Proof of Nuprl Lemma : ses-legal-thread-has*-nonce

Step * of Lemma ses-legal-thread-has*-nonce

∀s:SES
  (SecurityAxioms
  ⇒ (∀es:EO+(Info). ∀A:Id. ∀thr:Thread.
        (Legal(thr)@A
        ⇒ (∀n:E(New). ∀e:Act.
              (e ∈ thr
              ⇒ e has* New(n)
              ⇒ (∃e':E. ((e' <loc e) ∧ Action(e') ∧ e' has* New(n) ∧ e' ∈ thr)) ∨ (e = n ∈ E)
                 supposing ∀e':E
                             ((e' < e) ⇒ Action(e') ⇒ e' has* New(n) ⇒ ((loc(e') = A ∈ Id) ∧ (¬↑e' ∈_b Send))))))))
BY
{ (RepeatFor 8 ((D 0 THENA Auto))
   THEN (Assert Action(e) BY
               ((D -1 THEN Unhide) THEN Auto))
   THEN D -2
   THEN Thin (-2)
   THEN Auto
   THEN RenameVar `a' (-5)
   THEN Decide ⌜a = n ∈ E⌝⋅
   THEN Auto) }

1
1. s : SES@i'
2. SecurityAxioms@i'
3. es : EO+(Info)@i'
4. A : Id@i
5. thr : Thread@i
6. Legal(thr)@A@i
7. n : E(New)@i
8. a : E@i
9. Action(a)
10. a ∈ thr@i
11. a has* New(n)@i
12. ∀e':E. ((e' < a) ⇒ Action(e') ⇒ e' has* New(n) ⇒ ((loc(e') = A ∈ Id) ∧ (¬↑e' ∈_b Send)))
13. ¬(a = n ∈ E)
⊢ ∃e':E. ((e' <loc a) ∧ Action(e') ∧ e' has* New(n) ∧ e' ∈ thr)

Latex:

Latex:
\mforall{}s:SES (SecurityAxioms {}\mRightarrow{} (\mforall{}es:EO+(Info). \mforall{}A:Id. \mforall{}thr:Thread. (Legal(thr)@A {}\mRightarrow{} (\mforall{}n:E(New). \mforall{}e:Act. (e \mmember{} thr {}\mRightarrow{} e has* New(n) {}\mRightarrow{} (\mexists{}e':E. ((e' <loc e) \mwedge{} Action(e') \mwedge{} e' has* New(n) \mwedge{} e' \mmember{} thr)) \mvee{} (e = n) supposing \mforall{}e':E ((e' < e) {}\mRightarrow{} Action(e') {}\mRightarrow{} e' has* New(n) {}\mRightarrow{} ((loc(e') = A) \mwedge{} (\mneg{}\muparrow{}e' \mmember{}\msubb{} Send)))))))) By Latex: (RepeatFor 8 ((D 0 THENA Auto)) THEN (Assert Action(e) BY ((D -1 THEN Unhide) THEN Auto)) THEN D -2 THEN Thin (-2) THEN Auto THEN RenameVar `a' (-5) THEN Decide \mkleeneopen{}a = n\mkleeneclose{}\mcdot{} THEN Auto) Home Index