#
ed7a971e |
|
05-Jan-2019 |
wenzelm <none@none> |
isabelle update -u control_cartouches;
|
#
f5796e6d |
|
14-Feb-2018 |
wenzelm <none@none> |
more symbols;
|
#
5385dbfa |
|
16-Jan-2018 |
wenzelm <none@none> |
standardized towards new-style formal comments: isabelle update_comments;
|
#
17bc899d |
|
18-Aug-2017 |
wenzelm <none@none> |
session-qualified theory imports: isabelle imports -U -i -d '~~/src/Benchmarks' -a;
|
#
3ed107ca |
|
30-Dec-2015 |
wenzelm <none@none> |
proper latex setup;
|
#
ce5e1da3 |
|
28-Dec-2015 |
wenzelm <none@none> |
more symbols;
|
#
feca4ab8 |
|
10-Dec-2015 |
wenzelm <none@none> |
isabelle update_cartouches -c -t;
|
#
794edf80 |
|
02-Nov-2014 |
wenzelm <none@none> |
modernized header uniformly as section;
|
#
5fc26177 |
|
11-Sep-2014 |
blanchet <none@none> |
updated news
|
#
d2ddb3a1 |
|
09-Sep-2014 |
blanchet <none@none> |
use 'datatype_new' (soon to be renamed 'datatype') in Isabelle's libraries
|
#
aff8c6a4 |
|
12-Feb-2014 |
blanchet <none@none> |
adapted to 'xxx_{case,rec}' renaming, to new theorem names, and to new variable names in theorems * * * more transition of 'xxx_rec' to 'rec_xxx' and same for case * * * compile * * * 'rename_tac's to avoid referring to generated names * * * more robust scripts with 'rename_tac' * * * 'where' -> 'of' * * * 'where' -> 'of' * * * renamed 'xxx_rec' to 'rec_xxx'
|
#
42e5f74e |
|
20-Nov-2011 |
wenzelm <none@none> |
updated comment;
|
#
12379cec |
|
18-Feb-2011 |
wenzelm <none@none> |
modernized specifications;
|
#
3d40d3d4 |
|
29-Dec-2010 |
wenzelm <none@none> |
explicit file specifications -- avoid secondary load path;
|
#
deac04eb |
|
22-Jul-2010 |
wenzelm <none@none> |
updated some headers;
|
#
1daddc43 |
|
10-Mar-2010 |
huffman <none@none> |
convert TLS to use Nat_Bijection library
|
#
baea5702 |
|
01-Mar-2010 |
haftmann <none@none> |
replaced a couple of constsdefs by definitions (also some old primrecs by modern ones)
|
#
079cde2d |
|
17-Oct-2009 |
wenzelm <none@none> |
eliminated hard tabulators, guessing at each author's individual tab-width; tuned headers;
|
#
0650c4f7 |
|
13-Feb-2009 |
nipkow <none@none> |
Moved Nat_Int_Bij into Library --HG-- rename : src/HOL/Nat_Int_Bij.thy => src/HOL/Library/Nat_Int_Bij.thy
|
#
e90dc44f |
|
02-Sep-2008 |
nipkow <none@none> |
Replaced Library/NatPair by Nat_Int_Bij.
|
#
7b63d2a6 |
|
11-Jul-2007 |
berghofe <none@none> |
Adapted to new inductive definition package.
|
#
cd65d9bc |
|
16-Nov-2006 |
wenzelm <none@none> |
more robust syntax for definition/abbreviation/notation;
|
#
8d37dcbe |
|
28-Sep-2006 |
wenzelm <none@none> |
replaced syntax/translations by abbreviation;
|
#
a7060872 |
|
17-Jun-2005 |
haftmann <none@none> |
migrated theory headers to new format
|
#
f6663d03 |
|
24-Jul-2003 |
paulson <none@none> |
Tidying and replacement of some axioms by specifications
|
#
7a4d9400 |
|
05-May-2003 |
paulson <none@none> |
improved presentation of HOL/Auth theories
|
#
c5f9f5e4 |
|
25-Apr-2003 |
paulson <none@none> |
Changes required by the certified email protocol Public-key model now provides separate signature/encryption keys and also long-term symmetric keys.
|
#
05b61f85 |
|
17-Aug-2002 |
paulson <none@none> |
tidying of Isar scripts
|
#
4962745e |
|
03-Oct-2001 |
wenzelm <none@none> |
tuned parentheses in relational expressions;
|
#
3608bdf6 |
|
08-May-2001 |
paulson <none@none> |
conversion of Auth/TLS to Isar script
|
#
68aabf0f |
|
29-Mar-2001 |
paulson <none@none> |
misc tidying; changing the predicate isSymKey to the set symKeys
|
#
22bc9d8c |
|
27-Feb-2001 |
paulson <none@none> |
Some X-symbols for <notin>, <noteq>, <forall>, <exists> Streamlining of Yahalom proofs Removal of redundant proofs
|
#
723dda01 |
|
16-Feb-1999 |
paulson <none@none> |
tidying in conjuntion with the TISSEC paper; replaced (unit option) by a new datatype (role)
|
#
3a0a25a5 |
|
15-Oct-1998 |
paulson <none@none> |
changed tags from 0, 1 to None, Some() to avoid special treatment of 0
|
#
9aca3040 |
|
08-Sep-1998 |
paulson <none@none> |
Got rid of not_Says_to_self and most uses of ~= in definitions and theorems
|
#
d06dcde6 |
|
21-Aug-1998 |
paulson <none@none> |
Tidying
|
#
5526b6e0 |
|
24-Jun-1998 |
paulson <none@none> |
Trivial change to be more like paper
|
#
0f7a75d2 |
|
16-Dec-1997 |
paulson <none@none> |
Simplified SpyKeys and ClientKeyExch as suggested by James Margetson
|
#
67524d5c |
|
11-Nov-1997 |
paulson <none@none> |
Fixed spelling error
|
#
6ade7684 |
|
01-Oct-1997 |
paulson <none@none> |
Fixed ServerResume to check for ServerHello instead of making a new NB
|
#
9dc2ade4 |
|
30-Sep-1997 |
paulson <none@none> |
Exchanged the M and SID fields of the FINISHED messages to simplify proofs
|
#
8d721c78 |
|
30-Sep-1997 |
paulson <none@none> |
Client, Server certificates now sent using the separate Certificate rule, simplifying ServerHello and ClientKeyExch. Resumption no longer needs its own version of ServerHello. Proofs run nearly three minutes faster.
|
#
c6f7365e |
|
29-Sep-1997 |
paulson <none@none> |
Renamed XA, XB to PA, PB and removed the certificate from Client Verify
|
#
c4499d8a |
|
24-Sep-1997 |
paulson <none@none> |
Deleted obsolete axioms inj_serverK and isSym_serverK
|
#
0d439454 |
|
23-Sep-1997 |
paulson <none@none> |
sessionK now indexed by nat instead of bool. Weaker Oops conditions on final guarantees
|
#
1b477208 |
|
22-Sep-1997 |
paulson <none@none> |
Simplified SpyKeys to use sessionK instead of clientK and serverK Proved and used analz_insert_key, shortening scripts
|
#
e518e5ec |
|
19-Sep-1997 |
paulson <none@none> |
First working version with Oops event for session keys
|
#
4153a480 |
|
19-Sep-1997 |
paulson <none@none> |
Full version of TLS including session resumption, but no Oops
|
#
99c390e7 |
|
18-Sep-1997 |
paulson <none@none> |
Global change: lost->bad and sees Spy->spies First change just gives a more sensible name. Second change eliminates the agent parameter of "sees" to simplify definitions and theorems
|
#
b551880d |
|
17-Sep-1997 |
paulson <none@none> |
Now with the sessionK constant and new events ClientAccepts and ServerAccepts
|
#
0108e49c |
|
16-Sep-1997 |
paulson <none@none> |
Addition of SessionIDs to the Hello and Finished messages
|
#
5252ea03 |
|
16-Sep-1997 |
paulson <none@none> |
TLS now with a distinction between premaster secret and master secret
|
#
5276b175 |
|
13-Jul-1997 |
paulson <none@none> |
Changing "lost" from a parameter of protocol definitions to a constant. Advantages: no "lost" argument everywhere; fewer Vars in subgoals; less need for specially instantiated rules Disadvantage: can no longer prove "Agent_not_see_encrypted_key", but this theorem was never used, and its original proof was also broken the introduction of the "Notes" constructor.
|
#
b4dbcd13 |
|
11-Jul-1997 |
paulson <none@none> |
Now uses the Notes constructor to distinguish the Client (who has chosen M) from the Spy (who may have replayed her messages)
|
#
e11ad8f6 |
|
07-Jul-1997 |
paulson <none@none> |
New proofs involving CERTIFICATE VERIFY
|
#
a9f47b61 |
|
04-Jul-1997 |
paulson <none@none> |
New constant "certificate"--just an abbreviation
|
#
267de61b |
|
01-Jul-1997 |
paulson <none@none> |
More realistic model: the Spy can compute clientK and serverK
|
#
8a4f3994 |
|
01-Jul-1997 |
paulson <none@none> |
Baby TLS. Proofs work, but model seems unrealistic
|