Managing identity and governing how it is used to access resources and services is the security cornerstone of any digital solution. Today, cloud first solutions are designed, developed and delivered very differently from enterprise solutions in the past. We have moved from a structured world of data stored in relational databases to a hybrid world where data is created and managed in semi structured files on big data platforms and unstructured objects in cloud storage. Creating identity governance solutions to secure such a hybrid world is a key requirement going forward.

Our identity governance research ranges from the hardware based secure identity schemes required by governments today to the cryptographic underpinnings of tomorrows distributed schemes. We look at the tradeoff between security and convenience, audibility and privacy, desktop and mobile.

Projects

card_4

Secure ID solutions

Online transactions require the ability to determine a person’s identity in a secure, convenient and privacy-guaranteeing manner.

card_4

Identity Mixer

IBM Identity Mixer is a cryptographic protocol suite that allows user authentication without divulging personal data. 

card_4

Password-based security

If appropriate cryptographic techniques are applied, passwords are a secure and usable means of authentication.

card_4

Data governance & GDPR

Data tokenization and management technologies for governing data in a secure and regulatory-compliant fashion.

card_4

Virtual smartcards

Cryptographic protocols that let users authenticate themselves online with virtually the same security guarantees as hardware security tokens, but without the inconvenience.

Michael Osborne
Michael Osborne
IBM Research scientist

Anja Lehmann
Anja Lehmann
IBM Research scientist

Michael Baentsch
Michael Baentsch
IBM Research scientist

Tamas Visegrady
Tamas Visegrady
IBM Research scientist

Patrick Towa
Patrick Towa
PhD student