Airlock Microgateway

Agile Protection of Microservices

What is a Microgateway?

Airlock Microgateway is a lightweight security gateway designed specifically for container environments. With little effort, it helps DevOps engineers and application teams protect their services from unauthorized or malicious access. 

Typical use cases:

  • Protecting APIs against OWASP API top 10 attacks.
  • Securing container applications and microservices against zero day attacks like Log4Shell
  • Decentralized access control (including token validation)

Airlock Microgateway is also available as a free Community Edition.

More technical info


Airlock Microgateway


Multi-level security filters for protecting against known attacks (OWASP Top 10)

OpenAPI and JSON Schema protection for close-meshed API security: Only what is explicitly declared is accepted.

Access management in combination with Airlock IAM (including OAuth, OIDC, SAML)

Authentication enforcement (including JWT token validation)

▶ Text-based configuration via YAML file for easy automation

▶ Load balancing: load distribution across multiple service instances


Cloud-native = Lightweight and automatable
Airlock Microgateway is designed for modern container architectures, is controlled via Kubernetes and integrates easily with GitOps processes.

Agile security = more autonomy for application teams
Application-specific security rules are defined by developers and enforced by Microgateway. Manual handoffs and coordination with SecOps are largely eliminated.

Shift Left = Security from the start
Microgateways are deployed during development and testing. This means that the architecture is similar to the productive environment and any integration hurdles are eliminated at an early stage.

Zero Trust = No bypass
A Microgateway is positioned directly in front of the application, so nobody can bypass it. This helps you implement a Zero Trust architecture in multi-cloud environments.


Find more details in the

Microgateway Factsheet (PDF)

How it works

In this recorded webinar from our partner VSHN you can learn how Airlock Microgateway could work for you.

Toward DevSecOps

In a DevSecOps culture, every agile team has a security expert. He fulfills non-functional requirements, so the product owner includes security in the development plan.

Read this whitepaper to learn key insights on how to successfully and efficiently implement DevSecOps, what security components are needed to make it happen, and the benefits of a microgateway architecture.

Request Whitepaper DevSecOps

Airlock Microgateway in action

As a start-up in the tech sector, we sought an innovation partner that offered both high speed and extensive expertise. These are precisely the characteristics that distinguish Airlock, and during collaboration you clearly feel that you’re dealing with engineers and not just sellers. The benefit for us is that we get exactly the future-proof solutions we need – a major plus especially in times of digital transformation.

Sandro Toneatto, CTO, dacadoo AG

View reference story

We see the main advantages of using Airlock in increased customisation possibilities because of the Airlock Microgateway, which optimizes the protection of Kubernetes applications.

Andrin Farner, Consultant, Inacta AG

View reference story

Our customers manage hundreds of pieces of corporate data and communicate with thousands of contacts every day – and they do so with completely different IT systems. That’s why we chose an agile IT infrastructure, running microservices as containers in an OpenShift platform.

Rui Santos, Solution Architect, AssetMetrix

View reference story

Convincing performance: Gold for the Airlock Microgateway

Not only our customers, but also the independent information security community is convinced. The Airlock Microgateway was awarded Gold at the Cyber Security Excellence Awards 2022 in the Zero Trust Security category. In total, Airlock solutions have won the gold award seven times.

Information for you

-Our whitepapers-

Study Application and API Security 2022

In a recent study in cooperation with CIO, CSO and COMPUTERWOCHE, Ergon Airlock looked at application and API security in the container environment.

Request study

Zero Trust is a journey

The digital transformation of the world continues to progress, and it is profoundly affecting private life and job profiles in a manner that was hard to imagine just a few years ago.

This whitepaper covers the effects of continuous digitization and its implications.

Request free of charge

Toward DevSecOps

In this whitepaper, you will learn the most important insights into how you can successfully and efficiently implement DevSecOps, which security components are required for this, and what benefits a microgateway architecture brings.

Request free of charge

Airlock 2FA - Strong Authentication. Easy.

The two-factor authentication in the area of IT security offers double the security.

Find out more about strong authentication and the possibilities that Airlock offers in our whitepaper.

Request free of charge

Further whitepapers

We provide whitepapers on these and other topics free of charge:

  • successful IAM projects
  • Compliance
  • Data protection (GDPR)
  • Introduction of PSD2
  • PCI DSS requirements
Request free of charge