About me

I'm a teacher at Sichuan University.

I enjoy teaching, research, and I am helpful.

I have spent much time on taking photos, watching OnePiece...

I believe that nothing is easy in the world, but it is worth for us to try our best.

最喜欢的一句话:我们所度过的每一个平凡的日常,也许就是连续发生的奇迹。

生命很宝贵,希望能与同样想要把平凡日子过得有意义的人同行!

What are my research interests

  • design icon

    Authenticated Key Exchange Protocol

    One kind of the most commonly used security protocols.

  • Web development icon

    Multi-party Computation

    A very very very hard but interesting and challenging field in cryptography.

  • mobile app icon

    Differential Privacy

    A powerful tool to protect individual privacy.

  • camera icon

    Cryptographic Application

    Any applications where cryptographic tools work.

Funding(主持项目)

  • Daniel lewis

    国家重点研发计划青年项目

    数字身份密码协议的安全设计与分析理论,2022-11至2025-10,54万.

  • Jessica miller

    国家自然科学基金委员会青年基金

    面向大数据平台的服务认证协议的可证明安全及效率优化研究,2019-01至2021-12,26万.

  • Emily evans

    密码科学技术国家重点实验室开放课题

    安全多方计算技术在数据安全聚合方面的应用研究,2022-07至2024-06,10万.

Resume

Education

  1. Chinese Academy of Sciences, Institute of Information Engineering

    2012.09 - 2017.12

    Ph.D.:Design and Analysis of Application-Oriented Authenticated Key Establishment Protocols, advisor:Jing Xu

  2. Sichuan University, College of Electronics and Information Engineering

    2008.09 - 2012.06

    B.E.

Experience

  1. Sichuan University, Cyber Science Research Institute / Associate Professor

    2023.09 - today

    Working on the application of multi-party computation.

  2. Northwestern Unversity, Computer Science Department / Visiting scholar

    2019.09 - 2020.08

    Working on improving the efficiency of maliciously secure MPC to an almost optimal cost and designing differentially private multi-party data stream aggregation protocol. (working with Xiao Wang)

  3. Sichuan University, Cyber Science Research Institute / Assistant Researcher

    2018.01 - 2023.08

    Working on big data platform authentication protocol optimization and national cryptographic algorithms embedding of Hyperledger Fabric platform.

My skills

  • Security Proof
    80%
  • Writing
    90%

Publication

Selected Papers

  1. Efficient and Secure Quantile Aggregation of Private Data Streams.

    Xiao Lan, Hongjian Jin, Hui Guo, Xiao Wang.

    In IEEE Transactions on Information Forensics and Security (TIFS), 2023. Paper

  2. A Systematic Security Analysis of EMV Protocol.

    Xiao Lan, Jing Xu, Zhenfeng Zhang, Xingshu Chen, Yonggang Luo.

    In Computer Standards & Interfaces, 2022.Paper

  3. BNRDT: When Data Transmission Meets Blockchain.

    Hongjian Jin, Xingshu Chen, Xiao Lan, Hui Guo, Hongxia Zhang, Qi Cao.

    In Security and Communication Networks (SCN), 2020.Paper

  4. Ferret: Fast Extension for Correlated OT with Small Communication.

    Kang Yang, Chenkai Weng, Xiao Lan, Jiang Zhang, Xiao Wang.

    In ACM Conference on Computer and Communications Security (ACM CCS), 2020.Paper

  5. BTCAS: A Blockchain-Based Thoroughly Cross-Domain Authentication Scheme.

    Hongxia Zhang, Xingshu Chen, Xiao Lan, Hongjian Jin, Qi Cao.

    In Journal of Information Security and Applications (JISA), 2020.Paper

  6. Modular Security Analysis of OAuth 2.0 in the Three-Party Setting.

    Xinyu Li, Jing Xu, Zhenfeng Zhang, Xiao Lan, Yuchen Wang.

    In 5th IEEE European Symposium on Security and Privacy (EuroS&P), 2020.Paper

  7. Investigating the Multi-Ciphersuite and Backwards-Compatibility Security of the Upcoming TLS 1.3.

    Xiao Lan, Jing Xu, Zhenfeng Zhang, Wentao Zhu.

    In IEEE Transactions on Dependable and Secure Computing (TDSC), 2019.Paper

  8. Accountable Proxy Re-Encryption for Secure Data Sharing.

    Hui Guo, Zhenfeng Zhang, Jing Xu, Ningyu An, Xiao Lan.

    In IEEE Transactions on Dependable and Secure Computing (TDSC), 2018.Paper

  9. 5G移动通信网络安全研究.

    冯登国, 徐静, 兰晓.

    In Journal of Software (软件学报), 2018.Paper

  10. One-Round Cross-Domain Group Key Exchange Protocol in the Standard Model.

    Xiao Lan, Jing Xu, Hui Guo, Zhenfeng Zhang.

    In 12th China International Conference on Information Security and Cryptology (Inscrypt), 2016.Paper

Advising

2019届

  1. 容器内CPU漏洞攻击程序检测系统的设计与实现

    2015级-徐飞宇

    现就职于TP-Link(四川成都),任软件开发工程师。

2020届

  1. 区块链平台超级账本的国密改造研究

    2016级-毛艺萍

    现就职于顺丰科技有限公司(广东深圳),任信息安全工程师。

2021届

  1. 分布式环境中分位数近似计算算法的隐私保护研究

    2017级-邝鸿波

    现就读于四川大学网络空间安全学院(研究生).

  2. 面向深度学习框架的隐私保护技术研究

    2017级-任成龙

    现就读于四川大学网络空间安全学院(研究生)。

2022届

  1. 大数据平台认证协议的安全建模研究

    2018级-曹伊康

    即将进入香港中文大学(深圳)读研。

  2. 隐私保护的地点预测模型构建技术研究

    2018级-孙钰皓

    现就职于中国人寿保险(海外)股份有限公司(广东深圳),任全栈工程师。

2023届

  1. 基于自主身份的认证密钥协商协议设计

    2019级-陈玲

    现就读于四川大学网络空间安全学院(研究生)。

  2. 面向医学数据的异地安全计算技术研究与实现

    2019级-李智浩

    现就读于四川大学网络空间安全学院(研究生)。

2024届

  1. 基于安全多方计算技术的分布式差分隐私机制研究

    2019级(转)-傅宇成

    现就读于UoV(PhD)。

  2. 基于差分隐私的文本分类模型可验证鲁棒性研究

    2019级(转)-杨涵

    现就读于UoV(PhD)。

  3. 基于国密算法的不经意传输协议实现与性能对比研究

    2020级-杨孟霖

    现就读于四川大学网络空间安全学院(研究生)。

  4. 安全高效的两方SM2数字签名算法设计与实现

    2020级-陈晨

    现就读于四川大学网络空间安全学院(研究生)。

  5. 数字身份的分布式验证系统设计与实现

    2020级-付广淇

    现就职于深圳市腾讯网络信息技术有限公司。

  6. 基于域名和证书的微信小程序安全分析研究

    2020级-黄焯

    现就读于上海交通大学计算机学院(研究生)。个人主页

  7. 不经意数据结构的实现及应用

    2020级-黄国书

    现就职于XX。

  8. 模高阶多项式的有限域运算实现研究

    2020级-彭艺景

    现就职于XX。

Contact

Contact Form

Activities

Reading Group

  1. MPC Blitz - A brief introduction to basic MPC protocols

    2024.10.11

    2022级本科生张鹏浩

    Slides
  2. Machine learning under MPC

    2024.10.25

    2022级本科生向诗雨、赵焱阳

    Slides
  3. Efficient 2PC for Constant Round Secure Equality Testing and Comparison

    2024.11.08

    2022级本科生张佳怡

    Paper

Invited Report

  1. 零知识证明基础及其应用的探讨

    2024.11.13

    崔韩东, 中国移动(金种子计划)