Using OpenTelemetry for Application Security - A Real-Life Example

Explore how OpenTelemetry can enhance application security in cloud-native environments through this informative conference talk. Delve into the evolving landscape of application vulnerabilities as the industry shifts from monolithic to cloud-native and microservices architectures. Gain insights into the execution of cloud-native vulnerabilities and their manifestation as vulnerable flows rather than static bugs. Learn about OpenTelemetry's role in modern software development, its core concepts, and its practical applications in observability. Witness a real-life demonstration of a 'cloud-native vulnerability' using a Kubernetes application with two microservices and a message queue, showcasing how OpenTelemetry aids in detection. Explore the manual installation of OpenTelemetry in the environment and observe a vulnerable flow in Jaeger. Address challenges such as additional security-related instrumentation, test coverage limitations, and the installation process. Equip yourself with knowledge to better secure cloud-native applications using OpenTelemetry.