IBM releases toolkits for encrypting data while in use

Developers will be granted access to fully homomorphic encryption to plug existing security gaps

Developers will soon be granted access to technology that will allow them to build apps that keep data encrypted while in use, and not just while in rest or transit. 

Fully homomorphic encryption (FHE) is an encryption technology that allows the manipulation of data while it remains encrypted, reducing the time information is at its most vulnerable.

Advertisement - Article continues below

Files are normally encrypted either while in transit or resting, giving hackers the opportunity to exfiltrate unencrypted data.

More than a decade after first making a major breakthrough in its cryptography research, IBM has packaged FHE into a toolkit that's now available for macOS and iOS developers, and in the near future for those using Linux and Android.

FHE also allows administrators to restrict how far files can be decrypted, with portions of files made available to certain users at any given time, with other areas remaining encrypted. 

The technology was first contemplated in the 70s, but a breakthrough was finally made in 2009 where successful FHE was demonstrated by cryptographer Craig Gentry, who produced a now widely-cited paper.

“While the paper was exciting news, many in the industry felt that FHE would remain on the cryptographic shelf because it was too slow for everyday usage due to the complexity of the computation and the enormous computing power it required,” said senior research scientist with IBM, Flavio Bergamaschi.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

“Thankfully, a small team at IBM Research took that on as a challenge and a decade later FHE performance has improved to a level that is adequate for certain applications, which will only improve with algorithmic advancements and future hardware accelerators.”

There are a number of use cases for which FHE would hold significant promise, Bergamaschi continued, particularly in industries which are heavily regulated and make use of private and confidential data.

Related Resource

How enterprises are embracing cyber security challenges

Enterprises across Europe, the Middle East and Africa are undergoing a significant transformation

Download now

Companies that handle financial information and patient health records, for example, would be able to use FHE to share these broadly while still restricting access to all but the most necessary elements of the data.

IBM's toolkits are based on HELib, said to be the world’s most mature and versatile encryption library, which also includes sample programmes to make it easier to write code based on FHE.

“I should point out that these are not perfect or final,” the senior researcher added. “We wanted to quickly put them out to get the technology into the hands of early adopters who want to make these concepts less abstract and more concrete as we look to build up a community of users and use cases.”

Featured Resources

Preparing for long-term remote working after COVID-19

Learn how to safely and securely enable your remote workforce

Download now

Cloud vs on-premise storage: What’s right for you?

Key considerations driving document storage decisions for businesses

Download now

Staying ahead of the game in the world of data

Create successful marketing campaigns by understanding your customers better

Download now

Transforming productivity

Solutions that facilitate work at full speed

Download now
Advertisement

Most Popular

Visit/mobile/google-android/356373/over-2-dozen-additional-android-apps-found-stealing-user-data
Google Android

Over two dozen Android apps found stealing user data

7 Jul 2020
Visit/laptops/29190/how-to-find-ram-speed-size-and-type
Laptops

How to find RAM speed, size and type

24 Jun 2020
Visit/cloud/356260/the-road-to-recovery
Sponsored

The road to recovery

30 Jun 2020