Grafik Airlock WAF

Airlock Gateway

Complete protection for web applications and APIs

Web Application + API Protection (WAAP)

Airlock Gateway protects mission-critical, web-based applications and APIs from attacks and undesired visitors. As a central security instance, it examines every HTTP(S) request for attacks and thus blocks any attempt at data theft and manipulation. In combination with Airlock Microgateway and Airlock IAM, this creates a unique architecture for stronger application security.

Airlock Gateway is both a web application firewall (WAF) and an API security gateway. It also protects against undesired bots and DoS attacks. This product category is also called Web Application and API Protection (WAAP).

 

WAAP Capabilities

Identity-centric security

The trusted combination of IAM and WAAP

Airlock Secure Access Hub is the central hub for secure access management in a digitalized world: identity-centric security from a single source, perfectly designed to work together. The following graphic illustrates the interaction of IAM and WAAP.

Friendly to users. Relentless to uninvited guests.

The Airlock components work together to provide maximum ease of use and effective protection without compromise. The diagram illustrates how this works.

Click on the (+) symbols to learn more about the Airlock components.

Protection against cyberattacks on APIs and applications

Be it malicious bots, zero-day exploits or typical attacks according to OWASP Top 10: Airlock Gateway keeps undesirable and malicious visitors away from your web applications and APIs, e.g. with hardened filter rules and anomaly detection based on machine learning. And in conjunction with Airlock IAM, only authenticated and authorized users are granted access to the application.

Protect yourself today from the risks of tomorrow.

Airlock Gateway

Authentication and access control

Airlock's Identity and Access Management guarantees secure and efficient access to digital services. Users benefit from an excellent user experience and single sign-on, in combination with Airlock Gateway even for non-standard applications. Airlock IAM protects against identity theft and shines with flexible registration and login flows including a large number of authentication methods.

Ensure user-friendly and secure access to your applications.

Airlock IAM

Distributed security checks for modern applications

Application protection for today's APIs and tomorrow's microservices: Airlock Microgateway is designed for use in Kubernetes environments. Security policies and compliance can be perfectly automated thanks to Security as Code. This ensures better integration of security and governance throughout the DevSecOps lifecycle. Modern zero-trust architectures also benefit from micro-segmentation and distributed access controls.

Protect your cloud-native applications.

Airlock Microgateway

CustomersAPIsPartnersIoTEmployees
Airlock
Gateway
Airlock
IAM
Airlock
Microgateways
Protected applications and APIs

References

Bühler

In just 20 minutes and without any machine learning knowledge, we were able to achieve significantly higher protection for our applica- tions thanks to the Airlock Anomaly Shield. This changeover was not noticeable to the user due to the same data throughput..

Florian Christberger, Team Manager Network Services at Bühler

To the reference

Visana

A web portal is a very exposed thing and must be specially secured in every case. It was therefore clear to us that we wanted to protect the web applications from unauthorized access in the best possible way with upstream security functions in a web application firewall (WAF).

Martin Burri, IT Security Officer Visana

Case Study

Airlock Gateway

Highlights

Airlock Gateway 8.4

Airlock Gateway 8.4 makes it easier than ever to get started with machine learning–based attack detection. The new Quick Start in Anomaly Shield requires no configuration, no license, and delivers first results in under five minutes – completely risk-free in log-only mode.

The release also introduces a new Brute Force Protection feature for login and other web forms, along with practical enhancements to the REST API and OpenAPI specification enforcement.

Read more

Airlock Microgateway

With the advent of microservice architectures and DevOps practices, central security gateways concentrating many tasks for all services on a single system have increasingly been challenged. The various stakeholders may have differing requirements, timelines and policies for the single system they share.

Airlock Microgateway is also available as a community edition.

 

Filters of a Web Application Firewall

Airlock Gateway analyses traffic moving between users and services. Attempted attacks on applications are blocked before they can reach the in-house systems. 

Airlock Gateway provides comprehensive protection against the OWASP Top 10 vulnerabilities and enables centralised management of security policies. Thanks to these innovative security functions, you can always stay ahead of attackers.

Learn more about filtering

API access control

One of the main reasons for using API gateways is to ensure access control to APIs. Airlock Gateway validates access tokens and permits role-based access authorisation for API end points. Airlock Gateway works in conjunction with Airlock IAM to support these protocols when protecting access to APIs:

  • OAuth 2.0
  • OpenID Connect 1.0
  • SAML 2.0

Security dashboards

Thanks to built-in dynamic reporting, decision makers have an overview of attempted attacks at all times. Operational problems such as performance bottlenecks or back-end problems are also displayed. Interactive drill-down from the dashboards, along with the display of the log lines causing the issue, facilitate the in-depth analysis of every attempted attack.

Learn more about reporting and SIEM integration

Airlock Threat Intelligence

Airlock Gateway seamlessly integrates Webroot's Threat Intelligence Service. Based on the categories and trust levels provided, this automatically blocks dangerous clients and further increases application protection against misuse. Webroot BrightCloud® Threat Intelligence Services is a proactive, automated security solution that provides effective, real-time policy enforcement against the latest threats.

 

Central hub

Airlock Gateway provides a host of interfaces with peripheral systems such as SIEM systems, virus scanners, fraud-prevention systems and HSMs. Thanks to its integrated threat intelligence feed, Airlock Gateway reacts immediately to real-time threat situations on the Internet, protecting systems from new and potentially harmful hazards. Additional components can be integrated via the high-availability capable ICAP interface.

DevSecOps

With its comprehensive REST API, Airlock Gateway is easy to integrate into modern DevOps pipelines and can be supplied as virtual appliance or cloud image.

Learn more about DevSecOps

Deployment

Virtual appliance

Airlock cloud image

Airlock Microgateway as a container

Study: Security in Kubernetes

More and more dev teams are moving from monolithic architectures to microservices and containerized environments.

Find out how companies plan to meet the resulting security requirements using Kubernetes in this study in cooperation with TechConsult.

Request study

Awards

Readers Choice Award

Cyber Security Excellence Award

ERGON in GARTNERS „Magic quadrant for Web Application Firewalls”

Our whitepapers on Gateway and Microgateway

IDG study: App and API security in the container environment

In this study, Ergon Airlock collaborated with CIO, CSO and COMPUTERWOCHE to examine application and API security in the container environment.

In this fascinating study, you will learn about the importance of API management and API security and the biggest hurdles facing the industry.

Request study

Towards DevSecOps

Read our white paper to learn the most important insights into how you can successfully and efficiently implement DevSecOps, which security components are required for this, and what advantages a microgateway architecture offers.

Request whitepaper

App Security with Kubernetes

To learn how companies can ensure the security of web applications and APIs in Kubernetes, read the white paper ‘Security for Cloud-Native Applications,’ which was produced in collaboration between heise and Airlock.

Request whitepaper

Security in Kubernetes

Find out in our study how companies in Germany, Austria and Switzerland intend to address the new security requirements.

 

Request study

Ready for excellent IT security?

Contact us now.
Ergon Informatik AG+41 44 268 87 00

Information for you

-Our whitepapers-

Whitepaper: How to make cIAM a success

Increasing requirements for security and user-friendliness make Customer Identity and Access Management an essential. Read our whitepaper to find out how you can secure your competitive advantage with the right CIAM strategy.

 

Request whitepaper

Whitepaper: Security for cloud-native applications

You can read about how companies can ensure the security of web applications and APIs in Kubernetes in the white paper "Security for cloud-native applications", which was created in collaboration between heise and Airlock.

 

Request whitepaper

Whitepaper: Zero Trust is a journey

The ongoing digital transformation of the world is progressing and having a profound impact on our personal and professional lives in ways that were difficult to imagine just a few years ago.


This white paper discusses the effects of continuous digitalization and its impact.

Request free of charge

Off to DevSecOps

In this white paper, you will learn the most important insights into how you can implement DevSecOps successfully and efficiently, which security components are required for this and the advantages of a microgateway architecture.

 

Request free of charge

Airlock 2FA - Strong authentication. Simple.

Double security - this is what two-factor authentication offers in the field of IT security.


Find out more about strong authentication and the possibilities offered by Airlock in our white paper.

Download for free

Further whitepapers

We provide you with free white papers on these and other topics:

 

  • Successful IAM projects
  • compliance
  • Data protection (DSGVO)
  • Introduction of PSD2
  • PCI DSS requirementsPCI DSS requirements
Request free of charge