What is a Microgateway?
Airlock Microgateway is a lightweight security gateway designed specifically for container environments. With little effort, it helps DevOps engineers and application teams protect their services from unauthorized or malicious access.
Typical use cases:
- Protecting APIs against OWASP API top 10 attacks.
- Securing container applications and microservices against zero day attacks like Log4Shell
- Decentralized access control (including token validation)
Airlock Microgateway is also available as a free Community Edition.
▶ Multi-level security filters for protecting against known attacks (OWASP Top 10)
▶ OpenAPI and JSON Schema protection for close-meshed API security: Only what is explicitly declared is accepted.
▶ Access management in combination with Airlock IAM (including OAuth, OIDC, SAML)
▶ Authentication enforcement (including JWT token validation)
▶ Text-based configuration via YAML file for easy automation
▶ Load balancing: load distribution across multiple service instances
Cloud-native = Lightweight and automatable
Airlock Microgateway is designed for modern container architectures, is controlled via Kubernetes and integrates easily with GitOps processes.
Agile security = more autonomy for application teams
Application-specific security rules are defined by developers and enforced by Microgateway. Manual handoffs and coordination with SecOps are largely eliminated.
Shift Left = Security from the start
Microgateways are deployed during development and testing. This means that the architecture is similar to the productive environment and any integration hurdles are eliminated at an early stage.
Zero Trust = No bypass
A Microgateway is positioned directly in front of the application, so nobody can bypass it. This helps you implement a Zero Trust architecture in multi-cloud environments.
Find more details in the
How it works
In this recorded webinar from our partner VSHN you can learn how Airlock Microgateway could work for you.
In a DevSecOps culture, every agile team has a security expert. He fulfills non-functional requirements, so the product owner includes security in the development plan.
Read this whitepaper to learn key insights on how to successfully and efficiently implement DevSecOps, what security components are needed to make it happen, and the benefits of a microgateway architecture.
Airlock Microgateway in action
As a start-up in the tech sector, we sought an innovation partner that offered both high speed and extensive expertise. These are precisely the characteristics that distinguish Airlock, and during collaboration you clearly feel that you’re dealing with engineers and not just sellers. The benefit for us is that we get exactly the future-proof solutions we need – a major plus especially in times of digital transformation.
Sandro Toneatto, CTO, dacadoo AG
We see the main advantages of using Airlock in increased customisation possibilities because of the Airlock Microgateway, which optimizes the protection of Kubernetes applications.
Andrin Farner, Consultant, Inacta AG
Our customers manage hundreds of pieces of corporate data and communicate with thousands of contacts every day – and they do so with completely different IT systems. That’s why we chose an agile IT infrastructure, running microservices as containers in an OpenShift platform.
Rui Santos, Solution Architect, AssetMetrix
Convincing performance: Gold for the Airlock Microgateway
Not only our customers, but also the independent information security community is convinced. The Airlock Microgateway was awarded Gold at the Cyber Security Excellence Awards 2022 in the Zero Trust Security category. In total, Airlock solutions have won the gold award seven times.