Computer systems must be reliable. IBM Research - Tokyo actively advances security and privacy functionality to make computer systems more reliable for users. We also are promoting technological development that takes into account all aspects of systems, development, and operation to ensure computer systems are compliant with all necessary standards.
Competency fields
Security & Compliance
We are exploring security and governance technologies for enabling higher maturity levels of corporate governance. This idea is called "Information Provenance", where the lifecycle of digital data is tracked and analyzed using business semantics to help enterprises verify the level of governance in more sophisticated ways. The objectives include satisfying legal and auditing requirements and preventing abuse of corporate data by insiders. We are also exploring next-generation security infrastructures using Trusted Computing technology.
Web 2.0/SaaS Security
Web 2.0 technologies, such as Ajax (Asynchronous JavaScript + XML) and Mashups, represent a significant shift in the technology of the Internet infrastructure. Web 2.0 is being widely used, not only in consumer services, but also in enterprise-level business applications. In addition, Web 2.0 is a key technology that enables Software as a Service (SaaS), which changed the way people use software, and frees users from the burden of installation and maintenance while allowing the optimization of IT management costs. As Web 2.0 and SaaS are being used in more business environments, security is becoming more important than ever. We seek to address some of the gaps with research into and development of security technologies for Web 2.0 and SaaS.
SOA Policy Validation and Matchmaking
Complex SOA systems that consist of multiple products require descriptions and enforcement of IT level policies in such areas as encryption, digital signatures, and access control. However, finding and validating these policies against the business rules that should be followed by an enterprise is not an easy task. We are developing technologies for policy validation and policy matchmaking.
Web Services Security Optimization
Web services integrate heterogeneous systems such as enterprise systems and improves their interoperability. Web services security provides secure Web services by using encryption and digital signatures. We have been studying performance optimization methods such as streaming-based XML processing, template-based XML serialization, and so on.
