Sold by: Radius MethodÂ
Deployed on AWS
AWS Free Tier
SocketZero is a Zero Trust tunneling solution that enables secure, continuous-access to private network applications without using VPNs. Compatible with MacOS, Windows, and Linux, it supports role-based access and post-quantum encryption using Kyber. SocketZero is ideal for secure remote access, stealth networking, and mission-critical environments.
Overview
SocketZero is a Zero Trust, tunneling solution that allows organizations to securely expose private applications without altering their network topology or relying on VPNs. It uses individual encrypted tunnels to enable seamless, policy-based access for users, with continuous authentication and device posture checks to enforce strict, dynamic authorization.
The platform is built around two core components: the SocketZero Client and Receiver. The Client runs on MacOS, Windows, and Linux, providing a user-friendly gateway for securely accessing applications. The Receiver is deployed by infrastructure teams on Kubernetes clusters or server-based environments, acting as a centralized control plane for access management, encryption, and application configuration.
SocketZero is ideal for security-first organizations in need of mission-resilient communication across cloud, hybrid, or edge deployments. With native support for Kubernetes (including Big Bang and Iron Bank compatibility), anomaly detection, adaptive compression, and Kyber-based post-quantum cryptography, SocketZero delivers stealth, resilience, and performance at enterprise and government scale.
SocketZero Client Application Requirement This SocketZero AMI extends the functionality of the SocketZero Client Application. The client application does not require separate licensing and is provided free of charge with your subscription to this AMI. The client enables secure access to your private applications through encrypted tunnels.
Subscription Benefits Customers receive full access to SocketZero functionality after subscribing to the AMI. This includes secure zero-trust networking capabilities, encrypted tunnel management, and identity-based access controls for your private infrastructure. The subscription includes up to 5 free connections. Additional connections may require separate licensing arrangements. For questions about connection limits or licensing, contact support rather than submitting a support case.
Internet Connection Requirement This product requires an internet connection to deploy properly. The AMI will download and install necessary packages during the initial setup process.
Highlights
- Post Quantum Secure, Zero Trust Access: Uses Kyber PQC encryption and continuous identity/device verification to enable secure, encrypted tunneling across any network.
- No VPN Required - Stealth & Resilient Networking: Disguises application traffic as HTTPS and eliminates VPN attack surfaces while supporting any TCP/UDP-based application.
- Optimized for Kubernetes & Edge Deployments: Supports Kubernetes Big Bang and Iron Bank hardened images, enabling rapid deployment in IL4/5/6, edge, or disconnected environments.
Details
Sold by
Delivery method
Delivery option
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
Ubuntu 22.04.5 LTS
Deployed on AWS
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing and entitlements for this product are managed through an external billing relationship between you and the vendor. You activate the product by supplying a license purchased outside of AWS Marketplace, while AWS provides the infrastructure required to launch the product. AWS Subscriptions have no end date and may be canceled any time. However, the cancellation won't affect the status of the external license.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Vendor refund policy
SocketZero provides up to 5 connections for free. Additional connections require a license from Radius Method.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA)Â .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
SocketZero Client - Stable 1.0 Release Notes Release Date: 23 June 2025 Version: 1.0.0 (Stable) Overview SocketZero Client 1.0 is the first stable release of our secure tunneling solution, enabling authenticated, role-based access to internal services via a simple client and a robust backend. This release focuses on reliability, security, and ease of deployment, supporting both proof-of-concept and production-ready environments.
- Encryption Notice This AMI is unencrypted per AWS Marketplace requirements. Enable EBS encryption when launching instances for production use. To enable encryption: In the EC2 launch wizard, expand "Configure Storage", check "Encrypted", select your KMS key. Alternatively, enable account-wide encryption: aws ec2 enable-ebs-encryption-by-default All SocketZero security features remain fully functional with encrypted storage. Key Features
- Secure Tunnel Management Establishes encrypted tunnels to internal web and SSH services via the SocketZero Receiver.
- Role-Based Access Control Supports user roles (e.g., admin) for fine-grained tunnel access.
- JWT Authentication Uses signed JWT tokens for session management and authorization.
- Redis-Backed Session Store All JWT tokens and session data are managed in Redis for scalability and security.
- HTTPS Support End-to-end encryption with support for real SSL certificates.
- WebSocket Support Enables real-time, persistent tunnel connections.
- ALB Integration Compatible with AWS Application Load Balancer for scalable, production-grade deployments. Deployment Highlights
- Terraform provided for reference.
Additional details
Usage instructions
Documentation and example deployment exist at https://github.com/radiusmethod/socketzero-marketplace-offering/blob/main/README_AWS_CONSOLE.mdÂ
Resources
Vendor resources
Support
Vendor support
Radius Method provides lightweight support for SocketZero, including installation guidance and minimal troubleshooting assistance.
Support Email: info@radiusmethod.comÂ
Terms and Conditions: https://archives.radiusmethod.com/socketzero-terms-and-conditions/Â
Install Guide: https://github.com/radiusmethod/socketzero-marketplace-offering/blob/main/README_AWS_CONSOLE.md Support is provided during normal business hours and is limited to basic setup and usage questions. For advanced support or custom integration assistance, please contact us directly.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Customer reviews
No customer reviews yet
Be the first to review this product . We've partnered with PeerSpot to gather customer feedback. You can share your experience by writing or recording a review, or scheduling a call with a PeerSpot analyst.