WEB APPLICATION FIREWALL

On-premise at the customer, on-premise in aspectra's data centres or in the public cloud - the choice is yours!

The WAF seamlessly integrates with Webroot's Threat Intelligence Service. Based on the categories and trust levels provided, rogue clients are automatically blocked and applications are further protected from misuse.

A comprehensive REST API makes it easy to integrate the WAF into modern DevOps pipelines.

Airlock WAF is developed in Switzerland by Ergon and operated by our own Web Security experts in Swiss data centres.

In combination with an IAM, the WAF enables the central management of security policies and becomes the enforcement point allowing only filtered, authenticated and authorised access.

The WAF analyses traffic between users and services. Application attacks are blocked before they can access internal systems. The WAF provides comprehensive protection against the OWASP Top 10 vulnerabilities and enables centralised management of security policies.

The WAF provides many interfaces to peripheral systems like SIEM, virus scanners, fraud prevention or HSMs. Thanks to the integrated Threat Intelligence Feed, the WAF reacts immediately to current threats on the Internet and protects systems against threats that were unknown yesterday. Additional components can be integrated via a highly available ICAP interface. Thanks to the integrated Threat Intelligence Feed, the WAF reacts immediately to current threats on the Internet and protects systems against threats that were unknown yesterday. Additional components can be integrated via a highly available ICAP interface.

The WAF acts as a reverse proxy, enabling the virtualisation of internal services and applications to the outside world. The integrated load balancer also makes applications and services highly available. Even complex issues such as TLS security configuration and certificate management can be handled upstream at the central proxy.