isabelle: src/HOL/Auth/Guard/Guard_Public.thy@7af3f9f41783 (annotated)

41775 6214816d79d3 standardized headers; wenzelm parents: 35418 diff changeset	1	(* Title: HOL/Auth/Guard/Guard_Public.thy
6214816d79d3 standardized headers; wenzelm parents: 35418 diff changeset	2	Author: Frederic Blanqui, University of Cambridge Computer Laboratory
6214816d79d3 standardized headers; wenzelm parents: 35418 diff changeset	3	Copyright 2002 University of Cambridge
13508 890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	4
41775 6214816d79d3 standardized headers; wenzelm parents: 35418 diff changeset	5	Lemmas on guarded messages for public protocols.
6214816d79d3 standardized headers; wenzelm parents: 35418 diff changeset	6	*)
13508 890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	7
48260 65ed3b2b3157 more precise imports; wenzelm parents: 41775 diff changeset	8	theory Guard_Public imports Guard "../Public" Extensions begin
13508 890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	9
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	10	subsection{Extensions to Theory @{text Public}}
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	11
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	12	declare initState.simps [simp del]
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	13
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	14	subsubsection{signature}
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	15
35416 d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 20217 diff changeset	16	definition sign :: "agent => msg => msg" where
13508 890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	17	"sign A X == {\|Agent A, X, Crypt (priK A) (Hash X)\|}"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	18
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	19	lemma sign_inj [iff]: "(sign A X = sign A' X') = (A=A' & X=X')"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	20	by (auto simp: sign_def)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	21
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	22	subsubsection{agent associated to a key}
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	23
35416 d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 20217 diff changeset	24	definition agt :: "key => agent" where
13508 890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	25	"agt K == @A. K = priK A \| K = pubK A"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	26
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	27	lemma agt_priK [simp]: "agt (priK A) = A"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	28	by (simp add: agt_def)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	29
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	30	lemma agt_pubK [simp]: "agt (pubK A) = A"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	31	by (simp add: agt_def)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	32
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	33	subsubsection{basic facts about @{term initState}}
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	34
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	35	lemma no_Crypt_in_parts_init [simp]: "Crypt K X ~:parts (initState A)"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	36	by (cases A, auto simp: initState.simps)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	37
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	38	lemma no_Crypt_in_analz_init [simp]: "Crypt K X ~:analz (initState A)"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	39	by auto
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	40
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	41	lemma no_priK_in_analz_init [simp]: "A ~:bad
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	42	==> Key (priK A) ~:analz (initState Spy)"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	43	by (auto simp: initState.simps)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	44
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	45	lemma priK_notin_initState_Friend [simp]: "A ~= Friend C
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	46	==> Key (priK A) ~: parts (initState (Friend C))"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	47	by (auto simp: initState.simps)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	48
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	49	lemma keyset_init [iff]: "keyset (initState A)"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	50	by (cases A, auto simp: keyset_def initState.simps)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	51
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	52	subsubsection{sets of private keys}
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	53
35416 d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 20217 diff changeset	54	definition priK_set :: "key set => bool" where
13508 890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	55	"priK_set Ks == ALL K. K:Ks --> (EX A. K = priK A)"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	56
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	57	lemma in_priK_set: "[\| priK_set Ks; K:Ks \|] ==> EX A. K = priK A"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	58	by (simp add: priK_set_def)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	59
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	60	lemma priK_set1 [iff]: "priK_set {priK A}"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	61	by (simp add: priK_set_def)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	62
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	63	lemma priK_set2 [iff]: "priK_set {priK A, priK B}"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	64	by (simp add: priK_set_def)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	65
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	66	subsubsection{sets of good keys}
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	67
35416 d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 20217 diff changeset	68	definition good :: "key set => bool" where
13508 890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	69	"good Ks == ALL K. K:Ks --> agt K ~:bad"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	70
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	71	lemma in_good: "[\| good Ks; K:Ks \|] ==> agt K ~:bad"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	72	by (simp add: good_def)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	73
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	74	lemma good1 [simp]: "A ~:bad ==> good {priK A}"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	75	by (simp add: good_def)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	76
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	77	lemma good2 [simp]: "[\| A ~:bad; B ~:bad \|] ==> good {priK A, priK B}"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	78	by (simp add: good_def)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	79
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	80	subsubsection{greatest nonce used in a trace, 0 if there is no nonce}
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	81
35418 83b0f75810f0 killed recdefs in HOL-Auth krauss parents: 35416 diff changeset	82	primrec greatest :: "event list => nat"
83b0f75810f0 killed recdefs in HOL-Auth krauss parents: 35416 diff changeset	83	where
83b0f75810f0 killed recdefs in HOL-Auth krauss parents: 35416 diff changeset	84	"greatest [] = 0"
83b0f75810f0 killed recdefs in HOL-Auth krauss parents: 35416 diff changeset	85	\| "greatest (ev # evs) = max (greatest_msg (msg ev)) (greatest evs)"
13508 890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	86
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	87	lemma greatest_is_greatest: "Nonce n:used evs ==> n <= greatest evs"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	88	apply (induct evs, auto simp: initState.simps)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	89	apply (drule used_sub_parts_used, safe)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	90	apply (drule greatest_msg_is_greatest, arith)
20217 25b068a99d2b linear arithmetic splits certain operators (e.g. min, max, abs) webertj parents: 16417 diff changeset	91	by simp
13508 890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	92
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	93	subsubsection{function giving a new nonce}
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	94
35416 d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 20217 diff changeset	95	definition new :: "event list => nat" where
13508 890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	96	"new evs == Suc (greatest evs)"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	97
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	98	lemma new_isnt_used [iff]: "Nonce (new evs) ~:used evs"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	99	by (clarify, drule greatest_is_greatest, auto simp: new_def)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	100
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	101	subsection{Proofs About Guarded Messages}
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	102
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	103	subsubsection{small hack necessary because priK is defined as the inverse of pubK}
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	104
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	105	lemma pubK_is_invKey_priK: "pubK A = invKey (priK A)"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	106	by simp
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	107
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	108	lemmas pubK_is_invKey_priK_substI = pubK_is_invKey_priK [THEN ssubst]
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	109
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	110	lemmas invKey_invKey_substI = invKey [THEN ssubst]
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	111
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	112	lemma "Nonce n:parts {X} ==> Crypt (pubK A) X:guard n {priK A}"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	113	apply (rule pubK_is_invKey_priK_substI, rule invKey_invKey_substI)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	114	by (rule Guard_Nonce, simp+)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	115
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	116	subsubsection{guardedness results}
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	117
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	118	lemma sign_guard [intro]: "X:guard n Ks ==> sign A X:guard n Ks"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	119	by (auto simp: sign_def)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	120
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	121	lemma Guard_init [iff]: "Guard n Ks (initState B)"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	122	by (induct B, auto simp: Guard_def initState.simps)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	123
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	124	lemma Guard_knows_max': "Guard n Ks (knows_max' C evs)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	125	==> Guard n Ks (knows_max C evs)"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	126	by (simp add: knows_max_def)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	127
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	128	lemma Nonce_not_used_Guard_spies [dest]: "Nonce n ~:used evs
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	129	==> Guard n Ks (spies evs)"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	130	by (auto simp: Guard_def dest: not_used_not_known parts_sub)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	131
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	132	lemma Nonce_not_used_Guard [dest]: "[\| evs:p; Nonce n ~:used evs;
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	133	Gets_correct p; one_step p \|] ==> Guard n Ks (knows (Friend C) evs)"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	134	by (auto simp: Guard_def dest: known_used parts_trans)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	135
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	136	lemma Nonce_not_used_Guard_max [dest]: "[\| evs:p; Nonce n ~:used evs;
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	137	Gets_correct p; one_step p \|] ==> Guard n Ks (knows_max (Friend C) evs)"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	138	by (auto simp: Guard_def dest: known_max_used parts_trans)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	139
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	140	lemma Nonce_not_used_Guard_max' [dest]: "[\| evs:p; Nonce n ~:used evs;
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	141	Gets_correct p; one_step p \|] ==> Guard n Ks (knows_max' (Friend C) evs)"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	142	apply (rule_tac H="knows_max (Friend C) evs" in Guard_mono)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	143	by (auto simp: knows_max_def)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	144
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	145	subsubsection{regular protocols}
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	146
35416 d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 20217 diff changeset	147	definition regular :: "event list set => bool" where
13508 890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	148	"regular p == ALL evs A. evs:p --> (Key (priK A):parts (spies evs)) = (A:bad)"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	149
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	150	lemma priK_parts_iff_bad [simp]: "[\| evs:p; regular p \|] ==>
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	151	(Key (priK A):parts (spies evs)) = (A:bad)"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	152	by (auto simp: regular_def)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	153
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	154	lemma priK_analz_iff_bad [simp]: "[\| evs:p; regular p \|] ==>
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	155	(Key (priK A):analz (spies evs)) = (A:bad)"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	156	by auto
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	157
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	158	lemma Guard_Nonce_analz: "[\| Guard n Ks (spies evs); evs:p;
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	159	priK_set Ks; good Ks; regular p \|] ==> Nonce n ~:analz (spies evs)"
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	160	apply (clarify, simp only: knows_decomp)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	161	apply (drule Guard_invKey_keyset, simp+, safe)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	162	apply (drule in_good, simp)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	163	apply (drule in_priK_set, simp+, clarify)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	164	apply (frule_tac A=A in priK_analz_iff_bad)
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	165	by (simp add: knows_decomp)+
890d736b93a5 Frederic Blanqui's new "guard" examples paulson parents: diff changeset	166
20217 25b068a99d2b linear arithmetic splits certain operators (e.g. min, max, abs) webertj parents: 16417 diff changeset	167	end

author	blanchet
	Wed, 05 Sep 2012 15:40:26 +0200
changeset 49159	7af3f9f41783
parent 48260	65ed3b2b3157
child 61830	4f5ab843cf5b
permissions	-rw-r--r--