memory usage
→
UseSet reasonable priority and expiration. Use GetCurrentStatistics() to monitor cache size and evictions.
Distributed Caching with IDistributedCache — Sharing State Across Multiple Servers
When you scale your app horizontally — multiple instances behind a load balancer — in-memory cache breaks down because each instance has its own isolated memory. User A might update a record on Server 1, but User B hits Server 2 which still has the old cached version. This is a consistency bug, not just a performance issue.
Distributed caching solves this by putting the cache outside the application in a shared store — typically Redis or SQL Server. All instances read from and write to the same cache, so everyone sees the same data. ASP.NET Core abstracts this behind IDistributedCache, meaning you can swap Redis for SQL Server (or vice versa) by changing one line in Program.cs without touching your service code.
Redis is the industry standard choice. It is an in-memory data store purpose-built for speed, supporting complex data types, pub/sub for cache invalidation, and cluster mode for high availability. SQL Server distributed cache exists for environments where you already have SQL infrastructure and cannot add Redis — but it is meaningfully slower.
The IDistributedCache API works with byte arrays, so you need to serialise your objects. The standard approach is JSON serialisation with System.Text.Json. A cleaner pattern is to wrap IDistributedCache in your own generic helper that handles serialisation transparently — which is exactly what the example below does.
DistributedCacheService.csCSHARP
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
// Program.cs registration (Redis example):// builder.Services.AddStackExchangeRedisCache(options =>// {// options.Configuration = builder.Configuration.GetConnectionString("Redis");// options.InstanceName = "MyApp:"; // Prefix all keys to avoid collisions// });//// For SQL Server instead, use:// builder.Services.AddDistributedSqlServerCache(options => { ... });usingMicrosoft.Extensions.Caching.Distributed;
usingSystem.Text.Json;
usingSystem.Threading;
usingSystem.Threading.Tasks;
// A generic wrapper that hides the byte-array pain of IDistributedCachepublicclassDistributedCacheService
{
privatereadonlyIDistributedCache _distributedCache;
publicDistributedCacheService(IDistributedCache distributedCache)
{
_distributedCache = distributedCache;
}
// Returns cached value or null on a miss — caller decides what to dopublicasyncTask<T?> GetAsync<T>(string cacheKey, CancellationToken cancellationToken = default)
where T : class
{
byte[]? cachedBytes = await _distributedCache.GetAsync(cacheKey, cancellationToken);
if (cachedBytes isnull || cachedBytes.Length == 0)
{
return null; // Cache miss
}
// Deserialise from JSON bytes back to the strongly-typed objectreturnJsonSerializer.Deserialize<T>(cachedBytes);
}
publicasyncTaskSetAsync<T>(
string cacheKey,
T value,
TimeSpan absoluteExpiration,
CancellationToken cancellationToken = default)
where T : class
{
byte[] serialisedBytes = JsonSerializer.SerializeToUtf8Bytes(value);
var cacheEntryOptions = newDistributedCacheEntryOptions
{
// Absolute expiration from now — always evict after this windowAbsoluteExpirationRelativeToNow = absoluteExpiration
};
await _distributedCache.SetAsync(cacheKey, serialisedBytes, cacheEntryOptions, cancellationToken);
}
publicasyncTaskRemoveAsync(string cacheKey, CancellationToken cancellationToken = default)
{
await _distributedCache.RemoveAsync(cacheKey, cancellationToken);
}
}
// --- Usage in a controller or service ---publicclassOrderSummaryService
{
privatereadonlyDistributedCacheService _cache;
privatereadonlyIOrderRepository _orderRepository;
privatestaticreadonlyTimeSpanOrderSummaryCacheDuration = TimeSpan.FromMinutes(15);
publicOrderSummaryService(DistributedCacheService cache, IOrderRepository orderRepository)
{
_cache = cache;
_orderRepository = orderRepository;
}
publicasyncTask<OrderSummary?> GetOrderSummaryAsync(int customerId, CancellationToken cancellationToken)
{
string cacheKey = $"order_summary_{customerId}";
// Step 1: Try the distributed cache firstOrderSummary? cached = await _cache.GetAsync<OrderSummary>(cacheKey, cancellationToken);
if (cached is not null)
{
Console.WriteLine($"[REDIS HIT] Order summary for customer {customerId} served from Redis.");
return cached;
}
// Step 2: Cache miss — hit the databaseConsole.WriteLine($"[REDIS MISS] Querying database for customer {customerId} order summary.");
OrderSummary? summary = await _orderRepository.GetSummaryByCustomerIdAsync(customerId, cancellationToken);
// Step 3: Store in Redis for the next caller — all server instances benefitif (summary is not null)
{
await _cache.SetAsync(cacheKey, summary, OrderSummaryCacheDuration, cancellationToken);
Console.WriteLine($"[REDIS SET] Customer {customerId} summary cached for 15 minutes.");
}
return summary;
}
}
Output
[REDIS MISS] Querying database for customer 7 order summary.
[REDIS SET] Customer 7 summary cached for 15 minutes.
[REDIS HIT] Order summary for customer 7 served from Redis.
Pro Tip: Always Set an InstanceName Prefix in Redis
When you configure AddStackExchangeRedisCache, always set InstanceName (e.g., 'MyApp:'). Without it, all your keys are global — if you ever run two different apps against the same Redis server, or run staging and production on the same instance, their cache keys will collide silently and corrupt each other's data.
Production Insight
Serialisation mismatch is the #1 bug with IDistributedCache — store with one serializer, read with another, and you get null.
Redis connection pool exhaustion causes timeouts under high concurrency — default pool size (25) is often too low.
Rule: wrap IDistributedCache with a generic service that enforces consistent JSON serialisation and pool configuration.
Key Takeaway
IDistributedCache unifies cache across servers but adds serialisation cost.
Use Redis for production — SQL Server cache is a fallback only.
Serialiser consistency: use the same package everywhere.
Distributed Cache Provider Selection
IfMultiple server instances require consistent cached data
→
UseUse IDistributedCache — forces shared state outside each server's memory.
IfRedis infrastructure is available and cost is acceptable
→
UseUse Redis (StackExchange.Redis) — best performance among distributed stores.
IfNo Redis, but you already have SQL Server running
→
UseUse SQL Server distributed cache (AddDistributedSqlServerCache) — slower but avoids new infrastructure.
IfNeed cache invalidation across servers in real-time
→
UseUse Redis with pub/sub to broadcast eviction messages to all server instances.
Response Caching — Cache at the HTTP Layer Before Your Code Even Runs
In-Memory and Distributed caching are application-level caches — your C# code still runs and decides whether to call the database. Response Caching works at a completely different layer: it caches the entire HTTP response and serves it directly from middleware, before your controller action ever executes. This is the fastest possible cache because zero application code runs on a cache hit.
Response caching follows HTTP caching semantics via Cache-Control headers. When your action returns a response with Cache-Control: public, max-age=60, both the ASP.NET Core response cache middleware (server-side) and downstream proxies or CDNs (like Cloudflare or Azure CDN) know they can cache and replay that response for 60 seconds.
This makes it ideal for public, anonymous content: marketing pages, product catalogues, news articles — content that is the same for every user. It is completely wrong for authenticated or personalised content because cached responses ignore who the user is. A response cached for User A would be served to User B.
The [ResponseCache] attribute controls the Cache-Control header. The AddResponseCaching() middleware does the actual server-side caching. Both are needed for server-side caching to work — the attribute alone just sets the header for downstream caches like CDNs.
CatalogueController.csCSHARP
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
// Program.cs — register and use the middleware (ORDER MATTERS):// builder.Services.AddResponseCaching();// ...// app.UseResponseCaching(); // Must come before app.MapControllers()usingMicrosoft.AspNetCore.Mvc;
usingSystem.Collections.Generic;
usingSystem.Threading.Tasks;
[ApiController]
[Route("api/[controller]")]
publicclassCatalogueController : ControllerBase
{
privatereadonlyICatalogueService _catalogueService;
publicCatalogueController(ICatalogueService catalogueService)
{
_catalogueService = catalogueService;
}
// This response is cached for 60 seconds server-side AND tells CDNs they can cache it too.// 'public' means any cache (server, CDN, proxy) can store this response.// 'VaryByQueryKeys' means separate cache entries are kept per 'category' query param// so /api/catalogue?category=shoes and ?category=hats each get their own cached version.
[HttpGet]
[ResponseCache(Duration = 60, Location = ResponseCacheLocation.Any, VaryByQueryKeys = new[] { "category" })]
publicasyncTask<IActionResult> GetProductsAsync([FromQuery] string category = "all")
{
Console.WriteLine($"[CONTROLLER HIT] Fetching products for category: {category}");
// This line only runs on a cache MISS — during a 60-second window it runs once per categoryIEnumerable<ProductSummary> products = await _catalogueService.GetByCategoryAsync(category);
returnOk(products);
}
// [ResponseCache(NoStore = true)] explicitly opts this endpoint OUT of caching.// Use this for any endpoint that returns user-specific or sensitive data.
[HttpGet("my-orders")]
[ResponseCache(NoStore = true, Location = ResponseCacheLocation.None)]
publicasyncTask<IActionResult> GetMyOrdersAsync()
{
// Each call always hits the controller — never cachedvar orders = await _catalogueService.GetOrdersForCurrentUserAsync();
returnOk(orders);
}
}
// HTTP Response headers produced by the first endpoint:// Cache-Control: public,max-age=60// Vary: Accept-Encoding//// Subsequent requests within 60 seconds return:// [Served from response cache — controller action does NOT execute]//// HTTP Response headers produced by the second endpoint:// Cache-Control: no-store,no-cache
Output
GET /api/catalogue?category=shoes
[CONTROLLER HIT] Fetching products for category: shoes
-> Response cached for 60 seconds
GET /api/catalogue?category=shoes (within 60 seconds)
-> Served from response cache. Controller NOT called.
GET /api/catalogue?category=hats
[CONTROLLER HIT] Fetching products for category: hats
-> Separate cache entry created for 'hats'
Watch Out: VaryByQueryKeys Requires the Middleware
VaryByQueryKeys on [ResponseCache] is silently ignored if app.UseResponseCaching() is not registered in your middleware pipeline. The Cache-Control header will still be sent (which CDNs honour), but the server-side middleware won't vary by query string — so all category requests return the first cached response regardless of the parameter.
Production Insight
The data leak scenario: a missing NoStore on authenticated endpoints serves cached user A's data to user B — this is a security incident.
Middleware order is critical — if UseResponseCaching() is after MapControllers(), caching never happens.
Rule: for any endpoint that checks HttpContext.User, add [ResponseCache(NoStore = true)] as a safety net.
Key Takeaway
Response caching is the fastest layer — zero code runs on a hit.
Never use it for authenticated endpoints: use [ResponseCache(NoStore = true)].
Always verify middleware order and VaryByQueryKeys registration.
When Response Caching is Appropriate
IfPublic, anonymous content (product catalogue, blog posts, marketing pages)
→
UseUse [ResponseCache(Duration=..., Location=Any)] — fastest possible response.
IfAuthenticated or user-specific content
→
UseDo NOT use response caching. Use application-level caching with user-aware keys instead.
IfContent varies by query string or header
→
UseUse VaryByQueryKeys or VaryByHeader in [ResponseCache] — but ensure middleware is registered.
IfNeed CDN cache control only (no server-side caching)
→
UseYou can omit app.UseResponseCaching() and rely on the [ResponseCache] attribute to set proper Cache-Control headers for downstream caches.
Cache Invalidation Strategies — Knowing When to Throw Data Away
Writing to cache is easy. Knowing when to evict is where production systems break. The three main strategies are: time-based expiry, explicit key removal, and pattern-based invalidation.
Time-based expiry is the simplest. You set a TTL (absolute or sliding) and let the cache purge entries automatically. The danger? If all entries for a popular endpoint expire at the same moment, every request triggers a database call — the 'thundering herd' problem. Add random jitter to expiration times (e.g., base ± 10%) to spread the load.
Explicit key removal means calling Remove or RemoveAsync when the underlying data changes. Works well for individual records, but breaks down when one data change invalidates many cache keys (e.g., updating a category name that appears in 1000 product entries). For these cases, use a key prefix pattern: store all keys with a shared prefix, and when invalidating, iterate over a separate index of keys (like a Redis SET) to evict them all.
Pattern-based invalidation using Redis sets: maintain a SET of cache keys for each 'tag' (e.g., 'category:shoes'). When the shoes category is updated, retrieve all keys from the set and delete them. This gives you bulk invalidation without a full cache flush.
For distributed systems across multiple servers, use Redis Pub/Sub: when one server invalidates a key, publish a message. All other servers subscribe and evict their local (L1) copy of that key, ensuring consistency.
CacheInvalidationService.csCSHARP
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
usingStackExchange.Redis;
usingMicrosoft.Extensions.Caching.Distributed;
usingSystem.Text.Json;
publicclassCacheInvalidationService
{
privatereadonlyIDistributedCache _cache;
privatereadonlyIConnectionMultiplexer _redis;
publicCacheInvalidationService(IDistributedCache cache, IConnectionMultiplexer redis)
{
_cache = cache;
_redis = redis;
}
// Invalidate a single keypublicasyncTaskInvalidateKeyAsync(string cacheKey)
{
await _cache.RemoveAsync(cacheKey);
// Notify other servers to evict their local L1 cachevar subscriber = _redis.GetSubscriber();
await subscriber.PublishAsync("cache:invalidation", cacheKey);
}
// Invalidate all keys belonging to a tag (requires a Redis Set of keys per tag)publicasyncTaskInvalidateTagAsync(string tag)
{
var db = _redis.GetDatabase();
// Get all keys that belong to this tag (e.g., "tag:category:shoes")string tagKey = $"tag:{tag}";
RedisValue[] memberKeys = await db.SetMembersAsync(tagKey);
// Remove each key from the distributed cachevar tasks = memberKeys.Select(k => _cache.RemoveAsync(k.ToString()));
awaitTask.WhenAll(tasks);
// Publish for L1 eviction on other serversvar subscriber = _redis.GetSubscriber();
await subscriber.PublishAsync("cache:invalidation:tag", tag);
// Remove the tag set itselfawait db.KeyDeleteAsync(tagKey);
}
// Associate a cache key with a tag during SetpublicasyncTaskSetWithTagAsync<T>(string cacheKey, T value, TimeSpan expiration, string tag)
{
// Store in distributed cache as usualbyte[] bytes = JsonSerializer.SerializeToUtf8Bytes(value);
await _cache.SetAsync(cacheKey, bytes, newDistributedCacheEntryOptions
{
AbsoluteExpirationRelativeToNow = expiration
});
// Add the key to the tag's Redis Setvar db = _redis.GetDatabase();
await db.SetAddAsync($"tag:{tag}", cacheKey);
}
}
// Usage:// await invalidationService.SetWithTagAsync("product:42", product, TimeSpan.FromMinutes(10), "category:shoes");// ... later, when the shoes category changes:// await invalidationService.InvalidateTagAsync("category:shocks"); // invalidates all related keys
// All product keys with that tag are evicted from the distributed cache and all server L1 caches.
Think in Tags, Not Keys
A product price update should invalidate only that product's keys — not the entire product catalogue.
A category name change might affect hundreds of product keys — use tags to link them.
A promotion activation might invalidate many unrelated categories — use pub/sub to broadcast a tag-based eviction.
Avoid global flush: it causes a cold cache and instant database meltdown.
Production Insight
The most common invalidation bug: the read path generates cache keys differently from the write path.
Example: read uses $"product_{id}" but write uses $"product:{id}" — the key never matches, so invalidation silently fails.
Rule: generate all cache keys from a single shared static method to guarantee they match across the codebase.
Key Takeaway
Invalidate precisely, not wholesale — cache stampede kills databases.
Use key prefix patterns for bulk invalidation.
For distributed systems, prefer pub/sub invalidation over polling.
Choosing an Invalidation Strategy
IfData changes infrequently and predictably (e.g., product prices updated hourly)
→
UseTime-based expiry with an absolute timeout is sufficient. No explicit invalidation needed.
IfIndividual records updated independently (e.g., user profile)
→
UseExplicit key removal — call Remove() right after the database write.
IfOne change invalidates many cached entries (e.g., category name rename)
→
UseUse tag-based invalidation: store keys per tag, then bulk evict.
IfMultiple server instances need coordinated eviction
→
UseAdd Redis pub/sub to broadcast invalidation messages to all servers' local caches.
Two-Level Caching (L1/L2) — Combining IMemoryCache and IDistributedCache for Speed and Consistency
A two-level cache sits IMemoryCache (L1) in front of IDistributedCache (L2). On a read request, you check the local in-memory cache first (fastest, zero network). On a miss, you check the distributed cache (Redis). On a distributed cache hit, you populate L1 so subsequent requests on that server are instant. On a distributed cache miss, you fetch from the database and store in both L2 and L1.
This pattern dramatically reduces Redis round-trips for hot data. In production systems with read-heavy workloads, two-level caching cuts p95 latency by 80-90% compared to using distributed cache alone. The cost is added complexity in invalidation: when a write occurs, you must evict the key from L2 and also from L1 on all servers. Use Redis pub/sub to broadcast L1 eviction commands.
Implementation steps: wrap both caches in a single service that follows the order: L1 → L2 → DB. Use a memory cache region per server (e.g., by server name) to avoid serialisation clashes. Monitor hit ratios at both levels — a low L1 hit rate means your memory cache is too small or your data isn't local enough.
One trap: if you store objects in L1 that are also in L2, ensure you're not holding references that prevent garbage collection. Use weak references or smaller L1 sizes for objects that change frequently.
TwoLevelCacheService.csCSHARP
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
usingMicrosoft.Extensions.Caching.Memory;
usingMicrosoft.Extensions.Caching.Distributed;
usingSystem.Text.Json;
publicclassTwoLevelCacheService
{
private readonly IMemoryCache _localCache; // L1
private readonly IDistributedCache _distCache; // L2publicTwoLevelCacheService(IMemoryCache localCache, IDistributedCache distCache)
{
_localCache = localCache;
_distCache = distCache;
}
publicasyncTask<T?> GetAsync<T>(string cacheKey, Func<Task<T?>> fetchFromDb, CancellationToken ct = default)
where T : class
{
// Try L1 (local memory) firstif (_localCache.TryGetValue(cacheKey, out T? localResult) && localResult is not null)
{
return localResult;
}
// L1 miss — try L2 (distributed, e.g., Redis)byte[]? distBytes = await _distCache.GetAsync(cacheKey, ct);
if (distBytes is not null && distBytes.Length > 0)
{
T? deserialized = JsonSerializer.Deserialize<T>(distBytes);
if (deserialized is not null)
{
// Populate L1 for future near-instant access
_localCache.Set(cacheKey, deserialized, TimeSpan.FromMinutes(5)); // sliding for L1return deserialized;
}
}
// L2 miss — fetch from database
T? result = awaitfetchFromDb();
if (result isnull) returnnull;
// Store in both cachesbyte[] bytes = JsonSerializer.SerializeToUtf8Bytes(result);
var distOptions = newDistributedCacheEntryOptions
{
AbsoluteExpirationRelativeToNow = TimeSpan.FromMinutes(30)
};
await _distCache.SetAsync(cacheKey, bytes, distOptions, ct);
_localCache.Set(cacheKey, result, TimeSpan.FromMinutes(5));
return result;
}
// Invalidate from both caches and broadcast to other serverspublicasyncTaskInvalidateAsync(string cacheKey, IConnectionMultiplexer redis, CancellationToken ct = default)
{
_localCache.Remove(cacheKey);
await _distCache.RemoveAsync(cacheKey, ct);
var subscriber = redis.GetSubscriber();
await subscriber.PublishAsync("cache:l1:evict", cacheKey);
}
}
// --- Usage ---// var product = await twoLevelCache.GetAsync("product:42",// () => _repo.GetByIdAsync(42), cancellationToken);
Output
// Sequence:
// [L1 MISS] -> [L2 HIT] -> Populate L1 -> Return
// Next request (same server): [L1 HIT] -> Return (no Redis call)
Performance Numbers
In production at a major e-commerce site, switching from pure Redis caching to a two-level (L1: MemoryCache, L2: Redis) pattern reduced average read latency from 8ms to 0.5ms for hot products (p99 from 45ms to 12ms). The Redis server load dropped by 70% because 85% of reads were served from local memory.
Production Insight
L1 cache eviction under memory pressure is silent — you'll see Redis load spike without any code change.
Monitor L1 hit ratio via GetCurrentStatistics(). If it drops below 50%, increase L1 size or adjust entry priorities.
The invalidation broadcast is critical: without it, servers serve stale L1 data until the sliding window expires — potentially minutes of inconsistency.
Key Takeaway
Two-level cache cuts latency by 80-90% for hot data over pure distributed cache.
Requires invalidation coordination across servers via pub/sub.
Always monitor hit ratios at both levels — silent evictions hurt.
Should You Implement Two-Level Caching?
IfSingle server or very low traffic (<100 req/s)
→
UseNot worth the complexity. Use IMemoryCache alone.
UseStrong yes. Two-level caching provides near-instant reads for hot data.
IfMulti-server, write-heavy with frequent invalidations
→
UseCareful evaluation needed. Invalidation overhead may offset benefits. Consider adjusting L1 TTLs very short.
IfAlready using Redis and p95 latency is acceptable (>50ms target)
→
UseYou might not need the complexity. Two-level caching adds operational overhead.
Cache Stampede — The Silent Performance Killer in .NET
You've implemented caching. Great. Now your app is blazing fast until a cached key expires and a thousand requests all try to rebuild it simultaneously. That's a cache stampede. The database melts under the load spike. Users get timeouts. Your on-call phone rings at 2 AM.
A cache stampede happens when multiple requests hit the same expired or missing cache key at once. Each request computes the expensive operation instead of waiting for the first one to finish. This nullifies your caching benefit and spikes resource usage.
The fix is simple: coordinate cache rebuilding so that only one thread computes the value while others wait. .NET's IMemoryCache.GetOrCreate does this internally with a lock-free pattern. For distributed caches, you need explicit locking or a hybrid approach.
Never assume your cache invalidation is safe under concurrency. If you don't handle stampedes, your 'performance improvement' becomes a reliability disaster.
> Only one DB call per cache expiry, regardless of concurrent requests.
Production Trap:
GetOrCreateAsync uses a dictionary-level lock. Works great for IMemoryCache. Don't assume it works for IDistributedCache — that needs a distributed mutex (Redis Lock, Redlock).
Key Takeaway
Always use GetOrCreate/GetOrCreateAsync for in-memory caches to prevent stampedes. For distributed caches, implement a distributed lock or use HybridCache.
HybridCache — .NET 9's Answer to Cache Stampede and L1/L2 Hell
Distributed caches (Redis, SQL Server) protect your database but introduce latency and network cost. Local caches (IMemoryCache) are fast but cause cold-start storms and state inconsistency across nodes. .NET 9's HybridCache solves this by combining both: an in-process L1 cache for sub‑microsecond reads and a shared L2 cache for durability. More importantly, it bakes in cache stampede prevention. When the L1 entry expires and multiple requests arrive simultaneously, only one thread rebuilds the value; the rest wait on the same async operation. This eliminates thundering herds without manual locking or serialization hacks. HybridCache also handles reconnection to L2 stores and provides a unified API that abstracts cache backends behind a single interface. You register it via AddHybridCache and configure the default entry timeouts and serialization. The result: lower latency, higher throughput, and significantly simpler production caching code.
// After L1 expiry: single thread rebuilds, others await
// L2 fallback if process restarts
Production Trap:
HybridCache serializes objects by default. If your cached type is large (>50 KB), L2 round trips offset the benefit. Keep entries small or use compression via an IDistributedCache wrapper.
Key Takeaway
HybridCache eliminates cache stampede with built-in coalescing; one cache instance, one invalidation contract.
Quick Comparison — Which Cache Should You Burn Your Deploy on?
You don't pick a cache because it's trendy. You pick it because your architecture demands it. In-memory is fastest. Period. 10-100x faster than Redis because there's zero network hop. But it dies with the process, so your multi-server farm gets cache drift. Distributed cache fixes drift but introduces serialization cost and latency. Response caching is the cheat code — it never touches your application code for static resources. But you must lock down user-specific headers or you leak data. Two-level caching tries to have it all: memory speed plus distributed durability. It works until you fight cache stampede. Then you need HybridCache (.NET 9) which wraps stampede protection and L1/L2 orchestration into a single API. Pick distributed for session state across scale sets. Pick in-memory for reference data that rarely changes. Pick response for static assets behind a CDN. Pick HybridCache for everything else. Your database will thank you.
Heuristic compiles. Deploy according to server topology.
Senior Shortcut:
Start with IMemoryCache for prototypes. Only introduce Redis when you see actual cache divergence between instances. Premature distribution is the root of all production lag.
Key Takeaway
Fastest cache is the one you don't serialize. Pick by failure mode, not by hype.
Compatibility — What .NET Versions Won't Gut Your Cache Code
IMemoryCache and IDistributedCache ship in Microsoft.Extensions.Caching.Abstractions since .NET Core 2.0. That's stable, boring, and won't break when you upgrade. Response caching middleware has been stable since .NET Core 3.0 — but .NET 5 added the [ResponseCache] attribute location constraints. If you target .NET Framework 4.7.2, you're stuck with System.Runtime.Caching.ObjectCache. It works but lacks the async API. HybridCache is .NET 9 only. Do not backport it. It depends on new locking primitives in the runtime. SQL Server and Redis distributed cache providers target standard 2.0 through 8.0 — no surprises. The trap is serialization. BinaryFormatter was deprecated in .NET 5 and removed in .NET 8. If you serialize complex objects with BinaryFormatter, your cache warm-up will throw at startup. Switch to System.Text.Json or MessagePack now. Your future self will thank you when the production cluster rolls over without a cache-miss storm.
CompatibilityCheck.csCSHARP
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
// io.thecodeforge — csharp tutorial// Safe serialization for distributed cache across .NET versionsvar options = newJsonSerializerOptions
{
PropertyNamingPolicy = JsonNamingPolicy.CamelCase,
// .NET 8 removed BinaryFormatter — use JSON or MessagePack
};
var data = newCachePayload { UserId = 42, Role = "Viewer" };
var json = JsonSerializer.SerializeToUtf8Bytes(data, options);
// Store in Redis — works on .NET 6, 7, 8, 9await cache.SetAsync("user:42", json);
// Retrieve — no breaking changes across minor versionsvar cached = await cache.GetAsync("user:42");
var result = JsonSerializer.Deserialize<CachePayload>(cached, options);
Console.WriteLine(result.Role); // Output: Viewer
Output
Serialized with System.Text.Json. No BinaryFormatter dependency. Portable across .NET 6+.
Production Trap:
If your cache still uses BinaryFormatter, schedule a migration sprint this quarter. Your next .NET upgrade will silently fail deserialization on the first cache hit.
Key Takeaway
Stick with JSON serialization for cross-version compatibility. BinaryFormatter is dead. Don't resurrect it.
● Production incidentPOST-MORTEMseverity: high
Personalised Prices Served to Wrong Users — Response Caching Breaks Authentication
Symptom
Customers reporting that they see incorrect prices — sometimes prices from other accounts. Support tickets spike, data privacy concerns raised.
Assumption
Response caching only caches static content; it won't affect personalised data if authentication is in place.
Root cause
The [ResponseCache] attribute with Location=Any was applied to an endpoint that returned user-specific prices. The middleware cached the response for the first user and served it to subsequent users regardless of authentication headers.
Fix
Removed [ResponseCache] from that endpoint and added [ResponseCache(NoStore = true, Location = ResponseCacheLocation.None)] for all authenticated endpoints. Added a policy to enforce NoStore on any endpoint that uses HttpContext.User.
Key lesson
Never use response caching on endpoints that return user-specific or authenticated data.
Always explicitly opt out of caching for personalised endpoints with [ResponseCache(NoStore = true)].
Review all [ResponseCache] attributes during code review — one wrong attribute can leak data across users.
Production debug guideSymptom-to-action guide for common caching problems4 entries
Symptom · 01
IMemoryCache entries never expire despite setting sliding expiration — data is stale for hours.
→
Fix
Check if you also set an absolute expiration. Sliding-only entries on busy endpoints live forever. Add SetAbsoluteExpiration() to enforce a hard limit.
Symptom · 02
IDistributedCache returns null but the key exists in Redis (verified via redis-cli).
→
Fix
Verify serialisation mismatch. IDistributedCache stores byte arrays — if you wrote with Newtonsoft.Json and read with System.Text.Json, deserialization fails silently. Use the same serializer consistently across all code paths.
Symptom · 03
Response caching middleware not caching responses with query strings — every request still hits the controller.
→
Fix
VaryByQueryKeys on [ResponseCache] requires app.UseResponseCaching() to be registered. Without it, the middleware ignores the Vary header and caches only the first URL. Also ensure middleware is placed before app.MapControllers().
Symptom · 04
Distributed cache extremely slow under high read load — each call takes >50ms.
→
Fix
Check Redis connection pool: StackExchange.Redis default connection limit may be low. Increase via ConfigurationOptions. Also consider using the two-level cache pattern (L1 local + L2 Redis) to reduce Redis round-trips for hot data.
★ Quick Cache Debugging CommandsCommands to diagnose caching issues in ASP.NET Core without leaving your terminal.
IMemoryCache entries not appearing — cache miss every time.−
Immediate action
Log the cache key and check if Set() was called.
Commands
Add logging: `Console.WriteLine($"Cache key: {key}, hit: {_cache.TryGetValue(key, out var val)}");`
Check MemoryCache statistics: `_cache.GetCurrentStatistics()` (available in .NET 6+).
Fix now
Ensure you called _cache.Set() on cache miss and that cache options don't have zero expiration.
Redis distributed cache timeout / slow response.+
Immediate action
Test Redis server connectivity from the app host.
Commands
`redis-cli -h <host> -p <port> ping` should return PONG.
`dotnet-counters monitor --counters Microsoft.AspNetCore.Hosting` to see active connections and requests.
Check middleware order: ensure app.UseResponseCaching() appears before app.MapControllers() in Program.cs.
Fix now
Add [ResponseCache(Duration = 60, Location = ResponseCacheLocation.Any)] on the endpoint and verify middleware is registered.
Caching Layer Comparison
Aspect
IMemoryCache (In-Memory)
IDistributedCache (Redis/SQL)
Response Caching
Where data lives
Server RAM (in-process)
External store (Redis/SQL)
Server RAM (HTTP response bytes)
Works across multiple servers
No — each server has its own cache
Yes — all servers share one store
Partially — server-side no; CDN yes
What gets cached
Any C# object
Any serialisable object
Entire HTTP response
Cache logic location
Your service/repository code
Your service/repository code
Middleware — before controller runs
Serialisation required
No — stores live objects
Yes — must serialise to bytes/JSON
No — stores raw HTTP response
Best for
Single-server or small apps
Horizontally scaled APIs
Public, anonymous HTTP endpoints
Worst for
Multi-server deployments
Frequently changing data
Authenticated or personalised endpoints
Setup complexity
Low — one line registration
Medium — needs Redis or SQL Server
Low — middleware + attribute
Relative speed
Fastest (in-process RAM)
Fast (but network round-trip to Redis)
Fastest for matched requests
Key takeaways
1
Use IMemoryCache for single-server deployments
it is the fastest cache available, but each server instance has its own isolated store, making it wrong for horizontally scaled apps.
2
Switch to IDistributedCache (Redis) the moment you have more than one server instance
shared state across all instances is non-negotiable for consistency, even at the cost of a network hop.
3
Always pair sliding expiration with an absolute expiration cap
sliding-only entries can live forever on busy endpoints, serving arbitrarily stale data indefinitely.
4
Response Caching operates at the HTTP layer before your controller runs
it is perfect for public, anonymous endpoints but must be explicitly disabled (NoStore) for any authenticated or user-specific response to prevent data leaking between users.
Common mistakes to avoid
3 patterns
×
Caching EF Core entities instead of DTOs
Symptom
After caching, the entity's navigation properties throw ObjectDisposedException because the original DbContext is disposed, or the cached entity becomes stale when related data changes.
Fix
Always map your entities to a simple POCO/DTO before caching. Never store EF Core tracked entities in cache. Use AutoMapper or manual mapping to create a snapshot.
×
Using IMemoryCache in a multi-server (load-balanced) deployment
Symptom
Users see inconsistent data depending on which server handles their request. Server A has the updated cache, Server B still serves old data.
Fix
Swap to IDistributedCache (Redis) as soon as you have more than one instance. If you must keep IMemoryCache for performance, pair it with a distributed cache in a two-level pattern and handle invalidation via pub/sub.
×
Setting only SlidingExpiration with no AbsoluteExpiration cap
Symptom
A cache entry that is read every minute with a 10-minute sliding window literally never expires. Outdated data can live in cache indefinitely, even after the database is updated.
Fix
Always pair SetSlidingExpiration() with SetAbsoluteExpiration() to guarantee a maximum staleness window regardless of access frequency.
INTERVIEW PREP · PRACTICE MODE
Interview Questions on This Topic
Q01SENIOR
What is the difference between IMemoryCache and IDistributedCache in ASP...
Q02SENIOR
Explain the cache-aside pattern. Why is it preferred over always writing...
Q03SENIOR
If Response Caching is configured correctly but cached responses are not...
Q01 of 03SENIOR
What is the difference between IMemoryCache and IDistributedCache in ASP.NET Core, and what specific scenario would force you to switch from one to the other?
ANSWER
IMemoryCache stores data in the server's RAM process-local. It's the fastest option but isolated per server. IDistributedCache stores data in an external store (Redis, SQL Server) shared across all servers. You must switch when you scale out to multiple server instances behind a load balancer, because otherwise each server has an independent cache leading to inconsistent data. The switch costs a network hop and serialisation overhead but guarantees consistency.
Q02 of 03SENIOR
Explain the cache-aside pattern. Why is it preferred over always writing to the cache on every database write, and what are its consistency trade-offs?
ANSWER
Cache-aside (lazy loading) checks the cache first; on a miss, it fetches from the database and then populates the cache. It's preferred over write-through because it only caches data that is actually requested — you don't waste cache space on data nobody reads. The trade-off is that after a database write, the cache still holds stale data until either the entry expires or the next read triggers a repopulation. This creates a window of inconsistency. To mitigate, you can explicitly invalidate the cache key on every write, which is the cache-aside-plus-invalidation pattern.
Q03 of 03SENIOR
If Response Caching is configured correctly but cached responses are not being served for requests with query strings, what is the most likely cause and how would you diagnose it?
ANSWER
The most likely cause is that VaryByQueryKeys is specified on [ResponseCache] but the response caching middleware is not registered (app.UseResponseCaching() missing), or the middleware is placed after MapControllers() in the pipeline. Without the middleware, the Vary header is still sent but the server-side cache doesn't actually vary by query string — it serves the first cached response for all query variants. To diagnose, check HTTP response headers: if Cache-Control: public,max-age=60 is present but the same response is returned for different query strings, the middleware is missing or misordered. Also verify that the middleware is added with builder.Services.AddResponseCaching() and used with app.UseResponseCaching() before app.MapControllers().
01
What is the difference between IMemoryCache and IDistributedCache in ASP.NET Core, and what specific scenario would force you to switch from one to the other?
SENIOR
02
Explain the cache-aside pattern. Why is it preferred over always writing to the cache on every database write, and what are its consistency trade-offs?
SENIOR
03
If Response Caching is configured correctly but cached responses are not being served for requests with query strings, what is the most likely cause and how would you diagnose it?
SENIOR
FAQ · 4 QUESTIONS
Frequently Asked Questions
01
What is the difference between AddMemoryCache and AddDistributedMemoryCache in ASP.NET Core?
AddMemoryCache registers IMemoryCache — a true in-process memory cache tied to the server's RAM. AddDistributedMemoryCache registers an IDistributedCache implementation that also uses in-process memory, but behind the distributed cache interface. It exists purely for local development and testing so you can code against IDistributedCache without needing a real Redis server running. Never use AddDistributedMemoryCache in production — it has the same multi-server isolation problem as IMemoryCache.
Was this helpful?
02
How do I invalidate a cache entry in ASP.NET Core when my database record changes?
For IMemoryCache call _cache.Remove(cacheKey) immediately after your database update succeeds. For IDistributedCache call await _distributedCache.RemoveAsync(cacheKey). The cleanest architecture is to invalidate in the same service method that performs the write — update the database, then evict the cache key — so the next read triggers a fresh fetch. For complex scenarios with many related keys, use a cache key prefix strategy or Redis tag-based invalidation patterns.
Was this helpful?
03
Can I use both IMemoryCache and IDistributedCache together in the same app?
Yes, and this is actually a common production pattern called a two-level (L1/L2) cache. You check IMemoryCache first (L1 — fastest, no network), and only on a miss do you check IDistributedCache (L2 — Redis). On an L2 hit, you populate L1 so the next request on that same server is instant. This reduces Redis round-trips significantly under high read traffic while keeping multi-server consistency intact.
Was this helpful?
04
How do I measure cache hit ratio in production?
For IMemoryCache use GetCurrentStatistics() (available in .NET 6+) to get hit/miss counts. For Redis, use the INFO stats command to see keyspace_hits and keyspace_misses. For Response Caching, enable middleware logging or inspect the diagnostic events: add app.UseResponseCaching() and check for log messages indicating cache hits or misses. The CacheCore middleware emits events you can subscribe to for metrics.