Logo
Back to Blog
Databases April 23, 2026 7 min read

What is a UUID and Why Do Modern Databases Rely on Them?

O

OmniWebKit Team

Database Architect

Share:
Article Cover Image

The Problem with Auto-Incrementing IDs

For years, the standard way to identify a row in a database was an auto-incrementing integer. The first user is ID 1, the second is ID 2, and so on. While simple, this creates massive problems at scale:

  • Security Risks (Insecure Direct Object Reference - IDOR): If my user profile is /users/45, I can easily guess that user /users/46 exists. Malicious actors can write scripts to scrape your entire database simply by counting up.
  • Distributed Systems: If you have databases running in three different data centers, they cannot independently assign an ID of '1' without coordinating with a central server, causing massive bottlenecks.

Enter the UUID

A UUID (Universally Unique Identifier) is a 128-bit label used for information in computer systems. It looks like this: 123e4567-e89b-12d3-a456-426614174000.

The magic of a UUID is that it can be generated completely offline, by any computer, at any time, with a near-zero probability of a collision. In fact, you could generate 1 billion UUIDs every second for the next 85 years, and the probability of creating a duplicate would still be less than 50%.

Why Modern Apps Require UUIDs

1. Offline-First Applications

Imagine a mobile note-taking app. A user creates a note while on an airplane (offline). The app needs to assign that note an ID immediately so it can attach images to it. If the app relied on an auto-incrementing database ID, it couldn't function offline. By generating a UUID v4 locally on the phone, the app can confidently sync the data to the server later without fear of ID conflicts.

2. Data Merging and Sharding

When an application gets too big for one database server, the data must be split (sharded) across multiple servers. If you used integers, Server A and Server B might both have a "User ID 1". If you ever needed to merge those databases, it would be a disaster. UUIDs eliminate this issue entirely.

UUID v4 vs UUID v7

Historically, developers used UUID v4, which is completely random. However, random UUIDs cause performance issues in traditional databases (like MySQL) because they fragment the B-tree indexes.

The modern solution is UUID v7 (or ULIDs), which combine a time-stamp with randomness. They are sortable by time, meaning they write to databases sequentially (just like auto-incrementing integers) while retaining all the security and distributed benefits of a UUID.

Need to generate secure UUIDs right now for your mock data or testing? Use our Free UUID Generator to instantly generate thousands of collision-free identifiers.

Tags

#Architecture#UUID#PostgreSQL#System Design