Datadog Expands Observability and Security Support for AWS Serverless Workloads
November 27, 2023
Share this

Datadog announced expanded security and observability support for AWS serverless applications built on AWS Lambda and Step Functions services.

The functionality helps AWS Lambda and Step Functions users detect security threats, get a high-level overview of how their state machine is performing at a single point in time and monitor services instrumented with OpenTelemetry.

Serverless applications eliminate the need to provision and manage infrastructure components, including servers, databases, queues and containers, so teams can focus on writing code while minimizing their operational overhead. These applications also come with unique challenges as they need to be monitored and secured in different ways than traditional applications. Datadog already provides out-of-the-box observability for AWS serverless applications and today expanded these capabilities to include:

- Support for W3C Trace Context Propagation Across All Lambda Runtimes: Teams can now view complete distributed traces across upstream and downstream services that have been instrumented by various OpenTelemetry-compatible instrumentation libraries. This provides teams with improved visibility into their serverless applications so they can efficiently troubleshoot any issues.

- AWS Lambda OpenTelemetry API Compatibility Custom Instrumentation: Developers can now use vendor-neutral code instrumentation to submit custom OpenTelemetry spans from Lambda applications to Datadog in Node.JS and Python runtimes, allowing them to adhere to open source standards.

- Threat Detection for Serverless Applications Deployed on AWS Lambda Functions: The new support enables both DevOps and security engineers to detect and protect against attacks targeting their applications running on AWS Lambda functions.

- Open Source Vulnerability Detection for AWS Lambda Functions: Available in public beta, this capability provides engineers with real-time, continuous vulnerability detection in third-party libraries that are being run in their AWS Lambda applications.

- AWS Step Function Execution Visualization on State Machine Maps: To make troubleshooting issues within AWS Step Functions easier, developers can see the exact path of a Step Function execution, drill into anomalous executions and identify problematic states with ease.

"Datadog helps us detect attacks against our serverless applications and triggers an automated response to block those attempts as they happen," said Micha Katz, CISO at Yellow Card. "Application Security Management was simple to enable and further configure to meet our needs. It provides an informative, well-organized UI, where we can drill into attack details, trigger additional actions using predefined workflows, and gain important insights that help us calibrate and optimize our detection rules. Additionally, with vulnerability detection and contextualized severity ratings, we can better prioritize our remediation efforts within our service layers."

"Securing serverless applications can be a unique challenge because they are highly distributed and comprise several ephemeral, stateless components," said Vikram Varakantam, Senior Director of Product Management at Datadog. "By providing full visibility into serverless applications on AWS Lambda, Datadog Application Security Management's threat detection capability helps DevOps and security teams understand and prioritize the risks and attacks associated with their serverless applications so that they can work to resolve and mitigate any potential breach."

The new features are available now.

Share this

The Latest

March 04, 2024

This year's Super Bowl drew in viewership of nearly 124 million viewers and made history as the most-watched live broadcast event since the 1969 moon landing. To support this spike in viewership, streaming companies like YouTube TV, Hulu and Paramount+ began preparing their IT infrastructure months in advance to ensure an exceptional viewer experience without outages or major interruptions. New Relic conducted a survey to understand the importance of a seamless viewing experience and the impact of outages during major streaming events such as the Super Bowl ...

March 01, 2024

As organizations continue to navigate the complexities of the digital era, which has been marked by exponential advancements in AI and technology, the strategic deployment of modern, practical applications has become indispensable for sustaining competitive advantage and realizing business goals. The Info-Tech Research Group report, Applications Priorities 2024, explores the following five initiatives for emerging and leading-edge technologies and practices that can enable IT and applications leaders to optimize their application portfolio and improve on capabilities needed to meet the ambitions of their organizations ...

February 29, 2024

Despite the growth in popularity of artificial intelligence (AI) and ML across a number of industries, there is still a huge amount of unrealized potential, with many businesses playing catch-up and still planning how ML solutions can best facilitate processes. Further progression could be limited without investment in specialized technical teams to drive development and integration ...

February 28, 2024

With over 200 streaming services to choose from, including multiple platforms featuring similar types of entertainment, users have little incentive to remain loyal to any given platform if it exhibits performance issues. Big names in streaming like Hulu, Amazon Prime and HBO Max invest thousands of hours into engineering observability and closed-loop monitoring to combat infrastructure and application issues, but smaller platforms struggle to remain competitive without access to the same resources ...

February 27, 2024

Generative AI has recently experienced unprecedented dramatic growth, making it one of the most exciting transformations the tech industry has seen in some time. However, this growth also poses a challenge for tech leaders who will be expected to deliver on the promise of new technology. In 2024, delivering tangible outcomes that meet the potential of AI, and setting up incubator projects for the future will be key tasks ...

February 26, 2024

SAP is a tool for automating business processes. Managing SAP solutions, especially with the shift to the cloud-based S/4HANA platform, can be intricate. To explore the concerns of SAP users during operational transformations and automation, a survey was conducted in mid-2023 by Digitate and Americas' SAP Users' Group ...

February 22, 2024

Some companies are just starting to dip their toes into developing AI capabilities, while (few) others can claim they have built a truly AI-first product. Regardless of where a company is on the AI journey, leaders must understand what it means to build every aspect of their product with AI in mind ...

February 21, 2024

Generative AI will usher in advantages within various industries. However, the technology is still nascent, and according to the recent Dynatrace survey there are many challenges and risks that organizations need to overcome to use this technology effectively ...

February 20, 2024

In today's digital era, monitoring and observability are indispensable in software and application development. Their efficacy lies in empowering developers to swiftly identify and address issues, enhance performance, and deliver flawless user experiences. Achieving these objectives requires meticulous planning, strategic implementation, and consistent ongoing maintenance. In this blog, we're sharing our five best practices to fortify your approach to application performance monitoring (APM) and observability ...

February 16, 2024

In MEAN TIME TO INSIGHT Episode 3, Shamus McGillicuddy, VP of Research, Network Infrastructure and Operations, at Enterprise Management Associates (EMA) discusses network security with Chris Steffen, VP of Research Covering Information Security, Risk, and Compliance Management at EMA ...