Zurich Research Laboratory
MATH & COMPUTER SCIENCE
Business optimization
Business process transformation
Systems management
Cryptography
Secure systems
Governance & security management
	Governance & compliance
	Intrusion & malware detection

Contact
	Andreas Wespi

Security management

Project overview

Security poses many practical challenges. In nearly every tool there are some security features to be configured. However, this has to be done properly. The best crytptographic protocol is of little value if the corresponding keys are poorly managed. Security management has become am increasingly demanding task. It is not only an important topic from a security practitioner perspective but also from a research perspective.

Security management is to a large extent about automation. An area that is gaining momentum and has a great deal in common with security management is governance, risk and compliance (GRC). Technologies developed for security management can, in many cases, also be applied to compliance management. However, compliance poses new challenges beyond the traditional, IT-level based security work. Business aspects have to be considered in GRC solutions, and bridging the gap between business and IT levels has become a challenge we are working on from a security perspective as well.

Student internship

This project offers interested students the opportunity to do an internship or a Master's or Ph.D. thesis.

More information is available on our employment page.

Governance & compliance

Governance has become a huge topic in the business world, driven by compliance, risk management, and business performance issues. We support IBM in developing a Unified Governance Framework (UGF) to organize governance capabilities. In compliance, we investigate whether regulations can be formalized so that automated reasoning about them becomes possible and they can be automatically translated and deployed ("REALM"). Policies of all kinds, such as security and data-retention policies, play an increasingly important role in compliance. We are developing tools that support the policy lifecycle from specification to analysis and policy translation to enforcement and auditing.
More

Intrusion and malware detection

The IBM Zurich Research Laboratory has a long history in intrusion and malware detection. Our research is twofold. One the one hand we develop methods and tools that support the security analyst in handling intrusion-detection alarms and differentiating between false and true alarms. On the other hand, we are interested in building intrusion-detection systems that are dedicated to a specific application domain and that generate no false alarms at all.
More