Nuprl Lemma : ses-nonce-release

{

s:SES. (PropertyN

PropertyNR) }

{ Proof }

Definitions occuring in Statement : ses-NR: PropertyNR, ses-nonce: PropertyN, security-event-structure: SES, all:

x:A. B[x], implies: P

Q
Definitions : security-event-structure: SES, equal: s = t, member: t

T, event-ordering+: EO+(Info), function: x:A

B[x], all:

x:A. B[x], ses-info: Info, atom: Atom$n, ses-new: New, subtype_rel: A

r B, eclass: EClass(A[eo; e]), fpf: a:A fp-> B[a], so_lambda:

x y.t[x; y], strong-subtype: strong-subtype(A;B), product: x:A

B[x], exists:

x:A. B[x], union: left + right, or: P

Q, es-causle: e c

e', dep-isect: Error :dep-isect, eq_atom: x =a y, eq_atom: eq_atom$n(x;y), record+: record+, isect:

x:A. B[x], top: Top, event-has*: e has* a, and: P

Q, es-locl: (e <loc e'), es-E-interface: E(X), es-causl: (e < e'), false: False, implies: P

Q, not:

A, prop:

, universe: Type, limited-type: LimitedType, es-E: E, es-loc: loc(e), Id: Id, void: Void, apply: f a, record-select: r.x, set: {x:A| B[x]} , assert:

b, decide: case b of inl(x) => s[x] | inr(y) => t[y], ifthenelse: if b then t else f fi , event_ordering: EO, in-eclass: e

X, bool:

, btrue: tt, true: True, guard: {T}, sq_type: SQType(T), subtype: S

T, lambda:

x.A[x], eclass-val: X(e), release-before: (a released before e), ses-send: Send, ses-NR: PropertyNR, ses-nonce: PropertyN, ExRepD: Error :ExRepD, CollapseTHEN: Error :CollapseTHEN, MaAuto: Error :MaAuto, ParallelOp: Error :ParallelOp, D: Error :D, CollapseTHENA: Error :CollapseTHENA, Auto: Error :Auto, Try: Error :Try, tactic: Error :tactic, pair: <a, b>, rel_star: R^*, infix_ap: x f y, event-has: (e has a), token: "$token", atom: Atom, es-p-le: e p

e', causal-predecessor: causal-predecessor(es;p), es-p-locl: e p< e', alle-between3:

e

(e1,e2].P[e], es-pred: pred(e), es-interface-val: val(X,e), es-le: e

loc e' , decidable: Dec(P), existse-before:

e<e'.P[e], existse-le:

e

e'.P[e], alle-lt:

e<e'.P[e], alle-le:

e

e'.P[e], alle-between1:

e

[e1,e2).P[e], existse-between1:

e

[e1,e2).P[e], alle-between2:

e

[e1,e2].P[e], existse-between2:

e

[e1,e2].P[e], existse-between3:

e

(e1,e2].P[e], es-fset-loc: i

locs(s), collect-event: collect-event(es;X;n;v.num[v];L.P[L];e), cut-order: a

(X;f) b, path-goes-thru: x-f*-y thru i, es-r-immediate-pred: es-r-immediate-pred(es;R;e';e), same-thread: same-thread(es;p;e;e'), ses-action: Action(e), isl: isl(x), can-apply: can-apply(f;x), cand: A c

B, rev_implies: P

Q, iff: P

Q, sdata: SecurityData
Lemmas : ses-send_wf, decidable__es-locl, es-le-not-locl, decidable__es-le, es-causle-le, es-locl_wf, es-le_wf, es-causle_weakening_locl, es-causl_weakening, es-causl_transitivity1, subtype_rel_self, ses-NR_wf, ses-nonce_wf, security-event-structure_wf, es-E-interface_wf, event-has*_wf, release-before_wf, eclass-val_wf, event-ordering+_inc, event-ordering+_wf, assert_wf, bool_sq, assert_elim, in-eclass_wf, es-interface-subtype_rel, top_wf, es-loc_wf, es-E_wf, es-causl_wf, not_wf, false_wf, Id_wf, member_wf, eclass_wf, subtype_rel_wf, ses-new_wf, ses-info_wf, es-interface-top

\mforall{}s:SES. (PropertyN {}\mRightarrow{} PropertyNR) Date html generated: 2011_08_17-PM-07_24_49 Last ObjectModification: 2010_09_24-PM-03_11_10 Home Index