{ 
[s:SES]. PropertyNU supposing PropertyN }
{ Proof }
Definitions occuring in Statement :
ses-NU: PropertyNU,
ses-nonce: PropertyN,
security-event-structure: SES,
uimplies: b supposing a,
uall: [x:A]. B[x]
Definitions :
tactic: Error :tactic,
isect: 
x:A. B[x],
uall: [x:A]. B[x],
equal: s = t,
member: t 
T,
function: x:A 
B[x],
all: x:A. B[x],
ses-nonce: PropertyN,
security-event-structure: SES,
product: x:A 
B[x],
prop: 
,
uimplies: b supposing a,
ses-NU: PropertyNU,
implies: P 
Q,
lambda: 
x.A[x],
event-ordering+: EO+(Info),
ses-info: Info,
es-E-interface: E(X),
ses-new: New,
top: Top,
atom: Atom$n,
es-E: E,
axiom: Ax,
eclass-val: X(e),
event_ordering: EO,
subtype_rel: A 
r B,
uiff: uiff(P;Q),
and: P 
Q,
less_than: a < b,
not: 
A,
ge: i 
j ,
le: A 
B,
es-causle: e c e',
or: P 
Q,
union: left + right,
exists: 
x:A. B[x],
strong-subtype: strong-subtype(A;B),
es-locl: (e <loc e'),
event-has*: e has* a,
es-causl: (e < e'),
infix_ap: x f y,
record-select: r.x,
bool: 
,
universe: Type,
pair: <a, b>,
assert: 
b,
set: {x:A| B[x]} ,
record+: record+,
eq_atom: eq_atom$n(x;y),
eq_atom: x =a y,
dep-isect: Error :dep-isect,
so_lambda: 
x y.t[x; y],
ifthenelse: if b then t else f fi ,
token: "$token",
apply: f a,
atom: Atom,
subtype: S T,
in-eclass: e 
X,
can-apply: can-apply(f;x),
isl: isl(x),
decide: case b of inl(x) => s[x] | inr(y) => t[y],
sq_type: SQType(T),
btrue: tt,
guard: {T},
true: True,
eclass: EClass(A[eo; e]),
void: Void,
Auto: Error :Auto,
Unfold: Error :Unfold,
CollapseTHEN: Error :CollapseTHEN,
D: Error :D,
MaAuto: Error :MaAuto,
Id: Id,
es-loc: loc(e),
ses-send: Send,
fpf: a:A fp-> B[a],
limited-type: LimitedType,
false: False,
event-has: (e has a),
rel_star: R^*,
l_member: (x l),
list: type List,
Knd: Knd,
locl: locl(a),
append: as @ bs,
so_apply: x[s],
IdLnk: IdLnk,
AssertBY: Error :AssertBY,
BHyp: Error :BHyp,
Try: Error :Try,
it: 
,
CollapseTHENA: Error :CollapseTHENA,
ses-info-flow: ->>,
class-value-has: X(e) has a,
sdata: SecurityData,
ses-rcv: Rcv,
ses-encrypt: Encrypt,
encryption-key: Key,
ses-decrypt: Decrypt,
ses-sign: Sign,
ses-verify: Verify,
sq_stable: SqStable(P),
squash: 
T,
fpf-sub: f g,
modulus-of-ccontinuity: modulus-of-ccontinuity(omega;I;f),
partitions: partitions(I;p),
i-member: r I,
rleq: x y,
rnonneg: rnonneg(r),
req: x = y,
is_accum_splitting: is_accum_splitting(T;A;L;LL;L2;f;g;x),
is_list_splitting: is_list_splitting(T;L;LL;L2;f),
free-from-atom: x:T||a
Lemmas :
es-causl_irreflexivity,
es-causle_weakening,
es-causl_transitivity2,
rel_star_weakening,
free-from-atom_wf1,
atom1_subtype_base,
not_wf,
sq_stable__assert,
ses-verify_wf,
Id_wf,
ses-sign_wf,
ses-decrypt_wf,
encryption-key_wf,
ses-encrypt_wf,
event-has*_wf,
ses-info-flow_wf,
rel_star_wf,
event-has_wf,
ses-send_wf,
class-value-has_wf,
ses-rcv_wf,
sdata_wf,
uiff_inversion,
true_wf,
ifthenelse_wf,
false_wf,
subtype_rel_wf,
top_wf,
es-interface-subtype_rel2,
es-interface-top,
member_wf,
eclass_wf,
in-eclass_wf,
assert_elim,
bool_subtype_base,
subtype_base_sq,
bool_wf,
assert_wf,
event-ordering+_inc,
subtype_rel_self,
eclass-val_wf,
security-event-structure_wf,
ses-nonce_wf,
ses-NU_wf,
es-E_wf,
ses-new_wf,
es-E-interface_wf,
ses-info_wf,
event-ordering+_wf
\mforall{}[s:SES]. PropertyNU supposing PropertyN
Date html generated:
2011_08_17-PM-07_22_59
Last ObjectModification:
2011_06_18-PM-01_16_37
Home
Index