Minimal polynomials of the modified de Bruijn sequences

Similar documents
The edge-diametric theorem in Hamming spaces

De Bruijn Sequences from Nonlinear Feedback Shift Registers

Division of Trinomials by Pentanomials and Orthogonal Arrays

Affine equivalence in the AES round function

Searching for Nonlinear Feedback Shift Registers with Parallel Computing

Generalized hyper-bent functions over GF(p)

A trace representation of binary Jacobi sequences

September 6, Abstract

Hyperbent functions, Kloosterman sums and Dickson polynomials

Trace Representation of Legendre Sequences

Design of Pseudo-Random Spreading Sequences for CDMA Systems

Four classes of permutation polynomials of F 2 m

Divisibility of Trinomials by Irreducible Polynomials over F 2

Singer and GMW constructions (or generalized GMW constructions), little else is known about p-ary two-level autocorrelation sequences. Recently, a few

Some Results on the Arithmetic Correlation of Sequences

Existence of Cyclic Hadamard Difference Sets and its Relation to Binary Sequences with Ideal Autocorrelation

On the Linear Complexity of Legendre-Sidelnikov Sequences

Some congruences for Andrews Paule s broken 2-diamond partitions

Constructions of Quadratic Bent Functions in Polynomial Forms

Topic 3. Design of Sequences with Low Correlation

Third-order nonlinearities of some biquadratic monomial Boolean functions

ON VALUES OF CYCLOTOMIC POLYNOMIALS. V

arxiv: v1 [cs.it] 12 Jun 2016

Homework 9 Solutions to Selected Problems

Decomposing Bent Functions

On Boolean functions which are bent and negabent

Formulas for cube roots in F 3 m

Resilience to Distinguishing Attacks on WG-7 Cipher and Their Generalizations

Binary Sequences with Optimal Autocorrelation

An Additive Characterization of Fibers of Characters on F p

#A30 INTEGERS 17 (2017) CONFERENCE MATRICES WITH MAXIMUM EXCESS AND TWO-INTERSECTION SETS

On one class of permutation polynomials over finite fields of characteristic two *

On the Complexity of the Dual Bases of the Gaussian Normal Bases

On the Primitivity of some Trinomials over Finite Fields

The generalized order-k Fibonacci Pell sequence by matrix methods

Nonlinear Shi, Registers: A Survey and Open Problems. Tor Helleseth University of Bergen NORWAY

Constructing hyper-bent functions from Boolean functions with the Walsh spectrum taking the same value twice

On the existence of cyclic difference sets with small parameters

arxiv: v4 [cs.it] 14 May 2013

On the size of Kakeya sets in finite vector spaces

Section X.55. Cyclotomic Extensions

On the Number of Trace-One Elements in Polynomial Bases for F 2

Quadratic Gauss sums on matrices

SUMS OF SECOND ORDER LINEAR RECURRENCES THOMAS MCKENZIE AND SHANNON OVERBAY

GENERATION OF PRIMITIVE BINARY POLYNOMIALS

On Welch-Gong Transformation Sequence Generators

Low Correlation Sequences for CDMA

New quaternary sequences of even length with optimal auto-correlation

Incomplete exponential sums over finite fields and their applications to new inversive pseudorandom number generators

Construction X for quantum error-correcting codes

The T 4 and G 4 constructions of Costas arrays

On complete permutation polynomials 1

PURELY PERIODIC SECOND ORDER LINEAR RECURRENCES

Hyperbent functions, Kloosterman sums and Dickson polynomials

The average dimension of the hull of cyclic codes

Gauss periods as low complexity normal bases

Some practice problems for midterm 2

ON THE SEMIPRIMITIVITY OF CYCLIC CODES

Algebra SEP Solutions

55 Separable Extensions

New Constructions for De Bruijn Tori

ON THE p-adic VALUE OF JACOBI SUMS OVER F p

Abstract Algebra: Chapters 16 and 17

On the normality of p-ary bent functions

Pencils of Quadratic Forms over Finite Fields

ON A THEOREM OF TARTAKOWSKY

Ternary Modified Collatz Sequences And Jacobsthal Numbers

Explicit classes of permutation polynomials of F 3

Quasi-reducible Polynomials

A note on constructing permutation polynomials

Integer Valued Sequences with 2-Level Autocorrelation from Iterative Decimation Hadamard Transform

There are no Barker arrays having more than two dimensions

Golomb-Lempel Construction of Costas Arrays Revisited

STRONG FORMS OF ORTHOGONALITY FOR SETS OF HYPERCUBES

Algebra Review. Instructor: Laszlo Babai Notes by Vincent Lucarelli and the instructor. June 15, 2001

φ(xy) = (xy) n = x n y n = φ(x)φ(y)

Discrete Applied Mathematics. Tighter bounds of the First Fit algorithm for the bin-packing problem

On Minimal Words With Given Subword Complexity

ON PERMUTATION POLYNOMIALS OF PRESCRIBED SHAPE

Complete characterization of generalized bent and 2 k -bent Boolean functions

but no smaller power is equal to one. polynomial is defined to be

A New Approach to Permutation Polynomials over Finite Fields

UNBOUNDED DISCREPANCY IN FROBENIUS NUMBERS

Section VI.33. Finite Fields

has the two-level autocorrelation function for (2) otherwise, where the periodic unnormalized autocorrelation function of the sequence is defined as

A New Class of Bent Negabent Boolean Functions

Congruent Number Problem and Elliptic curves

Binary construction of quantum codes of minimum distances five and six

Constructing c-ary Perfect Factors

Counting Functions for the k-error Linear Complexity of 2 n -Periodic Binary Sequences

Characterization of 2 n -Periodic Binary Sequences with Fixed 2-error or 3-error Linear Complexity

Sequences, DFT and Resistance against Fast Algebraic Attacks

Explicit Factorizations of Cyclotomic and Dickson Polynomials over Finite Fields

Elementary Properties of Cyclotomic Polynomials

On Permutation Polynomials over Local Finite Commutative Rings

its weaknesses. The ASG consists of three subgenerators K,fl,

The primitive root theorem

Intrinsic products and factorizations of matrices

Math 451, 01, Exam #2 Answer Key

Periodicity and Distribution Properties of Combined FCSR Sequences

Transcription:

Discrete Applied Mathematics 156 (2008) 1549 1553 www.elsevier.com/locate/dam Minimal polynomials of the modified de Bruijn sequences Gohar M. Kyureghyan Department of Mathematics, Otto-von-Guericke University of Magdeburg, Universitätsplatz 2, 39106 Magdeburg, Germany Received 5 February 2003; received in revised form 22 July 2003; accepted 2 November 2006 Available online 30 August 2007 Dedicated to the memory of Levon Khachatrian Abstract It is well known that a de Bruijn sequence over F 2 has the minimal polynomial (x + 1) d, where 2 n 1 + n d 2 n 1. We study the minimal polynomials of the modified de Bruijn sequences. 2007 Elsevier B.V. All rights reserved. Keywords: Modified de Brujin sequence; m-sequence; Linear complexity; Cyclotomic numbers 1. Introduction Sequences with some required properties have many practical applications. For cryptographic sequences it is necessary to have, for example, good autocorrelation properties, large linear complexity, uniform pattern distribution. De Bruijn sequences provide the best pattern distribution, it is interesting to study their other properties. Let s = s 0,s 1,...be a sequence of elements from F 2. For any nonnegative integer k, define the kth shift s (k) of s to be the sequence s k,s k+1,....the sequence s is said to be periodic with period p denoted by s = (s 0,...,s p 1 ) if s i+p = s i for all nonnegative i. A polynomial a 0 + a 1 x + +x d F 2 [x] is a characteristic polynomial of s if d 1 s d+i + a j s j+i = 0 for all i 0. j=0 The set of all characteristic polynomials of s forms an ideal I in F 2 [x]. The minimal polynomial of s is defined to be the unique generator of I. The degree of the minimal polynomial of s is its linear complexity. The order of polynomial f(x)= x r g(x) F 2 [x], g(0) = 0, is the least positive integer for which g(x) divides x e + 1. It is known (see [11]) that the least period of a sequence is equal to the order of its minimal polynomial. Further we assume that all sequences polynomials are over F 2. A sequence b = (b 0,...,b 2 n 1) is called an nth order de Bruijn sequence if {b i...b i+n 1 : i {0,...,2 n 1}} = F n 2. There are 2 2n 1 n many nth order de Bruijn sequences [7,3]. Clearly, x 2n + 1 = (x + 1) 2n is a characteristic polynomial for every n-order de Bruijn sequence. In [4] it is shown that the minimal polynomial of an n-order de Bruijn sequence E-mail address: gohar.kyureghyan@mathematik.uni-magdeburg.de. 0166-218X/$ - see front matter 2007 Elsevier B.V. All rights reserved. doi:10.1016/j.dam.2006.11.019

1550 G.M. Kyureghyan / Discrete Applied Mathematics 156 (2008) 1549 1553 is of the form (x + 1) d, where 2 n 1 + n d 2 n 1. In [6,4] it is shown that for any n there is an n-order de Bruijn sequence with the minimal polynomial (x + 1) 2n 1 +n (x + 1) 2n 1, resp. In [8] it is shown that there are no de Bruijn sequences with minimal polynomial (x + 1) 2n 1 +n+1.in[5] it is conjectured that for any n 3 for any d in the range between 2 n 1 + n + 2 d 2 n 1, there exists an n-order de Bruijn sequence with minimal polynomial (x + 1) d. In this paper we consider the modified n-order de Bruijn sequences, which are obtained from the n-order de Bruijn sequences by removing a zero from its unique allzero n-tuple. The pattern distribution of modified de Bruijn sequences is worse than one of de Bruijn sequences, but they are expected to have better autocorrelation (cf. [9,10]). The m-sequences, which we define discuss later, are contained in the set of the modified de Bruijn sequences. Here we continue the study of the minimal polynomials of the modified de Bruijn sequences, originated in [12]. Theorem 1 (Mayhew Golomb [12]). The minimal polynomial of a modified n-order de Bruijn sequence is a product of distinct irreducible polynomials of degrees not equal to 1 dividing n. Sketch of the proof. The minimal polynomial should divide characteristic polynomial x 2n 1 +1, which is the squarefree product of the irreducible polynomials of degrees dividing n. Since a modified de Bruijn sequence has an even number of 1 s the minimal polynomial of sequence s = (s 0,...,s p 1 ) is x p + 1 gcd(x p + 1,s 0 x p 1 + s 1 x p 2 + +s p 1 ), x + 1 cannot be a factor of its minimal polynomial. For more details, see [11,12]. Observing that the proof in fact does not depend on the de Bruijn property of the sequence recalling that the order of the minimal polynomial should be 2 n 1, we can slightly improve Theorem 1. Theorem 2. The minimal polynomial of a sequence with the least period 2 n 1 is a product of distinct irreducible polynomials with (a) degrees dividing n, (b) the least common multiple of their orders is equal to 2 n 1. In this paper we show that the product of a primitive polynomial of degree n a polynomial of degree 2 cannot be the minimal polynomial for a modified de Bruijn sequence. Further we generalize this result for a product of two primitive polynomials of degrees n k. 2. Auxiliary results 2.1. m-sequences An irreducible polynomial f(x) F 2 [x] of degree n is called a primitive polynomial over F 2 if its order is equal to 2 n 1 (cf. [11]).A sequence, whose minimal polynomial is a primitive polynomial over F 2, is called an n-order maximal period sequence (n-order m-sequence ) in F 2.Ann-order m-sequence is a modified n-order de Bruijn sequence. Trace representation: Let α be a root of the minimal polynomial of an n-order m-sequence (a 0,...,a 2 n 2), then a i = Tr 2 n /2(βα i ) for some β F 2 n, where Tr 2 n /2(x) = x + x 2 + +x 2n 1 is the trace function from F 2 n onto F 2. Note that the sequence (Tr 2 n /2(β), Tr 2 n /2(βα), Tr 2 n /2(βα 2 ),...,Tr 2 n /2(βα 2n 2 )), β = α k is the kth shift of the sequence (Tr 2 n /2(1), Tr 2 n /2(α), Tr 2 n /2(α 2 ),...,Tr 2 n /2(α 2n 2 )).

G.M. Kyureghyan / Discrete Applied Mathematics 156 (2008) 1549 1553 1551 Shift add property: Let a be an n-order m-sequence, then for all i = j {0,...,2 n 2} there is l {0,...,2 n 2} such that a (i) + a (j) = a (l). Moreover, the m-sequences are the only sequences over F 2 having shift add property [2]. 2.2. Cyclotomic numbers Let 2 n = d f + 1, α be a primitive element of F 2 n α d be the multiplicative subgroup generated by α d. The cosets C d i = α i α d, i = 0,...,d 1 are called cyclotomic classes of order d with respect to F 2 n. Clearly, d 1 F 2 n = Ci d. Set i=0 C(l,m) d = (Cd l + 1) Cm d, l,m {0,...,d 1}. The constants (l, m) d = C d (l,m) are called cyclotomic numbers of order d with respect to F 2 n. The determination of the cyclotomic numbers is a difficult problem, for more details see [1], for instance. Further we will need the following simple properties of the cyclotomic numbers: (i) (i, j) d = (j, i) d (ii) (i, j) d = (2i, 2j) d (iii) (i, j) d = (i j,d j) d (iv) There is at least one i {1,...,d 1} such that (i, 0) d = 0. Lemma 1. If 2 n > 1 2 d4, then (i, j) d = 0 for all i, j. Proof. It is known that the equation a 1 x d 1 + a 2x d 2 = b, a 1,a 2,b F 2 n (1) has always a solution in F 2 2 n for such n, d (see [11], Section 6.3). The lemma follows if in (1) we take a 1 Ci d,a 2 Cj d b = 1. 3. Minimal polynomials of the modified de Bruijn sequences Here we show that not all polynomials allowed by Theorem 2 are the minimal polynomial for some modified de Bruijn sequence. Claim 1 (Lidl Niederreiter [11]). Let f (x), g(x) F 2 [x] be irreducible polynomials. Then a sequence, having the minimal polynomial f(x)g(x), is the sum of a sequence with minimal polynomial f(x) a sequence with the minimal polynomial g(x). Theorem 3. Let n>2, f(x) F 2 [x] be a primitive polynomial of degree n g(x) F 2 [x] be the primitive polynomial of degree 2. Then there is no n-order modified de Bruijn sequence with minimal polynomial f(x)g(x).

1552 G.M. Kyureghyan / Discrete Applied Mathematics 156 (2008) 1549 1553 Proof. At first observe that by Theorem 2 f(x)g(x) could not be the minimal polynomial of an n-order modified de Bruijn sequence if n is odd. Hence, we assume n is even, thus 2 n 1 is divisible by 3. By Claim 1 it is enough to show that there are no n-order m-sequence a = (a 0,...,a 2 n 2) 2-order m-sequence b = (b 0,b 1,b 2 ), whose sum c = (c 0,...,c 2 n 2) is a modified de Bruijn sequence. Thus we need to show that the sum sequence c contains either the allzero n-tuple or some n-tuple twice. The second property means that there are i s>0,i,i+ s {0,...,2 n 2} such that c (i+j)mod 2 n 1 = c (i+j+s) mod 2 n 1 for all j = 0,...,n 1, or, equivalently, the sequence d = c + c (s) contains the allzero n-tuple. Note, d = c + c (s) = a + b + a (s) + b (s) = a + a (s) + b + b (s). Further, we write a b in the trace representation. Without loss of generality, we can assume that a i = Tr 2 n /2(α i ), b i = Tr 4/2 (β f β i ) for some f {0, 1, 2}, where α is a root of f(x) β is a root of g(x). Thus we get a i + a i+s = Tr 2 n /2(α i ) + Tr 2 n /2(α i+s ) = Tr 2 n /2(α i + α i+s ) = Tr 2 n /2((1 + α s )α i ) (2) b i + b i+s = Tr 4/2 (β f β i ) + Tr 4/2 (β f β i+s ) = Tr 4/2 (β f (β i + β i+s )) = Tr 4/2 (β f (1 + β s )β i ). Let us take f = 0, the proof for the other cases is analogous. Since F 4 ={0, 1, β, β 2 } β + 1 = β 2,weget 0 if s 0 mod 3, b i + b i+s = Tr 4/2 (β 2 β i ) if s 1 mod 3, Tr 4/2 (ββ i ) if s 2 mod 3. Now, let T be the n-tuple b 0 b 1 b 2 b 0 b 1 b 2...b l with l n 1 mod 3. We want to show that there is a positive integer s, such that the n-tuple T in the sequence a + a (s) in the sequence b + b (s) is added to the allzero sequence in their sum sequence d. Suppose a m mod 2 n 1a m+1 mod 2 n 1...a m+n 1 mod 2 n 1 = T. Note that if m 0 mod 3, then c is not a modified de Bruijn sequence, since it contains the allzero n-tuple. Let m 1 mod 3. By (2), a + a (s) is the kth shift of a, where k is defined by 1+α s =α k. And, by (3) b +b (s) is either the allzero sequence if s 0 mod 3, or the first shift of b if s 2 mod 3, or the second shift of b if s 1 mod 3. Hence to complete the proof it remains to show the existence of s 1 mod 3 with 1 + α s = α 3r+1 or the existence of s 2 mod 3 with 1 + α s = α 3r for some r. In other words, we should show that the cyclotomic numbers (1, 1) 3 (2, 0) 3 are not zero simultaneously. By properties (ii) of the cyclotomic numbers, (2, 0) 3 = 0 implies that (1, 0) 3 = 0, which contradicts property (iv). In the case of m 2 mod 3, the observation that the cyclotomic number (1, 0) 3 is not zero, completes the proof. Theorem 3 can be generalized to Theorem 4. Let n 4k, f(x) F 2 [x] be a primitive polynomial of degree n g(x) F 2 [x] be a primitive polynomial of degree k. Then there is no n-order modified de Bruijn sequence with minimal polynomial f(x)g(x). Proof. If n is not divisible by k, the statement follows from Theorem 2. Thus let n be a multiple of k, implying that 2 n 1 is a multiple of 2 k 1. Using Claim 1, our goal is to show that the sum sequence c of an n-order m-sequence a (3)

G.M. Kyureghyan / Discrete Applied Mathematics 156 (2008) 1549 1553 1553 with a k-order m-sequence b is never an n-order modified de Bruijn sequence. Assume, without loss of generality that a i = Tr 2 n /2(α i ) b i = Tr 2 k /2 (βf β i ) for some f {0,...,2 k 2}, where α, resp. β, is a root of f(x), resp. g(x). In order to show that c is not an n-order de Bruijn sequence we need to show that either it contains the allzero n-tuple, or there is s>0 such that c + c (s) contains the allzero n-tuple. Clearly, Further, c + c (s) = a + a (s) + b + b (s). a i + a i+s = Tr 2 n /2(α i ) + Tr 2 n /2(α i+s ) = Tr 2 n /2(α i + α i+s ) = Tr 2 n /2((1 + α s )α i ) (4) b i + b i+s = Tr 2 k /2 (βf β i ) + Tr 2 k /2 (βf β i+s ) = Tr 2 k /2 (βf (β i + β i+s )) = Tr 2 k /2 (βf (1 + β s )β i ). (5) Using (4) (5), a + a (s) is the uth shift of a, where u is defined from 1 + α s = α u, b + b (s) is the rth shift of b, where r is defined from 1 + β s = β r. (Observe that r {0,...,2 k 2} depends only on s mod 2 k 1.) Consider the n-tuple T = b 0...b l (obtained by concatenation of n 2 k 1 many b 0...b 2 k 2 the first l,n l mod 2k 1 positions of b 0...b 2 k 2 ). Let in a the tuple T start in position m, m p mod 2k 1, then in a +a (s) T starts in position m u mod 2 n 1. Note that T starts in every position j r mod 2 k 1ofb+b (s). Hence, if (m u) r mod 2 k 1, then in the sum sequence a+a (s) +b+b (s) we get the allzero n-tuple, completing the proof. Now, let s {0,...,2 k 2} 1 + β s = β r. We need to find s, s s mod 2 k 1, such that 1 + α s = α u with u p + r mod 2 k 1. Or, equivalently, we need to show that (s,p+ r ) 2 k 1 = 0 for some s {0,...,2n 2}. By Lemma 1 (i, j) 2 k 1 = 0 for all i, j, which completes the proof. We believe that Theorem 4 is true for all k n. Conjecture. Let f(x) F 2 [x] be a primitive polynomial of degree n g(x) F 2 [x] be a primitive polynomial of degree k. Then there is no n-order modified de Bruijn sequence with the minimal polynomial f(x)g(x). References [1] B.C. Berndt, R.J. Evans, K.S. Williams, Gauss Jacobi Sums, Wiley, New York, 1998. [2] S.R. Blackburn, A note on sequences with the shift add property, Designs Codes Cryptography 9 (1996) 251 256. [3] N.G. de Bruijn, A combinatorial problem, Proc. K. Ned. Akad. Wet. 49 (1946) 758 764. [4] A.H. Chan, R.A. Games, E.L. Key, On the complexities of de Bruijn sequences, J. Combin. Theory Ser. A 33 (1982) 233 246. [5] T. Etzion, Linear complexity of de Bruijn sequences old new results, IEEE Trans. Inform. Theory 45 (2) (1999) 693 698. [6] T. Etzion, A. Lempel, Construction of the de Bruijn sequences of minimal complexity, IEEE Trans. Inform. Theory IT-30 (5) (1984) 705 709. [7] C. Flye Sainte-Marie, Solution to question nr.48, l Intermèdiaire des Mathèmaticiens 1 (1894) 107 110. [8] R.A. Games, There are no de Bruijn sequences of span n with complexity 2 n 1 + n + 1, J. Combin. Theory Ser. A 34 (1983) 248 251. [9] S.W. Golomb, Shift Register Sequences, Holden-Day, San-Francisco, 1967. [10] G. Gong, Sequence analysis. Available from http://www.cacr.math.uwaterloo.ca/ ggong. [11] R. Lidl, H. Niederreiter, Finite fields, in: Encyclopedia of Mathematics its Applications, vol. 20, Cambridge University Press, Cambridge, 1997. [12] G.L. Mayhew, S.W. Golomb, Linear spans of modified de Bruijn sequences, IEEE Trans. Inform. Theory 36 (5) (1990) 1166 1167.

2024 © sciencedocbox.com Privacy Policy | Terms of Service | Feedback