[mdwtools] / crypto.dtx

% \begin{meta-comment}
%
% $Id: crypto.dtx,v 1.2 2003/09/05 16:13:14 mdw Exp $
%
% Typesetting crypto papers
%
% (c) 2001 Mark Wooding
%
%----- Revision history -----------------------------------------------------
%
% $Log: crypto.dtx,v $
% Revision 1.2  2003/09/05 16:13:14  mdw
% Various minor fettlings.  Fix paragraph formatting after programs.  More
% Things.
%
% Revision 1.1  2002/02/03 20:49:03  mdw
% Checkin for new build system.
%
%
% \end{meta-comment}
%
% \begin{meta-comment} <general public licence>
%%
%% crypto package -- useful macros for typesetting crypto papers
%% Copyright (c) 2001 Mark Wooding
%%
%% This program is free software; you can redistribute it and/or modify
%% it under the terms of the GNU General Public License as published by
%% the Free Software Foundation; either version 2 of the License, or
%% (at your option) any later version.
%% 
%% This program is distributed in the hope that it will be useful,
%% but WITHOUT ANY WARRANTY; without even the implied warranty of
%% MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
%% GNU General Public License for more details.
%% 
%% You should have received a copy of the GNU General Public License
%% along with this program; if not, write to the Free Software Foundation,
%% Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
% \end{meta-comment}
%
% \begin{meta-comment} <Package preambles>
%<+package>\NeedsTeXFormat{LaTeX2e}
%<+package>\ProvidesPackage{crypto}
%<+package>                [2001/09/16 1.0 Crypto typesetting]
% \end{meta-comment}
%
% \CheckSum{249}
%% \CharacterTable
%%  {Upper-case    \A\B\C\D\E\F\G\H\I\J\K\L\M\N\O\P\Q\R\S\T\U\V\W\X\Y\Z
%%   Lower-case    \a\b\c\d\e\f\g\h\i\j\k\l\m\n\o\p\q\r\s\t\u\v\w\x\y\z
%%   Digits        \0\1\2\3\4\5\6\7\8\9
%%   Exclamation   \!     Double quote  \"     Hash (number) \#
%%   Dollar        \$     Percent       \%     Ampersand     \&
%%   Acute accent  \'     Left paren    \(     Right paren   \)
%%   Asterisk      \*     Plus          \+     Comma         \,
%%   Minus         \-     Point         \.     Solidus       \/
%%   Colon         \:     Semicolon     \;     Less than     \<
%%   Equals        \=     Greater than  \>     Question mark \?
%%   Commercial at \@     Left bracket  \[     Backslash     \\
%%   Right bracket \]     Circumflex    \^     Underscore    \_
%%   Grave accent  \`     Left brace    \{     Vertical bar  \|
%%   Right brace   \}     Tilde         \~}
%%
%
% \begin{meta-comment}
%
%<*driver>
\input{mdwtools}
\describespackage{crypto}
\mdwdoc
%</driver>
%
% \end{meta-comment}
%
%^^A-------------------------------------------------------------------------
% \section{User guide}
%
% \subsection{Algorithm typesetting}
%
% A lot of provable-security papers need to be able to typeset algorithms
% describing adversaries, schemes, oracle behaviour, etc.  There is a
% (relatively) standard format for doing this which we support.
%
% \DescribeEnv{program}
% The \env{program} environment provides handy notation for describing
% algorithms formally.  It gives a \env{tabbing} environment, so that things
% can be laid out nicely, and allows fragments of algorithms to be laid out
% in columns or rows, with separating rules.
%
% \DescribeMacro\next
% Within the \env{program} environment, the |\next| command stops typesetting
% the current column, typesets a vertical separator rule, and starts a new
% column.  Adjacent columns are spaced out evenly across the page, with equal
% space around the rules rules and at the current margins.  This means that
% the rules don't line up, but it still seems to provide a pleasing effect.
%
% \DescribeMacro\newline
% The |\newline| macro begins a new row of algorithm typesetting.  A page
% break is possible at a |\newline|.
%
% \DescribeMacro\kw
% A number of standard keywords are available, as shown in
% table~\ref{tab:kw}.  The typsetting of these is done by the |\kw| command,
% which usually sets its argument in text bold face, but can be redefined.
% The standard definition uses |\xspace| so that you don't need to remember
% to say \verb*+\ + after a keyword command.
% \begin{table}
%   \centering
%   \def\row#1{\texttt{\string#1} & #1 \\}
%   \begin{tabular}{ll}
%     \textbf{Command} & \textbf{Keyword} \\
%     \row\RETURN
%     \row\IF
%     \row\THEN
%     \row\ELSE
%     \row\REPEAT
%     \row\WHILE
%     \row\UNTIL
%     \row\FOREVER
%     \row\DO
%     \row\FOR
%     \row\FOREACH
%     \row\FROM
%     \row\IN
%     \row\TO
%     \row\ABORT
%     \row\PARSE
%     \row\NEW
%     \row\AS
%   \end{tabular}
%   \caption{Keywords available for algorithm typesetting}
%   \label{tab:kw}
% \end{table}
%
% \DescribeMacro\ind
% Within a \env{program} environment, the |\ind| command shunts the indent
% level 1\,em to the right.
%
% \DescribeMacro\gets
% \DescribeMacro\getsr
% \DescribeMacro\inr
% Assignment can be represented using the standard command |\gets|, which
% typesets a left-pointing arrow `$\gets$'.  Random sampling -- the selection
% of a random element from a set or probability distribution -- can be
% represented using the new command |\getsr|, which typesets an arrow with a
% little `R' above it `$\getsr$'.  Random membership -- showing that
% something is a random variable with some distribution -- can be represented
% using the |\inr| command, which just typesets an $\in$ sign with a
% subscript `R': `$\inr$'.
%
% Should one wish, one can use a different character than `R' to denote
% randomness.  Some authors use `\$', for example.  I know of one
% (cheapskate?) author who has used `\rlap/c'.  Redefining the |\random|
% command lets you do this.  For example, you can say
% |\newcommand{\random}{\$}| should you so wish.
%
% \DescribeMacro\id
% Long identifiers can be typeset using the |\id| command. giving the
% identifier name as an argument.  The |\id| command is only valid in maths
% mode.  As currently set up, |\id| sets its argument in \emph{text} italics;
% this seems to look better in documents which use a PostScript body face and
% Computer Modern for maths.
%
% \DescribeMacro\Xid
% It's handy to be able to glue a bit of (possibly fancy) maths typesetting
% to an identifier, e.g., to construct $\Xid{H'}{list}$, or
% $\Xid{\mathcal{E}}{CTR$\$$}^F$.  This is done using
% \syntax{"\\Xid{"<maths>"}{"<text>"}"}.  The two bits are joined by a text
% hyphen `-'.
%
% \DescribeMacro\cookie
% Sometimes textual names are used for special `symbols', which have meaning
% to algorithms, e.g., the symbols $\cookie{find}$ and $\cookie{guess}$ in
% the standard indistinguishability game.  These can be typeset using the
% |\cookie| command.
%
% \subsection{Other stuff}
%
% \DescribeMacro\Thing
% In the quantifiable-security world, there are standard symbols for
% advantage, success probability, insecurity, etc.  The generic `style hook'
% for these is \syntax{"\\Thing{"<name>"}{"<notion>"}{"scheme"}"}, which
% typesets $\Thing{name}{notion}{scheme}$.  It helps a lot if you have the
% \package{amstext} package loaded.
%
% \DescribeMacro\Succ
% \DescribeMacro\Adv
% \DescribeMacro\InSec
% \DescribeMacro\Expt
% \DescribeMacro\Game
% \begin{synshorts}
% Some standard `things' are provided: "\\Succ{"<notion>"}{"<scheme>"}",
% "\\Adv{"<notion>"}{"<scheme>"}", "\\InSec{"<notion>"}", 
% "\\Expt{"<notion>"}{"<scheme>"}", and "\\Game{"<notion>"}{"<scheme>"}".
% \end{synshorts}
%
% \DescribeMacro\G
% In proofs which proceed by varying the rules of the game played by the
% adversary and bounding the probability of it noticing at each step, game
% names are usually typeset as $\G n$ for small numbers $n$.  The command
% \syntax{"\\G{"<n>"}"} command does this typesetting.  There's an optional
% argument, which is a symbol to write instead of `G'.
%
% \DescribeMacro\Func
% \DescribeMacro\Perm
% When dealing with finite PRFs and PRPs, we need to talk about the set of
% \emph{all} functions (or permutations) over particular sets, usually
% $n$-vectors of bits.  The macros \syntax{"\\Func{"<l>"}{"<L>"}"} and
% \syntax{"\\Perm{"<L>"}"} typeset $\Func{l}{L}$ and $\Perm{L}$ respectively,
% and are intended to denote the sets of all functions $F\colon \{0, 1\}^l
% \to \{0, 1\}^L$ and all permutations $\Pi\colon \{0, 1\}^L \to \{0, 1\}^L$
% respectively. 
%
% \DescribeMacro\PKCS
% Finally, the |\PKCS| macro typesets `\PKCS{$n$}', allowing you to name RSA
% Security Inc.'s Public Key Cryptography Standards in a relatively nice way.
% 
% \implementation
%
%
%^^A-------------------------------------------------------------------------
% \section{Implementation}
%
% We need David Carlisle's handy \package{xspace} package and the AMS |\text|
% command.
%
%    \begin{macrocode}
%<*package>
\RequirePackage{amstext}
\RequirePackage{xspace}
%    \end{macrocode}
%
% \subsection{Algorithm typsetting}
%
% \begin{macro}{\cookie}
% \begin{macro}{\kw}
% \begin{macro}{\id}
%
% First, some style issues.  Note the |\xspace| at the end of |\kw|.
%
%    \begin{macrocode}
\def\cookie#1{\text{\normalfont\sffamily\/#1\/}}
\def\kw#1{\text{\normalfont\bfseries\/#1\/}\xspace}
\def\id#1{\text{\normalfont\itshape\/#1\/}}
%    \end{macrocode}
%
% \end{macro}
% \end{macro}
% \end{macro}
%
% \begin{macro}{\getsr}
% \begin{macro}{\inr}
%
% The symbols for random selection and membership are fairly easy.  The `R'
% over $\getsr$ is actually in scriptscript style, because that seems to look
% nicer.
%
%    \begin{macrocode}
\providecommand\random{R}
\def\inr{\mathrel{\in_{\random}}}
\def\getsr{\mathrel{\mathop{\gets}\limits^{\scriptscriptstyle\random}}}
%    \end{macrocode}
%
% \end{macro}
% \end{macro}
%
% \begin{macro}{\Xid}
%
% The compound identifiers set by |\Xid| are easy.
%
%    \begin{macrocode}
\def\Xid#1#2{\id{$#1$-#2}}
%    \end{macrocode}
%
% \end{macro}
%
% Now for the various keywords.  These are trivial, but useful.
%
%    \begin{macrocode}
\def\RETURN{\kw{return}}
\def\IF{\kw{if}}
\def\THEN{\kw{then}}
\def\ELSE{\kw{else}}
\def\REPEAT{\kw{repeat}}
\def\WHILE{\kw{while}}
\def\UNTIL{\kw{until}}
\def\FOREVER{\kw{forever}}
\def\DO{\kw{do}}
\def\FOR{\kw{for}}
\def\FOREACH{\kw{for\,each}}
\def\FROM{\kw{from}}
\def\IN{\kw{in}}
\def\TO{\kw{to}}
\def\ABORT{\kw{abort}}
\def\PARSE{\kw{parse}}
\def\AS{\kw{as}}
\def\NEW{\ifmmode\mathop{\kw{new}}\else\kw{new}\fi}
%    \end{macrocode}
%
% \begin{environment}{program}
% \begin{macro}{\next}
% \begin{macro}{\newline}
% \begin{macro}{\ind}
%
% Now for the \env{program} environment and its associated twiddling.  This
% is actually a little fiddly.
%
% At the beginning, if we're in vertical mode -- i.e., there was a paragraph
% break before the start of the environment -- then remember this, because it
% affects the typesetting at the end.  Set up |\next| and |\newline| in terms
% of the underlying machinery, and start a row of algorithm.
%
%    \begin{macrocode}
\def\program{%
  \normalfont%
  \@tempswatrue\ifvmode\@tempswafalse\fi%
  \def\next{\program@end\vrule\program@begin}%
  \def\newline{\program@endline\medskip\program@startline}%
  \def\ind{\quad\=\+\kill}%
  \ifdim\topsep<\parskip\topsep\parskip\fi%
  \ifdim\@topsepadd<\z@\@topsepadd\z@\fi%
  \begingroup\trivlist%
  \advance\@topsep-\parskip\advance\@topsepadd-\parskip\item%
  \program@startline%
}
%    \end{macrocode}
%
% Ending the environment is easy-ish.  We stop the current row and leave a
% gap, matching the one that |\poem@startline| adds automatically.  If we
% were initially in horizontal mode, then don't indent the next paragraph,
% and ignore spaces after the |\end{program}| command.
%
%    \begin{macrocode}
\def\endprogram{%
  \program@endline\endtrivlist\endgroup%
  \if@tempswa\@endparenv\fi\@ignoretrue%
}
%    \end{macrocode}
%
% Now for the guts of all of this.  First of all, we turn to the typesetting
% of a column, which is just hfil glue, a \env{minipage} with zero width and
% a \env{tabbing} environment.  The first tab is already set 1\,em in from
% the margin.  We use \env{minipage} to set up the list parameters correctly
% and manage the initial and final spacing.  The zero width is OK because
% \env{tabbing} sets a list of hboxes rather than using outer horizontal
% mode, so the |\hsize| is irrelevant.
%
%    \begin{macrocode}
\def\program@begin{%
  \begingroup%
  \hfil%
  \minipage[t]\z@%
    \topsep\z@%
    \itemsep\z@%
    \parskip\z@\parsep\z@%
    \partopsep\z@%
    \tabbing%
%    \end{macrocode}
%
% This is rather messy.  The |\item| from the \env{trivlist} messes up the
% spacing.  We remove the box, and fix |\prevdepth| to ensure that there's no
% glue at the top.
%
%    \begin{macrocode}
      \quad\=dummy\\%
      \@stopfield%
      \begingroup%
        \setbox\z@\lastbox\unskip\unskip\unskip\setbox\z@\lastbox\unskip%
      \endgroup%
      \prevdepth-\@m\p@%
      \@startfield\strut\ignorespaces%
}
%    \end{macrocode}
%
% Ending a program has no discernable subtlety.
%
%    \begin{macrocode}
\def\program@end{%
    \endtabbing%
  \endminipage%
  \hfil%
  \endgroup%
}
%    \end{macrocode}
%
% Finally, the row setting is fairly easy.  We have to ensure that we obey
% the prevailing list parameters.
%
%    \begin{macrocode}
\def\program@startline{%
  \moveright\@totalleftmargin%
  \hb@xt@\linewidth\bgroup%
    \program@begin%
}
\def\program@endline{%
    \program@end%
  \egroup%
}
%    \end{macrocode}
%
% \end{macro}
% \end{macro}
% \end{macro}
% \end{environment}
%
% \subsection{Other stuff}
%
% \begin{macro}{\Thing}
% \begin{macro}{\Succ}
% \begin{macro}{\Adv}
% \begin{macro}{\InSec}
% \begin{macro}{\Expt}
% \begin{macro}{\Game}
%
% Typesetting |\Thing| is easy.  This acts as a style hook for the rest of
% these things.
%
%    \begin{macrocode}
\def\Thing#1#2#3{\text{\normalfont\bfseries#1}^{\text{\normalfont#2}}_{#3}}
%    \end{macrocode}
%
% And now here they are.
%
%    \begin{macrocode}
\def\Succ{\Thing{Succ}}
\def\Adv{\Thing{Adv}}
\def\InSec#1{\Thing{InSec}{#1}{}}
\def\Expt{\Thing{Expt}}
\def\Game{\Thing{Game}}
%    \end{macrocode}
%
% \end{macro}
% \end{macro}
% \end{macro}
% \end{macro}
% \end{macro}
% \end{macro}
%
% \begin{macro}{\G}
%
% The name of a game is typeset simply as
%
%    \begin{macrocode}
\newcommand\G[2][G]{\mathbf{#1}_{#2}}
%    \end{macrocode}
%
% \end{macro}
%
% \begin{macro}{\Func}
% \begin{macro}{\Perm}
%
% The finite sets of functions and permutations are just a style choice.  We
% choose to buck the standard trends and use caligraphic letters.
%
%    \begin{macrocode}
\def\Func#1#2{\mathcal{F}^{#1,#2}}
\def\Perm#1{\mathcal{P}^{#1}}
%    \end{macrocode}
%
% \end{macro}
% \end{macro}
%
% \begin{macro}{\PKCS}
%
% Finally, I find that \PKCS{$n$} looks best typeset like this:
%
%    \begin{macrocode}
\def\PKCS#1{PKCS\,\##1}
%    \end{macrocode}
%
% \end{macro}
%
% \vskip\parskip\vbox{ ^^A The best way I could find of keeping this lot
%                      ^^A together, I'm afraid.
% That's all there is.  Byebye.
%
%    \begin{macrocode}
%</package>
%    \end{macrocode}
% \nopagebreak
%
% \hfill Mark Wooding, \today
% }
% \Finale
%
\endinput
Commit	Line	Data
86f6a31e	1	% \begin{meta-comment}
86f6a31e	2	%
e653827a	3	% $Id: crypto.dtx,v 1.2 2003/09/05 16:13:14 mdw Exp $
86f6a31e	4	%
	5	% Typesetting crypto papers
	6	%
	7	% (c) 2001 Mark Wooding
	8	%
	9	%----- Revision history -----------------------------------------------------
	10	%
	11	% $Log: crypto.dtx,v $
e653827a	12	% Revision 1.2 2003/09/05 16:13:14 mdw
	13	% Various minor fettlings. Fix paragraph formatting after programs. More
	14	% Things.
	15	%
86f6a31e	16	% Revision 1.1 2002/02/03 20:49:03 mdw
	17	% Checkin for new build system.
	18	%
	19	%
	20	% \end{meta-comment}
	21	%
	22	% \begin{meta-comment} <general public licence>
	23	%%
	24	%% crypto package -- useful macros for typesetting crypto papers
	25	%% Copyright (c) 2001 Mark Wooding
	26	%%
	27	%% This program is free software; you can redistribute it and/or modify
	28	%% it under the terms of the GNU General Public License as published by
	29	%% the Free Software Foundation; either version 2 of the License, or
	30	%% (at your option) any later version.
	31	%%
	32	%% This program is distributed in the hope that it will be useful,
	33	%% but WITHOUT ANY WARRANTY; without even the implied warranty of
	34	%% MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	35	%% GNU General Public License for more details.
	36	%%
	37	%% You should have received a copy of the GNU General Public License
	38	%% along with this program; if not, write to the Free Software Foundation,
	39	%% Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
	40	% \end{meta-comment}
	41	%
	42	% \begin{meta-comment} <Package preambles>
	43	%<+package>\NeedsTeXFormat{LaTeX2e}
	44	%<+package>\ProvidesPackage{crypto}
	45	%<+package> [2001/09/16 1.0 Crypto typesetting]
	46	% \end{meta-comment}
	47	%
34c694a8	48	% \CheckSum{249}
86f6a31e	49	%% \CharacterTable
	50	%% {Upper-case \A\B\C\D\E\F\G\H\I\J\K\L\M\N\O\P\Q\R\S\T\U\V\W\X\Y\Z
	51	%% Lower-case \a\b\c\d\e\f\g\h\i\j\k\l\m\n\o\p\q\r\s\t\u\v\w\x\y\z
	52	%% Digits \0\1\2\3\4\5\6\7\8\9
	53	%% Exclamation \! Double quote \" Hash (number) \#
	54	%% Dollar \$ Percent \% Ampersand \&
	55	%% Acute accent \' Left paren \( Right paren \)
	56	%% Asterisk \* Plus \+ Comma \,
	57	%% Minus \- Point \. Solidus \/
	58	%% Colon \: Semicolon \; Less than \<
	59	%% Equals \= Greater than \> Question mark \?
	60	%% Commercial at \@ Left bracket \[ Backslash \\
	61	%% Right bracket \] Circumflex \^ Underscore \_
	62	%% Grave accent \` Left brace \{ Vertical bar \\|
	63	%% Right brace \} Tilde \~}
	64	%%
	65	%
	66	% \begin{meta-comment}
	67	%
	68	%<*driver>
	69	\input{mdwtools}
	70	\describespackage{crypto}
	71	\mdwdoc
	72	%</driver>
	73	%
	74	% \end{meta-comment}
	75	%
	76	%^^A-------------------------------------------------------------------------
	77	% \section{User guide}
	78	%
	79	% \subsection{Algorithm typesetting}
	80	%
	81	% A lot of provable-security papers need to be able to typeset algorithms
	82	% describing adversaries, schemes, oracle behaviour, etc. There is a
	83	% (relatively) standard format for doing this which we support.
	84	%
	85	% \DescribeEnv{program}
	86	% The \env{program} environment provides handy notation for describing
	87	% algorithms formally. It gives a \env{tabbing} environment, so that things
	88	% can be laid out nicely, and allows fragments of algorithms to be laid out
	89	% in columns or rows, with separating rules.
	90	%
	91	% \DescribeMacro\next
	92	% Within the \env{program} environment, the \|\next\| command stops typesetting
	93	% the current column, typesets a vertical separator rule, and starts a new
	94	% column. Adjacent columns are spaced out evenly across the page, with equal
	95	% space around the rules rules and at the current margins. This means that
	96	% the rules don't line up, but it still seems to provide a pleasing effect.
	97	%
	98	% \DescribeMacro\newline
	99	% The \|\newline\| macro begins a new row of algorithm typesetting. A page
	100	% break is possible at a \|\newline\|.
	101	%
	102	% \DescribeMacro\kw
	103	% A number of standard keywords are available, as shown in
	104	% table~\ref{tab:kw}. The typsetting of these is done by the \|\kw\| command,
	105	% which usually sets its argument in text bold face, but can be redefined.
	106	% The standard definition uses \|\xspace\| so that you don't need to remember
e653827a	107	% to say \verb*+\ + after a keyword command.
86f6a31e	108	% \begin{table}
	109	% \centering
	110	% \def\row#1{\texttt{\string#1} & #1 \\}
	111	% \begin{tabular}{ll}
	112	% \textbf{Command} & \textbf{Keyword} \\
	113	% \row\RETURN
	114	% \row\IF
	115	% \row\THEN
	116	% \row\ELSE
	117	% \row\REPEAT
	118	% \row\WHILE
	119	% \row\UNTIL
	120	% \row\FOREVER
	121	% \row\DO
	122	% \row\FOR
	123	% \row\FOREACH
	124	% \row\FROM
	125	% \row\IN
	126	% \row\TO
	127	% \row\ABORT
	128	% \row\PARSE
e653827a	129	% \row\NEW
86f6a31e	130	% \row\AS
	131	% \end{tabular}
	132	% \caption{Keywords available for algorithm typesetting}
	133	% \label{tab:kw}
	134	% \end{table}
	135	%
e653827a	136	% \DescribeMacro\ind
	137	% Within a \env{program} environment, the \|\ind\| command shunts the indent
	138	% level 1\,em to the right.
	139	%
86f6a31e	140	% \DescribeMacro\gets
	141	% \DescribeMacro\getsr
	142	% \DescribeMacro\inr
	143	% Assignment can be represented using the standard command \|\gets\|, which
	144	% typesets a left-pointing arrow `$\gets$'. Random sampling -- the selection
	145	% of a random element from a set or probability distribution -- can be
	146	% represented using the new command \|\getsr\|, which typesets an arrow with a
	147	% little `R' above it `$\getsr$'. Random membership -- showing that
	148	% something is a random variable with some distribution -- can be represented
	149	% using the \|\inr\| command, which just typesets an $\in$ sign with a
	150	% subscript `R': `$\inr$'.
	151	%
34c694a8 MW	152	% Should one wish, one can use a different character than `R' to denote
	153	% randomness. Some authors use `\$', for example. I know of one
	154	% (cheapskate?) author who has used `\rlap/c'. Redefining the \|\random\|
	155	% command lets you do this. For example, you can say
	156	% \|\newcommand{\random}{\$}\| should you so wish.
	157	%
86f6a31e	158	% \DescribeMacro\id
	159	% Long identifiers can be typeset using the \|\id\| command. giving the
	160	% identifier name as an argument. The \|\id\| command is only valid in maths
	161	% mode. As currently set up, \|\id\| sets its argument in \emph{text} italics;
	162	% this seems to look better in documents which use a PostScript body face and
	163	% Computer Modern for maths.
	164	%
	165	% \DescribeMacro\Xid
	166	% It's handy to be able to glue a bit of (possibly fancy) maths typesetting
	167	% to an identifier, e.g., to construct $\Xid{H'}{list}$, or
	168	% $\Xid{\mathcal{E}}{CTR$\$$}^F$. This is done using
	169	% \syntax{"\\Xid{"<maths>"}{"<text>"}"}. The two bits are joined by a text
	170	% hyphen `-'.
	171	%
	172	% \DescribeMacro\cookie
	173	% Sometimes textual names are used for special `symbols', which have meaning
	174	% to algorithms, e.g., the symbols $\cookie{find}$ and $\cookie{guess}$ in
	175	% the standard indistinguishability game. These can be typeset using the
	176	% \|\cookie\| command.
	177	%
	178	% \subsection{Other stuff}
	179	%
	180	% \DescribeMacro\Thing
	181	% In the quantifiable-security world, there are standard symbols for
	182	% advantage, success probability, insecurity, etc. The generic `style hook'
	183	% for these is \syntax{"\\Thing{"<name>"}{"<notion>"}{"scheme"}"}, which
	184	% typesets $\Thing{name}{notion}{scheme}$. It helps a lot if you have the
	185	% \package{amstext} package loaded.
	186	%
	187	% \DescribeMacro\Succ
	188	% \DescribeMacro\Adv
	189	% \DescribeMacro\InSec
	190	% \DescribeMacro\Expt
e653827a	191	% \DescribeMacro\Game
86f6a31e	192	% \begin{synshorts}
86f6a31e	193	% Some standard `things' are provided: "\\Succ{"<notion>"}{"<scheme>"}",
e653827a	194	% "\\Adv{"<notion>"}{"<scheme>"}", "\\InSec{"<notion>"}",
e653827a	195	% "\\Expt{"<notion>"}{"<scheme>"}", and "\\Game{"<notion>"}{"<scheme>"}".
86f6a31e	196	% \end{synshorts}
	197	%
	198	% \DescribeMacro\G
	199	% In proofs which proceed by varying the rules of the game played by the
	200	% adversary and bounding the probability of it noticing at each step, game
	201	% names are usually typeset as $\G n$ for small numbers $n$. The command
	202	% \syntax{"\\G{"<n>"}"} command does this typesetting. There's an optional
	203	% argument, which is a symbol to write instead of `G'.
	204	%
	205	% \DescribeMacro\Func
	206	% \DescribeMacro\Perm
	207	% When dealing with finite PRFs and PRPs, we need to talk about the set of
	208	% \emph{all} functions (or permutations) over particular sets, usually
	209	% $n$-vectors of bits. The macros \syntax{"\\Func{"<l>"}{"<L>"}"} and
	210	% \syntax{"\\Perm{"<L>"}"} typeset $\Func{l}{L}$ and $\Perm{L}$ respectively,
	211	% and are intended to denote the sets of all functions $F\colon \{0, 1\}^l
	212	% \to \{0, 1\}^L$ and all permutations $\Pi\colon \{0, 1\}^L \to \{0, 1\}^L$
	213	% respectively.
	214	%
	215	% \DescribeMacro\PKCS
	216	% Finally, the \|\PKCS\| macro typesets `\PKCS{$n$}', allowing you to name RSA
	217	% Security Inc.'s Public Key Cryptography Standards in a relatively nice way.
	218	%
	219	% \implementation
	220	%
	221	%
	222	%^^A-------------------------------------------------------------------------
	223	% \section{Implementation}
	224	%
	225	% We need David Carlisle's handy \package{xspace} package and the AMS \|\text\|
	226	% command.
	227	%
	228	% \begin{macrocode}
	229	%<*package>
	230	\RequirePackage{amstext}
	231	\RequirePackage{xspace}
	232	% \end{macrocode}
34c694a8	233	%
86f6a31e	234	% \subsection{Algorithm typsetting}
	235	%
	236	% \begin{macro}{\cookie}
	237	% \begin{macro}{\kw}
	238	% \begin{macro}{\id}
	239	%
	240	% First, some style issues. Note the \|\xspace\| at the end of \|\kw\|.
	241	%
	242	% \begin{macrocode}
	243	\def\cookie#1{\text{\normalfont\sffamily\/#1\/}}
	244	\def\kw#1{\text{\normalfont\bfseries\/#1\/}\xspace}
	245	\def\id#1{\text{\normalfont\itshape\/#1\/}}
	246	% \end{macrocode}
	247	%
	248	% \end{macro}
	249	% \end{macro}
	250	% \end{macro}
	251	%
	252	% \begin{macro}{\getsr}
	253	% \begin{macro}{\inr}
	254	%
	255	% The symbols for random selection and membership are fairly easy. The `R'
	256	% over $\getsr$ is actually in scriptscript style, because that seems to look
	257	% nicer.
	258	%
	259	% \begin{macrocode}
34c694a8 MW	260	\providecommand\random{R}
	261	\def\inr{\mathrel{\in_{\random}}}
	262	\def\getsr{\mathrel{\mathop{\gets}\limits^{\scriptscriptstyle\random}}}
86f6a31e	263	% \end{macrocode}
	264	%
	265	% \end{macro}
	266	% \end{macro}
	267	%
	268	% \begin{macro}{\Xid}
	269	%
	270	% The compound identifiers set by \|\Xid\| are easy.
	271	%
	272	% \begin{macrocode}
	273	\def\Xid#1#2{\id{$#1$-#2}}
	274	% \end{macrocode}
	275	%
	276	% \end{macro}
	277	%
	278	% Now for the various keywords. These are trivial, but useful.
	279	%
	280	% \begin{macrocode}
	281	\def\RETURN{\kw{return}}
	282	\def\IF{\kw{if}}
	283	\def\THEN{\kw{then}}
	284	\def\ELSE{\kw{else}}
	285	\def\REPEAT{\kw{repeat}}
	286	\def\WHILE{\kw{while}}
	287	\def\UNTIL{\kw{until}}
	288	\def\FOREVER{\kw{forever}}
	289	\def\DO{\kw{do}}
	290	\def\FOR{\kw{for}}
	291	\def\FOREACH{\kw{for\,each}}
	292	\def\FROM{\kw{from}}
	293	\def\IN{\kw{in}}
e653827a	294	\def\TO{\kw{to}}
86f6a31e	295	\def\ABORT{\kw{abort}}
	296	\def\PARSE{\kw{parse}}
	297	\def\AS{\kw{as}}
e653827a	298	\def\NEW{\ifmmode\mathop{\kw{new}}\else\kw{new}\fi}
86f6a31e	299	% \end{macrocode}
	300	%
	301	% \begin{environment}{program}
	302	% \begin{macro}{\next}
	303	% \begin{macro}{\newline}
e653827a	304	% \begin{macro}{\ind}
86f6a31e	305	%
	306	% Now for the \env{program} environment and its associated twiddling. This
	307	% is actually a little fiddly.
	308	%
	309	% At the beginning, if we're in vertical mode -- i.e., there was a paragraph
	310	% break before the start of the environment -- then remember this, because it
	311	% affects the typesetting at the end. Set up \|\next\| and \|\newline\| in terms
	312	% of the underlying machinery, and start a row of algorithm.
	313	%
	314	% \begin{macrocode}
	315	\def\program{%
	316	\normalfont%
	317	\@tempswatrue\ifvmode\@tempswafalse\fi%
	318	\def\next{\program@end\vrule\program@begin}%
	319	\def\newline{\program@endline\medskip\program@startline}%
e653827a	320	\def\ind{\quad\=\+\kill}%
	321	\ifdim\topsep<\parskip\topsep\parskip\fi%
	322	\ifdim\@topsepadd<\z@\@topsepadd\z@\fi%
86f6a31e	323	\begingroup\trivlist%
	324	\advance\@topsep-\parskip\advance\@topsepadd-\parskip\item%
	325	\program@startline%
	326	}
	327	% \end{macrocode}
	328	%
	329	% Ending the environment is easy-ish. We stop the current row and leave a
	330	% gap, matching the one that \|\poem@startline\| adds automatically. If we
	331	% were initially in horizontal mode, then don't indent the next paragraph,
	332	% and ignore spaces after the \|\end{program}\| command.
	333	%
	334	% \begin{macrocode}
	335	\def\endprogram{%
	336	\program@endline\endtrivlist\endgroup%
e653827a	337	\if@tempswa\@endparenv\fi\@ignoretrue%
86f6a31e	338	}
	339	% \end{macrocode}
	340	%
	341	% Now for the guts of all of this. First of all, we turn to the typesetting
	342	% of a column, which is just hfil glue, a \env{minipage} with zero width and
	343	% a \env{tabbing} environment. The first tab is already set 1\,em in from
	344	% the margin. We use \env{minipage} to set up the list parameters correctly
	345	% and manage the initial and final spacing. The zero width is OK because
	346	% \env{tabbing} sets a list of hboxes rather than using outer horizontal
	347	% mode, so the \|\hsize\| is irrelevant.
	348	%
	349	% \begin{macrocode}
	350	\def\program@begin{%
	351	\begingroup%
	352	\hfil%
	353	\minipage[t]\z@%
	354	\topsep\z@%
	355	\itemsep\z@%
	356	\parskip\z@\parsep\z@%
	357	\partopsep\z@%
	358	\tabbing%
	359	% \end{macrocode}
	360	%
	361	% This is rather messy. The \|\item\| from the \env{trivlist} messes up the
	362	% spacing. We remove the box, and fix \|\prevdepth\| to ensure that there's no
	363	% glue at the top.
	364	%
	365	% \begin{macrocode}
	366	\quad\=dummy\\%
	367	\@stopfield%
	368	\begingroup%
	369	\setbox\z@\lastbox\unskip\unskip\unskip\setbox\z@\lastbox\unskip%
	370	\endgroup%
	371	\prevdepth-\@m\p@%
e653827a	372	\@startfield\strut\ignorespaces%
86f6a31e	373	}
	374	% \end{macrocode}
	375	%
	376	% Ending a program has no discernable subtlety.
	377	%
	378	% \begin{macrocode}
	379	\def\program@end{%
	380	\endtabbing%
	381	\endminipage%
	382	\hfil%
	383	\endgroup%
	384	}
	385	% \end{macrocode}
	386	%
	387	% Finally, the row setting is fairly easy. We have to ensure that we obey
	388	% the prevailing list parameters.
	389	%
	390	% \begin{macrocode}
	391	\def\program@startline{%
	392	\moveright\@totalleftmargin%
	393	\hb@xt@\linewidth\bgroup%
	394	\program@begin%
	395	}
	396	\def\program@endline{%
	397	\program@end%
	398	\egroup%
	399	}
	400	% \end{macrocode}
	401	%
	402	% \end{macro}
	403	% \end{macro}
e653827a	404	% \end{macro}
86f6a31e	405	% \end{environment}
	406	%
	407	% \subsection{Other stuff}
	408	%
	409	% \begin{macro}{\Thing}
	410	% \begin{macro}{\Succ}
	411	% \begin{macro}{\Adv}
	412	% \begin{macro}{\InSec}
	413	% \begin{macro}{\Expt}
e653827a	414	% \begin{macro}{\Game}
86f6a31e	415	%
86f6a31e	416	% Typesetting \|\Thing\| is easy. This acts as a style hook for the rest of
e653827a	417	% these things.
86f6a31e	418	%
	419	% \begin{macrocode}
	420	\def\Thing#1#2#3{\text{\normalfont\bfseries#1}^{\text{\normalfont#2}}_{#3}}
	421	% \end{macrocode}
	422	%
	423	% And now here they are.
	424	%
	425	% \begin{macrocode}
	426	\def\Succ{\Thing{Succ}}
	427	\def\Adv{\Thing{Adv}}
	428	\def\InSec#1{\Thing{InSec}{#1}{}}
	429	\def\Expt{\Thing{Expt}}
e653827a	430	\def\Game{\Thing{Game}}
86f6a31e	431	% \end{macrocode}
	432	%
	433	% \end{macro}
e653827a	434	% \end{macro}
86f6a31e	435	% \end{macro}
	436	% \end{macro}
	437	% \end{macro}
	438	% \end{macro}
	439	%
	440	% \begin{macro}{\G}
	441	%
	442	% The name of a game is typeset simply as
	443	%
	444	% \begin{macrocode}
	445	\newcommand\G[2][G]{\mathbf{#1}_{#2}}
	446	% \end{macrocode}
	447	%
	448	% \end{macro}
	449	%
	450	% \begin{macro}{\Func}
	451	% \begin{macro}{\Perm}
	452	%
	453	% The finite sets of functions and permutations are just a style choice. We
	454	% choose to buck the standard trends and use caligraphic letters.
	455	%
	456	% \begin{macrocode}
	457	\def\Func#1#2{\mathcal{F}^{#1,#2}}
	458	\def\Perm#1{\mathcal{P}^{#1}}
	459	% \end{macrocode}
	460	%
	461	% \end{macro}
	462	% \end{macro}
	463	%
	464	% \begin{macro}{\PKCS}
	465	%
	466	% Finally, I find that \PKCS{$n$} looks best typeset like this:
	467	%
	468	% \begin{macrocode}
	469	\def\PKCS#1{PKCS\,\##1}
	470	% \end{macrocode}
	471	%
	472	% \end{macro}
	473	%
	474	% \vskip\parskip\vbox{ ^^A The best way I could find of keeping this lot
	475	% ^^A together, I'm afraid.
	476	% That's all there is. Byebye.
	477	%
	478	% \begin{macrocode}
	479	%</package>
	480	% \end{macrocode}
	481	% \nopagebreak
	482	%
	483	% \hfill Mark Wooding, \today
	484	% }
	485	% \Finale
	486	%
	487	\endinput