Airlock Header

Airlock IAM 8.6

Highlights and important changes

More protection against phishing, improved accessibility, and stronger automation

Airlock IAM 8.6 delivers important improvements for security, usability, and operations. This release strengthens phishing protection with Short-lived QR Codes for Airlock 2FA, improves the accessibility of the Loginapp, and expands the options for automating and modularising configurations. It also introduces enhancements such as Reliable Event Delivery, Scriptable Validation for self-registration, and a modern Argon2id Password Hash Plugin for stronger password security.

Modifications for simpler config automation

IAM 8.6 introduces Modifications, a powerful enhancement to configuration snippets that makes configuration automation simpler and more reliable. Snippets can now include not only plugins but also the recipe describing how they should be applied, enabling fully self-contained configuration modules. When a snippet is imported, its modifications are applied automatically—eliminating manual steps and complex scripting. The result: faster configuration composition, improved config automation, and a more modular approach to building IAM configurations.

Improved phishing protection for Airlock 2FA

The new release strengthens end-user authentication with improved phishing protection for Airlock 2FA. The new short-lived QR Code feature continuously refreshes QR codes used for login, approval, and enrollment, significantly reducing the risk of QR code phishing (“quishing”) by limiting the time window in which a code can be exploited.

In addition, IAM 8.6 introduces several smaller enhancements across the authentication ecosystem, including improved usability options for Airlock 2FA and refinements to the FIDO passkey implementation to increase interoperability and compatibility. 

Argon2id strengthens password security

IAM 8.6 introduces the new Argon2id Password Hash plugin, a state-of-the-art, OWASP-recommended hashing algorithm designed for maximum password security and resistance against modern attack techniques, with support for seamless on-the-fly hash migration.

Scriptable Validation for flexible self-registration

IAM 8.6 introduces Scriptable Validation for self-registration, enabling organizations to implement custom validation logic directly within the registration workflow. This allows custom validation script code to consider user input as well as contextual information, making it possible to enforce sophisticated security and business requirements without custom code. At the same time, detailed validation feedback helps deliver a smoother and more user-friendly registration experience.

Improved accessibility for the login app

IAM 8.6 enhances accessibility by aligning the Loginapp web UI with WCAG 2.2 Level AA, the internationally recognized standard for accessible digital products. These improvements ensure that authentication flows are easier to use for people with visual, motor, or cognitive impairments, including better support for screen readers, keyboard navigation, and clearer page structure. The result is a more inclusive login experience while helping organizations meet modern accessibility expectations and regulatory requirements.

Reliable Event Delivery: Securely delivering IAM events to downstream systems

Airlock IAM 8.6 supports Reliable Event Delivery for IAM events. Instead of best-effort delivery, events are now persisted and delivered reliably to downstream systems.

The feature is implemented using the Outbox Pattern, ensuring that events are safely stored before being forwarded. This prevents event loss even if the message broker or network is temporarily unavailable.

Reliable Event Delivery requires a message broker provided and operated by the customer. Currently supported brokers are Apache Kafka and Azure Event Hub.

OAuth 2.0: Consistent scope labels across the user interface

Airlock IAM 8.6 improves the existing OAuth 2.0 Scope Translations feature. Translated scope names are now applied consistently across all pages where scopes appear. Translations combine server-side scope translations with client-side page-specific translations. Scope labels also update when the UI language changes.

Various features

Software Bill of Materials and better validation of configurations

Airlock IAM provides a Software Bill of Materials (SBOM) to increase transparency about the components used in the product. SBOM files will be distributed via the Airlock Techzone.

The validation of configurations has been significantly improved and is now up to 20 times faster. This results in a noticeably better user experience when working with large configurations in the config editor.

As always, more new features and improvements are documented in the changelog.

Important information on the replacement of the Loginapp Design Kit

Airlock announced the future replacement of the Loginapp Design Kit (UI SDK) used to customize the Loginapp user interface. Since this change impacts most IAM projects, customers and partners are encouraged to review the details. Please refer to the 8.6 release video or the Loginapp Design Kit documentation for further information and guidance.

Release video

English version

Release video

German version

This website uses cookies
This website uses tracking and targeting technologies (e.g. cookies). Cookies necessary for the operation of the site are set. In addition, we use technologies to analyze access to our website and to personalize content and advertisements. By clicking "Accept all", you agree to the use of the above technologies and cookies (revocable at any time). Under "Settings" you can change your preferences and refuse data processing.
Necessary cookies enable you to navigate our website and provide its basic functionality. Without these cookies, essential functions cannot be provided.Statistics Cookies are used to record the use of our website statistically and to evaluate it for the purpose of optimizing our offer for you.Marketing cookies may be placed on our website by us or our advertising partners to build a profile of your interests and show you relevant content on our and third-party websites. To show you relevant content on third-party websites, we share this information with third parties, such as advertising platforms and social networks.
←  Back
ImprintPrivacy Policy

Information for you

-Our whitepapers-

White paper: The puzzle pieces of modern authentication

Identity management is like a puzzle: you have to understand the big picture, identify the relevant pieces and put them together in the right order. This white paper shows how to do that.

 

Request white paper

Whitepaper: How to make cIAM a success

Increasing requirements for security and user-friendliness make Customer Identity and Access Management an essential. Read our whitepaper to find out how you can secure your competitive advantage with the right CIAM strategy.

 

Request whitepaper

Whitepaper: Security for cloud-native applications

You can read about how companies can ensure the security of web applications and APIs in Kubernetes in the white paper "Security for cloud-native applications", which was created in collaboration between heise and Airlock.

 

Request whitepaper

Whitepaper: Zero Trust is a journey

The ongoing digital transformation of the world is progressing and having a profound impact on our personal and professional lives in ways that were difficult to imagine just a few years ago.


This white paper discusses the effects of continuous digitalization and its impact.

Request free of charge

Off to DevSecOps

In this white paper, you will learn the most important insights into how you can implement DevSecOps successfully and efficiently, which security components are required for this and the advantages of a microgateway architecture.

 

Request free of charge

Airlock 2FA - Strong authentication. Simple.

Double security - this is what two-factor authentication offers in the field of IT security.


Find out more about strong authentication and the possibilities offered by Airlock in our white paper.

Download for free

Further whitepapers

We provide you with free white papers on these and other topics:

 

  • Successful IAM projects
  • compliance
  • Data protection (DSGVO)
  • Introduction of PSD2
  • PCI DSS requirementsPCI DSS requirements
Request free of charge