Rick Boivie

Marcio Augusto de Lima e Silva

Maurizio Drocco

Gheorghe Almasi

Lou Degenaro

Frank Suits

Chris Butler

Brandon Lum

Mariusz Sabath

Yuji Watanabe

Hirokuni Kitahara

Kugamoorthy Gajananan

Ruriko Kudo

Jim Doran

Malgorzata Steinder

Mukesh Khare

Daniele Buono

James Bottomley

Hubertus Franke

Robert Senger

News

Technical note

Release

Explainer

Strengthening cloud security with confidential computing

Extending server integrity across space and time with Durable Attestation

Open source workload identity management could help secure hybrid clouds

IBM boosts software supply chain security with signature-based Kubernetes verification

New open source tool automates compliance

 After an unpredictable 2020, here’s what to expect for hybrid cloud in 2021

What is confidential computing?

Hybrid Cloud

ESORICS 2022

KVM Forum 2022

LPC 2022

ACSAC 2022

MICRO 2022

Big Data 2022

Hybrid Cloud Platform

Security

Cryptography

Cloud Security

Quantum Community

Quantum Circuits and Software

Semiconductors

Quantum

We’re working on building the most secure cloud infrastructure platforms. Our research focuses on ensuring the integrity of everything in the stack, reducing the attack surface of cloud systems, and advancing the use of confidential computing and hardware security modules.

We’re driving infrastructure innovations spanning physical infrastructure, operating systems, and software-defined compute, network, and storage. Our goal is to create technologies that improve performance, reliability, security, and ease of operation across hybrid and multi-cloud environments.

Hybrid Cloud Infrastructure

The hybrid cloud can help businesses tap into the potential of the cloud, while retaining the benefits of private environments. At IBM Research, we’re pursuing open-source standards and code to create an agile and scalable platform that can be deployed anywhere.

Cyber attacks, from botnets to zero-day exploits, cost the world billions each year. We're working to build trusted systems that can proactively help organizations defend against attacks, by identifying bugs and vulnerabilities in code and systems, securing them, and preventing them from being exploited.

Security Analysis at Scale

Building trusted systems that can proactively help organizations defend against advanced cyber attacks.

We’re building the next wave of tools and methodologies to help security and operations teams detect, understand, and respond to advanced cybersecurity threats and attacks on their infrastructure and in the cloud, with automated threat detection, investigation, and deflection capabilities.

Threat Management

Building the next wave of tools to help security teams detect and deflect against advanced cybersecurity threats.

Libtpms-based Trusted Platform Module (TPM) emulator with socket, character device, and Linux CUSE interface.

Virtual TPM

A kernel integrity subsystem that detects if files have been accidentally or maliciously altered, both remotely and locally, appraises a file's measurement against a "good" value stored as an extended attribute, and enforces local file integrity. 

IMA: Integrity Management Architecture

blog-confidential computing.jpg

animated graphic of abstract blue and black patterns in pixelated square patterns

blog_kubernetesboost_1920x1080px.gif

Open source workload identity management could help secure hybrid clouds.jpg

blog_new-opensource-tool-automates-compliance-16x9@2x.png