About Me

潘蓝兰 (Pan Lanlan):

Type	URL
Mail	abbypan@gmail.com
Github	https://github.com/abbypan
Blog	https://abbypan.github.io/archive
Linkedin	https://www.linkedin.com/in/panlanlan/
ResearchGate	https://www.researchgate.net/profile/Lanlan-Pan/research
Orcid	0000-0002-1771-2683

Education

Year	School	Degree	Info
2006 - 2009	USTC (University of Science and Technology of China)	Master of Information Security	Infonet: http://if.ustc.edu.cn
2002 - 2006	USTC (University of Science and Technology of China)	Bachelor of Information Security	Cybersec: http://cybersec.ustc.edu.cn/main.htm

Working Experience

Year	Company	Position	Experience
2019 - 2023	OPPO	Security Architect	Terminal Security
2018 - 2019	Geely	Cybersecurity Technical Manager	Automotive Security
2013 - 2017	CNNIC (China Internet Network Information Center)	Primary Security Technology Researcher	Cyberspace Security
2009 - 2013	Tencent	Network Security Engineer	Cybersecurity

Paper (First Author)

Pan, Lanlan et al. “Using Compact DNSSEC and Self-signed Certificate to Improve Security and Privacy for Second-Level Domain Resolution“,ICISSP (2) (2025): 615-623.
Pan, Lanlan et al. “Building a Secure Cross-Device Communication Channel for Smart Devices based on App Accounts“,2024 IEEE INTERNATIONAL CONFERENCE ON CYBER SECURITY AND RESILIENCE, CSR (2024): 360-366. 【WOS:001327167900054】
Pan, Lanlan et al. “ASDWL: Mitigating DNS Random Subdomain Attacks for Second Level Domain“,2024 INTERNATIONAL CONFERENCE ON SMART APPLICATIONS, COMMUNICATIONS AND NETWORKING, SMARTNETS-2024 (2024)【WOS:001267026900020】
Pan, Lanlan et al. “A Lightweight Hybrid Signcryption Scheme for Smart Devices“,International Conference on Security of Information and Networks (2024): 1-8.
Pan, Lanlan, et al. “Enhance Calling Definition Security for Android Custom Permission” CS & IT Conference Proceedings. Vol. 13. No. 8. CS & IT Conference Proceedings, 2023.
Lanlan, Pan et al. “Measuring the Resolution Resiliency of Second-Level Domain Name“,Intelligent Computing (2022): 742-755.【WOS:000889463000045】
Pan, Lanlan et al. “EPT: EDNS Privacy Tunnel for DNS“,Security, Privacy, and Anonymity in Computation, Communication, and Storage (2019): 50-62.
Pan, Lanlan et al. “Improving Privacy for GeoIP DNS Traffic“,Quality of Service in Heterogeneous Wired/Wireless Networks (2018): 1-13.
Pan, Lanlan et al. “Mitigating Client Subnet Leakage in DNS Queries“,Conference on Privacy, Security and Trust (2018)【WOS:000454683600016】
Pan, Lanlan et al. “A Public Key based EDNS Privacy Tunnel for DNS“,International Conference on Trust, Security and Privacy in Computing and Communications (2018)【CCF-C】【WOS:000495072100250】
NDSS DNS Privacy Workshop 2017《EIL: Dealing with the Privacy Problem of ECS》【CCF-A】
Pan, Lanlan et al. “Mitigating DDoS Attacks towards Top Level Domain Name Service“,Asia-Pacific Network Operations and Management Symposium (2016) 【CCF-C】【WOS:000392160000059】
计算机应用研究 2016 一种评估DNS根镜像服务的方法
潘蓝兰, 尉迟学彪, and 胡安磊. “一种快速评估DDOS攻击对DNS权威服务影响的方法” 计算机应用研究 32.11 (2015): 3456-3459.
潘蓝兰, 薛开平, and 洪佩琳. “基于兴趣相似度的协作式垃圾邮件过滤方案” 通信技术 2 (2010): 122-124.
Masters Dissertation 2009 协作式垃圾邮件过滤技术研究

Granted Patent (First Author)

Granted Year	Grant No.	Patent
2024	CN114726625B	检测方法及装置、服务器及存储介质 (Detection method and device, server and storage medium)
2024	EP4099733B1	Security authentication method and apparatus, and electronic device
2024	US11924635B2	Security authentication method and apparatus thereof, and electronic device
2024	CN114979071B	动态域名配置方法、装置、电子设备及存储介质 (Dynamic domain name configuration method, device, electronic equipment and storage medium)
2024	CN111970115B	一种数字钥匙的校验方法、装置、系统及终端 (Digital key verification method, device, system and terminal)
2023	CN111726782B	一种安全认证方法及系统 (Security authentication method and system)
2023	CN111194033B	车内安全通信方法、系统及计算机存储介质 (In-vehicle secure communication method, system and computer storage medium)
2022	CN111432373B	一种安全认证方法、装置及电子设备 (Security authentication method and device and electronic equipment)
2022	CN109862099B	一种升级校验方法、装置、终端及系统 (Upgrade checking method, device, terminal and system)
2021	CN109831779B	一种升级包下载方法、装置、服务器、终端及系统 (Upgrade package downloading method, device, server, terminal and system)
2021	CN111055808B	售前车辆控制方法及服务器 (Pre-sale vehicle control method and server)
2021	CN109787774B	基于数字签名校验的升级下载方法、装置、服务器及终端 (Upgrade downloading method and device based on digital signature verification, server and terminal)
2020	CN106210165B	基于NS记录分层授权缓解域名权威记录劫持影响的方法 (Method for relieving domain name authority record hijacking influence based on NS record hierarchical authorization)
2019	CN105704259B	一种域名权威服务来源ip识别方法和系统 (A kind of domain name authority services source IP recognition methods and system)

Standard

Year	Standard
2022 T/TAF 074-2020	移动智能终端数字车钥匙信息安全技术要求
2015 CCSA YD/T 3008-2016	域名服务安全状态检测要求

Year	Draft
IETF draft-pan-dnsop-authenticated-subdomain-whitelist	Authenticated subdomain whitelist (ASDWL) for second-level domain (SLD)
IETF draft-pan-dnsop-compact-dnssec	Compact DNSSEC
IETF draft-pan-dnsop-explicit-forged-answer-signal	Explicit Forged Answer Signal
IETF draft-pan-dnsop-edns-isp-location	ISP Location in DNS Queries

Participate

Organization
SECURWARE Technical Program Committee

Keywords

Experience	Keywords
Terminal Security	Chip, Cryptography, Device, Connectivity, Android, TEE, IoT, Privacy, Data Security, GDPR
Automotive Security	Digital Car Key, CCC, OTA, Telemetics, TSP, ECU, HSM, BLE, NFC, UWB
Cyberspace Security	DNS, BGP, PKI
Cybersecurity	DNS, Hijack, DDoS, Network, TLS, CDN, HTTP

create with vim

江天一色 惟陈言之务去

About Me

Education

Working Experience

Paper (First Author)

Granted Patent (First Author)

Standard

Participate

Keywords

江天一色惟陈言之务去