Airlock

Airlock Products

Airlock Secure Access Hub is an integrated security suite consisting of three products: Airlock IAM for Identity and Access Management, Airlock Gateway for Web Application Firewall and API protection as a software appliance, and Airlock Microgateway as a Kubernetes-native Web Application Firewall and API protection solution. Since 2002, Airlock has helped organizations protect more than 30,000 applications and over 20 million active identities against unauthorized access.

Secure Access Hub Components

Airlock IAM provides adaptive, continuous authentication and user-friendly access control for digital applications. It supports modern identity and access requirements such as single sign-on, strong authentication, flexible login flows and context-aware access policies, helping organizations balance security and usability.

Airlock Gateway is a software appliance for virtual machines and hardware servers that combines Web Application Firewall (WAF), API security, helping protect critical web applications and APIs by filtering incoming requests and enforcing authentication. It blocks malicious traffic, bots, DoS attacks, zero-day threats and common attack patterns, while its machine learning based Anomaly Shield detects abnormal behavior.

Airlock Microgateway is a Kubernetes-native Web Application Firewall (WAF) and API protection solution. It can serve as a replacement for the archived NGINX Ingress project. OpenShift certified and built as an identity-aware proxy with native OIDC support and built-in dashboards, it helps platform teams secure applications and APIs while following GitOps and Dev(Sec)Ops principles.

Key Features

Airlock offers a broad set of security and access capabilities across its Secure Access Hub. These include adaptive authentication, single sign-on, strong authentication methods, user self-services, and social login on the IAM side. For application and API protection, both Airlock Gateway and Airlock Microgateway provide deny rules proven in bug bounty programs, OpenAPI specification enforcement, GraphQL validation, ICAP filtering for malware, bot and DoS defense, and authentication enforcement. In Kubernetes environments, Airlock Microgateway adds native OIDC support, OAuth 2.0 Token Exchange, GitOps-friendly deployment, and a Kubernetes Gateway API conformant implementation.

Why Organizations Use Airlock

Airlock is designed for organizations that need to secure access to digital services without creating unnecessary friction for users. By combining identity-centric access control with application and API protection, the platform helps teams centralize security, support compliance requirements and protect both traditional and cloud-native environments from evolving threats.

Target Users

Airlock is ideal for organizations that operate business-critical digital services and need strong protection for applications, APIs and identities against OWASP Top 10 risks. It is especially relevant for enterprises in financial services, insurance, healthcare, public services and other regulated industries where security, availability and user trust are critical. It is also well suited to teams running modern Kubernetes environments that want to embed security into their platform and DevSecOps workflows, including those seeking a replacement for the archived NGINX Ingress project.

About Airlock

Airlock is developed by Ergon Informatik AG, a leading Swiss software development company based in Zürich. Founded in 1984, Ergon Informatik has grown to employ 400 IT specialists who are dedicated to delivering customised applications and advanced software products.

Company Achievements

Ergon Informatik has been recognised for its commitment to excellence and innovation. The company received the Swiss Employer Award and the ICT Education and Training Award in 2012. In 2008, it was the first company to be honoured with the SwissICT Champion Award. These accolades underscore Ergon Informatik’s dedication to providing cutting-edge solutions and maintaining high standards in customer satisfaction.