Reverse Proxy - Web Application Firewall

Airlock Suite deals with the issues of filtering and authentication in one complete and coordinated solution – setting standards for usability and services. Airlock, Ergon's security product, was launched on the market in 2002 and is now used by 350 customers around the globe. We are your partner in the conceptual design, implementation and integration of Web based security solutions. Based on Airlock using our own modules, we provide you with a verifiable secure access to your corporate data.

Effective protection of Web applications, SharePoint and OWA

Access to company-specific data through Web applications or Web services is widespread. Thanks to the standardized interfaces, complex applications can be easily controlled via a browser. Web 2.0 will further standardize this matter and promote it. The decentralized and standardized access to corporate data calls on businesses to secure their data accordingly.

Airlock
 

We are your partner in the conceptual design, implementation and integration of Web based security solutions. Based on Ergon’s Airlock using our own modules, we provide you with a verifiable secure access to your corporate data.

  • Strict segregation of public and internal networks
  • Secure authentication of people and systems
  • Secure session management
  • Validating and filtering protocols and data
  • Encrypt data and URL’s

AIRLOCK

DOWNLOAD

 

The Airlock Web Application Firewall (WAF) offers a unique combination of protective mechanisms for web applications. Whether your objective is PCI DSS, security for online banking or protection for eCommerce: Airlock WAF will upgrade security for your internet applications – a permanent solution with a host of well thought-out functionalities. 

Airlock WAF - The main features:

  • Secure reverse proxy
  • TCP/IP, SSL, HTTP/S and SOAP/XML termination
  • Multi-level filtering
  • Dynamic whitelisting
  • URL encryption
  • Smart form protection
  • Cookie protection with central cookie store
  • Load-balancing for applications
  • ICAP content filtering
  • Content rewriter (Raw, HTML)
  • Access control, authentication & SSO
  • SOAP/XML, AMF and JSON filters

OWASP TOP 10

DOWNLOAD

 

keyon / Authentication Service for Airlock

With the "keyon / Authentication Service for Airlock" various user data can be verified and allocated.

  • Validation of user and system certificates including current certificate revocation lists (CRL) or OCSP
  • Validation of username / password against AD or LDAP
  • Validation of OTP based authentication mechanisms (e.g. SAS SafeNet, RSA SecurID)

Personal information from the authentication features can be assigned to specific applications (mapping).

  • Mapping of certificate-specific attributes (e.g. common name) in HTTP request headers or SOAP message (ICAP Service)
  • Mapping of user specific attributes from the AD / LDAP in HTTP request headers or SOAP message (ICAP Service)

 

keyon / SuisseID Authentication Service for Airlock

The "keyon / SuisseID Authentication Service for Airlock" expanded their Web applications and Web services to provide the functionality of SuisseID.

  • Authentication with SuisseID smart card
  • Requesting User information via SuisseID Identity Provider (IDP)
SuisseID
 

keyon / ICAP Server for Airlock

With the "keyon / ICAP Server for Airlock" application specific data (SOAP) are supplemented with authentication features.