Content - b40d63ede05750925942306bd2772f9c26407be6 - ac25929/theories/crypto/ske/CPA.eca

visit type:

Tip revision: 546373e46b64bdcf42c6349a261e4a25ce0caa3f authored by Lionel Blatter on 14 March 2024, 09:18:14 UTC
Patch proof from theories and examples

Tip revision: 546373e

CPA.eca

require import Bool Core.
require (*--*) DBool NewSKE.

clone include NewSKE.

module type CPA = {
  proc enc(p: plain): cipher option
}.

module type Adv_CPA (O : CPA) = {
  proc choose(): plain * plain
  proc guess(c: cipher): bool
}.

module IND_CPA ( S : SKE, A : Adv_CPA) = {
  module O = Wrap(S)
  module A = A(O)

  proc main(): bool = {
    var b, b', c, p0, p1, p;

    O.init();
    (p0,p1) <@ A.choose();
    b       <$ {0,1};
    p       <- b ? p1 : p0; (* FIXME: need to check whether plaintexts are both valid or both invalid *)
    c       <@ O.enc(p);
    b'      <@ A.guess(oget c);
    return b = b';
  }
}.

Browse the archive

https://github.com/EasyCrypt/easycrypt