IBM Cloud Delivers Quantum-Safe Cryptography and Hyper Protect Crypto Services to Help Protect Data in the Hybrid Era

IBM brings hybrid cloud leadership together with quantum and security research expertise to stay at the forefront of quantum cybersecurity

ARMONK, N.Y., Nov. 30, 2020 /PRNewswire/ — IBM (NYSE: IBM) today announced a series of cloud services and technologies designed to help clients maintain the highest available level of cryptographic key encryption protection to help protect existing data in the cloud1 and prepare for future threats that could evolve with advances in quantum computing. Pioneered by IBM Research scientists, the company is now offering quantum-safe cryptography support for key management and application transactions in IBM Cloud®, making it the industry’s most holistic quantum-safe cryptography approach to securing data available today.

IBM Corporation logo. (PRNewsfoto/IBM)

The new capabilities include:

  • Quantum Safe Cryptography Support: Through the use of open standards and open source technology, this service enhances the standards used to transmit data between enterprise and Cloud, helping to secure data by using a quantum-safe algorithm.
  • Extended IBM Cloud Hyper Protect Crypto Services: New capabilities are available to enhance privacy of data in cloud applications, where data sent over the network to cloud applications and sensitive data elements like credit card numbers, are stored in a database that can be encrypted at application-level – supported by the industry’s highest level of cryptographic key encryption protection with ‘Keep Your Own Key’ (KYOK) capability.

“As our reliance on data grows in the era of hybrid cloud and quantum computing capabilities advance, the need for data privacy is becoming even more critical. IBM now offers the most holistic quantum-safe approach to securing data available today and to help enterprises protect existing data and help protect against future threats,” said Hillery Hunter, Vice President and Chief Technology Officer, IBM Cloud. “Security and compliance remain front and center for IBM Cloud as we continue to invest in confidential computing and our leading encryption capabilities to help enterprises of all kinds – especially those in highly regulated industries – keep data secured.”

Preparing for future threats with Quantum-Safe Cryptography Support
While quantum computing aims to solve complex problems even the world’s most powerful supercomputers cannot solve, future fault-tolerant quantum computers could pose potential risks, such as the ability to quickly break encryption algorithms and access sensitive data. To mitigate these risks IBM has developed a clear strategic agenda to help protect the long term security of our platforms and services. This agenda includes the research, development and standardization of core quantum-safe cryptography algorithms as open source tools such as CRYSTALS and OpenQuantumSafe. It also includes the governance, tools and technology to support our clients as they start on the same journey to a more secure future.

Today, as the next step in that agenda, IBM is bringing its industry-leading encryption capabilities built by IBM Research cryptographers to help clients with a quantum-safe cryptography approach for their data-in-transit within IBM Cloud. The capabilities are designed to help enterprises prepare for future threats and can be useful against attacks in which malicious actors harvest encrypted data today with the intent to decrypt it later as quantum computing advances.

IBM Key Protect, a cloud-based service that provides lifecycle management for encryption keys that are used in IBM Cloud services or client-built applications, has now introduced the ability to use a quantum-safe cryptography enabled Transport Layer Security (TLS) connection – helping to protect data during the key lifecycle management.   

In addition, IBM Cloud is also introducing quantum-safe cryptography support capabilities to enable application transactions. When cloud native containerized applications run on Red Hat® OpenShift® on IBM Cloud or IBM Cloud Kubernetes Services, secured TLS connections can help application transactions with quantum-safe cryptography support during data-in-transit and protect from potential breaches.

Protecting sensitive data with IBM Cloud Hyper Protect Crypto Services
Enterprises also need to mitigate risks from external and internal threats, as well as to address regulatory compliance.

Today, IBM Cloud is also delivering new capabilities to help secure application transactions and sensitive data using IBM Cloud Hyper Protect Crypto Services, which offer the industry’s highest level of cryptographic key encryption protection by providing customers with ‘Keep Your Own Key’ (KYOK) capability. Built on FIPS-140-2 Level 4-certified hardware – the highest level of security offered by any cloud provider in the industry for cryptographic modules2 – this allows clients to have exclusive key control, and therefore authority over the data and workloads protected by the keys.

Designed for application transactions where there is a deeper need for more advanced cryptography, IBM Cloud clients can keep their private keys secured within the cloud hardware security module while offloading TLS to IBM Cloud Hyper Protect Crypto Services to help establish a secure connection to the web server. They can also achieve application-level encryption of sensitive data, such as a credit card number, before it gets stored in a database system.

Continuing to address the security demands of clients and highly regulated industries
IBM has been investing in confidential computing technologies for over a decade and today delivers production-ready confidential computing to help clients protect data, applications and processes.

Furthering its commitment to security and compliance, IBM continues to collaborate with its industry peers to make further progress in standardization initiatives. For example, security best practices on IBM Cloud are now available as a Center for Internet Security (CIS) Foundations benchmark for IBM Cloud, and IBM Research cryptographers are key contributors to the QSC algorithms that are short listed in the National Institute of Standards and Technology (NIST).

IBM, the IBM logo, and IBM Cloud are trademarks or registered trademarks of IBM Corp., in the U.S. and/or other countries.

Red Hat® and OpenShift® are trademarks or registered trademarks of Red Hat, Inc. or its subsidiaries in the United States and other countries.

About IBM Cloud
For further information visit: www.ibm.com/cloud/

CONTACT:
Kate Gazzillo
IBM Communications
kate.gazzillo@ibm.com 

Encryption keys and cryptographic operations are protected with highest level certified HSM –  with Hyper Protect Crypto services: FIPS 140-2 Level 4.

2 Based on IBM Hyper Protect Crypto Service, the only service in the industry built on FIPS 140-2 Level 4-certified hardware. FIPS 140-2 Security Level 4 provides the highest level of security defined in this standard. At this security level, the physical security mechanisms provide a comprehensive envelope of protection around the cryptographic module with the intent of detecting and responding to all unauthorized attempts at physical access.

SOURCE IBM

This post was originally published on this site



For enquiries, product placements, sponsorships, and collaborations, connect with us at hello@globalcloudplatforms.com. We'd love to hear from you!


Our humans need coffee too! Your support is highly appreciated, thank you!

Total
0
Shares
Previous Article

Built With The Google Maps Platform Gaming Solution

Next Article

Tune up app performance and cost efficiency

Related Posts

Workday and IBM Expand Partnership to Help Customers Plan Return to the Workplace

Integrated Planning Solution Combines Power of Workday and IBM Watson-Enabled AI to Help Customers Safely Reopen PLEASANTON, Calif. and ARMONK, N.Y., Aug. 12, 2020 /PRNewswire/ -- Workday (NASDAQ: WDAY) and IBM (NYSE: IBM) today announced an expanded partnership and the availability of a joint solution to help business and community leaders plan, schedule, and monitor a safe return to the workplace for employees. As organizations begin to address how to prioritize safety in bringing employees back to the workplace, they must consider a myriad of factors, including health, local guidelines, governmental policies, employee sentiment, facility readiness, and personal protective equipment (PPE). Every organization has a unique strategy that must be mapped to their specific facilities and workforce requirements. Together, IBM and Workday are delivering a solution to support and accelerate their customers' return to the workplace by combining planning capabilities with critical employee, community health, and workplace data. The integrated solution combines: Workday Adaptive Planning at the core, which is used by more than 5,200 companies today for planning, forecasting, and modeling, as well as Workday Human Capital Management (HCM), which provides critical employee sentiment data that offers insight into worker readiness to return to the workplace. IBM Watson Works, a set of products that embeds Watson artificial intelligence (AI) models and applications to help companies as they navigate many aspects of the return to workplace challenge, including deciding when to return to the workplace, connecting employer data to entry privileges, and managing facilities and adhering to new protocols. Today's announcement builds on return to work offerings from Workday and IBM, as global customers turn to innovative solutions to better manage their people and finances in today's changing world. Workday and IBM Services will work together with customers on planning, program, and implementation tasks. Balancing Workforce and Workplace Supply and DemandThe integrated Workday and IBM solution is designed to deliver comprehensive return to workplace planning that balances workspace demand, by location and site, against the supply of reduced facility capacity. Key to the solution is the inclusion of dynamically changing data from multiple sources that address the complexities involved in continuous planning, a requirement for workforce and workplace planning today. Specifically, the solution can help customers: Model site capacity and evaluate employee roles and eligibility for return to the workplace. Model scenarios to plan the demand for workspace against supply, given reduced site capacity based on health and safety guidelines, and model prioritization of the return of workers based on job roles and eligibility. Assess community risk and workplace readiness. Identify COVID-19 trends for each business location and where workers live to enable site leaders, HR leaders, and workforce and workplace planners to use data-driven insights to help make decisions and plans around facility re-openings. Plan for critical supplies. Track critical supplies by location to help ensure there is enough PPE—such as masks, gloves, and sanitizer—available for workers at each location and to maintain inventory. Evaluate workforce sentiment to inform return to work demand. Model return-to-workplace scenarios using data on workers' preferences, sentiments, and concerns, gleaned from survey data and their preferences for work location such as on site, work from home, or hybrid. Continuously provide site readiness and worker health and safety data to customers to inform return to workplace plans. Leverage community risk score trends in real time to help leaders make timely decisions to sequence the return to the workplace. As an extended capability, customers can also assess workers' self-reported health status and ongoing eligibility. "Today's CHROs are now challenged with managing the complexities of integrating real-time site and worker data in a way they've never needed to before, moving workforce planning from strategic to mission critical nearly overnight," said Kshitij Dayal, general manager, Planning Products, Workday. "Combining the power of Workday—including Workday Adaptive Planning to create comprehensive plans and models—with IBM Watson Works can help accelerate customers' return to workplace planning with a sustainable solution to balance workforce and workplace supply and demand in the ever-changing world." "Keeping employees safe during the return to workplace process is of critical importance to business leaders across industries," said Kareem Yusuf, Ph.D, general manager, AI Applications, IBM Cloud and Cognitive Software. "By partnering with Workday on a joint solution, we're extending the capabilities delivered by Watson Works to help customers gain greater agility to respond to ever-changing working conditions and evolving business needs. Together we are helping organizations overcome the complexities involved in continuous planning to ultimately improve workplace readiness." For more information about the integrated solution, please visit the Workday marketplace. About WorkdayWorkday is a leading provider of enterprise cloud applications for finance and human resources. Founded in 2005, Workday delivers financial management, human capital management, planning, and analytics applications designed for the world's largest companies, educational institutions, and government agencies. Organizations ranging from medium-sized businesses to Fortune 50 enterprises have selected Workday. About IBMFor more information about IBM visit, www.ibm.com. Statements regarding IBM's future direction and intent are subject to change or withdrawal without notice and represent goals and objectives only.  Workday Forward-Looking StatementsThis press release contains forward-looking statements including, among other things, statements regarding the expected performance and benefits of Workday's offerings. The words "believe," "may," "will," "estimate," "continue," "anticipate," "intend," "expect," "seek," "plan," "project," and similar expressions are intended to identify forward-looking statements. These forward-looking statements are subject to risks, uncertainties, and assumptions. If the risks materialize or assumptions prove incorrect, actual results could differ materially from the results implied by these forward-looking statements. Risks include, but are not limited to, risks described in our filings with the Securities and Exchange Commission ("SEC"), including our Form 10-Q for the fiscal quarter ended April 30, 2020, and our future reports that we may file with the SEC from time to time, which could cause actual results to vary from expectations. Workday assumes no obligation to, and does not currently intend to, update any such forward-looking statements after the date of this release. Any unreleased services, features, or functions referenced in this document, our website, or other press releases or public statements that are not currently available are subject to change at Workday's discretion and may not be delivered as planned or at all. Customers who purchase Workday, Inc. services should make their purchase decisions based upon services, features, and functions that are currently available. © 2020 Workday, Inc. All rights reserved. Workday and the Workday logo are registered trademarks of Workday, Inc. All other brand and product names are trademarks or registered trademarks of their respective holders. Media Contacts: WorkdayDiane Orrmedia@workday.com IBMCarolyn Castelcarolyn.castel@ibm.com SOURCE IBM