Patents by Inventor Xiaohai Lu
Xiaohai Lu has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 10491618Abstract: A website scanning apparatus having a policy analysis device for determining whether a link in a target website belongs to a known web application used by the target website, if the link belongs to the identified web application, then a vulnerability scanning is not performed on the link; a crawler device for obtaining the link content that the link points to; a web application identification device for determining whether the link belongs to a known web application; a full scan device for performing a full vulnerability scanning on a link determined as not belonging to the known web application; and a known web application vulnerability detection device for performing vulnerability detection on the website for the determined identified web application according to known vulnerabilities of the identified web application to determine whether the known vulnerabilities of the identified web application exist in the website is provided.Type: GrantFiled: September 8, 2011Date of Patent: November 26, 2019Assignee: NSFOCUS INFORMATION TECHNOLOGY CO., LTD.Inventors: Da Zhou, Xiaoming Wang, Ming Lv, Hui Jiang, Guangxu Liu, Xiaohai Lu, Na Li, Liang Lu, Jingjing Zeng
-
Publication number: 20170111389Abstract: A DNS server DDoS attack mitigation system is provided, comprising a DNS cache module. A DNS query or UDP data packet from an originating source intended for a DNS server is to be diverted to the DNS cache module. The DNS cache module validates the DNS query or UDP data packet and discard it if it is malformed. The DNS cache module then extracts from the DNS query or UDP data packet a domain name and virtual IP address (VIP) of the requested destination resource, and source IP (SIP). Using the domain name, VIP, and SIP to find and retrieve from its cache the matching DNS record and respond with a response message according the matched DNS record type. If a match is not found, the DNS query or UDP data packet is dropped, dropped and responded to with a customizable message, or forwarded to the DNS server.Type: ApplicationFiled: October 18, 2015Publication date: April 20, 2017Inventors: Juniman Kasman, Xiaohai Lu, Jinping Zhang, Tianyi Liu, Ryan Chin
-
Publication number: 20160173527Abstract: A DDoS attack mitigation system implemented by a DDoS attack mitigation central processing server configured to execute server-side machine instructions and a mobile communication device configured to execute device-side machine instructions. The server-side machine instructions include: a reverse proxy traffic handler and a user-interactive DDoS attack mitigation scheme handler for issuing DDoS attack mitigation challenges and authenticating the users' authenticating actions. The device-side machine instructions are encapsulated in a SDK which includes a user-interactive DDoS attack mitigation scheme, and a set of APIs to facilitate the invocation calls from the mobile app integrating the DDoS attack mitigation system. The user-interactive DDoS attack mitigation scheme is a gesture-based CAPTCHA with a GUI suitable to be displayed on the mobile communication device's touch screen and accepts touch input.Type: ApplicationFiled: March 27, 2015Publication date: June 16, 2016Inventors: Juniman KASMAN, Hai ZHAO, Xiaohai LU, Mingfeng HUANG, Yu GUO, Ryan CHIN
-
Patent number: 9215246Abstract: The invention discloses a website scanning apparatus for performing a security vulnerability scanning on a target website, which apparatus comprises: a web page obtaining component obtaining current content and/or features of a web page corresponding to a link to be processed; a link processing component including a change judgment device for judging whether the web page corresponding to the link to be processed has been changed based on stored web page content and/or features corresponding to the link to be processed as well as the current web page content and/or features of the link to be processed; and a vulnerability detecting component for performing a security vulnerability detection on a web page corresponding to a link to be processed for which the web page has been changed. The invention also discloses a website scanning method corresponding thereto.Type: GrantFiled: October 21, 2011Date of Patent: December 15, 2015Assignee: NSFOCUS INFORMATION TECHNOLOGY CO., LTD.Inventors: Da Zhou, Xiaoming Wang, Ming Lv, Hui Jiang, Guangxu Liu, Xiaohai Lu, Na Li, Xing Ye
-
Publication number: 20130276126Abstract: The invention discloses a website scanning apparatus for performing a security vulnerability scanning on a target website, which apparatus comprises: a web page obtaining component obtaining current content and/or features of a web page corresponding to a link to be processed; a link processing component including a change judgment device for judging whether the web page corresponding to the link to be processed has been changed based on stored web page content and/or features corresponding to the link to be processed as well as the current web page content and/or features of the link to be processed; and a vulnerability detecting component for performing a security vulnerability detection on a web page corresponding to a link to be processed for which the web page has been changed. The invention also discloses a website scanning method corresponding thereto.Type: ApplicationFiled: October 21, 2011Publication date: October 17, 2013Applicant: NSFOCUS INFORMATION TECHNOLOGY CO., LTD.Inventors: Da Zhou, Xiaoming Wang, Ming Lv, Hui Jiang, Guangxu Liu, Xiaohai Lu, Na Li, Xing Ye
-
Publication number: 20130227640Abstract: Described is a website scanning apparatus comprising a policy analysis device for determining whether a link in a target website belongs to a known web application used by the target website. If the link belongs to the identified web application, then a vulnerability scanning is not performed on the link; a crawler device for obtaining the link content that the link points to; a web application identification device for determining whether the link belongs to a known web application; a full scan device for performing a full vulnerability scanning on a link determined as not belonging to the known web application; and a known web application vulnerability detection device for performing vulnerability detection for the identified web application according to known vulnerabilities to determine whether the known vulnerabilities exist in the website. A website scanning method employed by the website scanning apparatus is also described.Type: ApplicationFiled: September 8, 2011Publication date: August 29, 2013Applicant: NSFOCUS INFORMATION TECHNOLOGY CO., LTD.Inventors: Da Zhou, Xiaoming Wang, Ming Lv, Hui Jiang, Guangxu Liu, Xiaohai Lu, Na Li, Liang Lu, Jingjing Zeng
-
Patent number: 6966468Abstract: The present invention relates to an adjustable flow rate dispenser comprising a dispenser body having a closed end, a flanged open end, at least one relatively large laterally disposed powder dispensing opening, at least one relatively small laterally disposed powder dispensing opening, and a retaining ring; and a cap having an open end, a closed end, a laterally disposed powder dispensing opening, and a snap bead, wherein when the cap is placed on the body, the snap bead engages the retaining ring providing a twistingly engaged cap and body.Type: GrantFiled: June 16, 2003Date of Patent: November 22, 2005Assignee: Johnson & Johnson (China) Ltd.Inventors: Annalisa McKay, Joice Wang, Jun Lu, Christine Andrea Ruhotas, Xiaohai Lu, Min Xu, Anthony Gallo
-
Publication number: 20040217136Abstract: The present invention relates to a low cost dispenser container for containing and selectively dispensing a flowable material comprising a body portion having a filling end and an apertured dispensing end; a base plate; and an apertured cap, wherein the apertured cap is engaged with the apertured dispensing end of said body portion, and the base plate is secured to the filling end of the body portion after the body portion is filled with the desired amount of flowable material.Type: ApplicationFiled: June 16, 2003Publication date: November 4, 2004Inventors: Jun Lu, Christine Andrea Ruhotas, Xiaohai Lu, Min Xu
-
Publication number: 20040217138Abstract: The present invention relates to an adjustable flow rate dispenser comprising a dispenser body having a closed end, a flanged open end, at least one relatively large laterally disposed powder dispensing opening, at least one relatively small laterally disposed powder dispensing opening, and a retaining ring; and a cap having an open end, a closed end, a laterally disposed powder dispensing opening, and a snap bead, wherein when the cap is placed on the body, the snap bead engages the retaining ring providing a twistingly engaged cap and body.Type: ApplicationFiled: June 16, 2003Publication date: November 4, 2004Inventors: Annalisa McKay, Joice Wang, Jun Lu, Christine Andrea Ruhotas, Xiaohai Lu, Min Xu, Anthony Gallo