中文摘要：

为提高制造网格环境下用户代理签名的安全性和性能,构建了一种密钥进化的基于身份的签名方案。在该方案中,使用前向安全来解决用户代理的私钥泄漏问题,并在随机Oracle模型下,基于计算Diffie-Hellman假设,形式化证明其安全性;引入基于身份密码学来改进效率,并基于完全二叉树构建,计算复杂度最多是总时间周期的对数;由用户代理自身来更新签名密钥,真正避免了网格用户必须经常在线;而且私钥更新具有前向安全性,当前的私钥泄漏,不会影响以前时间段签名的安全。

英文摘要：

To improve the security and performance of the signature scheme for user proxy in manufacturing grid,a key-evolving identity-based signature scheme was constructed.Forward-security was used to solve the key exposure problem of user proxy.In the random Oracle model,the scheme was proved formally to be secure under the computational Diffie-Hellman assumption.The construction was based on the full binary tree and identity-based cryptographic primitives were introduced to improve efficiency,thus all complexity parameters grew at most logarithmically with the total number of time periods.In this scheme,user proxy updated the key by itself which avoided users＇ frequent online.Key update was forward secure,i.e.,even if the key was exposed at time period i,the scheme during all time periods prior to i remained secure.