We protect your IT – and your money too.

The best proof of a product's quality is when highly critical customers with very demanding requirements unanimously opt for one and the same solution. Nowadays, Airlock is a de-facto standard for protecting online banking platforms.

Maximum security for the financial sector

User authentication for financial transactions requires exceptionally high protection. Airlock IAM is setting new standards in this area: as well as ensuring that the login process is secure, Ergon's solution also flags suspicious transactions as necessary. In addition, Airlock Suite makes it possible to implement the highest security requirements and to meet compliance conditions promptly. Central security architecture also facilitates end-to-end auditing of the core processes.

Meeting PSD2 Challenges!

PSD2 will require two major technology thrusts: exposing and securing APIs for banking functions, and presenting strong authentication options for financial customers. Banks have to open up many of their core banking functions to enable the PSD2 ecosystem where Third Party Providers (TPPs) can directly initiate payment transfers and aggregate account information. Banks, TPPs, or even other FinTechs much present strong, risk-adaptive authentication methods for financial customers to use. Moreover, PSD2 even mandates the use of transactional and session-level runtime risk assessments. Few banks and FinTechs are in a position today to meet these technical requirements.

Watch our Webinar with John Tolbert, Senior Analyst KuppingerCole

Selected Solutions

Legally compliant data storage

User behavior on the internet, in social media and via mobile channels, and knowledge about users' wishes, requirements and preferences add up to a wealth of useful information for companies. In many sectors, companies are obliged to safeguard this information faithfully for legal reasons.

Learn more ...

Meeting compliance standards

In road traffic and virtual traffic alike, uniform standards define clear rules that are essential for safety and security. This is why Airlock Suite meets all the main international compliance standards – from PCI DSS and OWASP to MAS.

Learn more ...

Maximum security for sensitive data

Our company has been a respected partner for European banks and insurance companies for almost 20 years. You too will benefit from this in-depth expertise when you opt for Airlock. Airlock Suite offers you a unique combination of filtering methods that will meet the most demanding security requirements.

Learn more ...

Risk-based Authentication

Today, strong authentication using two factors is best practice for business applications. However, this measure is often considered to be cumbersome in everyday work.

Learn more...

Our Banking Partner


Essential for Banking
The Avaloq group is an international leader in integrated and comprehensive solutions for wealth management, universal and retail banks. It has a reputation for the highest standards in engineering excellence, is passionate about innovation and invests more in R&D than any other provider for the financial industry. The company's meticulous and uncompromising attention to detail has enabled it to achieve a unique 100% success rate in its implementation of banking solutions around the world. Avaloq is the only independent provider for the financial industry to both develop and operate its own software. Business process and IT outsourcing solutions are offered from Avaloq's BPO centres in Switzerland, Germany and Singapore. The company employs more than 1,800 highly qualified banking and IT specialists and has a global customer base of more than 140 financial institutions in over 20 countries worldwide, including tier one banks in the most demanding financial centres.

Crealogix E-Banking AG

The CREALOGIX Group is an independent Swiss software house and the market leader for Digital Banking in Switzerland, ranked in the global FinTech Top 100 list. CREALOGIX develops and implements innovative fintech solutions for the digital bank of tomorrow. The focus is placed on changed customer needs for mobility, security, personalised advice and education within a comprehensive user experience. Established in 1996, the Group has around 330 employees worldwide and generates CHF 50 million in revenue.

Crealogix E-Banking AG
Finnova AG

Finnova is the largest provider of banking software in the Swiss financial centre. We help banks and outsourcing providers to realise growth in the banking sector, even in challenging times, thanks to efficient and innovative IT solutions compliant with regulatory requirements. Smarter banking with Finnova – that is what we stand for. And that is why over 100 banks have already put their trust in us.

Founded in 1974, Finnova AG employs around 350 people at its headquarters in Lenzburg and at other branch offices in Chur, Seewen, Lausanne and Singapore. Its standard solution, Finnova Banking Software, is currently used by around 80 universal banks and 20 private banks in Switzerland and abroad. They benefit from the software’s extensive functional breadth and depth, combined with the lowest TCO in the industry. Finnova’s outstanding scalability and parameterisation capability enable banks to implement their strategic requirements efficiently, within budget and on schedule.

Finnova AG

Founded in 1993 and listed on the Swiss Stock Exchange (SIX: TEMN), Temenos Group AG is a provider of banking software systems to retail, corporate, universal, private, Islamic, microfinance and community banks. Headquartered in Geneva and with more than 60 offices in 50 countries, Temenos serves over 1,000 financial institutions in more than 125 countries across the world.


Case Studies

Bank Vontobel AG: authentication server is a central element of security

Bank Vontobel AG is part of the Vontobel Group, a Swiss private bank with global reach.

Vontobel specializes in asset management for private clients and institutional investors, together with investment banking. Vontobel deploys Airlock IAM for secure user authentication and authorization.

Read more Read less

IKB Data: protected SAP access with Active Directory

Together, IKB Data and Ergon Informatik have come up with secure web access to an SAP portal of the IKB Deutsche Industriebank AG. Requirements for user log-on were a two-factor authentication against the Active Directory as well as access to SAP via single sign-on. The Ergon web application firewall Airlock WAF and its authentication module meet these requirements.

When it comes to lifecycle management, IKB Data was facing the replacement of the previous web application firewall (WAF). In this time IKB Deutsche Industriebank decided in favour of the SAP solution SRM-SUS (Supplier Relationship Management/Supplier User Service) to be implemented as external web access. It thus lent itself to adjusting special wishes regarding the WAF to the requirements on SRM-SUS. SRM-SUS helps simplify supplier management in that external employees and suppliers can enter their own invoicing information and timesheets. To limit access to SRM-SUS, VPN was not the desired option for data exchange. Instead data exchange was enabled directly via Internet. A WAF made as restrictive as possible and two- factor authentication were used to meet the high security requirements of the bank. Single sign-on (SSO) was added as a convenience feature to the specifications so that users do not have to also sign on to SAP. In addition to securing the SRM-SUS portal, the idea was to replace the existing WAF connections for the web applications of other customers. “When it came to updating our web application firewall we placed great importance on an appropriate security level for our customers in addition to looking at it from an economic standpoint”, explains Markus Repges, IT Security & Business Continuity Manager at IKB Data. “For this reason we were looking for a product with a good reputation in terms of filtering data traffic and flexible options for strong authentication. On top of that, the capability for location-redundant high availability mode was a crucial prerequisite.”

Read more Read less

La Roche & Co Banquiers: Tradition and progress going hand in hand

La Roche & Co Banquiers was founded in 1787 and is the oldest private bank in Basel. The bank’s core competencies include individualised superior quality management of the assets of private and corporate clients. In order to guarantee its clients the highest levels of security and availability with regards to e-banking, La Roche has entrusted the protection of its Web-based applications to the Web Application Firewall Airlock WAF.

Throughout its long years of experience, La Roche & Co Banquiers has become well versed in the high standards both private individuals and companies expect when it comes to the comprehensive management of their financial and investment affairs. Experts at the oldest private bank in Basel support their clients with their asset management and advise them in legal and tax issues, in their succession and inheritance planning; with their strategic financial planning as well as in the adaptation of company structures, such as trusts and charities, for example. Behind the historical facade of the company’s head office situated close to the Basel Cathedral the latest computer technology is at work. The cross-generation experience of the family-owned company ensures an even balance between tradition and technical progress.

Read more Read less

Finter Bank Zurich: secure eBanking with Airlock

For over half a century, Finter Bank Zurich's core business has focused on private banking for customers from over 80 countries.

A new IT platform was introduced at Finter Bank Zurich in Switzerland and Nassau between 2009 and 2010. In 2011, this was followed by the evaluation and introduction of an eBanking system to provide clients with all the benefits of round-the-clock access to client and account information, including authorization for all relevant transactions. Finter Bank Zurich also adapted its security arrangements when the eBanking web application was introduced. The challenge here was to identify and implement the mandatory security measures, while keeping effort and costs within reasonable limits.

Read more Read less