arxiv: v1 [cs.dm] 20 Jul 2009

Transcription

1 New Binomial Bent Function over the Finite Fields of Odd Characteristic Tor Helleseth and Alexander Kholosha arxiv: v1 [cs.dm] 0 Jul 009 The Selmer Center Department of Informatics, University of Bergen P.O. Box 7800, N-500 Bergen, Norway {Tor.Helleseth,Alexander.Kholosha}@uib.no Abstract. The p-ary function fx) mapping GFp 4 ) to GFp) given by fx) = Tr 4`xp 3 +p p +1 + x is proven to be a wealy regular bent function and the exact values of its Walsh transform coefficients are found. The proof is based on a few new results in the area of exponential sums and polynomials over finite fields that may also be interesting as independent problems. 1 Introduction Boolean bent functions were first introduced by Rothaus in 1976 as an interesting combinatorial object with the important property of having the maximum Hamming distance to the set of all affine functions. Later the research in this area was stimulated by the significant relation to the following topics in computer science: coding theory, sequences and cryptography design of stream ciphers and S-boxes for bloc ciphers). Kumar, Scholtz and Welch in [1] generalized the notion of Boolean bent functions to the case of functions over an arbitrary finite field. Complete classification of bent functions loos hopeless even in the binary case. In the case of generalized bent functions things are naturally much more complicated. However, many explicit methods are nown for constructing bent functions either from scratch or based on other, simpler bent functions. Given a function fx) mapping GFp n ) to GFp), the direct and inverse Walsh transform operations on f are defined at a point by the following respective identities: S f b) = x GFp n ) ω fx) Trnbx) and ω fx) = 1 p n b GFp n ) S f b)ω Tr nbx) where Tr n ) : GFp n ) GFp) denotes the absolute trace function, ω = e πi p is the complex primitive p th root of unity and elements of GFp) are considered as integers modulo p. * This wor was supported by the Norwegian Research Council and partially by the grant NIL-I-004 from Iceland, Liechtenstein and Norway through the EEA and Norwegian Financial Mechanisms. 1

2 According to [1], fx) is called a p-ary bent function or generalized bent function) if all its Walsh coefficients satisfy S f b) = p n. A bent function fx) is called regular see [1, Definition 3] and [, p. 576]) if for every b GFp n ) the normalized Walsh coefficient p n/ S f b) is equal to a complex p th root of unity, i.e., p n/ S f b) = ω f b) for some function f mapping GFp n ) into GFp). A bent function fx) is called wealy regular if there exists a complex u having unit magnitude such that up n/ S f b) = ω f b) for all b GFp n ). We call u 1 p n/ the magnitude of S f b). Throughout this paper, p n/ with odd n stands for the positive square root of p n. For a comprehensive reference on monomial and quadratic p-ary bent functions we refer reader to [3]. In the present paper, we tae an odd prime p and examine prospective p-ary bent functions having the form fx) = Tr n a0 x d0 +a 1 x d1 ) with ai,x GFp n ) and arbitrary integer exponents d i for i = {0,1}. Functions of this type with both coefficients a i being nonzero are called binomial. We prove that fx) = Tr n x p 3 +p p +1 +x ) is a wealy regular bent function for n = 4 and find the exact values of its Walsh transform coefficients. It is interesting that in the binary case when p =, the decimation which is cyclotomic equivalent to the exponent in the first term of the above bent function, was studied by Niho in [4, Theorem???] and Helleseth in [5]. They proved that the cross-correlation function between two binary m-sequences given by this decimation is four-valued and found the distribution. Notethat the onlynotwealyregularbent function nownsofaristhe power function from [3, Fact 1]. Here we present a binomial with this property. Fact 1 The ternary function fx) mapping GF3 4 ) to GF3) given by fx) = Tr 4 a0 x +x 4), where a 0 {ξ 10,ξ 30 } and ξ is a primitive element of GF3 4 ), is bent and not wealy regular bent. It is interesting to note that = for = 1. Unfortunately, we were not able to find a family containing the function from Fact 1. Naturally, more binomial bent functions of these types can be constructed using cyclotomic equivalence of exponents and coefficients. Preliminary Results In this section, we present some preliminary results. However, they may also be interesting as independent finite field problems. The finite field GFp ) is a subfield of GFp n ) if and only if divides n. The trace mapping from GFp n ) to the subfield GFp ) is defined by Tr n x) = n/ 1 i=0 x pi. In the case when = 1, we use the notation Tr n x) instead of Tr n 1 x). Proposition 1. Let n = 4 and for any a GFp n ) define Ca) = ) ω Trn x+ax p +1)/. 1) x GFp n )

3 Then sp 3, if a+a p = Ca) C a) = sp 3, if a+a p = 0, otherwise, where s = 1) if p 3 mod 4) and s = 1 otherwise. Proof. Denote d = p +1)/which isodd. First,note that d = p 1)/+1 1 mod p 1) and, therefore, tx+atx) d = tx+ax d ) for any t GFp). This meansthat all nonzeroelements in { Tr ) n x+ax d x GFp n ) } appearequally often and Ca) is an integer. We can calculate ) Ca) = ω Trn x+y+ax d +y d ) a GFp n ) = a,x,y GFp n ) x,y GFp n ) ω Tr n ) = p n +p n ) x+y a GFp n ) ω Tr n ω Trn z GFp n ),z d =1x GFp n ) ) ax d +y d ) ) x1 z) = p n +p n p n 1) p n #{z GFp n ) z d = 1, z 1} = p n +p n 1 d), where in ) we made a substitution y = zx. Similarly, a GFp n ) a GFp n ) Ca)C a) = p n +p n where y = zx. Therefore, Ca) C a)) = ω Trn z GFp n ),z d =1x GFp n ) ) x1+z) = p n p n #{z GFp n ) z d = 1} = p n 1 d), a GFp n ) Ca) a GFp n ) Ca)C a) = p n. Further, since any a GFp n ) with Tr n a) = a+a p = can be uniquely written as a = 1+b for some b GFp n ) with Tr n b) = 0, we can write ) ) Ca) = ω Trn x+x bx d ω Trn d. ) a GFp n ),Tr n a)= x GFp n ) b GFp n ),Tr n )=0 If x is a nonsquare then select r GFp n ) with r p 1 = 1 note that such r is a nonsquare in GFp n ) since d is odd) and write x = ry for y GFp n ). Then Tr n bx d ) = Tr n br d y p +1 ) = Tr y p +1 br d +b p r dp ) ) = Tr y p +1 br d + b) r) d ) ) = Tr br d y p +1 ) 3

4 Since br d runs through all GFp ) when b runs through the elements of GFp n ) with Tr n b) = 0, then the inner sum in ) is equal to zero. If x = y is a square in GFp n ) then x d GFp ) and Tr ) n bx d = Tr x d Tr n b) ) = 0. Therefore the sum in ) is equal to p y GFp n ) ) = p + p = p + p = p p = sp5, ω Tr n ) y +y p +1 )) z Tr n r +r p +1 ω Tr r Rz GFp ) z r+r ω Tr p) ) r Rz GFp ) r R,r ξ d η r +r p ) ) ) sp +1 + p p 1) where in ) we made a substitution y = rz with r R = {ξ i i = 0,...,p } and z GFp ), ξ being a primitive element of GFp n ). At the end, we used [3, Corollary 3] assuming s = 1) if p 3 mod 4) and s = 1 otherwise, η ) is the quadraticcharacterof GFp ). Also note that r+r p = 0 only for r = ξ d. Similarly, C a) = p a GFp n ),Tr n a)= r R, r 1 η r r p ) ) sp +1 )+ pn = sp5 since r r p = 0 only for r = 1. Also observe that r r p ) is a nonsquare in GFp ) for any r R except when r = 1, which can be seen from the following. If t = r r p 0 then t p = t and t = ξ i for some i d mod p + 1). Thus, t = ξ p +1)j+1) = γ j+1, where γ is a primitive element of GFp ). From the identities proven earlier it follows that Ca) C a)) = C a) Ca)) = sp 5. a GFp n ),Tr n a)= a GFp n ),Tr n a)= Since Ca) is an integer, the average value of Ca) C a) over all the elements a GFp n ) with Tr n a) = resp. Trn a) = ) is equal to sp3 resp. sp 3 ) and we obtain Ca) C a)) p n = Ca) C a)). a GFp n ),Tr n a)=± a GFp n ) Thus, the above inequality becomes an identity leading to Ca) = C a) for any a GFp n ) with Tr n a) ±. Also, Ca) C a)) = Ca) C a)) = p n a GFp n ),Tr n a)= a GFp n ),Tr n a)= 4

5 that is the lowest possible value of these sums of squares and which is possible only if Ca) C a) = sp 3 resp. Ca) C a) = sp 3 ) when Tr n a) = resp. Tr n a) = ). Let n be even and U denote a cyclic subgroup of order p n/ + 1 of the multiplicative group of GFp n ) generated by ξ pn/ 1, where ξ is a primitive element of GFp n )). Denote subsets of U containing squares and non-squares respectively as U + = {u U u pn/ +1)/ = 1} and U = {u U u pn/ +1)/ = 1}. Also, if n = 4 then for any c GFp ) and any fixed b GFp n ) denote n + c) = #{u U + Tr n bu) = c} and n c) = #{u U Tr n bu) = c}. Note that 1) p +1)/ = 1 and thus, U + = U. Proposition. Let n = 4 and tae any b GFp n ). Then n + c) = n c) for any c GFp ) except when Tr n b p +1)/ ) 0 and c = ±Tr n b p +1)/ ). If c = Tr n b p +1)/ ) 0 then n + c) n c) = sp, where s = 1) if p 3 mod 4) and s = 1 otherwise. Proof. The claimed statement is obvious for b = 0 so further on assume b 0. Denoting d = p +1)/ we can write p 5 n + c) = ) ) ω Tr n xu d 1) ω Tr ytr nu) c) u GFp n ) x GFp n ) = ω Trn cy/4+x y GFp ) ) ω Trn ybu+xu d ) x GFp n ) y GFp ) u GFp n ) ) ) ω Trn yc/4+z) ω Tr n v+zv/b) d z GFp n ) y GFp ) v GFp n ) ) = = + ω Trn xu d 1) x GFp n ) u GFp n ) C zb d) ) yc+tr ω Tr n z)) z GFp n ) y GFp ) = p Tr n z)= c C zb d ) z GFp n ) ) +p n d C zb d) +p n d, where in ) we made substitutions v = ybu and x = yz and using that y d = y for y GFp ); exponential sum C ) comes from 1). Similarly, p 5 n c) = p Tr n z)=c C zb d ) z GFp n ) C zb d) +p n d 5

6 and, therefore, by Proposition 1, p n n + c) n c)) = Tr n z)= c C zb d ) C zb d)) = sp 3 # { z GFp n ) Tr n z) = c and Trn zb d ) = } sp 3 # { z GFp n ) Tr n z) = c and Trn zb d ) = } = sp 3 m c) m + c)), where m + c) and m c) are defined implicitly. First, consider the case when b is a square in GFp n ) that holds if and only if b d GFp ). Then, zb d ) = z +z p) b d = ± Tr n is equivalent to z +z p = ±b d giving ) Tr n z) = ± b d +b p d = ±Tr n d ). Note that z + z p = a has p solutions in GFp n ) for any a GFp ). If c ±Tr n ) b d then m + c) = m c) = 0. If c = Tr n ) b d = 0 then m + c) = m c) = p. If c = Tr n ) b d 0 then m + c) = p and m c) = 0, if c = Tr n ) b d 0 then m + c) = 0 and m c) = p. Finally, if b is a nonsquare in GFp n ), i.e., b pn 1)/ = 1, that holds if and only if Tr n ) b d = 0, then Tr n zb d ) = z z p) b d = ± is equivalent to z z p = ±b d. We can write p 5 m + c) = ) ω Trn xz z p b d ) z GFp n ) x GFp n ) = x GFp n ) y GFp ) ) = p n x GFp n ),Lx)=0 = p n x GFp n ),Lx)=0 = p n x GFp n ),Lx)=0 = p 5 m c), ω Trn cy/4+xb d ) y GFp ) z GFp n ) ω Trn cx p x)/4+xb d ) ω Trn xb d ) ω Tr n xb d ) ω Tr n ω Tr ytr n z) c) ) ) zy+x x p ) where in ) we used that y = x p x GFp ) that is equivalent to Lx) = x x p x p +x p3 = 0. 6

7 Note that n + c) n c) = sp if c = Tr n b p +1)/ ) 0. Proposition 3. Let n = 4 and tae any c GFp ). The polynomial T + X,c) = X p +1)/ +X +c) p +1)/ +X p p +1)/ +X +c) p p +1)/ splits over GFp n ) and for any root x of T + X,c), both x and x+c are squares in GFp n ) and x 0. On the other hand, the polynomial T X,c) = X p +1)/ X +c) p +1)/ +X p p +1)/ X +c) p p +1)/ does not have any roots in the set of squares of GFp n ). Moreover, for different values of c, the corresponding roots of T + X,c) belong to disjoint subsets. Proof. First, we find the number of roots of T + X,c) in GFp n ). Note that all roots of T + X,c) and T X,c) are exactly the roots of respectively T + X,1) and T X,1) multiplied by c. Moreover, any c GFp ) is a square in GFp n ). Therefore, it is sufficient to assume c = 1. Also note that T + 0,c) = c p +1)/ +c p p +1)/ = c 0. Here we use the representation of x GFp n ) suggested in [6, Theorem 11]. After fixing any t GFp n ), we can write x = α+tα 1, where α and tα 1 are the tworootsin GFp n ) ofz xz+t = 0.Note that x = α 1 +tα 1 1 = α +tα 1 gives α 1 α ) α 1 α ) 1 t 1 ) = 0 which holds if and only if α 1 = α or α 1 α = t. Therefore, exactly two different values of α give the same x, unless α = t. In our case, tae t = v, where v = { p 1 4 p+1 4, if p 1 mod 4), if p 3 mod 4), whichmeansv = p 1)/.Denoted = p +1)/.Replacingxwithx+p 1)/ and using the above substitution for x we obtain T + x,1) = x+ p 1 ) d + x p 1 ) d + x+ p 1 = α+v)d +α v) d α+v) d +α v) d α d + α α d d +v α d +α dp +v α dp) = = α d +α dp) ) v α dp +1) +1 since v p = v. Thus, T + x,1) = 0 if and only if, ) dp ) p + x p 1 ) dp α dp 1) = 1 or α dp +1) = v. 3) 7

8 In particular, this means respectively that α pn 1 = 1) p +1) = 1 or α pn 1 = v ) p 1) = 1 and for this reason, α GFp n ). Therefore, x = α+v α 1 GFp n ) for any α with T + α+v α 1,1) = 0. Let ξ be a primitive element of GFp n ). Equation α dp 1) = 1 = ξ pn 1)/ has dp 1) solutions and α dp +1) = v = ξ jp +1)p +1) for some j {0,,p }) has dp +1) solutions in GFp n ). The solution sets of these two equations are disjoint because if α dp 1) = 1 then α dp +1) = α d v since otherwise, α dp 1) = v p 1 = 1 giving a contradiction. In total, there are dp = p p + 1) solutions of T + α + v α 1,1) = 0. Finally, we have to divide this number by since exactly two values of α map to the same x unless α = v in the latter case, α p +1 = v p +1 = v so α dp 1) = v p 1 = 1 and α dp +1) = v p +1 = v giving T + α+v α 1,1) 0). Since p p +1)/ is equal to the degree of T + X,1), we conclude that this polynomial splits over GFp n ). Now recall that we found the solutions for T + X,1) = 0 in the form x = α+v α 1 +v = α 1 α+v) with α GFp n ). Also, x+1 = α+v α 1 v = α 1 α v) since v+1 = v. Thus, both x and x+1 are squares in GFp n ) if and only if α has this property.equations3) result in α pn 1)/ = 1) p +1 = 1 and α pn 1)/ = v ) p 1 = 1 which means that α is a square in GFp n ). Now we prove that polynomial T X,1) does not have any roots in the set of squares of GFp n ). Using the substitution x = α 1 α+v) exactly the same way as we did for T + X,1), we obtain T x,1) = α+v)d α v) d α+v) d α v) d α d + α d = v α ) p 1)/ +α p 1)/ +α p p 1)/ +α p p 1)/ ) ) = v α p 1)/ +α p p 1)/ α p 1)p +1)/ +1. Thus, T x,1) = 0 if and only if ) p α p 1)p 1)/ = 1 or α p 1)p +1)/ = 1. 4) Denote g = gcdp 8 1,p 1)p ± 1)) and note that g is equal either to p 1) or 4p 1) depending on p. Obviously, α g = 1 if the corresponding identity in 4) holds. If g = p 1) then α p 1 = 1 since supposing α p 1 = 1, none of 4) hold) and α pn 1)/ = 1) p +1)/ = 1. Thus, both α and x = α 1 α +v) are nonsquares in α GFp n ). If g = 4p 1) then we need to consider the case when α 4p 1) = 1 and α p 1) 1. Thus, α p 1 = ±ζ pn 1)/4, where ζ is a primitive element of GFp n ) and α pn 1)/ = ζ ) p n +1)p +1)/ ) p n +1)p +1)/4 pn 1)/4 = ζ pn 1)/ = 1 since p n + 1)p + 1)/4 is odd. Therefore, both α and x = α 1 α + v) are nonsquares in GFp n ) so when x GFp n ) then it is also a nonsquare in GFp n ). 8

9 Finally, suppose T + x,c 1 ) = T + x,c ) = 0 for some x GFp n ) and c 1,c GFp ) with c 1 c. In particular, we proved that x+c 1 is a square in GFp n ). Without loss of generality, assume c c 1 = 1 and write T + x,c 1 ) T + x,c ) = x+c 1 ) d x+c 1 +1) d +x+c 1 ) dp x+c 1 +1) dp = T x+c 1,1) = 0 that requires x+c 1 to be a nonsquare in GFp n ). This contradiction shows that roots of T + x,c 1 ) and T + x,c ) lie in disjoint subsets of GFp n ). The following corollary immediately follows from Proposition 3. Corollary 1. Let n = 4 and tae any c GFp ). Then polynomial T + X,c) splits over GFp n ) and x + c is a square in GFp n ) for every x GFp n ) with T + x,c) = 0. On the other hand, polynomial T X,c) does not have any roots in GFp n ). Moreover, for different values of c, the corresponding roots of T + X,c) belong to disjoint subsets. Note that taing c = 0 in polynomial T + X,c) results in T + x,0) = x ) p +1)/ +x p p +1)/ whichisequaltozeroifandonlyifx p +1)p 1)/ = 1.Thelatterequationhas p +1)p 1)/ solutions in GFp n ). On the other hand, for any b GFp n ) with Tr ) p +1 = 0 we have T + b,0) = Tr ) p +1 = 0 and the number of b 0 with such a property is equal to p +1)p 1). Since squaring defines a -to-1 mapping on the set of b GFp n ) with Tr ) p +1 = 0, we conclude that all nonzero roots of T + X,0) are exactly those b for all b GFp n ) with Tr ) p +1 = 0. Thus, all nonzero roots of T + X,0) are exactly those b GFp n ) with Tr ) p +1 = 0 and the total number of rootsis p +1)p 1). Suppose T + x,0) = T + x,c) = 0 for some x GFp n ) and c GFp ). By Proposition 3, x is a square in GFp n ). Then T + x,0) T + x,c) = x d x+c) d +x dp x+c) dp = T x,c) = 0 that requiresxto be a nonsquarein GFp n ). This contradictionshows that there are no common roots of T + x,0) and T + x,c) in GFp n ). Corollary. Let n = 4 and tae any b GFp n ). Then polynomials T + b,y) and T b,y) have a unique root in GFp ). Moreover, b + y is a square in GFp n ) for every y GFp ) with T + b,y) = 0. On the other hand, T b,y) = 0 only for y = 0. Proof. We now that for different values of c GFp ), the corresponding roots oft + X,c)belongtodisjoint subsets.then,bycorollary1,combiningtogether all roots of T + X,c) for all c GFp ) we obtain p p +1)p 1) elements of GFp n ). Adding to them p + 1)p 1) +1 roots of T + X,0) gives all p n elements of GFp n ). Thus, for any b GFp n ), polynomial T + b,y) has a unique root in GFp ). The rest follows from Corollary 1. 9

10 3 New Class of Binomial Bent Functions In this section, we prove our main result giving a new binomial wealy regular bent function and calculate its Walsh transform coefficients. Theorem 1. Let n = 4. Then p-ary function fx) mapping GFp n ) to GFp) and given by fx) = Tr n x p3 +p p +1 +x ) is a wealy regular bent function. Moreover, for b GFp n ) the corresponding Walsh transform coefficient of fx) is equal to S f b) = p ω Tr x 0)/4, where x 0 is a unique solution in GFp ) of the equation b p +1 +b +x) p +1)/ +b p p +1) +b +x) p p +1)/ = 0. 5) Proof. Let ξ be a primitive element of GFp n ) and also denote d = p 3 +p p +1. If we let x = ξ j y p +1 for j = 0,...,p and y running through GFp n ) then x will run through GFp n ) in total p +1 times. Also note that d = p 1)p +1) and thus, dp +1) p +1) mod p n 1). Therefore, the Walsh transform coefficient of the function fx) evaluated at b is equal to S f b) 1 = = = = x GFp n ) ω Trn 1 p p +1 p x p3 +p p +1 +x bx ω Trn j=0 y GFp n ) ω Trn j=0 z GFp ) p ω Tr j=0 z GFp ) ) ) ξ jd y p +1) +ξ j y p +1) bξ j y p +1 ξ jd +ξ j )z bξ j z) ) Tr n ξ p 1)j ξ p +1)j z bξ j +b p ξ jp) ) z where z = y p +1 GFp ) is a p +1-to-1 mapping of GFp n ) and since Tr n ξ jd +ξ j) = ξ jd +ξ j +ξ jdp +ξ jp ) = ξ p +1)j ξ p p 1)j +ξ p 1)j +ξ p p 1)j +ξ p 1)j = ξ p +1)j Tr n ξ ) p 1)j notingthatdp p 1 p p 1) mod p n 1)andalsothatξ p 1)j = ξ p p 1)j., 10

11 Now, by [3, Corollary 3], p S f b) 1 = sp η ξ p +1)j ) ω j=0 p = sp j=0 1) j ω 0 4Tr n bξ j +b p ξ jp) ) ξ p 1)j ξ p +1)j 0 Trn b p ξ p 1)j +b ) p +1 4Tr n ξ p 1)j ) 1 A 1 A p 1 p 1, where s = 1) if p 3 mod 4) and s = 1 otherwise, η ) is the quadratic character of GFp ) and since ηt) = 1 for any t GFp ) and Tr n ) ξ p 1)j is nonzero for any j = 0,...,p we will show this soon). We also used the following identities Tr ξ p +1)j bξ j +b p ξ jp) ) = = Tr b ) ξ p 1)j +b p ξ p 1)j +b p +1 ) = Tr n p ξ p 1)j +b p +1. Using the notations introduced at the beginning of this section, we get ) S f b) = sp ω Trψu)) p, u U + u U ω Trψu)) where ψu) = Tr n b p u+b p +1 ) /4Tr n u). Note that Tr n u) = u+up +u 1 +u p = u p +1) u p ) u+u p) = 0 only if u p +1) = 1 or u p 1) = 1 which leads to u = 1 since gcdp + 1),p +1) = gcdp 1),p +1) =. Thus, u = ±1 and for these values of u we have Tr n u) = ±4 0. We conclude that Trn u) 0 for any u U. Now we as ourselveshow distinct are the sets ofvalues of ψu) when u U + and u U. Considerequation 4ψu) = c for some c GFp ) and the unnown u U. We can rewrite it as ) ) Tr n p c)u = Tr n p +1. 6) First, if Tr n ) b p +1 = 0 then equation 6) has the same number of solutions in U + and U for any c GFp ) since U + = U which means that S f b) = p in this case. From now on assume Tr n ) p +1 0 that is equivalent to Tr ) p +1 0 since Tr n ) p +1 = Tr ) p +1. By Proposition, equation 6) has the same number of solutions in U + and U except when Tr n b p c) ) p +1)/ 0 11

12 and Tr n ) b p +1 = ±Tr n b p c) ) p +1)/. It is obvious that c = 0 gives a solution. Further, ) Tr n p c) p +1)/ = Tr n b ) c) p +1)/ = Tr b ) c) p +1)/ +b c) pn 1)/+p +1)/ is equal to zero ifb c) pn 1)/ = 1. Therefore,we areinterested in the values of c GFp ) with ) b c) pn 1)/ = 1 and Tr p +1 ±b c) p +1)/ = 0. By Corollary, Tr p +1 b c) ) p +1)/ = T b, c) = 0 only for c = 0 and Tr p +1 +b c) ) p +1)/ = T + b, c) = 0 for a unique value c GFp ) for this root, b c is a square in GFp n ), i.e., b c) pn 1)/ = 1). Thus, by Proposition, S f b) = sp sp +sp ω Trx0)/4) p = p ω Trx0)/4, where x 0 is a unique solution in GFp ) of T + b,x) = 0. In some cases, we can find exact solution of 5). Assume b GFp ). Then b p +1) = b 4 giving b p +1 = ±b. It was shown that x = 0 is the only solution of 5) if and only if Tr ) p +1 = 0 that in our case is equivalent to Tr ) = 0. In general, 5) taes on the form ± b +b p) +b +x) p 1)/ b +x+b p +x p) = 0 or ) b +x) p 1)/ ±1 b +b p) +xb +x) p 1)/ = 0 and is satisfied by exactly one nonzero x GFp ) which is x = Tr ). Therefore, if b GFp ) then T + b,x 0 ) = 0 for x 0 = Tr ). References 1. Kumar, P.V., Scholtz, R.A., Welch, L.R.: Generalized bent functions and their properties. Journal of Combinatorial Theory, Series A 401) September 1985) Hou, X.D.: p-ary and q-ary versions of certain results about bent functions and resilient functions. Finite Fields and Their Applications 104) October 004) Helleseth, T., Kholosha, A.: Monomial and quadratic bent functions over the finite fields of odd characteristic. IEEE Trans. Inf. Theory 55) May 006) Niho, Y.: Multi-Valued Cross-Correlation Functions Between Two Maximal Linear Recursive Sequences. PhD thesis, University of Southern California, Los Angeles 197) 1

13 5. Helleseth, T.: A note on the cross-correlation function between two binary maximal length linear sequences. Discrete Mathematics 33) 1978) Helleseth, T., Rong, C., Sandberg, D.: New families of almost perfect nonlinear power mappings. IEEE Trans. Inf. Theory 45) March 1999)