Construction of Galois Fields of Characteristic

Similar documents
Quasi-reducible Polynomials

Galois fields/1. (M3) There is an element 1 (not equal to 0) such that a 1 = a for all a.

Name: Solutions Final Exam

TC10 / 3. Finite fields S. Xambó

(January 14, 2009) q n 1 q d 1. D = q n = q + d

Section VI.33. Finite Fields

Finite Fields. Saravanan Vijayakumaran Department of Electrical Engineering Indian Institute of Technology Bombay

PETERSON'S TABLE OF IRREDUCIBLE POLYNOMIALS OVER GF(2)

18. Cyclotomic polynomials II

Chapter 5. Modular arithmetic. 5.1 The modular ring

Finite Fields. [Parts from Chapter 16. Also applications of FTGT]

ECEN 5022 Cryptography

Galois Theory, summary

Section 33 Finite fields

(1.1) Sn{F)[C(g{x))] = {h{c(g{x))) : A(x) F[x], deg h{x) < n]

Course 311: Michaelmas Term 2005 Part III: Topics in Commutative Algebra

GALOIS GROUPS OF CUBICS AND QUARTICS (NOT IN CHARACTERISTIC 2)

Public-key Cryptography: Theory and Practice

The Adjacency Graphs of Linear Feedback Shift Registers with Primitive-like Characteristic Polynomials

Homework 10 M 373K by Mark Lindberg (mal4549)

GENERATORS OF FINITE FIELDS WITH POWERS OF TRACE ZERO AND CYCLOTOMIC FUNCTION FIELDS. 1. Introduction

A connection between number theory and linear algebra

1 The Galois Group of a Quadratic

Math 0320 Final Exam Review

ALGEBRA PH.D. QUALIFYING EXAM September 27, 2008

CYCLOTOMIC POLYNOMIALS

THE GROUP OF UNITS OF SOME FINITE LOCAL RINGS I

ALGEBRA PH.D. QUALIFYING EXAM SOLUTIONS October 20, 2011

GALOIS THEORY AT WORK: CONCRETE EXAMPLES

FACTORIZATION OF POLYNOMIALS OVER FINITE FIELDS

MATH 361: NUMBER THEORY TENTH LECTURE

Galois Theory TCU Graduate Student Seminar George Gilbert October 2015

Section IV.23. Factorizations of Polynomials over a Field

Coding Theory and Applications. Solved Exercises and Problems of Cyclic Codes. Enes Pasalic University of Primorska Koper, 2013

Galois theory (Part II)( ) Example Sheet 1

Roots of Unity, Cyclotomic Polynomials and Applications

Field Theory Qual Review

A Generalization of Wilson s Theorem

Abstract Algebra, Second Edition, by John A. Beachy and William D. Blair. Corrections and clarifications

CYCLOTOMIC POLYNOMIALS

Five peculiar theorems on simultaneous representation of primes by quadratic forms

Math 201C Homework. Edward Burkard. g 1 (u) v + f 2(u) g 2 (u) v2 + + f n(u) a 2,k u k v a 1,k u k v + k=0. k=0 d

Fundamental Theorem of Algebra

SOME EXAMPLES OF THE GALOIS CORRESPONDENCE

LECTURE NOTES IN CRYPTOGRAPHY

Chapter 4 Mathematics of Cryptography

x n k m(x) ) Codewords can be characterized by (and errors detected by): c(x) mod g(x) = 0 c(x)h(x) = 0 mod (x n 1)

Classification of Finite Fields

Introduction to finite fields

Algebra SEP Solutions

VARIETIES WITHOUT EXTRA AUTOMORPHISMS I: CURVES BJORN POONEN

Finite fields: some applications Michel Waldschmidt 1

Lemma 1.1. The field K embeds as a subfield of Q(ζ D ).

Groups, Rings, and Finite Fields. Andreas Klappenecker. September 12, 2002

Factorization in Polynomial Rings

ECEN 5682 Theory and Practice of Error Control Codes

GALOIS THEORY. Contents

Course 2316 Sample Paper 1

A Note on Powers in Finite Fields

SOLVING SOLVABLE QUINTICS. D. S. Dummit

Page Points Possible Points. Total 200

Algebra Homework, Edition 2 9 September 2010

Fields and Galois Theory. Below are some results dealing with fields, up to and including the fundamental theorem of Galois theory.

Chapter 6. BCH Codes

22M: 121 Final Exam. Answer any three in this section. Each question is worth 10 points.

MATH 431 PART 2: POLYNOMIAL RINGS AND FACTORIZATION

Divisor matrices and magic sequences

54.1 Definition: Let E/K and F/K be field extensions. A mapping : E

Factorization of integer-valued polynomials with square-free denominator

School of Mathematics and Statistics. MT5836 Galois Theory. Handout 0: Course Information

MATH 113 FINAL EXAM December 14, 2012

FIXED-POINT FREE ENDOMORPHISMS OF GROUPS RELATED TO FINITE FIELDS

Midterm Exam. There are 6 problems. Your 5 best answers count. Please pay attention to the presentation of your work! Best 5

51 Kronecker's Theorem

An Additive Characterization of Fibers of Characters on F p

Fields in Cryptography. Çetin Kaya Koç Winter / 30

DIHEDRAL GROUPS II KEITH CONRAD

VARIETIES WITHOUT EXTRA AUTOMORPHISMS II: HYPERELLIPTIC CURVES

9. Finite fields. 1. Uniqueness

Math Introduction to Modern Algebra

GF(2 m ) arithmetic: summary

Graduate Preliminary Examination

Review: complex numbers

A field F is a set of numbers that includes the two numbers 0 and 1 and satisfies the properties:

MATH 3030, Abstract Algebra Winter 2012 Toby Kenney Sample Midterm Examination Model Solutions

Real Analysis Prelim Questions Day 1 August 27, 2013

1 First Theme: Sums of Squares

THE JOHNS HOPKINS UNIVERSITY Faculty of Arts and Sciences FINAL EXAM - SPRING SESSION ADVANCED ALGEBRA II.

1 Fields and vector spaces

CSCE 564, Fall 2001 Notes 6 Page 1 13 Random Numbers The great metaphysical truth in the generation of random numbers is this: If you want a function

Finite Fields and Error-Correcting Codes

Zsigmondy s Theorem. Lola Thompson. August 11, Dartmouth College. Lola Thompson (Dartmouth College) Zsigmondy s Theorem August 11, / 1

MT5836 Galois Theory MRQ

NUMBER THEORY. Anwitaman DATTA SCSE, NTU Singapore CX4024. CRYPTOGRAPHY & NETWORK SECURITY 2018, Anwitaman DATTA

Computer Investigation of Difference Sets

1 Rings 1 RINGS 1. Theorem 1.1 (Substitution Principle). Let ϕ : R R be a ring homomorphism

15 Elliptic curves and Fermat s last theorem

FIELD THEORY. Contents

Section V.8. Cyclotomic Extensions

17 Galois Fields Introduction Primitive Elements Roots of Polynomials... 8

Transcription:

Construction of Galois Fields of Characteristic Two and Irreducible Polynomials By J. D. Swift 1. Introduction. The primary purpose of this paper is to provide a practical method of constructing Galois fields of characteristic 2 of large orders and thereby simultaneously give a practical way of generating a large supply of polynomials of high degree irreducible modulo 2. These polynomials are of special interest in connection with the theory of linear recursive sequences. See, for example [5]; some applications are suggested in []. The basic structure of Galois fields is extremely simple. For each prime q and each n there is one and (up to isomorphism) only one finite field of order q", designated by GF(q"). Its additive group is the elementary abelian group; the direct sum of n cyclic groups of order q. The multiplicative group of the non-zero elements is cyclic. The field GF(qnm) may be constructed from a given GF(q") by finding a polynomial of degree m, irreducible over GF(q") and considering the set of polynomials with coefficients in GF(qn) modulis q and the irreducible polynomial. The subfields of GF(q") are precisely GF(q ) where d n; if g is a primitive generator of GF(q"), i.e. of the multiplicative subgroup of its non-zero elements, gm is a primitive generator of GF(qd) where m = (q" l)/(qd 1). These theorems, covered by many basic texts of algebra since the original work of L. E. Dickson [2], essentially dispose of the elementary theory of these fields. A particularly complete theory is contained in [1] which also has a bibliography listing a number of items from the extensive literature of the deeper arithmetic of the Galois fields. In general, results quoted without proof in this paper may either be found directly in [1] or are immediate consequences of statements proved therein. From a practical standpoint, the only problems left by the structure theorems are those of finding an irreducible polynomial of degree m over the base field and of finding a primitive generator of the field with respect to this polynomial. In certain cases an irreducible polynomial is readily available and we are here concerned with the exploitation of these cases. 2. Cyclotomic polynomials over GF(2). Let p be a prime for which 2 is a primitive root; then the cyclotomic polynomial fp(x) = (xp D/(.r -f 1) is irreducible over GF(2). Thus for such primes the theory permits the realization of GF(2p~l). Further, if g is a primitive generator of this field we may realize GF(2d) by considering powers of gm, m = (2P_1-1 )/(2d - 1) when d \ (p 1). Since the only obvious restriction imposed on p by the condition that 2 be a primitive root of p is that p m ± (mod 8), it is likely that all fields GF(2"), n fá 0 (mod 8), may be realized in this way for sufficiently large p. The smallest fields which cannot be constructed from polynomials listed in this paper are those for which n = 8, 1, 17. If 2 is any element of GF(2") the powers z, zl,, zn will be linearly dependent over GF(2) and the resulting relation of dependence/(z) = 0 will give an irreducible Received October 19, 1959. 99

100 J. D. SWIFT polynomial f(z) if z does not he in a proper subfield of GF(2"). If 2 is a primitive generator of GF(2"),f(z) will be, by definition, primitive irreducible. All irreducible polynomials over GF(2) may be constructed in this way. By simple counting arguments we see that the number of irreducible polynomials of degree n is - (2" 22B/î< - S2B/,,Í... ) n where the g are the distinct prime divisors of n. Similarly, the number of primitive irreducible polynomials of this degree is (l/n)ip(2n 1) where <f> is the Euler totient. The actual problem of construction of these fields now reduces to finding a generator of the cyclic group. It is at this point that the theory carries us no further and resort must be taken to high speed computing machinery. It is easy to see that, for p > 5, any generator modulo the cyclotomic polynomial must be of degree at least. In particular, since xp = 1,1 and x? are of order p. To investigate the orders of the other linear and quadratic forms we study 2 = x 1/x; define h(z) = x~mfp(x) where m = (p 1 )/2; h is a polynomial of degree m in z. Thus 2 belongs to the sub-field GF(2m) and the order of 2 is a divisor of 2m 1. Now (x I)2 = x2-1 = xz; thus the order of x2 1 is a divisor of p(2m 1) and the order of x I is the same as that of its square. Again x(x 1 ) has the same order as x 1. Finally x* x - I - x(z 1) and 2-1 is also in GF(2m). Thus the order of all linear and quadratic forms divides p(2m 1) < 2r~l 1 for p > 5. It is of interest to note that the order of 2 is precisely 2m 1 for all suitable primes p ^ 11) except for 7 and 101 for which it is \ the maximum. We must, then, seek among the cubic or higher polynomials for our generators and we turn to a consideration of the computations by which this may be done.. The power routine. The primary tool in the investigation is a high-speed routine programmed for SWAC which finds prescribed powers of polynomials F(x) modulis polynomials G(x) and 2. The routine has two parts and the second part may be used as many times as desired without return to the first. The initial part receives F(.v) and G(x) as inputs and computes n successive squares (F(x)), (F(x) ),, (F(.v) )'" where n is the degree of G(x), reducing the results modulis 2 and G(x). The last square is a check; if G(x) is irreducible, (F(x))** = F(x). The second receives as input the exponent of the power of F(x) desired, the upper limit being 2" 1, and computes this power by multiplying together the appropriate stored powers from the first routine. The routines are quadruple precision and, since SWAC has a bit word, degrees and powers are limited to 1 and 21 1 respectively. About 5 second per multiplication is required in either routine. This means a maximum of seconds for completion in either case. To apply this routine to the problem of determining a primitive generator, fp(x) is used for G(x) and possible generators are used as F(x) in lexicographic succession. The exponents are (2*~l \)/q, whereç, are the prime divisorsof (2P~1 1). (It is a fortunate circumstance that all necessary factorizations are known [].) If the power of F(x) is 1 for any of these exponents, F(x) is not a primitive generator, and conversely. As a check the power is also calculated for g< = 1 ; here the value must be 1. Table 1 lists the earliest primitive generator for each prime.

GALOIS FIELDS OF CHARACTERISTIC TWO AND IRREDUCIBLE POLYNOMIALS 101 Table 1 Generating polynomials for GF(2p~l); to be used modulis 2 and (x» - l)/(x - 1) polynomial 5 11 1 19 29 7 5 59 1 7 8 101 107 11 19 x'-f xs - x - x x X* X X2 X* X Xs - - - X2 x - x2 - x X. Generators of subfields of the cyclotomic fields. There are 1 primes covered by Table 1. If subfields are considered, 2 additional fields may be constructed. Specifically, for each polynomial in Table 1 as F(x) and its corresponding fp(x) as G(x) we compute the (2P~1 l)/(2d l)-th power of F(x) for each divisor d of p 1,2 < d < p 1. The results are tabulated in Table 2. Here, in the largest case, the result is a polynomial of degree 18 and we have adopted a condensation of coefficients into octal notation to bring the result within manageable proportions. For example, x7 - x5 x - x2 - x - 1 may be represented first by the ordered octuple of its coefficients: 10 110 111, and these may be read in groups of three as octal numbers. Thus the polynomial would appear as 27. The polynomials of Table 2 are not necessarily the lexicographically earliest generators of their fields. It would be quite impossible to find such generators. However the disadvantages of polynomials of large degree are not as great as might be assumed at first thought. If a number of powers are to be computed, the full size of the registers is needed for the reduction modulo fp(x) and no more additions are needed to compute the irreducible polynomials than if the degrees were smaller. The only unavoidable disadvantage is the danger of an error in transcription. The entries in the table have been preserved against error by a comparison of output decks on successive runs and careful proofreading. 5. Utilization of generators to produce irreducible polynomials. As indicated in section 2, an irreducible polynomial is produced from an element z of GF(2") not belonging to a proper subfield by finding the relation of dependence of 2, 2, 2,, zn. In one set of n - 1 registers are initially stored the powers of z. Another companion set is loaded initially with a single 1 in the ith place, = 0(1 )n. Whenever an operation is performed in one set of registers, the same is done to the companion set. By addition of other elements of the power registers the value 0 is obtained in the 2 (or z") register. The irreducible polynomial is then read from

Table 2 Generating polynomials for proper sub-fields of GF{2*-i). Fields are GF(V) for d \ p - 1, d è. Generators are to be used modulis 2 and (xr l)/(x 1). See section for use of octal notation to represent polynomials. polynomial 0 170 115 121 9 17 2202 1 1 7 10777 177 77705 0 517 18 12 9 I 0 71 7 2 0100 227 577 277 00055 20271 2001 112 77 127 2 11 117 117 2 25 50100 15 2100 217 2200 29 777 7770 0 20 15 12 10 5 22 Tl I) 2 25 2 17777 1772 1700 5 552 177 7200 5 1012 250 10 00 11170 72 010 5015 077 11710 5150 5205 5017 50000 0 02150 1201 51515 02017 07 771 22 22 075 02 0052 170 701 20 7770 1770 000 71022 1525 71 0117 1207 52020 00055 5255 2101 102 22105 1 7-7770 50 25 20 105 177 1770 17 20 1000 17 mil 7777 220 2071 010 5170 0020 0220 05511 7155 512 11 25702 107 0210 00220 522 7777 775 0170 00 7702 777 7077 0 2021 000 10 5 5 2 1 10 5 9 2 127 1727 77 72055 550 5000 11111 1 7772 52020 5202 7771 52 772 12 7777 502 5221 00200 57 77 252 517 150 7770 11 m 01 15105 2200 217 mu um 0700 220 500 il m 000 11 0100 700 071 272 0000 502 505 020 772 777 012 1 2 02 225 120 7 77 505 212 107 0002 1277 0000 5202 7777 05 05 0521 7770 720 7725 0000 5727 57 15 10117 00270 102

GALOIS FIELDS OF CHARACTERISTIC TWO AND IRREDUCIBLE POLYNOMIALS 10 the companion register. The process can be carried out by systematic diagonalization. As an example, we construct a primitive irreducible cubic using 2 = x" - x - x - x - 1 (121) for p = 1. We find z2 = x" x10 - x9 - x7 - x* - x - x - x2 and 2* = x' - x - x* - x5. The calculations can be arranged : 1: 000 000 000 001 1: 000 000 000 001 2: 001 011 010 001 2-2: 000 000 000 001 22: 111 011 011 100 2: 001 011 010 000 z - 2-1: 000 000 000 000. Specifically, 2 is used (vacuously) to clear the first column; then discarded. The second column is now empty; z is used to clear the third column and discarded. All but the last column are now clear and z - 2 is used to finish the job; the polynomial is 2-21- Alternatively we could have started from 1 and the right hand column: z 1: 001 011 010 000 22: 111 Oil Oil 100 z: 001 Oil 010 000, 2-1:001 Oil 010 000 z 2-1: 000 000 000 000. 2: 001 Oil 010 000 The diagonalization process, while requiring large storage, is very rapid. No more than 2pn2 additions need be performed. University of California Los Angeles, California 1. A. A. Albert, Fundamental Concepts of Higher Algebra, University of Chicago, 195. 2. L. E. Dickson, Linear Groups with an Exposition of the Galois Field Theory, Teubner, Leipzig, 1901.. >I. Kraitchik, Introduction a la théorie des S'ombres, Paris, 1952.. R. Price & P. E. Green, jr., "A communication technique for multipath channels," Proc, IRE, v., 1958, p. 555. 5. N. Zierler, "Linear recursive sequences," Soc. Ind. Appl. Math., Jn.: v. 7, 1959, p. 1.

2024 © sciencedocbox.com Privacy Policy | Terms of Service | Feedback