Rick Boivie

Marcio Augusto de Lima e Silva

Maurizio Drocco

Gheorghe Almasi

Omri Soceanu

Ronen Levy

Brandon Lum

Mariusz Sabath

Yuji Watanabe

Hirokuni Kitahara

Kugamoorthy Gajananan

Ruriko Kudo

Jim Doran

Malgorzata Steinder

Darío Gil

Daniele Buono

James Bottomley

Hubertus Franke

Robert Senger

News

Technical note

Release

Explainer

Strengthening cloud security with confidential computing

Extending server integrity across space and time with Durable Attestation

The ultimate tool for data privacy: Fully homomorphic encryption

How do you measure innovation?

Open source workload identity management could help secure hybrid clouds

IBM boosts software supply chain security with signature-based Kubernetes verification

What is confidential computing?

Security

A cloud-native system telemetry framework that enables the creation of security analytics on a scalable, pluggable open-source platform.

SysFlow

ACSAC 2022

MICRO 2022

Big Data 2022

EMNLP 2022

WISE 2022

CODS-COMAD 2023

Hybrid Cloud

Hybrid Cloud Platform

Fully Homomorphic Encryption

Confidential Computing

Security Analysis

Threat Management

Cryptography

Cloud Security

Semiconductors

Science

Quantum

We’re working on building the most secure cloud infrastructure platforms. Our research focuses on ensuring the integrity of everything in the stack, reducing the attack surface of cloud systems, and advancing the use of confidential computing and hardware security modules.

The cloud computing revolution has brought new security challenges. Confidential computing aims to protect applications and their data when running in the cloud. It works by consistently keeping the application and data encrypted, and only decrypting it inside the processor using keys known to the application/data owner and the processor.

We’re driving infrastructure innovations spanning physical infrastructure, operating systems, and software-defined compute, network, and storage. Our goal is to create technologies that improve performance, reliability, security, and ease of operation across hybrid and multi-cloud environments.

Hybrid Cloud Infrastructure

The hybrid cloud can help businesses tap into the potential of the cloud, while retaining the benefits of private environments. At IBM Research, we’re pursuing open-source standards and code to create an agile and scalable platform that can be deployed anywhere.

Cyber attacks, from botnets to zero-day exploits, cost the world billions each year. We're working to build trusted systems that can proactively help organizations defend against attacks, by identifying bugs and vulnerabilities in code and systems, securing them, and preventing them from being exploited.

Security Analysis at Scale

Building trusted systems that can proactively help organizations defend against advanced cyber attacks.

We’re building the next wave of tools and methodologies to help security and operations teams detect, understand, and respond to advanced cybersecurity threats and attacks on their infrastructure and in the cloud, with automated threat detection, investigation, and deflection capabilities.

Building the next wave of tools to help security teams detect and deflect against advanced cybersecurity threats.

Libtpms-based Trusted Platform Module (TPM) emulator with socket, character device, and Linux CUSE interface.

Virtual TPM

A kernel integrity subsystem that detects if files have been accidentally or maliciously altered, both remotely and locally, appraises a file's measurement against a "good" value stored as an extended attribute, and enforces local file integrity. 

IMA: Integrity Management Architecture

blog-confidential computing.jpg

52477267393_3472cdf89d_o.jpg

animated graphic of abstract blue and black patterns in pixelated square patterns

blog_kubernetesboost_1920x1080px.gif

Open source workload identity management could help secure hybrid clouds.jpg