| Tue, 22 Jul 1997 17:45:42 +0200 |
wenzelm |
improved print_cs;
|
changeset |
files
|
| Tue, 22 Jul 1997 11:49:59 +0200 |
paulson |
Cosmetic changes: margins, indentation, ...
|
changeset |
files
|
| Tue, 22 Jul 1997 11:49:44 +0200 |
paulson |
Now possibility_tac is an explicit function, in order to delay
|
changeset |
files
|
| Tue, 22 Jul 1997 11:26:02 +0200 |
paulson |
Cosmetic changes: margins, indentation, ...
|
changeset |
files
|
| Tue, 22 Jul 1997 11:23:03 +0200 |
paulson |
Now possibility_tac and basic_possibility_tac are explicit functions, in order
|
changeset |
files
|
| Tue, 22 Jul 1997 11:21:17 +0200 |
paulson |
Deleted the superfluous assumption A ~= B, which must hold anyway by induction
|
changeset |
files
|
| Tue, 22 Jul 1997 11:16:57 +0200 |
paulson |
Fixed the spelling of AUTH_NAMES--it could not have worked before\!
|
changeset |
files
|
| Tue, 22 Jul 1997 11:15:14 +0200 |
paulson |
Option is a synonym for General because MLWorks does not yet provide
|
changeset |
files
|
| Tue, 22 Jul 1997 11:14:18 +0200 |
paulson |
Removal of the tactical STATE
|
changeset |
files
|
| Tue, 22 Jul 1997 11:12:55 +0200 |
paulson |
Removal of the tactical STATE
|
changeset |
files
|
| Fri, 18 Jul 1997 14:06:54 +0200 |
wenzelm |
tuned error propagation msg;
|
changeset |
files
|
| Fri, 18 Jul 1997 13:57:19 +0200 |
wenzelm |
defs may now be conditional;
|
changeset |
files
|
| Fri, 18 Jul 1997 13:55:09 +0200 |
wenzelm |
renamed |-> <-| <-> to Parse/PrintRule;
|
changeset |
files
|
| Fri, 18 Jul 1997 13:54:41 +0200 |
wenzelm |
tuned warning;
|
changeset |
files
|
| Fri, 18 Jul 1997 13:52:35 +0200 |
wenzelm |
tuned warnings;
|
changeset |
files
|
| Fri, 18 Jul 1997 13:51:28 +0200 |
wenzelm |
considered removal of print_goals_ref;
|
changeset |
files
|
| Fri, 18 Jul 1997 13:37:16 +0200 |
wenzelm |
defs: allow conditions;
|
changeset |
files
|
| Fri, 18 Jul 1997 13:36:43 +0200 |
wenzelm |
tuned warning;
|
changeset |
files
|
| Fri, 18 Jul 1997 13:36:03 +0200 |
wenzelm |
renamed |-> <-| <-> to Parse/PrintRule;
|
changeset |
files
|
| Fri, 18 Jul 1997 13:35:36 +0200 |
wenzelm |
tuned warning;
|
changeset |
files
|
| Fri, 18 Jul 1997 13:35:15 +0200 |
wenzelm |
tuned warning;
|
changeset |
files
|
| Fri, 18 Jul 1997 13:33:20 +0200 |
wenzelm |
improved output channels: normal, warning, error;
|
changeset |
files
|
| Thu, 17 Jul 1997 15:03:38 +0200 |
wenzelm |
fixed EqI meta rule;
|
changeset |
files
|
| Thu, 17 Jul 1997 12:44:58 +0200 |
mueller |
changes needed for introducing fairness
|
changeset |
files
|
| Thu, 17 Jul 1997 12:44:16 +0200 |
mueller |
changes neede for introducing fairness
|
changeset |
files
|
| Thu, 17 Jul 1997 12:43:32 +0200 |
mueller |
changes needed for adding fairness
|
changeset |
files
|
| Wed, 16 Jul 1997 11:34:42 +0200 |
wenzelm |
fixed merge of internal simprocs;
|
changeset |
files
|
| Mon, 14 Jul 1997 12:47:21 +0200 |
paulson |
Changing "lost" from a parameter of protocol definitions to a constant.
|
changeset |
files
|
| Mon, 14 Jul 1997 12:44:09 +0200 |
paulson |
Fixed delIffs to deal correctly with the D-rule
|
changeset |
files
|
| Mon, 14 Jul 1997 12:42:28 +0200 |
paulson |
Removed redundant addsimps of Un_insert_left, which is now a default simprule
|
changeset |
files
|
| Fri, 11 Jul 1997 13:32:39 +0200 |
paulson |
Removal of monotonicity reasoning involving "lost" and the theorem
|
changeset |
files
|
| Fri, 11 Jul 1997 13:30:01 +0200 |
paulson |
Now uses the Notes constructor to distinguish the Client (who has chosen M)
|
changeset |
files
|
| Fri, 11 Jul 1997 13:28:53 +0200 |
paulson |
Moved some declarations to Message from Public and Shared
|
changeset |
files
|
| Fri, 11 Jul 1997 13:27:15 +0200 |
paulson |
Now loads theory Event, which contains common declarations
|
changeset |
files
|
| Fri, 11 Jul 1997 13:26:15 +0200 |
paulson |
Moving common declarations and proofs from theories "Shared"
|
changeset |
files
|
| Wed, 09 Jul 1997 17:00:34 +0200 |
wenzelm |
removed obsolete init_pps and init_thy_reader;
|
changeset |
files
|
| Wed, 09 Jul 1997 16:54:17 +0200 |
wenzelm |
improved type checking errors;
|
changeset |
files
|
| Wed, 09 Jul 1997 16:53:53 +0200 |
wenzelm |
removed init_pps;
|
changeset |
files
|
| Wed, 09 Jul 1997 16:52:51 +0200 |
wenzelm |
removed init_database;
|
changeset |
files
|
| Wed, 09 Jul 1997 12:57:04 +0200 |
nipkow |
Improved length = size translation.
|
changeset |
files
|
| Mon, 07 Jul 1997 10:49:14 +0200 |
paulson |
New proofs involving CERTIFICATE VERIFY
|
changeset |
files
|
| Mon, 07 Jul 1997 09:09:21 +0200 |
wenzelm |
eliminated chmod -w;
|
changeset |
files
|
| Mon, 07 Jul 1997 09:07:08 +0200 |
wenzelm |
-w option;
|
changeset |
files
|
| Mon, 07 Jul 1997 09:06:26 +0200 |
wenzelm |
NOWRITE;
|
changeset |
files
|
| Mon, 07 Jul 1997 09:05:16 +0200 |
wenzelm |
added -w option;
|
changeset |
files
|
| Fri, 04 Jul 1997 17:36:41 +0200 |
paulson |
Changed some variables of type msg to lower case (e.g. from NB to nb
|
changeset |
files
|
| Fri, 04 Jul 1997 17:34:55 +0200 |
paulson |
New constant "certificate"--just an abbreviation
|
changeset |
files
|
| Fri, 04 Jul 1997 14:37:30 +0200 |
nipkow |
Reduced priority of postfix ^* etc operators such that they are the same as
|
changeset |
files
|
| Fri, 04 Jul 1997 12:36:00 +0200 |
paulson |
Automatic update
|
changeset |
files
|
| Fri, 04 Jul 1997 12:32:31 +0200 |
paulson |
Now catches the error of calling tgoalw when there are no goals to prove,
|
changeset |
files
|
| Fri, 04 Jul 1997 12:31:20 +0200 |
paulson |
Simplified the new proofs about division
|
changeset |
files
|
| Fri, 04 Jul 1997 11:57:33 +0200 |
paulson |
New comments on how to deal with unproved termination conditions
|
changeset |
files
|
| Fri, 04 Jul 1997 11:56:49 +0200 |
paulson |
Fixed comments
|
changeset |
files
|
| Fri, 04 Jul 1997 11:56:18 +0200 |
paulson |
Moved MLWorks.ML to its proper place, directory ML-Systems.
|
changeset |
files
|
| Fri, 04 Jul 1997 11:54:43 +0200 |
paulson |
Automatic update
|
changeset |
files
|
| Thu, 03 Jul 1997 17:21:14 +0200 |
paulson |
Modified the \tydx command to set types in italics instead of \tt
|
changeset |
files
|
| Thu, 03 Jul 1997 17:20:07 +0200 |
paulson |
Some LaTeX-2e primitives such as \texttt
|
changeset |
files
|
| Thu, 03 Jul 1997 17:17:45 +0200 |
paulson |
Added documentation for recdef, and tidied some other material
|
changeset |
files
|
| Thu, 03 Jul 1997 17:10:50 +0200 |
paulson |
Updated references
|
changeset |
files
|
| Thu, 03 Jul 1997 13:44:54 +0200 |
nipkow |
set_of_list -> set
|
changeset |
files
|
| Wed, 02 Jul 1997 16:53:14 +0200 |
paulson |
Now there are TWO spaces after each full stop, so that the Emacs sentence
|
changeset |
files
|
| Wed, 02 Jul 1997 16:46:36 +0200 |
paulson |
Now there are TWO spaces after each full stop, so that the Emacs sentence
|
changeset |
files
|
| Wed, 02 Jul 1997 11:59:10 +0200 |
nipkow |
Added the following lemmas tp Divides and a few others to Arith and NatDef:
|
changeset |
files
|
| Tue, 01 Jul 1997 17:59:36 +0200 |
paulson |
Tidying; also simplified the lemma Says_Server_not
|
changeset |
files
|
| Tue, 01 Jul 1997 17:42:36 +0200 |
paulson |
New theory TLS
|
changeset |
files
|
| Tue, 01 Jul 1997 17:38:49 +0200 |
paulson |
Deleted a redundant A~=B in rules that refer to a previous event
|
changeset |
files
|
| Tue, 01 Jul 1997 17:37:42 +0200 |
paulson |
More realistic model: the Spy can compute clientK and serverK
|
changeset |
files
|
| Tue, 01 Jul 1997 17:36:42 +0200 |
paulson |
Reordered rules in analz_image_freshK_ss to improve clarity
|
changeset |
files
|
| Tue, 01 Jul 1997 17:35:09 +0200 |
paulson |
Removal of the obsolete newN function
|
changeset |
files
|
| Tue, 01 Jul 1997 17:34:42 +0200 |
paulson |
New theorem priK_inj_eq, injectivity of priK
|
changeset |
files
|
| Tue, 01 Jul 1997 17:34:13 +0200 |
paulson |
spy_analz_tac: Restored iffI to the list of rules used to break down
|
changeset |
files
|
| Tue, 01 Jul 1997 17:32:12 +0200 |
paulson |
New theory TLS
|
changeset |
files
|
| Tue, 01 Jul 1997 11:11:42 +0200 |
paulson |
Baby TLS. Proofs work, but model seems unrealistic
|
changeset |
files
|
| Tue, 01 Jul 1997 10:45:59 +0200 |
paulson |
New and stronger lemmas; more default simp/cla rules
|
changeset |
files
|
| Tue, 01 Jul 1997 10:39:28 +0200 |
paulson |
Deleted the obsolete operators newK, newN and nPair
|
changeset |
files
|
| Tue, 01 Jul 1997 10:38:11 +0200 |
paulson |
Now the possibility proof calls the appropriate tactic
|
changeset |
files
|
| Tue, 01 Jul 1997 10:37:42 +0200 |
paulson |
Added a comment
|
changeset |
files
|
| Tue, 01 Jul 1997 10:37:03 +0200 |
paulson |
Now Collect_mem_eq is a default simprule (how could it have ever been omitted?
|
changeset |
files
|
| Tue, 01 Jul 1997 10:34:30 +0200 |
paulson |
New laws for the "lists" operator
|
changeset |
files
|
| Mon, 30 Jun 1997 12:08:19 +0200 |
nipkow |
More concat lemmas.
|
changeset |
files
|
| Fri, 27 Jun 1997 10:47:13 +0200 |
paulson |
Corrected indentations and margins after the renaming of "set_of_list"
|
changeset |
files
|
| Thu, 26 Jun 1997 13:20:50 +0200 |
nipkow |
set_of_list -> set
|
changeset |
files
|
| Thu, 26 Jun 1997 11:58:05 +0200 |
paulson |
Trivial changes in connection with the Yahalom paper.
|
changeset |
files
|
| Thu, 26 Jun 1997 11:15:55 +0200 |
wenzelm |
oops;
|
changeset |
files
|
| Thu, 26 Jun 1997 11:14:46 +0200 |
wenzelm |
rearrange pages of ps file to be printed as booklet (duplex);
|
changeset |
files
|
| Thu, 26 Jun 1997 10:43:15 +0200 |
nipkow |
amdI -> admI2
|
changeset |
files
|
| Thu, 26 Jun 1997 10:42:50 +0200 |
nipkow |
Tuned Franz's proofs.
|
changeset |
files
|
| Mon, 23 Jun 1997 11:33:59 +0200 |
paulson |
Removal of structure Context and its replacement by a theorem list of
|
changeset |
files
|
| Mon, 23 Jun 1997 11:30:35 +0200 |
paulson |
Removal of COND_CONG, which is just if_cong RS eq_reflection
|
changeset |
files
|
| Mon, 23 Jun 1997 10:42:03 +0200 |
paulson |
Ran expandshort
|
changeset |
files
|
| Mon, 23 Jun 1997 10:35:49 +0200 |
paulson |
New "congs" keyword for recdef theory section
|
changeset |
files
|
| Fri, 20 Jun 1997 13:19:31 +0200 |
wenzelm |
removed old Makefile;
|
changeset |
files
|
| Fri, 20 Jun 1997 11:37:53 +0200 |
wenzelm |
removed;
|
changeset |
files
|
| Fri, 20 Jun 1997 11:34:05 +0200 |
wenzelm |
removed old Makefile;
|
changeset |
files
|
| Fri, 20 Jun 1997 11:19:39 +0200 |
wenzelm |
removed old Makefile and compat files;
|
changeset |
files
|
| Thu, 19 Jun 1997 11:31:14 +0200 |
paulson |
Made proofs more concise by replacing calls to spy_analz_tac by uses of
|
changeset |
files
|
| Thu, 19 Jun 1997 11:28:55 +0200 |
paulson |
Proof tidying and variable renaming (NA->na, NB->nb when of type msg)
|
changeset |
files
|
| Thu, 19 Jun 1997 11:24:37 +0200 |
paulson |
New comments; a tidied proof
|
changeset |
files
|
| Thu, 19 Jun 1997 11:23:31 +0200 |
paulson |
Two new rewrite rules--NOT included by default\!
|
changeset |
files
|
| Wed, 18 Jun 1997 15:38:35 +0200 |
paulson |
Defines KeyWithNonce, which is used to prove the secrecy of NB
|
changeset |
files
|
| Wed, 18 Jun 1997 15:31:31 +0200 |
paulson |
Addition of not_imp (which pushes negation into implication) as a default
|
changeset |
files
|
| Wed, 18 Jun 1997 15:30:32 +0200 |
paulson |
Corrected Title in header lines
|
changeset |
files
|
| Wed, 18 Jun 1997 15:28:03 +0200 |
paulson |
Streamlined proofs of the secrecy of NB and added authentication of A and B
|
changeset |
files
|
| Wed, 18 Jun 1997 15:24:21 +0200 |
paulson |
Removed Says_Crypt_lost and Says_Crypt_not_lost.
|
changeset |
files
|
| Wed, 18 Jun 1997 15:23:29 +0200 |
paulson |
Removed Says_Crypt_lost and Says_Crypt_not_lost.
|
changeset |
files
|
| Wed, 18 Jun 1997 15:21:30 +0200 |
paulson |
Adapted proofs to the removal of Says_Crypt_lost and Says_Crypt_not_lost
|
changeset |
files
|
| Wed, 18 Jun 1997 15:19:37 +0200 |
paulson |
Deleted spurious reference to Spy_not_see_NB, which by chance was defined
|
changeset |
files
|
| Tue, 17 Jun 1997 09:01:56 +0200 |
nipkow |
converse -> ^-1
|
changeset |
files
|
| Mon, 16 Jun 1997 14:25:33 +0200 |
paulson |
Type constraint added to ensure that "length" refers to lists. Maybe should
|
changeset |
files
|
| Mon, 16 Jun 1997 14:24:11 +0200 |
paulson |
Replacing the primrec definition of "length" by a translation to the built-in
|
changeset |
files
|
| Fri, 13 Jun 1997 10:35:13 +0200 |
nipkow |
Tuned wf_iff_no_infinite_down_chain proof, based on Konrads ideas.
|
changeset |
files
|
| Fri, 13 Jun 1997 10:04:37 +0200 |
mueller |
changed compatible definition;
|
changeset |
files
|
| Thu, 12 Jun 1997 16:48:03 +0200 |
mueller |
added deadlock
|
changeset |
files
|
| Thu, 12 Jun 1997 16:47:15 +0200 |
mueller |
added deadlock freedom, polished definitions and proofs
|
changeset |
files
|
| Mon, 09 Jun 1997 10:21:38 +0200 |
paulson |
Strengthened and streamlined the Yahalom proofs
|
changeset |
files
|
| Mon, 09 Jun 1997 10:21:05 +0200 |
paulson |
Useful new lemma
|
changeset |
files
|
| Fri, 06 Jun 1997 21:49:47 +0200 |
wenzelm |
eliminated non-ASCII;
|
changeset |
files
|
| Fri, 06 Jun 1997 19:30:06 +0200 |
nipkow |
Added
|
changeset |
files
|
| Fri, 06 Jun 1997 16:02:13 +0200 |
oheimb |
improved function 'nonreserved'
|
changeset |
files
|
| Fri, 06 Jun 1997 13:28:40 +0200 |
paulson |
Removed a few redundant additions of simprules or classical rules
|
changeset |
files
|