Proof of Nuprl Lemma : ses-act-has-atom

Step * 6 1 of Lemma ses-act-has-atom

1. s : SES@i'
2. es : EO+(Info)@i'
3. e : Act@i
4. ¬↑e ∈_b Verify
5. ¬↑e ∈_b Encrypt
6. ¬↑e ∈_b Decrypt
7. ¬↑e ∈_b New
8. a : Atom1@i
9. f : E ─→ ℤ
10. False ⇒ (4 = 1 ∈ ℤ)
11. (↑e ∈_b Send) ⇒ (4 = 2 ∈ ℤ)
12. (↑e ∈_b Rcv) ⇒ (4 = 3 ∈ ℤ)
13. False ⇒ (4 = 5 ∈ ℤ)
14. False ⇒ (4 = 6 ∈ ℤ)
15. False ⇒ (4 = 7 ∈ ℤ)
16. ↑e ∈_b Sign
17. (f e) = 4 ∈ ℤ
18. ¬↑e ∈_b Rcv
19. ↑e ∈_b Sign
20. ¬↑e ∈_b Send
⊢ ¬a#Sign(e):SecurityData × Id × Atom1 ⇐⇒ (a = signature(e) ∈ Atom1) ∨ (a ∈ sdata-atoms(signed(e)))
BY
{ (Subst ⌈Sign(e) ~ <signed(e), signer(e), signature(e)>⌉ 0⋅
   THENL [Complete ((RepUR ``ses-signed ses-signer ses-sig`` 0
                     THEN (GenConclAtAddr [1] THENA Auto)
                     THEN RepeatFor 2 (D -2)
                     THEN Reduce 0
                     THEN Auto))
         ; (((GenConcl ⌈signature(e) = b ∈ Atom1⌉⋅ THENA Auto) THEN Thin (-1))
            THEN ((GenConcl ⌈signed(e) = d ∈ SecurityData⌉⋅ THENA Auto) THEN Thin (-1))
            THEN (GenConcl ⌈signer(e) = k ∈ Id⌉⋅ THENA Auto)
            THEN All Thin
            THEN ((RWO "free-from-atom-pair-iff" 0 THENA Auto)⋅
                  THEN (Assert a#<k, b>:Id × Atom1 ∈ Type BY
                              Auto)
                  THEN (RWO  "sdata-free-from-atom" 0 THENA Auto)
                  THEN (RWO "free-from-atom-pair-iff" 0 THENA Auto)
                  THEN (Assert a#k:Id ∈ Type BY
                              Auto)
                  THEN (RWO "free-from-atom-atom" 0 THENA Auto)
                  THEN (RWO "free-from-atom-Id-rw" 0 THENA Auto)⋅)⋅)]
)⋅ }

1
1. a : Atom1@i
2. b : Atom1@i
3. d : SecurityData@i
4. k : Id@i
5. a#<k, b>:Id × Atom1 ∈ Type
6. a#k:Id ∈ Type
⊢ ¬((¬(a ∈ sdata-atoms(d))) ∧ True ∧ (¬(b = a ∈ Atom1))) ⇐⇒ (a = b ∈ Atom1) ∨ (a ∈ sdata-atoms(d))

Latex:

Latex:
1. s : SES@i' 2. es : EO+(Info)@i' 3. e : Act@i 4. \mneg{}\muparrow{}e \mmember{}\msubb{} Verify 5. \mneg{}\muparrow{}e \mmember{}\msubb{} Encrypt 6. \mneg{}\muparrow{}e \mmember{}\msubb{} Decrypt 7. \mneg{}\muparrow{}e \mmember{}\msubb{} New 8. a : Atom1@i 9. f : E {}\mrightarrow{} \mBbbZ{} 10. False {}\mRightarrow{} (4 = 1) 11. (\muparrow{}e \mmember{}\msubb{} Send) {}\mRightarrow{} (4 = 2) 12. (\muparrow{}e \mmember{}\msubb{} Rcv) {}\mRightarrow{} (4 = 3) 13. False {}\mRightarrow{} (4 = 5) 14. False {}\mRightarrow{} (4 = 6) 15. False {}\mRightarrow{} (4 = 7) 16. \muparrow{}e \mmember{}\msubb{} Sign 17. (f e) = 4 18. \mneg{}\muparrow{}e \mmember{}\msubb{} Rcv 19. \muparrow{}e \mmember{}\msubb{} Sign 20. \mneg{}\muparrow{}e \mmember{}\msubb{} Send \mvdash{} \mneg{}a\#Sign(e):SecurityData \mtimes{} Id \mtimes{} Atom1 \mLeftarrow{}{}\mRightarrow{} (a = signature(e)) \mvee{} (a \mmember{} sdata-atoms(signed(e))) By Latex: (Subst \mkleeneopen{}Sign(e) \msim{} <signed(e), signer(e), signature(e)>\mkleeneclose{} 0\mcdot{} THENL [Complete ((RepUR ``ses-signed ses-signer ses-sig`` 0 THEN (GenConclAtAddr [1] THENA Auto) THEN RepeatFor 2 (D -2) THEN Reduce 0 THEN Auto)) ; (((GenConcl \mkleeneopen{}signature(e) = b\mkleeneclose{}\mcdot{} THENA Auto) THEN Thin (-1)) THEN ((GenConcl \mkleeneopen{}signed(e) = d\mkleeneclose{}\mcdot{} THENA Auto) THEN Thin (-1)) THEN (GenConcl \mkleeneopen{}signer(e) = k\mkleeneclose{}\mcdot{} THENA Auto) THEN All Thin THEN ((RWO "free-from-atom-pair-iff" 0 THENA Auto)\mcdot{} THEN (Assert a\#<k, b>:Id \mtimes{} Atom1 \mmember{} Type BY Auto) THEN (RWO "sdata-free-from-atom" 0 THENA Auto) THEN (RWO "free-from-atom-pair-iff" 0 THENA Auto) THEN (Assert a\#k:Id \mmember{} Type BY Auto) THEN (RWO "free-from-atom-atom" 0 THENA Auto) THEN (RWO "free-from-atom-Id-rw" 0 THENA Auto)\mcdot{})\mcdot{})] )\mcdot{} Home Index