Proof of Nuprl Lemma : ses-flow-axiom-ordering

Step * 3 of Lemma ses-flow-axiom-ordering

1. s : SES@i'
2. ActionsDisjoint@i'
3. es : EO+(Info)@i'
4. ∀e1,e2:E. ∀a:Atom1.
(ses-flow(s;es;a;e1;e2) ⇒

 ((e1 ≤loc e2  ∧ (e2 has a)) ∨ (∃snd:E(Send). (e1 ≤loc snd  ∧ (snd < e2) ∧ snd has* a))))

5. ∀n:E(New). ∀e:E.  ((e has New(n)) ⇒ ses-flow(s;es;New(n);n;e))@i'
6. ∀e1:E(Encrypt). ∀b:E.
     ((b has cipherText(e1))
     ⇒ (∃e2:E(Encrypt)

          ((Encrypt(e2) = Encrypt(e1) ∈ (SecurityData × Key × Atom1)) ∧ ses-flow(s;es;cipherText(e2);e2;b))))@i'

7. ∀e1:E(Sign). ∀b:E.
((b has signature(e1))
⇒

 (∃e2:E(Sign). ((Sign(e2) = Sign(e1) ∈ (SecurityData × Id × Atom1)) ∧ ses-flow(s;es;signature(e2);e2;b))))@i'

8. e1 : E(Sign)@i
9. ∀b:E
((b has signature(e1))
⇒

 (∃e2:E(Sign). ((Sign(e2) = Sign(e1) ∈ (SecurityData × Id × Atom1)) ∧ ses-flow(s;es;signature(e2);e2;b))))

10. b : E@i
11. (b has signature(e1))@i
12. e2 : E(Sign)
13. Sign(e2) = Sign(e1) ∈ (SecurityData × Id × Atom1)
14. ses-flow(s;es;signature(e2);e2;b)
15. Sign(e2) = Sign(e1) ∈ (SecurityData × Id × Atom1)
16. snd : E(Send)
17. e2 ≤loc snd
18. (snd < b)
19. snd has* signature(e2)
20. (e2 <loc snd)
21. (snd < b)
⊢ snd has* signature(e1)
BY
{ (NthHypEq (-3) THEN (EqCD THEN Auto) THEN Unfold `ses-sig` 0 THEN EqCD THEN Auto)⋅ }

Latex:

Latex:
1. s : SES@i' 2. ActionsDisjoint@i' 3. es : EO+(Info)@i' 4. \mforall{}e1,e2:E. \mforall{}a:Atom1. (ses-flow(s;es;a;e1;e2) {}\mRightarrow{} ((e1 \mleq{}loc e2 \mwedge{} (e2 has a)) \mvee{} (\mexists{}snd:E(Send). (e1 \mleq{}loc snd \mwedge{} (snd < e2) \mwedge{} snd has* a)))) 5. \mforall{}n:E(New). \mforall{}e:E. ((e has New(n)) {}\mRightarrow{} ses-flow(s;es;New(n);n;e))@i' 6. \mforall{}e1:E(Encrypt). \mforall{}b:E. ((b has cipherText(e1)) {}\mRightarrow{} (\mexists{}e2:E(Encrypt). ((Encrypt(e2) = Encrypt(e1)) \mwedge{} ses-flow(s;es;cipherText(e2);e2;b))))@i' 7. \mforall{}e1:E(Sign). \mforall{}b:E. ((b has signature(e1)) {}\mRightarrow{} (\mexists{}e2:E(Sign). ((Sign(e2) = Sign(e1)) \mwedge{} ses-flow(s;es;signature(e2);e2;b))))@i' 8. e1 : E(Sign)@i 9. \mforall{}b:E ((b has signature(e1)) {}\mRightarrow{} (\mexists{}e2:E(Sign). ((Sign(e2) = Sign(e1)) \mwedge{} ses-flow(s;es;signature(e2);e2;b)))) 10. b : E@i 11. (b has signature(e1))@i 12. e2 : E(Sign) 13. Sign(e2) = Sign(e1) 14. ses-flow(s;es;signature(e2);e2;b) 15. Sign(e2) = Sign(e1) 16. snd : E(Send) 17. e2 \mleq{}loc snd 18. (snd < b) 19. snd has* signature(e2) 20. (e2 <loc snd) 21. (snd < b) \mvdash{} snd has* signature(e1) By Latex: (NthHypEq (-3) THEN (EqCD THEN Auto) THEN Unfold `ses-sig` 0 THEN EqCD THEN Auto)\mcdot{} Home Index