Partner NavigatorENDEENDEPartner Navigator
HomePartnersKubernetes-native protection for applications, APIs and microservices
Overview image

Kubernetes-native protection for applications, APIs and microservices

For 20 years, the Airlock Secure Access Hub has combined the critical IT security topics of filtering and authentication into a well-coordinated overall package that sets standards in terms of usability and services. The Secure Access Hub covers all important functions of modern application security: from Web Application and API Protection (WAAP), which has been recognised by specialist journalists, to a microgateway for security in Kubernetes environments, to Identity and Access Management (IAM) with integrated strong authentication.

Airlock is a security innovation from the Swiss software company Ergon Informatik AG. The company was founded in 1984, has around 450 employees and has repeatedly been recognised as one of the most popular employers in Switzerland.

Product type: App, SaaS & Others: WAAP, WAF, Container & Kubernetes

Provider: Ergon Informatik AG

Website: https://www.airlock.com/

Click Here

Airlock

As WAAP (Web Application and API Protection), Airlock Microgateway protects microservices from attacks and unauthorised access during operation. It is specially designed for distributed use in Kubernetes environments and is placed directly next to the service to be protected. The microgateway therefore offers customised protection for each individual application or API in the Open Telekom Cloud.

Typical deployment scenarios:

-** Protection of APIs against **OWASP API Top 10 attacks and more.

  • Protection of microservices or applications against zero-day attacks such as Log4Shell

-** Decentralised access control** for the implementation of zero trust architectures (e.g. through token validation)

  • **More than just zero trust **- Continuous Adaptive Trust (CAT)
Microgateway_Std_cbc9c84aea.svg

Cloud-native = modern, lightweight and automatable

Airlock Microgateway is designed for modern Kubernetes architectures and can be easily integrated into GitOps processes. Microgateways are already used during development and for testing. This means that the architecture is similar to the productive environment and any integration hurdles are eliminated at an early stage. Further information: From DevOps to DevSecOps

mini_Kube_ae36881095.svg

Agile security = more autonomy for application teams

Enforce company-wide security guidelines and authorise application-specific rules by the developers. This largely eliminates the need for manual handovers and coordination with SecOps.

  • **Multi-level security filters **for award-winning protection against known attacks (e.g. OWASP Top 10) and zero-day exploits such as Log4Shell.
  • **Kubernetes-native: **Istio service mesh support, operator and CRDs, automatic sidecar installation, hot reload
  • Modular configuration with and without templates (with kustomize, helm, etc.)
CA_Tnew_463e6ce0b6.svg

Zero Trust = No way round it

A microgateway is positioned directly next to the application or API so that nobody can bypass it. The zero-trust architecture is enforced with a new authorisation check for each call. Airlock Microgateway is a Kubernetes Gateway API and WAF with comprehensive authorisation

AltendorfDetlev (1).jpg

A service mesh like Istio does not protect against application-level attacks such as the OWASP and OWASP API Top 10. Airlock Microgateway fills this gap.

Detlev Altendorf, Partner & Account Manager, Airlock Germany

Do you have questions about the Open Telekom Cloud partner programs?

Submit
© 2025 T-Systems International GmbH