Galois fields/1. (M3) There is an element 1 (not equal to 0) such that a 1 = a for all a.

Similar documents
Chapter 4 Mathematics of Cryptography

Quasi-reducible Polynomials

1 Fields and vector spaces

Commutative Rings and Fields

A field F is a set of numbers that includes the two numbers 0 and 1 and satisfies the properties:

ECEN 5022 Cryptography

Finite Fields. [Parts from Chapter 16. Also applications of FTGT]

17 Galois Fields Introduction Primitive Elements Roots of Polynomials... 8

Chapter 4 Finite Fields

Galois Theory TCU Graduate Student Seminar George Gilbert October 2015

3.4. ZEROS OF POLYNOMIAL FUNCTIONS

Mathematical Foundations of Cryptography

MATH 25 CLASS 21 NOTES, NOV Contents. 2. Subgroups 2 3. Isomorphisms 4

Reducibility of Polynomials over Finite Fields

9. Finite fields. 1. Uniqueness

Extension fields II. Sergei Silvestrov. Spring term 2011, Lecture 13

Introduction to finite fields

SOLVING SOLVABLE QUINTICS. D. S. Dummit

* 8 Groups, with Appendix containing Rings and Fields.

ECEN 5682 Theory and Practice of Error Control Codes

Chapter 5. Modular arithmetic. 5.1 The modular ring

TC10 / 3. Finite fields S. Xambó

NOTES ON FINITE FIELDS

An Introduction to Proof-based Mathematics Harvard/MIT ESP: Summer HSSP Isabel Vogt

Fields in Cryptography. Çetin Kaya Koç Winter / 30

5 Group theory. 5.1 Binary operations

CSCE 564, Fall 2001 Notes 6 Page 1 13 Random Numbers The great metaphysical truth in the generation of random numbers is this: If you want a function

Name: Solutions Final Exam

Outline. We will now investigate the structure of this important set.

Number Axioms. P. Danziger. A Group is a set S together with a binary operation (*) on S, denoted a b such that for all a, b. a b S.

REVIEW Chapter 1 The Real Number System

Introduction to Information Security

Section VI.33. Finite Fields

GALOIS GROUPS OF CUBICS AND QUARTICS (NOT IN CHARACTERISTIC 2)

Harbor Creek School District. Algebra II Advanced. Concepts Timeframe Skills Assessment Standards Linear Equations Inequalities

COMPUTER ARITHMETIC. 13/05/2010 cryptography - math background pp. 1 / 162

0.2 Vector spaces. J.A.Beachy 1

Mathematics for Cryptography

A connection between number theory and linear algebra

ALGEBRA PH.D. QUALIFYING EXAM September 27, 2008

GROUPS. Chapter-1 EXAMPLES 1.1. INTRODUCTION 1.2. BINARY OPERATION

Sect Introduction to Rational Expressions

FIXED-POINT FREE ENDOMORPHISMS OF GROUPS RELATED TO FINITE FIELDS

Section 33 Finite fields

The Galois group of a polynomial f(x) K[x] is the Galois group of E over K where E is a splitting field for f(x) over K.

Public-key Cryptography: Theory and Practice

MA257: INTRODUCTION TO NUMBER THEORY LECTURE NOTES

Page Points Possible Points. Total 200

Fields and Galois Theory

1. Group Theory Permutations.

Classification of Finite Fields

Algebra II. A2.1.1 Recognize and graph various types of functions, including polynomial, rational, and algebraic functions.

COMMUTATIVE SEMIFIELDS OF ORDER 243 AND 3125

A Generalization of Wilson s Theorem

Galois theory (Part II)( ) Example Sheet 1

Abstract Algebra FINAL EXAM May 23, Name: R. Hammack Score:

1 The Galois Group of a Quadratic

Algebraic structures I

Tomáš Madaras Congruence classes

Algebraic Structures Exam File Fall 2013 Exam #1

RINGS: SUMMARY OF MATERIAL

GALOIS GROUPS AS PERMUTATION GROUPS

ϕ : Z F : ϕ(t) = t 1 =

1. Introduction to commutative rings and fields

Abstract Algebra, Second Edition, by John A. Beachy and William D. Blair. Corrections and clarifications

Introduction to Algebraic Geometry. Franz Lemmermeyer

Modern Algebra Prof. Manindra Agrawal Department of Computer Science and Engineering Indian Institute of Technology, Kanpur

CDM. Finite Fields. Klaus Sutner Carnegie Mellon University. Fall 2018

Academic Outcomes Mathematics

Computation in finite fields. John Kerl Arizona State University and Lockheed Martin Corporation

College Algebra. Basics to Theory of Equations. Chapter Goals and Assessment. John J. Schiller and Marie A. Wurster. Slide 1

Some algebraic number theory and the reciprocity map

Quadratic Congruences, the Quadratic Formula, and Euler s Criterion

The p-adic Numbers. Akhil Mathew

Rings. Chapter 1. Definition 1.2. A commutative ring R is a ring in which multiplication is commutative. That is, ab = ba for all a, b R.

Groups in Cryptography. Çetin Kaya Koç Winter / 13

Section 3.6 Complex Zeros

Èvariste Galois and the resolution of equations by radicals

Galois Fields and Hardware Design

Finite Fields: An introduction through exercises Jonathan Buss Spring 2014

1 Rings 1 RINGS 1. Theorem 1.1 (Substitution Principle). Let ϕ : R R be a ring homomorphism

A. Algebra and Number Theory

The p-adic Numbers. Akhil Mathew. 4 May Math 155, Professor Alan Candiotti

MATH 310 Course Objectives

Introduction to Arithmetic Geometry Fall 2013 Lecture #2 09/10/2013

List of topics for the preliminary exam in algebra

FINITE FIELDS KEITH CONRAD

x 9 or x > 10 Name: Class: Date: 1 How many natural numbers are between 1.5 and 4.5 on the number line?

Galois groups of polynomials and the construction of finite fields

Math 312/ AMS 351 (Fall 17) Sample Questions for Final

Groups. 3.1 Definition of a Group. Introduction. Definition 3.1 Group

AN ALGEBRA PRIMER WITH A VIEW TOWARD CURVES OVER FINITE FIELDS

Graduate Preliminary Examination

ALGEBRA PH.D. QUALIFYING EXAM SOLUTIONS October 20, 2011

Congruences and Residue Class Rings

Course 2316 Sample Paper 1

DIHEDRAL GROUPS II KEITH CONRAD

Permutation representations and rational irreducibility

Mod p Galois representations attached to modular forms

SECTION Types of Real Numbers The natural numbers, positive integers, or counting numbers, are

Transcription:

Galois fields 1 Fields A field is an algebraic structure in which the operations of addition, subtraction, multiplication, and division (except by zero) can be performed, and satisfy the usual rules. More precisely, a field is a set F with two binary operations + (addition) and (multiplication) are defined, in which the following laws hold: (A1) a + (b + c) = (a + b) + c (associative law for addition) (A2) a + b = b + a (commutative law for addition) (A3) There is an element 0 (zero) such that a + 0 = a for all a. (A4) For any a, there is an element a such that a + ( a) = 0. (M1) a (b c) = (a b) c (associative law for multiplication) (M2) a b = b a (commutative law for multiplication) (M3) There is an element 1 (not equal to 0) such that a 1 = a for all a. (M4) For any a 0, there is an element a 1 such that a a 1 = 1. (D) a (b + c) = (a b) + (a c) (distributive law) Using the notion of a group, we can condense these nine axioms into just three: The elements of F form an Abelian group with the operation + (called the additive group of F). The non-zero elements of F form an Abelian group under the operation (called the multiplicative group of F). Multiplication by any non-zero element is an automorphism of the additive group. Galois fields/1

We usually write x y simply as xy. Many other familiar arithmetic properties can be proved from the axioms: for example, 0x = 0 for any x. Familiar examples of fields are found among the number systems (the rational numbers, the real numbers, and the complex numbers are all fields). There are many others. For example, if p is a prime number, then the integers mod p form a field: its elements are the congruence classes of integers mod p, with addition and multiplication induced from the usual integer operations. For example, here are the addition and multiplication tables for the integers mod 3. (We use 0,1,2 as representatives of the congruence classes.) + 0 1 2 0 0 1 2 1 1 2 0 2 2 0 1 0 1 2 0 0 0 0 1 0 1 2 2 0 2 1 2 Finite fields: existence Galois (in one of the few papers published in his lifetime) answered completely the question of which finite fields exist. First, the number of elements in a finite field must be a prime power, say q = p r, where p is prime. Then, for each prime power q = p r, there exists a field of order q, and it is unique (up to isomorphism). The construction is as follows. First, let F 0 be the field of integers mod p. Now choose an irreducible polynomial f (X) of degree r over F 0. (It can be shown that such polynomials always exist; indeed, it is possible to count them.) We can assume that the leading coefficient of f is equal to 1; say f (X) = X r + c r 1 X r 1 + + c 1 X + c 0. We take the elements of F to be all expressions of the form x 0 + x 1 a + x 2 a 2 + + x r 1 a r 1, where a is required to satisfy f (a) = 0, and x 0,...,x r 1 F 0. (This is very similar to the construction of the complex numbers as of the form x+yi, where i 2 +1 = 0, and x and y are real numbers.) Galois fields/2

Now the number of expressions of the above form is p r, since there are p choices for each of the r coefficients x 0,...,x r 1. Adding these expressions is straightforward. To multiply them, observe that a r = c r 1 a r 1 c 1 a c 0, so a r (and similarly any higher power of a) can be reduced to the required form. It can be shown, using the irreducibility of the polynomial f, that this construction produces a field. Moreover, even though there are different choices for the irreducible polynomials, the fields constructed are all isomorphic. For an example, we construct a field of order 9 = 3 2, using the polynomial X 2 + 1, which is irreducible over the field of integers mod 3. The elements of the field are all expressions of the form x + ya, where a 2 = 2, and x,y = 0,1,2. As examples of addition and multiplication, we have (2 + a) + (2 + 2a) = 4 + 3a = 1, (2 + a)(2 + 2a) = 4 + 6a + 2a 2 = 4 + 0 + 4 = 8 = 2. 3 Finite fields: properties In this section, we describe some properties of the Galois field F = GF(q), where q = p r with p prime. As noted in the last section, the elements 0,1,2,..., p 1 of F form a subfield F 0 which is isomorphic to the integers mod p; for obvious reasons, it is known as the prime subfield of F. Additive group. This is because The additive group of GF(q) is an elementary Abelian p-group. x + + x = (1 + + 1)x = 0x = 0, where there are p terms in the sum. Thus, it is the direct sum of r cyclic groups of order p. Another way of saying this is that F is a vector space of dimension r over F 1 ; that is, there is a basis (a 1,...,a r ) such that every element x of F can be written uniquely in the form x = x 1 a 1 + + x r a r for some a 1,...,x r F 0 = {0,1,..., p 1}. Galois fields/3

Multiplicative group. The most important result is that the multiplicative group of GF(q) is cyclic; that is, there exists an element g called a primitive root) such that every non-zero element of F can be written uniquely in the form g i for some i with 0 i q 2. Moreover, we have g q 1 = g 0 = 1. Squares. Suppose that q is odd. Then the cyclic group of order q 1 has the property that exactly half its elements are squares (those which are even posers of a primitive element). The squares are sometimes called quadratic residues, and the non-squares are quadratic non-residues. (These terms are used especially in the case where q is prime, so that GF(q) is the field of integers mod q. Automorphism group. from F onto F, such that An automorphism of F is a one-to-one mapping x x π (x + y) π = x π + y π, (xy) π = x π y π for all x,y. The map σ : x x p is an automorphism of F, known as the Frobenius automorphism. The elements of F fixed by the Frobenius automorphism are precisely those lying in the prime subfield F 0. Moreover, the group of automorphisms of F is cyclic of order r, generated by σ. (This means that every automorphism has the form x x pi for some value of i with 0 i r 1. Special bases. We saw that F has bases of size r as a vector space over F 0. These bases can be chosen to have various additional properties. The easiest type of basis to find is one of the form {1,a,a 2,...,a r 1 }, where a is the root of an irreducible polynomial of degree r over F 0. The existence of such basis is guaranteed by the construction. A basis of the form {a,a σ,a σ2,...,a σr 1 }, where σ is the Frobenius automorphism, is called a normal basis. Such a basis always exists. Note that the automorphism group of F has a particularly simple form relative to a normal basis, since the basis elements are just permuted cyclically by the automorphisms. Subfields. If the field GF(p r ) has a subfield GF(p s 1 ), where p and p 1 are primes, then p = p 1 and s divides r. Conversely, if s divides r then GF(p r ) has a unique subfield of order p s. The necessity of the condition is proved by applying Lagrange s Theorem to the additive and multiplicative groups. The sufficiency is Galois fields/4

proved by observing that, if σ is the Frobenius automorphism of GF(p r ), and s divides r, then the fixed elements of the automorphism σ s (that is, the elements a satisfying a ps = a) form the unique subfield of order p s. Calculation in finite fields. we have Addition in GF(q) is easy if we have chosen a basis: (x 1 a a + + x r a r ) + (y 1 a 1 + + y r a r ) = (x 1 + y 1 )a 1 + + (x r + y r )a r, in other words, we add coordinate-wise. On the other hand, multiplication is easy if we have chosen a primitive root g: we have (g i ) (g j ) = g i+ j, where the exponent is reduced mod q 1 if necessary. In order to be able to perform both operations, we need a table telling us how to translate between the two representations. This is essentially a table of logarithms (for those who remember such things), since if g i = x, we can think of i as the logarithm of x. For the field GF(9) which we constructed earlier, using an element a satisfying a 2 = 2 (over the integers mod 3), we find that g = 1 + a is a primitive element, and the table of logarithms is as follows: g 0 1 g 1 a + 1 g 2 2a g 3 2a + 1 g 4 2 g 5 2a + 2 g 6 a g 7 a + 2 For example, (a + 2)(2a + 2) = g 7 g 5 = g 12 = g 4 = 2. References [1] R. Lidl and H. Niederreiter, Finite Fields, Cambridge University Press, Cambridge, 1996. Galois fields/5

Peter J. Cameron May 30, 2003 Galois fields/6

2024 © sciencedocbox.com Privacy Policy | Terms of Service | Feedback