Mercurial Mercurial > repos > isabelle / diff
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
src/HOL/Auth/TLS.thy
changeset 3686 4b484805b4c4
parent 3685 5b8c0c8f576e
child 3687 fb7d096d7884 
--- a/src/HOL/Auth/TLS.thy	Fri Sep 19 16:12:21 1997 +0200
+++ b/src/HOL/Auth/TLS.thy	Fri Sep 19 18:27:31 1997 +0200
@@ -48,7 +48,7 @@
   (*Client, server write keys generated uniformly by function sessionK
     to avoid duplicating their properties.
     Theyimplicitly include the MAC secrets.*)
-  sessionK :: "bool*nat*nat*nat => key"
+  sessionK :: "(nat*nat*nat)*bool => key"
 
   certificate      :: "[agent,key] => msg"
 
@@ -60,8 +60,8 @@
     clientK, serverK :: "nat*nat*nat => key"
 
 translations
-  "clientK (x)"	== "sessionK(True,x)"
-  "serverK (x)"	== "sessionK(False,x)"
+  "clientK (x)"	== "sessionK(x,True)"
+  "serverK (x)"	== "sessionK(x,False)"
 
 rules
   inj_PRF       "inj PRF"	
@@ -252,6 +252,12 @@
 			       Nonce NB, Number XB, Agent B|}))
               # evsCR  :  tls"
 
-  (**Oops message??**)
+    Oops 
+         (*The most plausible compromise is of an old session key.  Losing
+           the MASTER SECRET or PREMASTER SECRET is more serious but
+           rather unlikely.*)
+         "[| evso: tls;  A ~= Spy;  
+	     Says A B (Crypt (sessionK((NA,NB,M),b)) X) : set evso |]
+          ==> Says A Spy (Key (sessionK((NA,NB,M),b))) # evso  :  tls"
 
 end
isabelle