Add saw proof for AEAD inversion

2025-09-07 10:41:52 -07:00
parent 671aac130f
commit 8c9c356220
2 changed files with 17 additions and 1 deletions
--- a/verify.saw
+++ b/verify.saw
@@ -0,0 +1,12 @@
+import "Ascon.cry";
+
+for [0,1,2,16,63,64,65,127,128,129,255,256] (\a ->
+for [0,1,2,16,63,64,65,127,128,129,255,256] (\p -> do {
+    print ("decrypt_encrypt",a,p);
+    prove_print (unint_yices ["Ascon::Ascon_p"]) {{
+        \K N (A : [a]) (P : [p]) ->
+        case AEAD128_decrypt K N A (AEAD128_encrypt K N A P) of
+            None -> False
+            Some p' -> p' == P
+    }};
+}));