pith. sign in

arxiv: 2401.17226 · v5 · submitted 2024-01-30 · 💻 cs.LO

Knowledge Problems in Protocol Analysis: Extending the Notion of Subterm Convergent

Carter Bunch , Saraid Dwyer Satterfield , Serdar Erbatur , Andrew M. Marshall , Christophe Ringeissen This is my paper

Pith reviewed 2026-05-24 04:11 UTC · model grok-4.3

classification 💻 cs.LO
keywords term rewritingsecurity protocolsdeduction problemstatic equivalencedecidabilityconvergencegraph embeddingprotocol analysis
0
0 comments X

The pith

The deduction and static equivalence problems are decidable for contracting convergent term rewrite systems but undecidable for graph-embedded ones.

A machine-rendered reading of the paper's core claim, the machinery that carries it, and where it could break.

The paper defines graph-embedded term rewrite systems as a flexible extension of subterm convergent systems for use in security protocol analysis. It identifies contracting convergent systems as a subclass where the two knowledge problems remain decidable using existing procedures. This covers many practical examples that previously required individual proofs. It proves undecidability for the full class of graph-embedded systems and gives combination results for multiple such systems and with permutative theories.

Core claim

Contracting convergent systems form a subclass of graph-embedded convergent term rewrite systems for which the knowledge problems of deduction and static equivalence are decidable, extending the reach of prior decision procedures beyond subterm convergent systems, while the same problems are undecidable in general for graph-embedded systems.

What carries the argument

Graph-embedded term rewrite systems, which extend the homeomorphic embedding property using a relation inspired by graph minors, with the contracting convergent subclass carrying the decidability results.

Load-bearing premise

The syntactic restrictions that define contracting convergent systems preserve termination and confluence so that existing decision procedures apply directly.

What would settle it

A specific contracting convergent rewrite system for which the deduction problem is shown to be undecidable.

read the original abstract

We introduce a new form of restricted term rewrite system, the graph-embedded term rewrite system. These systems, and thus the name, are inspired by the graph minor relation and are more flexible extensions of the well-known homeomorphic-embedded property of term rewrite systems. As a motivating application area, we consider the symbolic analysis of security protocols, and more precisely the two knowledge problems defined by the deduction problem and the static equivalence problem. In this field restricted term rewrite systems, such as subterm convergent ones, have proven useful since the knowledge problems are decidable for such systems. Many of the same decision procedures still work for examples of systems which are "beyond subterm convergent". However, the applicability of the corresponding decision procedures to these examples must often be proven on an individual basis. This is due to the problem that they don't fit into an existing syntactic definition for which the procedures are known to work. Here we show that many of these systems belong to a particular subclass of graph-embedded convergent systems, called contracting convergent systems. On the one hand, we show that the knowledge problems are decidable for the subclass of contracting convergent systems. On the other hand, we show that the knowledge problems are undecidable for the class of graph-embedded systems. Going further, we compare and contrast these graph embedded systems with several notions and properties already known in the protocol analysis literature. Finally, we provide several combination results, both for the combination of multiple contracting convergent systems, and then for the combination of contracting convergent systems with particular permutative equational theories.

Editorial analysis

A structured set of objections, weighed in public.

Desk editor's note, referee report, simulated authors' rebuttal, and a circularity audit. Tearing a paper down is the easy half of reading it; the pith above is the substance, this is the friction.

Referee Report

2 major / 2 minor

Summary. The paper introduces graph-embedded term rewrite systems, a generalization of homeomorphic embedding inspired by the graph minor relation. It defines the subclass of contracting convergent systems and claims that deduction and static equivalence (the knowledge problems) are decidable for contracting convergent systems, undecidable for the full class of graph-embedded convergent systems, and provides combination results both among contracting convergent systems and with certain permutative theories.

Significance. If the decidability and undecidability results hold with direct proofs, the work supplies a new syntactic criterion under which existing decision procedures for protocol analysis apply without per-example verification, while delineating a boundary via undecidability. The combination theorems would further increase the class of equational theories amenable to automated analysis.

major comments (2)
  1. [Definition of contracting convergent systems] The central claim that contracting convergent systems inherit the termination and confluence properties needed for existing decision procedures to apply without additional case analysis rests on the syntactic restrictions; the manuscript must verify this preservation explicitly rather than assuming it follows from the definition alone.
  2. [Undecidability section] For the undecidability result on graph-embedded systems, the reduction must be shown to produce a system that satisfies the graph-embedded property while encoding an undecidable instance; any gap in the construction would undermine the separation from the decidable subclass.
minor comments (2)
  1. Notation distinguishing graph-embedded from homeomorphic-embedded systems should be introduced with an explicit comparison table or example to improve readability.
  2. The abstract would benefit from a one-sentence indication of the proof strategy (direct vs. reduction to prior results) for the decidability claim.

Simulated Author's Rebuttal

2 responses · 0 unresolved

We thank the referee for their careful reading and constructive comments, which help clarify the presentation of our results on graph-embedded term rewrite systems and their application to knowledge problems in protocol analysis. We address each major comment below.

read point-by-point responses

  1. Referee: [Definition of contracting convergent systems] The central claim that contracting convergent systems inherit the termination and confluence properties needed for existing decision procedures to apply without additional case analysis rests on the syntactic restrictions; the manuscript must verify this preservation explicitly rather than assuming it follows from the definition alone.

    Authors: We agree that an explicit verification strengthens the manuscript. The contracting condition is defined to enforce a strict measure decrease on terms (via the graph embedding), which directly implies termination; confluence then follows from the local confluence check under this measure. In the revision we will add a dedicated lemma immediately after the definition, proving both properties from the syntactic restrictions without external assumptions, so that the applicability of existing decision procedures is fully justified within the paper. revision: yes

  2. Referee: [Undecidability section] For the undecidability result on graph-embedded systems, the reduction must be shown to produce a system that satisfies the graph-embedded property while encoding an undecidable instance; any gap in the construction would undermine the separation from the decidable subclass.

    Authors: The reduction in the undecidability proof is constructed so that every rule of the target system is obtained by a direct embedding-preserving transformation of the source instance; hence the resulting system satisfies the graph-embedded condition by construction. To eliminate any possible perception of a gap, the revised section will include an auxiliary claim that explicitly verifies the embedding relation for each rule generated by the reduction, together with a short argument that the undecidable problem instance is faithfully encoded. revision: yes

Circularity Check

0 steps flagged

No significant circularity

full rationale

The paper defines new classes of term rewrite systems (graph-embedded convergent and the contracting convergent subclass) via independent syntactic restrictions inspired by graph minors, then supplies direct proofs that knowledge problems are decidable on the subclass and undecidable on the full class, plus combination results. No load-bearing step reduces by construction to a fitted parameter, a self-citation chain, or a renamed input; the decidability claims rest on the new definitions and explicit arguments rather than prior self-referential results.

Axiom & Free-Parameter Ledger

0 free parameters · 1 axioms · 2 invented entities

The paper introduces two new classes of term rewrite systems whose definitions and properties constitute the main contribution; these rest on standard term-rewriting axioms plus the new syntactic restrictions.

axioms (1)
  • standard math Standard properties of term rewrite systems (convergence, termination, confluence) are assumed as background.
    Invoked when stating that knowledge problems are decidable for the subclass.
invented entities (2)
  • graph-embedded term rewrite system no independent evidence
    purpose: Generalize homeomorphic embedding to capture more rewrite systems used in protocol analysis
    New definition introduced to extend beyond subterm convergent; no independent evidence supplied in abstract.
  • contracting convergent system no independent evidence
    purpose: Identify the decidable subclass inside graph-embedded systems
    New syntactic restriction defined in the paper; no prior literature reference given in abstract.

pith-pipeline@v0.9.0 · 5826 in / 1252 out tokens · 27088 ms · 2026-05-24T04:11:55.011965+00:00 · methodology

discussion (0)

Sign in with ORCID, Apple, or X to comment. Anyone can read and Pith papers without signing in.