Topwalk-ASG - 拓尔思天行网安

Home

Products

Network security

Topwalk-FW

Topwalk-TBG

Topwalk-ACG

Topwalk-IPS

Topwalk-IDS

Topwalk-VSS

Topwalk-ADD

Topwalk-INP

Topwalk-LB

Topwalk-ATMS

Topwalk-ASG
Cross Domain Solutions

Topwalk-GAP

Topwalk-FGAP

Topwalk-UIS

Topwalk-BOP

Topwalk-BSSP
Data Security

Topwalk-PPCP

Topwalk-WAF
Security management

Topwalk-PDS

Topwalk-GAS

Topwalk-DAS

Topwalk-LAS

Topwalk-IBMS

Solutions

Services

Company

CN 

Topwalk-ASG

天行API安全网关

The Topwalk API Security Gateway (Topwalk-ASG) is engineered to deliver comprehensive security protection and full-lifecycle API management. It supports diverse deployment configurations, including proxy microservice gateways and data publishing gateways, ensuring both the stable operation of business systems and the secure, compliant transmission of files and data. The product integrates seamlessly with privacy computing platforms to enable compliant data monetization, while also featuring deep interoperability with zero-trust architectures. Leveraging robust authorization mechanisms, it provides API-level fine-grained access control to establish unified, secure access channels. Every client request is required to carry a zero-trust-issued token, enabling trusted access and delivering a highly reliable, secure, and controllable network infrastructure for public security information networks and other industry verticals.

Home > Network security > Topwalk-ASG

Core Values

Security Proxy

The system supports proxying unencrypted HTTP APIs into secure HTTPS APIs, with compatibility for both national and universal HTTPS standards. This ensures end-to-end encrypted and secure data transmission.

Access Control

The system provides centralized management of client applications and enforces controlled access via API authorization protocols. Only authorized applications are permitted to invoke the corresponding APIs, while unauthorized requests are blocked outright—thus ensuring robust business security and regulatory compliance.

Resource Release

The system enables rapid API publishing for both database and file resources, with full support for the complete suite of management operations including creation, modification, deletion, and querying. For database data sources, it is compatible with a wide range of Oracle versions spanning from 9i to 19c, while file data sources offer out-of-the-box support for the FTP protocol.

API Management

The system supports the full lifecycle management of APIs, covering creation, modification, testing, release, authorization, deactivation, deletion, advanced configuration, blocklist management, and detailed information tracking. It also offers advanced configuration capabilities including content validation, security protection, circuit breaking, and zero-trust integration.

Product Advantages

Zero Trust with Dual Protection for Comprehensive Data Security

The system can integrate with zero-trust authentication tokens to rigorously verify each application identity and manage data access permissions through refined control policies. This dual-layer protection ensures that unauthorized access is thoroughly exposed, comprehensively safeguarding data security and integrity.

Comprehensive Security and Access Control

API content verification supports sensitive data masking and keyword filtering; security protection includes attack defense, vulnerability defense, and digital signature defense; circuit breaking and rate limiting supports access frequency control and data traffic control; zero-trust configuration supports validation token settings and token acquisition settings.

Compliant HTTPS Encryption Support, Aligned with Global Security Standards

The system supports national cryptographic algorithm-based HTTPS encryption transmission, meeting Xinchuang requirements, ensuring the security and reliability of data during transmission, and enhancing overall network security protection capabilities.

Application Scenarios

With the evolution of next-generation public safety information networks, network silos have been eliminated. This not only facilitates data integration and sharing but also provides a robust network infrastructure to underpin public safety informatization initiatives. To address the requirements of high-concurrency user access, it is imperative to establish unified, secure access channels for converged terminal users. Deployed at the boundary between user domains and public safety data domains, the Topwalk API Security Gateway (Topwalk-ASG) serves as a core secure access platform, leveraging comprehensive management, authorization, and protection mechanisms. It enables secure interconnection between public safety data aggregation nodes and user aggregation nodes, and delivers service-oriented solutions to facilitate secure, trusted access to data resources.