(herald "Encrypted Signed Message Example" (comment "Shows examples of key usage of asymmetric keys")) (comment "CPSA 2.2.3") (comment "All input read") (defprotocol mult-keys-enc-sig basic (defrole init (vars (a b name) (n1 n2 text)) (trace (send (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (recv (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (send (enc (enc n2 (pubk "enc" b)) (privk "sig" a))))) (defrole resp (vars (b a name) (n2 n1 text)) (trace (recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))))) (defskeleton mult-keys-enc-sig (vars (n1 n2 text) (a b name)) (defstrand init 3 (n1 n1) (n2 n2) (a a) (b b)) (non-orig (privk "enc" a) (privk "sig" a) (privk "sig" b)) (uniq-orig n1) (traces ((send (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (recv (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (send (enc (enc n2 (pubk "enc" b)) (privk "sig" a))))) (label 0) (unrealized (0 1)) (comment "1 in cohort - 1 not yet seen")) (defskeleton mult-keys-enc-sig (vars (n1 n2 text) (a b name)) (defstrand init 3 (n1 n1) (n2 n2) (a a) (b b)) (defstrand resp 2 (n2 n2) (n1 n1) (b b) (a a)) (precedes ((0 0) (1 0)) ((1 1) (0 1))) (non-orig (privk "enc" a) (privk "sig" a) (privk "sig" b)) (uniq-orig n1) (operation encryption-test (added-strand resp 2) (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b)) (0 1)) (traces ((send (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (recv (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (send (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))) ((recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))))) (label 1) (parent 0) (unrealized) (shape) (maps ((0) ((a a) (b b) (n1 n1) (n2 n2))))) (comment "Nothing left to do") (defprotocol mult-keys-enc-sig basic (defrole init (vars (a b name) (n1 n2 text)) (trace (send (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (recv (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (send (enc (enc n2 (pubk "enc" b)) (privk "sig" a))))) (defrole resp (vars (b a name) (n2 n1 text)) (trace (recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))))) (defskeleton mult-keys-enc-sig (vars (n2 n1 text) (a b name)) (defstrand resp 3 (n2 n2) (n1 n1) (b b) (a a)) (non-orig (privk "sig" a)) (uniq-orig n2) (traces ((recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a))))) (label 2) (unrealized (0 0) (0 2)) (comment "1 in cohort - 1 not yet seen")) (defskeleton mult-keys-enc-sig (vars (n2 n1 text) (a b name)) (defstrand resp 3 (n2 n2) (n1 n1) (b b) (a a)) (defstrand init 1 (n1 n1) (a a) (b b)) (precedes ((1 0) (0 0))) (non-orig (privk "sig" a)) (uniq-orig n2) (operation encryption-test (added-strand init 1) (enc (enc n1 a (pubk "enc" b)) (privk "sig" a)) (0 0)) (traces ((recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))))) (label 3) (parent 2) (unrealized (0 2)) (comment "2 in cohort - 2 not yet seen")) (defskeleton mult-keys-enc-sig (vars (n2 n1 n1-0 text) (a b name)) (defstrand resp 3 (n2 n2) (n1 n1) (b b) (a a)) (defstrand init 1 (n1 n1) (a a) (b b)) (defstrand init 3 (n1 n1-0) (n2 n2) (a a) (b b)) (precedes ((0 1) (2 1)) ((1 0) (0 0)) ((2 2) (0 2))) (non-orig (privk "sig" a)) (uniq-orig n2) (operation encryption-test (added-strand init 3) (enc (enc n2 (pubk "enc" b)) (privk "sig" a)) (0 2)) (traces ((recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1 a (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1-0 a (pubk "enc" b)) (privk "sig" a))) (recv (enc (enc n1-0 n2 (pubk "enc" a)) (privk "sig" b))) (send (enc (enc n2 (pubk "enc" b)) (privk "sig" a))))) (label 4) (parent 3) (seen 5) (unrealized) (shape) (maps ((0) ((a a) (b b) (n2 n2) (n1 n1)))) (comment "1 in cohort - 0 not yet seen")) (defskeleton mult-keys-enc-sig (vars (n2 n1 text) (a b name)) (defstrand resp 3 (n2 n2) (n1 n1) (b b) (a a)) (defstrand init 3 (n1 n1) (n2 n2) (a a) (b b)) (precedes ((0 1) (1 1)) ((1 0) (0 0)) ((1 2) (0 2))) (non-orig (privk "sig" a)) (uniq-orig n2) (operation encryption-test (displaced 1 2 init 3) (enc (enc n2 (pubk "enc" b)) (privk "sig" a)) (0 2)) (traces ((recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (recv (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (send (enc (enc n2 (pubk "enc" b)) (privk "sig" a))))) (label 5) (parent 3) (unrealized) (shape) (maps ((0) ((a a) (b b) (n2 n2) (n1 n1))))) (comment "Nothing left to do") (defprotocol mult-keys-enc-sig basic (defrole init (vars (a b name) (n1 n2 text)) (trace (send (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (recv (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (send (enc (enc n2 (pubk "enc" b)) (privk "sig" a))))) (defrole resp (vars (b a name) (n2 n1 text)) (trace (recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))))) (defskeleton mult-keys-enc-sig (vars (n2 n1 text) (a b name)) (defstrand resp 3 (n2 n2) (n1 n1) (b b) (a a)) (non-orig (privk "enc" a)) (uniq-orig n2) (traces ((recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a))))) (label 6) (unrealized (0 2)) (comment "1 in cohort - 1 not yet seen")) (defskeleton mult-keys-enc-sig (vars (n2 n1 text) (a b b-0 name)) (defstrand resp 3 (n2 n2) (n1 n1) (b b) (a a)) (defstrand init 3 (n1 n1) (n2 n2) (a a) (b b-0)) (precedes ((0 1) (1 1)) ((1 2) (0 2))) (non-orig (privk "enc" a)) (uniq-orig n2) (operation nonce-test (added-strand init 3) n2 (0 2) (enc n1 n2 (pubk "enc" a))) (traces ((recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1 a (pubk "enc" b-0)) (privk "sig" a))) (recv (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b-0))) (send (enc (enc n2 (pubk "enc" b-0)) (privk "sig" a))))) (label 7) (parent 6) (unrealized) (shape) (maps ((0) ((a a) (b b) (n2 n2) (n1 n1))))) (comment "Nothing left to do") (defprotocol mult-keys-enc-sig basic (defrole init (vars (a b name) (n1 n2 text)) (trace (send (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (recv (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (send (enc (enc n2 (pubk "enc" b)) (privk "sig" a))))) (defrole resp (vars (b a name) (n2 n1 text)) (trace (recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))))) (defskeleton mult-keys-enc-sig (vars (n2 n1 text) (a b name)) (defstrand resp 3 (n2 n2) (n1 n1) (b b) (a a)) (non-orig (privk "enc" a) (privk "sig" a)) (uniq-orig n2) (traces ((recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a))))) (label 8) (unrealized (0 0) (0 2)) (comment "1 in cohort - 1 not yet seen")) (defskeleton mult-keys-enc-sig (vars (n2 n1 text) (a b name)) (defstrand resp 3 (n2 n2) (n1 n1) (b b) (a a)) (defstrand init 1 (n1 n1) (a a) (b b)) (precedes ((1 0) (0 0))) (non-orig (privk "enc" a) (privk "sig" a)) (uniq-orig n2) (operation encryption-test (added-strand init 1) (enc (enc n1 a (pubk "enc" b)) (privk "sig" a)) (0 0)) (traces ((recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))))) (label 9) (parent 8) (unrealized (0 2)) (comment "2 in cohort - 2 not yet seen")) (defskeleton mult-keys-enc-sig (vars (n2 n1 n1-0 text) (a b name)) (defstrand resp 3 (n2 n2) (n1 n1) (b b) (a a)) (defstrand init 1 (n1 n1) (a a) (b b)) (defstrand init 3 (n1 n1-0) (n2 n2) (a a) (b b)) (precedes ((0 1) (2 1)) ((1 0) (0 0)) ((2 2) (0 2))) (non-orig (privk "enc" a) (privk "sig" a)) (uniq-orig n2) (operation encryption-test (added-strand init 3) (enc (enc n2 (pubk "enc" b)) (privk "sig" a)) (0 2)) (traces ((recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1 a (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1-0 a (pubk "enc" b)) (privk "sig" a))) (recv (enc (enc n1-0 n2 (pubk "enc" a)) (privk "sig" b))) (send (enc (enc n2 (pubk "enc" b)) (privk "sig" a))))) (label 10) (parent 9) (unrealized (2 1)) (comment "3 in cohort - 3 not yet seen")) (defskeleton mult-keys-enc-sig (vars (n2 n1 text) (a b name)) (defstrand resp 3 (n2 n2) (n1 n1) (b b) (a a)) (defstrand init 3 (n1 n1) (n2 n2) (a a) (b b)) (precedes ((0 1) (1 1)) ((1 0) (0 0)) ((1 2) (0 2))) (non-orig (privk "enc" a) (privk "sig" a)) (uniq-orig n2) (operation encryption-test (displaced 1 2 init 3) (enc (enc n2 (pubk "enc" b)) (privk "sig" a)) (0 2)) (traces ((recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (recv (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (send (enc (enc n2 (pubk "enc" b)) (privk "sig" a))))) (label 11) (parent 9) (unrealized) (shape) (maps ((0) ((a a) (b b) (n2 n2) (n1 n1))))) (defskeleton mult-keys-enc-sig (vars (n2 n1 text) (a b name)) (defstrand resp 3 (n2 n2) (n1 n1) (b b) (a a)) (defstrand init 1 (n1 n1) (a a) (b b)) (defstrand init 3 (n1 n1) (n2 n2) (a a) (b b)) (precedes ((0 1) (2 1)) ((1 0) (0 0)) ((2 2) (0 2))) (non-orig (privk "enc" a) (privk "sig" a)) (uniq-orig n2) (operation nonce-test (contracted (n1-0 n1)) n2 (2 1) (enc n1 n2 (pubk "enc" a))) (traces ((recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1 a (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (recv (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (send (enc (enc n2 (pubk "enc" b)) (privk "sig" a))))) (label 12) (parent 10) (seen 11) (unrealized) (shape) (maps ((0) ((a a) (b b) (n2 n2) (n1 n1)))) (comment "1 in cohort - 0 not yet seen")) (defskeleton mult-keys-enc-sig (vars (n2 n1 n1-0 text) (a b b-0 name)) (defstrand resp 3 (n2 n2) (n1 n1) (b b) (a a)) (defstrand init 1 (n1 n1) (a a) (b b)) (defstrand init 3 (n1 n1-0) (n2 n2) (a a) (b b)) (defstrand init 3 (n1 n1) (n2 n2) (a a) (b b-0)) (precedes ((0 1) (3 1)) ((1 0) (0 0)) ((2 2) (0 2)) ((3 2) (2 1))) (non-orig (privk "enc" a) (privk "sig" a)) (uniq-orig n2) (operation nonce-test (added-strand init 3) n2 (2 1) (enc n1 n2 (pubk "enc" a))) (traces ((recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1 a (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1-0 a (pubk "enc" b)) (privk "sig" a))) (recv (enc (enc n1-0 n2 (pubk "enc" a)) (privk "sig" b))) (send (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1 a (pubk "enc" b-0)) (privk "sig" a))) (recv (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b-0))) (send (enc (enc n2 (pubk "enc" b-0)) (privk "sig" a))))) (label 13) (parent 10) (seen 14) (unrealized) (shape) (maps ((0) ((a a) (b b) (n2 n2) (n1 n1)))) (comment "2 in cohort - 1 not yet seen")) (defskeleton mult-keys-enc-sig (vars (n2 n1 n1-0 text) (a b name)) (defstrand resp 3 (n2 n2) (n1 n1) (b b) (a a)) (defstrand init 3 (n1 n1-0) (n2 n2) (a a) (b b)) (defstrand init 3 (n1 n1) (n2 n2) (a a) (b b)) (precedes ((0 1) (2 1)) ((1 2) (0 2)) ((2 0) (0 0)) ((2 2) (1 1))) (non-orig (privk "enc" a) (privk "sig" a)) (uniq-orig n2) (operation nonce-test (displaced 1 3 init 3) n2 (2 1) (enc n1 n2 (pubk "enc" a))) (traces ((recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1-0 a (pubk "enc" b)) (privk "sig" a))) (recv (enc (enc n1-0 n2 (pubk "enc" a)) (privk "sig" b))) (send (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (recv (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (send (enc (enc n2 (pubk "enc" b)) (privk "sig" a))))) (label 14) (parent 10) (seen 11) (unrealized) (comment "1 in cohort - 0 not yet seen")) (defskeleton mult-keys-enc-sig (vars (n2 n1 text) (a b b-0 name)) (defstrand resp 3 (n2 n2) (n1 n1) (b b) (a a)) (defstrand init 3 (n1 n1) (n2 n2) (a a) (b b)) (defstrand init 3 (n1 n1) (n2 n2) (a a) (b b-0)) (precedes ((0 1) (2 1)) ((1 0) (0 0)) ((1 2) (0 2)) ((2 2) (1 1))) (non-orig (privk "enc" a) (privk "sig" a)) (uniq-orig n2) (operation collapsed 1 2) (traces ((recv (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (send (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (recv (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1 a (pubk "enc" b)) (privk "sig" a))) (recv (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b))) (send (enc (enc n2 (pubk "enc" b)) (privk "sig" a)))) ((send (enc (enc n1 a (pubk "enc" b-0)) (privk "sig" a))) (recv (enc (enc n1 n2 (pubk "enc" a)) (privk "sig" b-0))) (send (enc (enc n2 (pubk "enc" b-0)) (privk "sig" a))))) (label 15) (parent 13) (seen 11) (unrealized) (comment "1 in cohort - 0 not yet seen")) (comment "Nothing left to do")