The benefits at a glance
Airlock is a central hub for secure access management in a digitised world. The secure access hub is a consolidated all-in-one solution that brings you the following benefits:
The components at a glance
Airlock API Gateway
Airlock API gateway provides custom protection for interfaces, securing connections to a wide range of peripheral systems.
JSON Schema and OpenAPI specifications can be uploaded and enforced on the API gateway. Innovative functions such as dynamic value endorsement (DyVE) also enable dynamic whitelisting of permitted variables within API interactions. SOAP/XML requests can also be checked against formal definitions such as a WSDL specification.
Access control is one of the most important issues in the context of API protection; all the relevant standards, such as OAuth 2.0 and OpenID Connect 1.0, are supported in conjunction with Airlock IAM.
Airlock WAF analyses all the traffic to the services and applications under protection, blocking attempted attacks long before they reach in-house services.
Airlock WAF provides comprehensive protection against OWASP Top 10 vulnerabilities, enabling centralised management of security guidelines. Thanks to these innovative security functions, companies can always stay a step ahead of attackers.
Working in conjunction with Airlock IAM, Airlock WAF serves as a central implementation point for security guidelines (policy enforcement point), to ensure that all access is authenticated and authorised. Airlock WAF’s many interfaces, with peripheral systems such as security information and event management (SIEM) systems, virus scanners, threat intelligence, fraud prevention systems and hardware security modules (HSMs), make it the central hub in any security architecture.
Airlock IAM is the central access management component of the Secure Access Hub. It guarantees users secure access to data and applications, with single sign-on and automated user administration.
Airlock IAM offers context-based authentication of users and clients, and authorises access. The large number of authentication methods supported allows for flexible implementation of strong authentication in conjunction with company-wide single sign-on. Even externally managed identities such as social login profiles or IDs from a federation group, such as SwissID, for example, can be integrated.
Airlock solutions in action.Excellent. Reliable.
Thanks to the high level of usability with the new central security infrastructure, we have created a unique Raiffeisen identity for our customers. Customer focus and trustworthiness have top priority in our e-banking solution. With the Airlock Suite, we were able to meet these high requirements.
Stevan Dronjak, Team Lead Web Application Security Raiffeisen Schweiz
Digitisation does not only affect a single business unit, but the entire bank. Accordingly, the offerings within the business segments are tailored to the needs of customers. With the integration of Airlock and SwissID, we want to simplify the registration process.
Sven Bruss, Business Consultant Digital Banking der SGKB
Airlock's complete solution enables us to provide our external partners with easy access to our various internal applications and guarantees a high level of security.
Ivan Hafner, IT Security Manager at Generali
The Airlock Secure Access Hub provides us with modern and effective mechanisms to protect our web applications. In addition, we have created the foundations for further expanding our online services as we wish, thus providing the best possible protection for our investments
Martin Burri, IT Security Officer Visana
Our goal was to implement a centralized and open platform that supports agile and secure app-based transactions and ensures maximum security and stability in the backend. We didn't want to compromise. The solution had to be immediately deployable, with minimal customization, and feature state-of-the-art technologies.
Thomas Balmer CTO Pintail