Ergon Airlock Microgateway

Airlock Microgateway includes deny rules that are extensively and continuously being tested and improved through bug bounty programs on HackerOne and BugBounty Switzerland. Additional filtering features including OpenAPI specification enforcement, GraphQL schema validation, and header filtering increase security tremendously. The easy-to-use reporting dashboards, developed and maintained by Airlock, provide valuable insights, enabling users to monitor activity and investigate any potential issues.

As an identity aware proxy, Airlock Microgateway makes it possible to enforce authentication. Access to web applications can be allowed or denied on a fine-grained basis. This creates the great benefit that the protected web application can rely on a secure and modern authentication mechanism.

Airlock Microgateway is built for Kubernetes-native environments and integrates easily with standard Kubernetes tools like ArgoCD, FluxCD, Helm, and kubectl for deployment and configuration. Microgateway can also be integrated with existing service meshes, such as Cilium and Istio.

Microgateway’s technical integration is effortless and easy. The same goes for its integration into business processes, as it is flexible to adapt to different business needs. Microgateway enables "Shift-Left" by empowering developers to configure parts of the WAAP on their own while it leaves policy enforcement to the security teams. Restrictions can be managed by establishing Git processes (4-eyes review before merging), RBAC in Kubernetes, Kyverno or OPA Gatekeeper policies. Put the delivery "Ping Pong" with classic WAF solutions behind you and increase delivery speed while everything is perfectly secured.

Companies often adopt a hybrid cloud strategy for business continuity disaster recovery (BCDR) or on-premise workloads. However, relying on several solutions across different environments (e.g. hyperscaler WAFs) can complicate governance and management. Airlock Microgateway facilitates a platform engineering approach, simplifying the management of hybrid and multi-cloud environments. This approach aligns with Gartner’s recommendations for unified, Kubernetes-based infrastructures.

Airlock Microgateway adheres to industry standards and widely used technologies and therefore supports Kubernetes Gateway API, OIDC, Grafana Dashboards, Prometheus metrics and the Elastic Common Schema (ECS) for log formatting. Airlock focuses on integrating existing, proven solutions into its product, avoiding the development of entirely new systems. This prevents vendor lock-in and allows flexible migration between solutions. The upcoming RedHat OpenShift certification for Microgateway 4.5 (release expected by February 2025) further shows this commitment.