Distributed application protection for Kubernetes
Airlock Microgateway protects APIs and microservices from attacks and unauthorized access while they are running. Being specifically designed for use in Kubernetes environments, it is placed close to the protected services.
Typical use cases:
- Protecting APIs against OWASP API top 10 attacks.
- Securing microservices against zero day attacks like Log4Shell.
- Decentralized access control (including token validation)
The protection capabilities of Airlock Microgateway are also available in the free Community Edition.
Whitepaper: Security for cloud-native applications
You can read how companies manage to ensure the security of web applications and APIs in Kubernetes in the white paper "Security for cloud-native applications", which was created in collaboration between Isovalent, Heise and Airlock.
Identity-centered security
The proven combination of IAM and WAAPAirlock Secure Access Hub is the central hub for secure access management in a digitalized world: identity-centric security from a single source, optimally coordinated. The following graphic illustrates the interaction of IAM and WAAP.
Friendly to users. Relentless to uninvited guests.
The Airlock components work together to provide maximum ease of use and effective protection without compromise. The diagram illustrates how this works.
Click on the (+) symbols to learn more about the Airlock components.
Protection against cyberattacks on APIs and applications
Be it malicious bots, zero-day exploits or typical attacks according to OWASP Top 10: Airlock Gateway keeps undesirable and malicious visitors away from your web applications and APIs, e.g. with hardened filter rules and anomaly detection based on machine learning. And in conjunction with Airlock IAM, only authenticated and authorized users are granted access to the application.
Protect yourself today from the risks of tomorrow.
Authentication and access control
Airlock's Identity and Access Management guarantees secure and efficient access to digital services. Users benefit from an excellent user experience and single sign-on, in combination with Airlock Gateway even for non-standard applications. Airlock IAM protects against identity theft and shines with flexible registration and login flows including a large number of authentication methods.
Ensure user-friendly and secure access to your applications.
Distributed security checks for modern applications
Application protection for today's APIs and tomorrow's microservices: Airlock Microgateway is designed for use in Kubernetes environments. Security policies and compliance can be perfectly automated thanks to Security as Code. This ensures better integration of security and governance throughout the DevSecOps lifecycle. Modern zero-trust architectures also benefit from micro-segmentation and distributed access controls.
Protect your cloud-native applications.
Gateway
IAM
Microgateways
Highlights
▶ Multi-level security filters for award-winning protection against known attacks (e.g. OWASP Top 10) and zero-day exploits like Log4Shell.
▶ Kubernetes-native: Istio service mesh support, operator and CRDs, automatic sidecar injection, hot reload.
▶ Modular configuration with and without templates (with kustomize, helm, etc.)
▶ Telemetry interfaces such as Prometheus metrics and structured logs in ECS format (Elastic Common Schema) facilitate monitoring and analysis.
▶ Plugins for modern IDEs for automatic validation, code completion, and tooltips when editing the configuration.
Benefit
Cloud-native = Modern, lightweight and automation-ready
Airlock Microgateway is designed for modern Kubernetes architectures and easily integrates with GitOps processes.
Agile security = more autonomy for application teams
Enforce company-wide security policies while allowing developers to define application-specific rules. This largely eliminates manual handoffs and coordination with SecOps.
Shift Left = Security from the start
Microgateways are deployed during development and testing. This means that the architecture is similar to the productive environment and any integration hurdles are eliminated at an early stage.
Zero Trust = No bypass
Microgateways are positioned directly in front of the application so that no one can bypass them. By re-checking permissions for each call, a Zero Trust architecture is enforced.
Find more details in the
Convincing performance: Gold for the Airlock Microgateway
Not only our customers, but also the independent information security community is convinced. The Airlock Microgateway was awarded Gold at the Cyber Security Excellence Awards 2022 in the Zero Trust Security category. In total, Airlock solutions have won the gold award seven times.