ABSTRACTThe security of traditional identity-based signature (IBS) is totally built upon the assumption that the private key is absolutely secure. However, with the increasing use of mobile and unprotected devices in today's cryptosystems, the threat of key exposure represents a more serious and realistic concern. To mitigate the damage of key exposure in the setting of IBS, we propose to integrate key evolution and user revocation into IBS, and present forward-secure identity-based signature with user revocation (FS-RIBS). Specifically, we formalize the syntax and security definition of FS-RIBS, and give a concrete construction. The proposed scheme is proven secure in the standard model under a q-type complexity assumption. To demonstrate the merits of our scheme, we theoretically analyse its performance by comparing it with other related works. Moreover, we provide an implementation and the corresponding timing results of our scheme to show its practicability.