Government Observability Stack

Three pillars

Metrics. Throughput, latency, error rates.

Logs. Structured events с PII filtering.

Traces. End-to-end request paths cross-agency.

Government-specific

PII в logs — masked or excluded.

Long retention для regulator audit (>5 лет).

Critical service identification. Citizen-facing services first priority.

Regulator-facing reporting. Service availability quarterly.

Public transparency dashboards (limited scope).

Структурные элементы

Collectors per system.

Pipelines с PII filtering.

Storage tiers (hot/warm/cold).

Query layer unified.

Alerting tuned.

Dashboards per service.

SLI/SLO framework для critical services.

Где ломается

Каждое agency свой stack — correlation cross-agency невозможна.

PII в plain logs — security incident.

Cost out of control.

Связанное

• /architecture/government-event-bus-architecture/ — event bus
• /architecture/government-zero-trust/ — zero trust
• /insights/government-cyber-resilience/ — cyber
• /expertise/government-cyber-discipline/ — cyber expertise