Grafik Airlock WAF

Airlock WAF 7.2 Release

Targeted attacks against IT services are often global and coordinated. Many of the computers used for this purpose, such as botnet zombies, are not new to the game and have likely been causing trouble elsewhere before. Therefore, Airlock WAF 7.2 integrates Webroot's BrightCloud Threat Intelligence Service to identify malicious clients in real time and block them before they do harm. The new IP address management features complement the threat Intelligence feeds perfectly, enabling the implementation of comprehensive IP-based access rules. Airlock's API gateway functionality has also been enhanced with a powerful access control feature based on JSON web tokens.

Airlock WAF 7.2 was released on the 21st of May 2019.

Watch our Webinar

The latest Airlock WAF 7.2 features

Threat Intelligence Powered by Webroot

Webroot's BrightCloud Threat Intelligence Service delivers high-quality, global threat intelligence feeds in real-time. IP addresses that perform attacks, belong to botnets, are infected with malware, send spam, are involved in phishing, or access via TOR and other proxies, are immediately blacklisted. Airlock WAF 7.2 integrates Webroot's Threat Intelligence Service as a module and updates IP reputation data continuously. At the push of a button, malicious IP addresses can be blocked and prevented from accessing protected services.

Central management of IP address lists

Airlock WAF 7.2 provides simple and central management of IP address lists for access control. No matter whether you maintain own IP blacklists, want to integrate third-party lists or map internal network ranges: The new features allow easy creation of IP lists using CIDR notation. IP lists can be used for whitelist and blacklist rules, but also for exceptions, e.g. for DoS protection. Of course, IP lists can be updated automatically using the REST API.

Airlock API Gateway: Access Control using JSON web tokens

Strong filtering combined with intelligent access control: The power of Airlock is now specifically tailored for the protection of APIs. In addition to OpenAPI support introduced in the last release, the Airlock API Gateway now evaluates JSON web tokens (JWT) for access control decisions. These tokens (signed and/or encrypted) are checked for validity and for having a valid signature. In addition, restrictions on claims may be checked and access roles can be extracted from verified tokens. Moreover, access control policies may now consider HTTP verbs, e.g., for granting only read access to anonymous API clients.

There are lots of further improvements in the new release, such as TLS 1.3 support and the compatibility of the Airlock cloud image with the Google Compute Engine (GCE). For a complete overview and detailed change log, Please refer to the release notes on Techzone


Did we strike your chord?

Information for you

-Our whitepaper-

IT-security solutions

Digitalisation is presenting businesses with new challenges which go far beyond information technology. This primarily relates to an aspect which is becoming increasingly important: IT security.

Read our whitepaper to find out how IT-Security will become the pioneer of degitalization.

Request free of charge

Accelerate digitisation

To stay technically viable in this digital transformation, you must increasingly switch to hybrid cloud environments. This requires new security approaches as well as coordinated identity and access management.

Find out more in our whitepaper in collaboration with Deloitte, eperi and SHE.

Request free of charge

OWASP Top 10 for API Security

OWASP has created a new Top10 list for API Security. The top 10 listed reflect a broad consensus on what the most important API security issues are at the moment.

In our whitepaper you will learn how our Airlock API addresses the OWASP Top 10.

Request free of charge