Add support to filter/block requests which contain pii or sensitive information in trace data

SigNoz / signoz

SigNoz is an open-source observability platform native to OpenTelemetry with logs, traces and metrics in a single application. An open-source alternative to DataDog, NewRelic, etc. 🔥 🖥. 👉 Open source Application Performance Monitoring (APM) & Observability tool

https://signoz.io

Other

18.47k stars 1.17k forks source link

Add support to filter/block requests which contain pii or sensitive information in trace data #35

Open nareshganesan opened 3 years ago

nareshganesan commented 3 years ago

Add a filter to identify pii/sensitive information in trace data and different metrics related to it.
Flagging or encrypting request which has PII or sensitive data, so enterprises can monitor all the sensitive data in transit.

Angelia64 commented 3 years ago

https://github.com/SigNoz/signoz/issues/35#issue

pranay01 commented 3 years ago

Thanks @nareshganesan for creating the issue. Can understand the need for this. I didn't get the second part - "enterprises can monitor all the sensitive data in transit." Do you mean encrypted data should be flagged/highlighted when it is shown in the flamegraph view of the trace?

nareshganesan commented 3 years ago

@pranay01 , Thanks for checking with me. As part of GDPR / CCPA and other compliance policies, enterprises need to make sure any sensitive data (personally identifiable information, etc) is always encrypted at rest or in storage. It would nice to have a filter that monitors the request payload data. The filter should be able to block or flag request which has non-encrypted PII information.

Using this filter we can monitor how many requests were flagged for not encrypting sensitive data. Hope I explained it correctly, please let know if you have questions.