airlock - More Protection for your Web Applications & Services

phion’s web application firewall (WAF) airlock provides a unique combination of protective mechanisms for web applications. Whether you want to observe PCI DSS, safeguard online banking or protect e-commerce applications: airlock ensures sustained and manageable web application security.

Thanks to airlock your company can utilise the diverse opportunities presented by the internet, without restricting the security and availability of your web applications and web services.

As the only web application firewall on the market airlock covers the entire spectrum for protecting and optimising complete web environments. Web applications can be provided directly to customers, partners and employees with differing authorisation levels. The combination of web applications security, single sign on and SSL-VPN access provides the best possible flexibility at the highest security level.

By separating numerous security functions from the business logic, the security for all applications can be increased and thus fulfils more rigorous compliance specifications. Based on the positive security model even new, still unknown attacks are prevented without having to manage countless signatures or filter rules. airlock centralises security tasks in the web application firewall and thus relieves the load on the applications. When a new authentication process is introduced there is no need to adapt all applications individually. Critical security functions can be efficiently implemented and you can avoid hidden costs or risks by eliminating proprietary dependencies.

airlock – the only web application firewall that covers the entire spectrum of security and optimization for web environments.

Secure Reverse Proxy Scheduling of TCP/IP, SSL, HTTP/S and SOAP/XML
Multi level filtering
Dynamic white listing
URL encryption
Smart form protection

Cookie Store
Load Balancing
ICAP Content Filtering
Content Rewriter (Raw, HTML)
Access Control & SSO
SOAP/XML Filter

Background Knowledge

Although in the meantime word has got around that web applications are the favored entrance gates for hackers at the moment, some experienced administrators are still sticking to their misjudgements. The following article does away with the seven classic misconceptions.
The 7 classic misconceptions about Web Application Security

Attacks on web applications today are by no means coincidental, but deliberately targeted. As a result, the comprehensive and constant protection of web applications and services is both imperative and more important than ever before. Only a perfected solution that combines various security measures can identify and prevent even hitherto unknown attack methods early on and thus guarantee sustainable protection.
Convergence with Web Application Security (PDF)

Web application developers cannot foresee future dangers – but a web application firewall can
Dynamic Whitelisting (PDF)

Quote

“Our new online banking system was activated in February 2007 and has been running perfectly since then without one single disruption. As far as I am concerned, this is a clear signal that we chose the right partner for the implementation of this solution. Our current online banking meets the highest security standards – this gives me a very good feeling personally!”

Karsten Klaffl, apoBank

Documents

airlock Product Guide

Success Stories

Security and Reliability are the highest priorities for e-banking at the Deutschen Apotheker und Ärztebank (PDF)
Hamburg Wasser (PDF) protects web applications for customers and employees with airlock
Zentrale Informatik-Dienststelle Basel-Stadt (PDF): web applications enjoy special protection
Herba Chemosan (PDF): Using the pharmacists´ portal to submit orders securely and easily