Grafik Airlock Secure Access Hub


You want to capitalize
on digital opportunities.
We mitigate the risks. Reliably.

The benefits at a glance

Airlock is a central hub for secure access management in a digitised world. The secure access hub is a consolidated all-in-one solution that brings you the following benefits:

The components at a glance

Airlock API Gateway

Airlock API gateway provides custom protection for interfaces, securing connections to a wide range of peripheral systems.

JSON Schema and OpenAPI specifications can be uploaded and enforced on the API gateway. Innovative functions such as dynamic value endorsement (DyVE) also enable dynamic whitelisting of permitted variables within API interactions. SOAP/XML requests can also be checked against formal definitions such as a WSDL specification.

Access control is one of the most important issues in the context of API protection; all the relevant standards, such as OAuth 2.0 and OpenID Connect 1.0, are supported in conjunction with Airlock IAM.

Airlock API

Airlock WAF

Airlock WAF analyses all the traffic to the services and applications under protection, blocking attempted attacks long before they reach in-house services.

Airlock WAF provides comprehensive protection against OWASP Top 10 vulnerabilities, enabling centralised management of security guidelines. Thanks to these innovative security functions, companies can always stay a step ahead of attackers.

Working in conjunction with Airlock IAM, Airlock WAF serves as a central implementation point for security guidelines (policy enforcement point), to ensure that all access is authenticated and authorised. Airlock WAF’s many interfaces, with peripheral systems such as security information and event management (SIEM) systems, virus scanners, threat intelligence, fraud prevention systems and hardware security modules (HSMs), make it the central hub in any security architecture.

Airlock WAF

Airlock IAM

Airlock IAM is the central access management component of the Secure Access Hub. It guarantees users secure access to data and applications, with single sign-on and automated user administration.

Airlock IAM offers context-based authentication of users and clients, and authorises access. The large number of authentication methods supported allows for flexible implementation of strong authentication in conjunction with company-wide single sign-on. Even externally managed identities such as social login profiles or IDs from a federation group, such as SwissID, for example, can be integrated.

Airlock IAM

Airlock 2FA

Airlock 2FA is integrated into Airlock IAM and makes strong authentication possible with a second factor. Every customer has the management and use of their personal keys on their smartphone (iOS and Android).

Airlock 2FA offers modern authentication methods such as zero touch, one touch, offline QR code, passcode and passwordless. This user-friendly and future-proof solution is also cost-efficient.

The entire functionality is implemented as a REST API and therefore enables seamless integration into modern single page applications (SPA) and native smartphone apps.

Airlock 2FA

Features of the Secure Access Hubs

Airlock solutions in action.

Excellent. Reliable.

Thanks to the high level of usability with the new central security infrastructure, we have created a unique Raiffeisen identity for our customers. Customer focus and trustworthiness have top priority in our e-banking solution. With the Airlock Suite, we were able to meet these high requirements.

Stevan Dronjak, Team Lead Web Application Security Raiffeisen Schweiz

View reference-story

Digitisation does not only affect a single business unit, but the entire bank. Accordingly, the offerings within the business segments are tailored to the needs of customers. With the integration of Airlock and SwissID, we want to simplify the registration process.

Sven Bruss, Business Consultant Digital Banking der SGKB

View reference-story

Airlock's complete solution enables us to provide our external partners with easy access to our various internal applications and guarantees a high level of security.


Ivan Hafner, IT Security Manager at Generali

View reference-story

Airlock has made us agile and secure. Because it provides the upstream security layer that enables us to develop what is really important: convincing digital services for our customers.


Martin Burri, IT Security Officer Visana

View reference-story

Our goal was to implement a centralized and open platform that supports agile and secure app-based transactions and ensures maximum security and stability in the backend. We didn't want to compromise. The solution had to be immediately deployable, with minimal customization, and feature state-of-the-art technologies.


Thomas Balmer CTO Pintail

View reference-story

Further References

IT Security

From spoilsport to the pioneer of digitalisation

Digitalisation is presenting businesses with new challenges which go far beyond information technology. This primarily relates to an aspect which is becoming increasingly important: IT security. 

Learn how IT security is accelerating digitization.

Read the whitepaper

Ready for excellent IT security?

Contact us now.
Ergon Informatik AG+41 44 268 87 00

Information for you

-Our whitepaper-

IT-security solutions

Digitalisation is presenting businesses with new challenges which go far beyond information technology. This primarily relates to an aspect which is becoming increasingly important: IT security.

Read our whitepaper to find out how IT-Security will become the pioneer of degitalization.

Request free of charge

Accelerate digitisation

To stay technically viable in this digital transformation, you must increasingly switch to hybrid cloud environments. This requires new security approaches as well as coordinated identity and access management.

Find out more in our whitepaper in collaboration with Deloitte, eperi and SHE.

Request free of charge

OWASP Top 10 for API Security

OWASP has created a new Top10 list for API Security. The top 10 listed reflect a broad consensus on what the most important API security issues are at the moment.

In our whitepaper you will learn how our Airlock API addresses the OWASP Top 10.

Request free of charge