equal
deleted
inserted
replaced
137 |
137 |
138 (** Session keys are not used to encrypt other session keys **) |
138 (** Session keys are not used to encrypt other session keys **) |
139 |
139 |
140 (*The equality makes the induction hypothesis easier to apply*) |
140 (*The equality makes the induction hypothesis easier to apply*) |
141 Goal "evs : otway ==> \ |
141 Goal "evs : otway ==> \ |
142 \ ALL K KK. KK <= Compl (range shrK) --> \ |
142 \ ALL K KK. KK <= - (range shrK) --> \ |
143 \ (Key K : analz (Key``KK Un (spies evs))) = \ |
143 \ (Key K : analz (Key``KK Un (spies evs))) = \ |
144 \ (K : KK | Key K : analz (spies evs))"; |
144 \ (K : KK | Key K : analz (spies evs))"; |
145 by (etac otway.induct 1); |
145 by (etac otway.induct 1); |
146 by analz_spies_tac; |
146 by analz_spies_tac; |
147 by (REPEAT_FIRST (resolve_tac [allI, impI])); |
147 by (REPEAT_FIRST (resolve_tac [allI, impI])); |