Mercurial Mercurial > repos > isabelle / changeset
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | raw | gz | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
possibility proof!
authorpaulson
Wed, 13 Aug 2003 12:28:53 +0200
changeset 14146 0edd2d57eaf8
parent 14145 2e31b8cc8788
child 14147 331ab35e81f2
possibility proof!
src/HOL/Auth/ZhouGollmann.thy file | annotate | diff | comparison | revisions 
--- a/src/HOL/Auth/ZhouGollmann.thy	Tue Aug 12 13:35:03 2003 +0200
+++ b/src/HOL/Auth/ZhouGollmann.thy	Wed Aug 13 12:28:53 2003 +0200
@@ -101,6 +101,21 @@
 declare symKey_neq_priEK [THEN not_sym, simp]
 
 
+text{*A "possibility property": there are traces that reach the end*}
+lemma "[|A \<noteq> B; TTP \<noteq> A; TTP \<noteq> B; K \<in> symKeys|] ==>
+     \<exists>L. \<exists>evs \<in> zg.
+           Notes TTP {|Number f_con, Agent A, Agent B, Nonce L, Key K,
+               Crypt (priK TTP) {|Number f_con, Agent A, Agent B, Nonce L, Key K|} |}
+               \<in> set evs"
+apply (intro exI bexI)
+apply (rule_tac [2] zg.Nil
+                    [THEN zg.ZG1, THEN zg.Reception [of _ A B],
+                     THEN zg.ZG2, THEN zg.Reception [of _ B A],
+                     THEN zg.ZG3, THEN zg.Reception [of _ A TTP], 
+                     THEN zg.ZG4])
+apply (possibility, auto)
+done
+
 subsection {*Basic Lemmas*}
 
 lemma Gets_imp_Says:
isabelle