Web Application + API Protection (WAAP)
Airlock Gateway protects mission-critical, web-based applications and APIs from attacks and undesired visitors. As a central security instance, it examines every HTTP(S) request for attacks and thus blocks any attempt at data theft and manipulation. In combination with Airlock Microgateway and Airlock IAM, this creates a unique architecture for stronger application security.
Airlock Gateway is both a web application firewall (WAF) and an API security gateway. It also protects against undesired bots and DoS attacks. This product category is also called Web Application and API Protection (WAAP).
A web portal is a very exposed thing and must be specially secured in every case. It was therefore clear to us that we wanted to protect the web applications from unauthorized access in the best possible way with upstream security functions in a web application firewall (WAF).
Martin Burri, IT Security Officer Visana
With the advent of microservice architectures and DevOps practices, central security gateways concentrating many tasks for all services on a single system have increasingly been challenged. The various stakeholders may have differing requirements, timelines and policies for the single system they share.
Airlock Microgateway is also available as a community edition.
Airlock Gateway can be quickly and easily deployed in the Google Cloud. Existing Airlock licenses can be used for operation in the Google Cloud. The operation follows the BYOL model (Bring your own Licence).
Airlock Gateway 8.0
Airlock Gateway 8.0 is based on a new Linux distribution and contains various functional improvements. These include a substantial simplification in the configuration of the Airlock Anomaly Shield. In order to expand the possibilities of automation, the REST interface has been significantly expanded and a Python library has been added.
Filters of a Web Application Firewall
Airlock Gateway analyses traffic moving between users and services. Attempted attacks on applications are blocked before they can reach the in-house systems.
Airlock Gateway provides comprehensive protection against the OWASP Top 10 vulnerabilities and enables centralised management of security policies. Thanks to these innovative security functions, you can always stay ahead of attackers.
API access control
One of the main reasons for using API gateways is to ensure access control to APIs. Airlock Gateway validates access tokens and permits role-based access authorisation for API end points. Airlock Gateway works in conjunction with Airlock IAM to support these protocols when protecting access to APIs:
- OAuth 2.0
- OpenID Connect 1.0
- SAML 2.0
Thanks to built-in dynamic reporting, decision makers have an overview of attempted attacks at all times. Operational problems such as performance bottlenecks or back-end problems are also displayed. Interactive drill-down from the dashboards, along with the display of the log lines causing the issue, facilitate the in-depth analysis of every attempted attack.
Airlock Threat Intelligence
Airlock Gateway seamlessly integrates Webroot's Threat Intelligence Service. Based on the categories and trust levels provided, this automatically blocks dangerous clients and further increases application protection against misuse. Webroot BrightCloud® Threat Intelligence Services is a proactive, automated security solution that provides effective, real-time policy enforcement against the latest threats.
Airlock Gateway provides a host of interfaces with peripheral systems such as SIEM systems, virus scanners, fraud-prevention systems and HSMs. Thanks to its integrated threat intelligence feed, Airlock Gateway reacts immediately to real-time threat situations on the Internet, protecting systems from new and potentially harmful hazards. Additional components can be integrated via the high-availability capable ICAP interface.
Zero Trust is a journey
The digital transformation of the world continues to progress, and it is profoundly affecting private life and job profiles. Lern more about the effects of ongoing digitization and how it affects modern information technology
The two-factor authentication (2FA, MFA or SCA for short) in the area of IT security offers double the security. In combination with efficient customer identity & access management (cIAM), numerous processes are significantly simplified. Find out more about strong authentication and the possibilities that Airlock offers in our whitepaper.
From spoilsport to the pioneer of digitisation
Digitisation is presenting businesses with new challenges which go far beyond information technology. This primarily relates to an aspect which is becoming increasingly important: IT security. Learn how IT security is accelerating digitization.
In order to stay technically viable in this digital transformation, companies must increasingly switch to hybrid cloud environments. This requires new security approaches as well as a mature customer identity and access management system. Learn more about this topic in our whitepaper in cooperation with our partners Deloitte, eperi und SHE.