Airlock Microgateway

Protects your applications and APIs
Free Community Edition
BenefitsHow it worksTry it nowReferencesicon-externallink Technical details icon-externallink GitHub Ressources

Kubernetes-native WAAP

Airlock Microgateway protects your applications and APIs directly inside Kubernetes. As a lightweight Web Application and API Protection (WAAP) solution, it enables straightforward integration of Zero Trust and identity-based security into modern DevOps and platform processes. Automated, scalable and based on open standards, it makes development and operations both secure and efficient. 

Comprehensive WAAP protection

Stop attacks before they reach your services

Extensive WAAP capabilities, including deny rules, CSRF protection, OpenAPI specification enforcement and GraphQL validation, block OWASP Top 10 threats before they reach your applications. Your services are protected from the very first request, and only explicitly defined, valid requests are allowed. 

By integrating security early into the development process, risks are reduced and compliance requirements are met faster – from days down to minutes. 

Identity-aware security

upstream access control down to path level

Access is validated and authorised at the entry point: as an identity-aware proxy, Microgateway validates identities via OIDC, JWT, token exchange or mTLS and controls access precisely based on roles and paths. Identities are securely propagated to backend services, enabling a seamless single sign-on experience for users. 

Only authorised users and systems can access critical resources. Zero Trust starts here. 

Secure together

Kubernetes Gateway API for clear roles and stable operations

With Kubernetes Gateway API and a clear role model, responsibilities between platform, security and development teams are cleanly separated. As a Kubernetes-native solution, Microgateway integrates seamlessly into existing GitOps workflows: changes to routing and security are defined declaratively as code and rolled out in a reproducible and low-error manner. 

Operational effort is reduced, while a stable, scalable security architecture is established that fits smoothly into existing processes. 

Highlights

Multi-layer API and application protection: filtering, upstream authentication, OWASP Top 10 defence, OpenAPI specification enforcement and GraphQL schema validation

Kubernetes integration: fully compatible with Gateway API, Cilium, Istio, and certified for Red Hat OpenShift

Identity-based security: validates tokens or client certificates and enforces access control based on identity and role 

Multi- and hybrid-cloud support: flexible deployment options

Observability: monitoring via Prometheus and Grafana, logging in ECS format

How it works 

Airlock Microgateway is deployed as a container directly into your Kubernetes clusters and configured via GitOps processes. Acting as a WAAP in front of your applications, it: 

  • controls access based on access policies.
  • enables secure service-to-service communication using OAuth 2.0 Token Exchange across security zones.
  • protects applications through intelligent filtering rules.
  • delivers real-time reporting and monitoring via logs and Prometheus metrics in prebuilt Grafana dashboards.

With Airlock Microgateway, your Kubernetes environment becomes Zero Trust–ready within hours. 

Technical details can be found here 

Built for modern cloud-native teams

In many organisations, DevOps, SREs, security and IT operations work together to bring applications into production quickly and securely – a process that often requires extensive coordination and consumes time and resources. By integrating security directly into CI/CD pipelines and thus into DevSecOps processes, this effort is significantly reduced. 

 

Without Microgateway

 With Microgateway

Security slows down deployments

Security is deployed together with the CI/CD pipeline

Rules must be maintained manually 

Rules are defined as code in the repository

DevOps waits for security approvals

DevSecOps teams control security themselves 

Inconsistent environments

Consistent rules across all environments 

Ready for Zero Trust in Kubernetes? Try Airlock Microgateway

Start with our free Community Edition and the Microgateway Labs, or request a demo to see Airlock Microgateway in action. 

Bye-bye Ingress-NGINX, hello Gateway API

Why Airlock Microgateway is your security upgrade for Kubernetes

The Kubernetes Ingress era is coming to an end. What served as the de facto standard for years is increasingly turning into a security and architectural liability. Outdated concepts, a frozen specification, and critical vulnerabilities such as the “Ingress Nightmare” CVEs make one thing clear: action is required now. This article explains why the Kubernetes Gateway API, combined with Airlock Microgateway, is a decisive upgrade in security, stability, and long-term viability.

Read now

Airlock Microgateway in action

We see the main advantages of using Airlock in increased customisation possibilities because of the Airlock Microgateway, which optimizes the protection of Kubernetes applications.

Andrin Farner, Consultant, Inacta AG

View reference story

As a start-up in the tech sector, we sought an innovation partner that offered both high speed and extensive expertise. These are precisely the characteristics that distinguish Airlock, and during collaboration you clearly feel that you’re dealing with engineers and not just sellers. The benefit for us is that we get exactly the future-proof solutions we need – a major plus especially in times of digital transformation.

Sandro Toneatto, CTO, dacadoo AG

View reference story

Our customers manage hundreds of pieces of corporate data and communicate with thousands of contacts every day – and they do so with completely different IT systems. That’s why we chose an agile IT infrastructure, running microservices as containers in an OpenShift platform.

Rui Santos, Solution Architect, AssetMetrix

View reference story

Study: Security in Kubernetes

More and more dev teams are moving from monolithic architectures to microservices and containerized environments.

Find out how companies plan to meet the resulting security requirements using Kubernetes in this study in cooperation with TechConsult.

Request study

More Ressources

Microgateway Labs
Documentation
Running Example on GitHub
Microgateway on GitHub

Convincing performance: Gold for the Airlock Microgateway

Not only our customers, but also the independent information security community is convinced. The Airlock Microgateway was awarded Gold at the Cyber Security Excellence Awards 2022 in the Zero Trust Security category. In total, Airlock solutions have won the gold award seven times.

This website uses cookies
This website uses tracking and targeting technologies (e.g. cookies). Cookies necessary for the operation of the site are set. In addition, we use technologies to analyze access to our website and to personalize content and advertisements. By clicking "Accept all", you agree to the use of the above technologies and cookies (revocable at any time). Under "Settings" you can change your preferences and refuse data processing.
Necessary cookies enable you to navigate our website and provide its basic functionality. Without these cookies, essential functions cannot be provided.Statistics Cookies are used to record the use of our website statistically and to evaluate it for the purpose of optimizing our offer for you.Marketing cookies may be placed on our website by us or our advertising partners to build a profile of your interests and show you relevant content on our and third-party websites. To show you relevant content on third-party websites, we share this information with third parties, such as advertising platforms and social networks.
←  Back
ImprintPrivacy Policy

Information for you

-Our whitepapers-

White paper: The puzzle pieces of modern authentication

Identity management is like a puzzle: you have to understand the big picture, identify the relevant pieces and put them together in the right order. This white paper shows how to do that.

 

Request white paper

Whitepaper: How to make cIAM a success

Increasing requirements for security and user-friendliness make Customer Identity and Access Management an essential. Read our whitepaper to find out how you can secure your competitive advantage with the right CIAM strategy.

 

Request whitepaper

Whitepaper: Security for cloud-native applications

You can read about how companies can ensure the security of web applications and APIs in Kubernetes in the white paper "Security for cloud-native applications", which was created in collaboration between heise and Airlock.

 

Request whitepaper

Whitepaper: Zero Trust is a journey

The ongoing digital transformation of the world is progressing and having a profound impact on our personal and professional lives in ways that were difficult to imagine just a few years ago.


This white paper discusses the effects of continuous digitalization and its impact.

Request free of charge

Off to DevSecOps

In this white paper, you will learn the most important insights into how you can implement DevSecOps successfully and efficiently, which security components are required for this and the advantages of a microgateway architecture.

 

Request free of charge

Airlock 2FA - Strong authentication. Simple.

Double security - this is what two-factor authentication offers in the field of IT security.


Find out more about strong authentication and the possibilities offered by Airlock in our white paper.

Download for free

Further whitepapers

We provide you with free white papers on these and other topics:

 

  • Successful IAM projects
  • compliance
  • Data protection (DSGVO)
  • Introduction of PSD2
  • PCI DSS requirementsPCI DSS requirements
Request free of charge