Rick Boivie

Marcio Augusto de Lima e Silva

Maurizio Drocco

Gheorghe Almasi

Omri Soceanu

Ronen Levy

Julian Stephen

Shriti Priya

Brandon Lum

Mariusz Sabath

Darío Gil

Daniele Buono

James Bottomley

Hubertus Franke

Robert Senger

News

Technical note

Release

Explainer

Strengthening cloud security with confidential computing

Extending server integrity across space and time with Durable Attestation

The ultimate tool for data privacy: Fully homomorphic encryption

How do you measure innovation?

Simplifying cloud security policies with AI

Open source workload identity management could help secure hybrid clouds

What is confidential computing?

A cloud-native system telemetry framework that enables the creation of security analytics on a scalable, pluggable open-source platform.

SysFlow

USENIX Security 2024

CCS 2024

MICRO 2024

ACSAC 2024

Hybrid Cloud

Hybrid Cloud Platform

Fully Homomorphic Encryption

Confidential Computing

Security

Cryptography

Cloud Security

Data and AI Security

Semiconductors

Science

Quantum

We’re working on building the most secure cloud infrastructure platforms. Our research focuses on ensuring the integrity of everything in the stack, reducing the attack surface of cloud systems, and advancing the use of confidential computing and hardware security modules.

The cloud computing revolution has brought new security challenges. Confidential computing aims to protect applications and their data when running in the cloud. It works by consistently keeping the application and data encrypted, and only decrypting it inside the processor using keys known to the application/data owner and the processor.

We’re driving infrastructure innovations spanning physical infrastructure, operating systems, and software-defined compute, network, and storage. Our goal is to create technologies that improve performance, reliability, security, and ease of operation across hybrid and multi-cloud environments.

Hybrid Cloud Infrastructure

The hybrid cloud can help businesses tap into the potential of the cloud, while retaining the benefits of private environments. At IBM Research, we’re pursuing open-source standards and code to create an agile and scalable platform that can be deployed anywhere.

Cyber attacks, from botnets to zero-day exploits, cost the world billions each year. We're working to build trusted systems that can proactively help organizations defend against attacks, by identifying bugs and vulnerabilities in code and systems, securing them, and preventing them from being exploited.

Security Analysis at Scale

Building trusted systems that can proactively help organizations defend against advanced cyber attacks.

We’re building the next wave of tools and methodologies to help security and operations teams detect, understand, and respond to advanced cybersecurity threats and attacks on their infrastructure and in the cloud, with automated threat detection, investigation, and deflection capabilities.

Threat Management

Building the next wave of tools to help security teams detect and deflect against advanced cybersecurity threats.

Cloud Security

Our work

Simplifying cloud security policies with AI

How do you measure innovation?

The ultimate tool for data privacy: Fully homomorphic encryption

Extending server integrity across space and time with Durable Attestation

Strengthening cloud security with confidential computing

What is confidential computing?

Projects

SysFlow

Publications

A Policy Framework for Securing Cloud APIs by Combining Application Context with Generative AI

From Confidential Computing to Zero Trust, Come Along for the (Bumpy?) Ride

Crossing Shifted Moats: Replacing Old Bridges with New Tunnels to Confidential Containers

Manipulating OpenFlow Link Discovery Packet Forwarding for Topology Poisoning

SeaK: Rethinking the Design of a Secure Allocator for OS Kernel

True Attacks, Attack Attempts, or Benign Triggers? An Empirical Measurement of Network Alerts in a Security Operations Center

Related topics