SlideShare a Scribd company logo

2.ppt

Download as PPT, PDF
T
TapodhirAcharjee2

S is a ring. It satisfies the properties of a ring: - It is closed under addition and multiplication. - Addition and multiplication are both associative. - Addition has an identity element and inverse elements. - Addition is commutative. - Multiplication distributes over addition.

Education
1 of 52
Basic Concepts in Number Theory and Finite Fields
Introduction • finite fields has increasing importance in cryptography – AES, Elliptic Curve, IDEA, Public Key • concern operations on “numbers” – where what constitutes a “number” and the type of operations varies considerably • start with basic number theory concepts
Divisors • We say that a non-zero number b divides a if for some m have a=mb (a,b,m all integers) • that is b divides a with no remainder • denote this b|a • and say that b is a divisor of a • eg. all of 1,2,3,4,6,8,12,24 divide 24 • eg. 13 | 182; –5 | 30; 17 | 289; –3 | 33; 17 | 0
Properties of Divisibility • If a|1, then a = ±1. • If a|b and b|a, then a = ±b. • Any b ≠ 0 divides 0. • If a | b and b | c, then a | c – e.g. 11 | 66 and 66 | 198 , 11 | 198 • If b|g and b|h, then b|(mg + nh) for arbitrary integers m and n e.g. b = 7; g = 14; h = 63; m = 3; n = 2 hence 7|14 and 7|63
Division Algorithm • Given any positive integer n and any nonnegative integer a, if we divide a by n, we get an integer quotient q and an integer remainder r that obey the following relationship: • a = qn + r where 0 <= r < n; q = floor(a/n) • remainder r often referred to as a residue
Greatest Common Divisor (GCD) A common problem in number theory GCD (a,b) of a and b is the largest integer that divides evenly into both a and b eg GCD(60,24) = 12 define gcd(0, 0) = 0 often want no common factors (except 1) define such numbers as relatively prime eg GCD(8,15) = 1 hence 8 & 15 are relatively prime
Example GCD(1970,1066) 1970 = 1 x 1066 + 904 gcd(1066, 904) 1066 = 1 x 904 + 162 gcd(904, 162) 904 = 5 x 162 + 94 gcd(162, 94) 162 = 1 x 94 + 68 gcd(94, 68) 94 = 1 x 68 + 26 gcd(68, 26) 68 = 2 x 26 + 16 gcd(26, 16) 26 = 1 x 16 + 10 gcd(16, 10) 16 = 1 x 10 + 6 gcd(10, 6) 10 = 1 x 6 + 4 gcd(6, 4) 6 = 1 x 4 + 2 gcd(4, 2) 4 = 2 x 2 + 0 gcd(2, 0)
GCD(1160718174, 316258250) Dividend Divisor Quotient Remainder a = 1160718174 b = 316258250 q1 = 3 r1 = 211943424 b = 316258250 r1 = 211943424 q2 = 1 r2 = 104314826 r1 = 211943424 r2 = 104314826 q3 = 2 r3 = 3313772 r2 = 104314826 r3 = 3313772 q4 = 31 r4 = 1587894 r3 = 3313772 r4 = 1587894 q5 = 2 r5 = 137984 r4 = 1587894 r5 = 137984 q6 = 11 r6 = 70070 r5 = 137984 r6 = 70070 q7 = 1 r7 = 67914 r6 = 70070 r7 = 67914 q8 = 1 r8 = 2516 r7 = 67914 r8 = 2516 q9 = 31 r9 = 1078 r8 = 2516 r9 = 1078 q10 = 2 r10 = 0
Modular Arithmetic • define modulo operator “a mod n” to be remainder when a is divided by n – where integer n is called the modulus • b is called a residue of a mod n – since with integers can always write: a = qn + b – usually chose smallest positive remainder as residue • ie. 0 <= b <= n-1 • For a given positive integer , two integers a and b are called congruent modulo , written a ≡ b (mod n) • if a-b is divisible by n (or equivalently if a and b have the same remainder when divided by n ). • e.g., 37 ≡ 57 (mod 10)
Modular Arithmetic Operations • can perform arithmetic with residues • uses a finite number of values, and loops back from either end Zn = {0, 1, . . . , (n – 1)} • modular arithmetic is when do addition & multiplication and modulo reduce answer • can do reduction at any point, ie – a+b mod n = [a mod n + b mod n] mod n
Modular Arithmetic Operations 1.[(a mod n) + (b mod n)] mod n = (a + b) mod n 2.[(a mod n) – (b mod n)] mod n = (a – b) mod n 3.[(a mod n) x (b mod n)] mod n = (a x b) mod n e.g. [(11 mod 8) + (15 mod 8)] mod 8 = 10 mod 8 = 2 (11 + 15) mod 8 = 26 mod 8 = 2 [(11 mod 8) – (15 mod 8)] mod 8 = –4 mod 8 = 4 (11 – 15) mod 8 = –4 mod 8 = 4 [(11 mod 8) x (15 mod 8)] mod 8 = 21 mod 8 = 5 (11 x 15) mod 8 = 165 mod 8 = 5
Modulo 8 Addition Example + 0 1 2 3 4 5 6 7 0 0 1 2 3 4 5 6 7 1 1 2 3 4 5 6 7 0 2 2 3 4 5 6 7 0 1 3 3 4 5 6 7 0 1 2 4 4 5 6 7 0 1 2 3 5 5 6 7 0 1 2 3 4 6 6 7 0 1 2 3 4 5 7 7 0 1 2 3 4 5 6
Modulo 8 Multiplication + 0 1 2 3 4 5 6 7 0 0 0 0 0 0 0 0 0 1 0 1 2 3 4 5 6 7 2 0 2 4 6 0 2 4 6 3 0 3 6 1 4 7 2 5 4 0 4 0 4 0 4 0 4 5 0 5 2 7 4 1 6 3 6 0 6 4 2 0 6 4 2 7 0 7 6 5 4 3 2 1
Additive and Multiplicative inverse of Modulo 8 w -w W-1 0 0 ----- 1 7 1 2 6 ------- 3 5 3 4 4 ------ 5 3 5 6 2 --- 7 1 7
Euclidean Algorithm • an efficient way to find the GCD(a,b) • uses theorem that: – GCD(a,b) = GCD(b, a mod b) • Euclidean Algorithm to compute GCD(a,b) is: Euclid(a,b) if (b=0) then return a; else return Euclid(b, a mod b);
Extended Euclidean Algorithm • For given integers a and b, the extended Euclidean algorithm not only calculates the greatest common divisor d but also two additional integers x and y that satisfy the following equation • ax + by = d = gcd(a, b) • useful for later crypto computations • follow sequence of divisions for GCD but assume at each step i, can find x & y: r = ax + by • at the end find GCD value and also x & y • The Bézout coefficients are x and y, that is GCD(a,b)=r=ax+by • if GCD(a,b)=1 these values are inverses
Example • The following table shows how the extended Euclidean algorithm proceeds with input 240 and 46. • The greatest common divisor is the last non zero entry, 2 in the column "remainder". • The computation stops at row 6, because the remainder in it is 0. • Bézout coefficients appear in the last two entries of the second-to-last row. • In fact, it is easy to verify that -9 × 240 + 47 × 46 = 2. • Finally the last two entries 23 and -120 of the last row are, up to the sign, the quotients of the input 46 and240 by the greatest common divisor 2.
si+1= si-1 –qisi ti+1=ti-1 – qi ti
The Extended Euclidean Algorithm Example 1: m = 65, n = 40 Step 1: The (usual) Euclidean algorithm: • (1) 65 = 1. 40 + 25 • (2) 40 = 1. 25 + 15 • (3) 25 = 1 .15 + 10 • (4) 15 = 1 .10 + 5 • 10 = 2 . 5 • Therefore: gcd(65,40) = 5
Conclusion: 65(-3) +40(5) = 5
Finding Inverse Problem: Find an inverse of a (mod n) for the pair of relatively prime numbers a=4, n=9 • gcd(4,9)= gcd(9,4) • 9=4x2 + 1 • 4=1x4+0 Gcd(9,4)=mx9+ nx4 1=9 – 4x2 =1.9+-2x4 Bezut’s coeffiecients are(1,-2) Inverse of 4 (mod 9)= -2 (mod 9)= 7 (mod 9) So, 7 is the required inverse answer.
Example Problem: Find an inverse of a (mod n) for the pair of relatively prime numbers a=19, n=141 • Gcd(19,141)= gcd(141,19) • 141=19.7 + 8 • 19=8.2+3 • 8=3.2+2 • 3=2.1 +1 • 2=1.2+0 • So,gcd(19,141)=1
1=3-2.1 =3 – (8-3.2).1 =3- 8.1 + 3.2.1=3.3 – 8.1 =(19 – 8.2).3 – 8.1=19.3 -8.2.3 -8.1=19.3-8.7 = 19.3 – 7.(141- 19.7)=19.3 – 7.141 + 49.19 =-7.141+52.19 19-1 (mod 141) = 52 Bezout’s coefficients= (-7,52) Inverse of 19 mod 141=52
• Problem: Find the multiplicative inverse of 8 mod 11, using the Euclidean Algorithm. • Sol: 11 = 8(1) + 3 3 = 11 − 8(1) 8 = 3(2) + 2 2 = 8 − 3(2) 3 = 2(1) + 1 1 = 3 − 2(1) 2 = 1(2) Now reverse the process using the equations on the right. 1 = 3 − 2(1) 1 = 3 − (8 − 3(2))(1) = 3 − (8 − (3(2)) = 3(3) − 8 1 = (11 − 8(1))(3) − 8 = 11(3) − 8(4) = 11(3) + 8(−4) Therefore 1 ≡ 8(−4) mod 11, or if we prefer a residue value for the multiplicative inverse, 1 ≡ 8(7) mod 11.
Problem: Find the multiplicative inverse of 17 mod 43, using the Euclidean Algorithm. Sol: 17x ≡ 1 (mod 43) So, x ≡ 17-1 (mod 43) 43= 17 x2 +9 17= 9 x1 +8 9= 8 x1 + 1 1= 9 – 8 1=9 – (17-9) [using 17= 9x1 + 8] =2.9 – 17 = 2(43- 17x2) – 17[ using 43= 17x2 + 9] =2x43 – 5x17 17-1 (mod 43) ≡ -5 ≡ 38 x=38
Problem: Find the Multiplicative Inverse of 51 mod 88 Inverse of 51 mod 88 is 19. 51*19 mod 88 = 1
Group • a set of elements or “numbers” – may be finite or infinite • with some operation whose result is also in the set (closure) • group is a set of elements that is closed under a binary operation and that is associative and that includes an identity element and an inverse element • obeys: – associative law: (a.b).c = a.(b.c) – has identity e: e.a = a.e = a – has inverses a-1: a.a-1 = e • if commutative a.b = b.a – then forms an abelian group – EXAMPLE???? set of integers with addition
Cyclic Group • define exponentiation as repeated application of operator – example: a-3 = a.a.a • and let identity be: e=a0 • a group is cyclic if every element is a power of some fixed element – ie b = ak for some a and every b in group • a is said to be a generator of the group • Example: {1, 2, 4, 8} with mod 12 multiplication, the generator is 2.
Ring • A ring is a set of elements that is closed under two binary operations, addition and subtraction, with the following: the addition operation is a group that is commutative; the multiplication operation is associative and is distributive over the addition operation. • a set of “numbers” • with two operations (addition and multiplication) which form: • an abelian group with addition operation • and multiplication: – has closure – is associative – distributive over addition: a(b+c) = ab + ac • if multiplication operation is commutative, it forms a commutative ring • if multiplication operation has an identity and no zero divisors, it forms an integral domain
Consider the set S = {a, b} with addition and multiplication defined by the tables: Is S a ring? Justify your answer. Solution: (A1) Closure: The sum of any two elements in S is also in S. (A2) Associative: S is associative under addition, by observation. (A3) Identity element: a is the additive identity element for addition. (A4) Inverse element: The additive inverses of a and b are b and a, respectively. (A5) Commutative: S is commutative under addition, by observation. (M1) Closure: The product of any two elements in S is also in S. (M2) Associative: S is associative under multiplication, by observation. (M3) Distributive laws: S is distributive with respect to the two operations, by observation.
Field  A field is a nonzero commutative ring that contains a multiplicative inverse for every nonzero element, or equivalently a ring whose nonzero elements form an abelian group under multiplication.e.g., the real numbers R w.r.t the usual operation + & *. two operations which form: abelian group for addition abelian group for multiplication (ignoring 0) ring have hierarchy with more axioms/laws group -> ring -> field
Group, Ring, Field
Finite (Galois) Fields • finite fields play a key role in cryptography • can show number of elements in a finite field must be a power of a prime pn • known as Galois fields • denoted GF(pn) • in particular often use the fields: – GF(p) – GF(2n)
Galois Fields GF(p) • GF(p) is the set of integers {0,1, … , p-1} with arithmetic operations modulo prime p • these form a finite field – since have multiplicative inverses – find inverse with Extended Euclidean algorithm • hence arithmetic is “well-behaved” and can do addition, subtraction, multiplication, and division without leaving the field GF(p)
GF(7) Multiplication Example  0 1 2 3 4 5 6 0 0 0 0 0 0 0 0 1 0 1 2 3 4 5 6 2 0 2 4 6 1 3 5 3 0 3 6 2 5 1 4 4 0 4 1 5 2 6 3 5 0 5 3 1 6 4 2 6 0 6 5 4 3 2 1
Polynomial Arithmetic • can compute using polynomials f(x) = anxn + an-1xn-1 + … + a1x + a0 = ∑ aixi • nb. not interested in any specific value of x • which is known as the indeterminate • several alternatives available – ordinary polynomial arithmetic – poly arithmetic with coords mod p – poly arithmetic with coords mod p and polynomials mod m(x)
Ordinary Polynomial Arithmetic • add or subtract corresponding coefficients • multiply all terms by each other • eg let f(x) = x3 + x2 + 2 and g(x) = x2 – x + 1 f(x) + g(x) = x3 + 2x2 – x + 3 f(x) – g(x) = x3 + x + 1 f(x) x g(x) = x5 + 3x2 – 2x + 2
Polynomial Arithmetic with Modulo Coefficients when computing value of each coefficient do calculation modulo some value forms a polynomial ring could be modulo any prime but we are most interested in mod 2 ie all coefficients are 0 or 1 eg. let f(x) = x3 + x2 and g(x) = x2 + x + 1 f(x) + g(x) = x3 + x + 1 f(x) x g(x) = x5 + x2
Polynomial Division • can write any polynomial in the form: – f(x) = q(x) g(x) + r(x) – can interpret r(x) as being a remainder – r(x) = f(x) mod g(x) • if have no remainder say g(x) divides f(x) • if g(x) has no divisors other than itself & 1 say it is irreducible (or prime) polynomial • arithmetic modulo an irreducible polynomial forms a field
Polynomial GCD • can find greatest common divisor for polys – c(x) = GCD(a(x), b(x)) if c(x) is the poly of greatest degree which divides both a(x), b(x) • can adapt Euclid’s Algorithm to find it: Euclid(a(x), b(x)) if (b(x)=0) then return a(x); else return Euclid(b(x), a(x) mod b(x));
Problem: Find the GCD of 3x6 + 2x2+x +5 and 6x4 + x3 + 2x +4 in F7[x] Solution: Divide 3x6 + 2x2+x +5 by 6x4 + x3 + 2x +4 Q: 4x2+ 4x +4 R: 2x3 +6x2+5x +3 Divide 3x6 + 2x2+x +5 by 2x3 +6x2+5x +3 Q: 3x +2 R: x2+4x+5 Divide 2x3 +6x2+5x +3 by x2+4x+5 Q: 2x +5 R: 3x +6 Divide x2+4x+5 by 3x +6 Q: 5x +3 R: 1
Problem: determine the GCD for the pair of polynomials X3 + x +1 and x2 + x +1 over GF(2). Ans: 1
Modular Polynomial Arithmetic • can compute in field GF(2n) – polynomials with coefficients modulo 2 – whose degree is less than n – hence must reduce modulo an irreducible poly of degree n (for multiplication only) • form a finite field • can always find an inverse – can extend Euclid’s Inverse algorithm to find
Example GF(23)
Computational Considerations • since coefficients are 0 or 1, can represent any such polynomial as a bit string • addition becomes XOR of these bit strings • multiplication is shift & XOR – cf long-hand multiplication • modulo reduction done by repeatedly substituting highest power with remainder of irreducible poly (also shift & XOR)
Computational Example • in GF(23) have (x2+1) is 1012 & (x2+x+1) is 1112 • so addition is – (x2+1) + (x2+x+1) = x – 101 XOR 111 = 0102 • and multiplication is – (x+1).(x2+1) = x.(x2+1) + 1.(x2+1) = x3+x+x2+1 = x3+x2+x+1 – 011.101 = (101)<<1 XOR (101)<<0 = 1010 XOR 101 = 11112 • polynomial modulo reduction (get q(x) & r(x)) is – (x3+x2+x+1 ) mod (x3+x+1) = 1.(x3+x+1) + (x2) = x2 – 1111 mod 1011 = 1111 XOR 1011 = 01002
Using a Generator • equivalent definition of a finite field • a generator g is an element whose powers generate all non-zero elements – in F have 0, g0, g1, …, gq-2 • can create generator from root of the irreducible polynomial • then implement multiplication by adding exponents of generator

Recommended

Modular arithmetic
Modular arithmeticModular arithmetic
Modular arithmeticJanani S
 
Finite fields
Finite fields Finite fields
Finite fields BhumikaPal1
 
new 2.ppt
new 2.pptnew 2.ppt
new 2.pptTapodhirAcharjee2
 
555_Spring12_topic06.ppt
555_Spring12_topic06.ppt555_Spring12_topic06.ppt
555_Spring12_topic06.pptSnehSinha6
 
ikh323-05
ikh323-05ikh323-05
ikh323-05Anung Ariwibowo
 
Cryptography and Network Security chapter 4.ppt
Cryptography and Network Security chapter 4.pptCryptography and Network Security chapter 4.ppt
Cryptography and Network Security chapter 4.pptthe9amit
 
CH04.ppt
CH04.pptCH04.ppt
CH04.pptShahidMehmood285010
 
sheet6.pdf
sheet6.pdfsheet6.pdf
sheet6.pdfaminasouyah
 

Recommended

Modular arithmetic
Modular arithmeticModular arithmetic
Modular arithmeticJanani S
 
Finite fields
Finite fields Finite fields
Finite fields BhumikaPal1
 
new 2.ppt
new 2.pptnew 2.ppt
new 2.pptTapodhirAcharjee2
 
555_Spring12_topic06.ppt
555_Spring12_topic06.ppt555_Spring12_topic06.ppt
555_Spring12_topic06.pptSnehSinha6
 
ikh323-05
ikh323-05ikh323-05
ikh323-05Anung Ariwibowo
 
Cryptography and Network Security chapter 4.ppt
Cryptography and Network Security chapter 4.pptCryptography and Network Security chapter 4.ppt
Cryptography and Network Security chapter 4.pptthe9amit
 
CH04.ppt
CH04.pptCH04.ppt
CH04.pptShahidMehmood285010
 
sheet6.pdf
sheet6.pdfsheet6.pdf
sheet6.pdfaminasouyah
 
doc6.pdf
doc6.pdfdoc6.pdf
doc6.pdfaminasouyah
 
paper6.pdf
paper6.pdfpaper6.pdf
paper6.pdfaminasouyah
 
lecture5.pdf
lecture5.pdflecture5.pdf
lecture5.pdfaminasouyah
 
A study on number theory and its applications
A study on number theory and its applicationsA study on number theory and its applications
A study on number theory and its applicationsItishree Dash
 
ADVANCED ALGORITHMS-UNIT-3-Final.ppt
ADVANCED ALGORITHMS-UNIT-3-Final.pptADVANCED ALGORITHMS-UNIT-3-Final.ppt
ADVANCED ALGORITHMS-UNIT-3-Final.pptssuser702532
 
Ch04
Ch04Ch04
Ch04Joe Christensen
 
Cryptography
CryptographyCryptography
CryptographyHardik Sondagar
 
Cryptography and Network Security Principles and Practice.docx
Cryptography and Network Security Principles and Practice.docxCryptography and Network Security Principles and Practice.docx
Cryptography and Network Security Principles and Practice.docxAbhinav816839
 
Chapter 2 Lecture Notes_ Divisibility.pdf
Chapter 2 Lecture Notes_ Divisibility.pdfChapter 2 Lecture Notes_ Divisibility.pdf
Chapter 2 Lecture Notes_ Divisibility.pdfgeorgianabeauty02
 
Information Security Seminar #2
Information Security Seminar #2Information Security Seminar #2
Information Security Seminar #2Alexander Kolybelnikov
 
Number theory
Number theoryNumber theory
Number theorydhivyakesavan3
 
DAA - UNIT 4 - Engineering.pptx
DAA - UNIT 4 - Engineering.pptxDAA - UNIT 4 - Engineering.pptx
DAA - UNIT 4 - Engineering.pptxvaishnavi339314
 
NumberTheory.ppt
NumberTheory.pptNumberTheory.ppt
NumberTheory.pptDhandhan16
 
parameterized complexity for graph Motif
parameterized complexity for graph Motifparameterized complexity for graph Motif
parameterized complexity for graph MotifAMR koura
 
Mathematics TAKS Exit Level Review
Mathematics TAKS Exit Level ReviewMathematics TAKS Exit Level Review
Mathematics TAKS Exit Level Reviewguest3f17823
 
CRYPTO 2.pptx
CRYPTO 2.pptxCRYPTO 2.pptx
CRYPTO 2.pptxSanjanaMPradeep
 
Modular arithmetic
Modular arithmeticModular arithmetic
Modular arithmeticsangeetha s
 
Number theory
Number theory Number theory
Number theory tes31
 
Matdis 3.4
Matdis 3.4Matdis 3.4
Matdis 3.4Claudia Primasiwi
 
Lecture-1.pptx
Lecture-1.pptxLecture-1.pptx
Lecture-1.pptxNiharikaThakur32
 
Wireless-4.pptx
Wireless-4.pptxWireless-4.pptx
Wireless-4.pptxTapodhirAcharjee2
 
41.ppt
41.ppt41.ppt
41.pptTapodhirAcharjee2
 

More Related Content

Similar to 2.ppt

A study on number theory and its applications
A study on number theory and its applicationsA study on number theory and its applications
A study on number theory and its applicationsItishree Dash
 
ADVANCED ALGORITHMS-UNIT-3-Final.ppt
ADVANCED ALGORITHMS-UNIT-3-Final.pptADVANCED ALGORITHMS-UNIT-3-Final.ppt
ADVANCED ALGORITHMS-UNIT-3-Final.pptssuser702532
 
Cryptography and Network Security Principles and Practice.docx
Cryptography and Network Security Principles and Practice.docxCryptography and Network Security Principles and Practice.docx
Cryptography and Network Security Principles and Practice.docxAbhinav816839
 
Chapter 2 Lecture Notes_ Divisibility.pdf
Chapter 2 Lecture Notes_ Divisibility.pdfChapter 2 Lecture Notes_ Divisibility.pdf
Chapter 2 Lecture Notes_ Divisibility.pdfgeorgianabeauty02
 
DAA - UNIT 4 - Engineering.pptx
DAA - UNIT 4 - Engineering.pptxDAA - UNIT 4 - Engineering.pptx
DAA - UNIT 4 - Engineering.pptxvaishnavi339314
 
NumberTheory.ppt
NumberTheory.pptNumberTheory.ppt
NumberTheory.pptDhandhan16
 
parameterized complexity for graph Motif
parameterized complexity for graph Motifparameterized complexity for graph Motif
parameterized complexity for graph MotifAMR koura
 
Mathematics TAKS Exit Level Review
Mathematics TAKS Exit Level ReviewMathematics TAKS Exit Level Review
Mathematics TAKS Exit Level Reviewguest3f17823
 
Modular arithmetic
Modular arithmeticModular arithmetic
Modular arithmeticsangeetha s
 
Number theory
Number theory Number theory
Number theory tes31
 

Similar to 2.ppt (20)

doc6.pdf
doc6.pdfdoc6.pdf
doc6.pdf
 
paper6.pdf
paper6.pdfpaper6.pdf
paper6.pdf
 
lecture5.pdf
lecture5.pdflecture5.pdf
lecture5.pdf
 
A study on number theory and its applications
A study on number theory and its applicationsA study on number theory and its applications
A study on number theory and its applications
 
ADVANCED ALGORITHMS-UNIT-3-Final.ppt
ADVANCED ALGORITHMS-UNIT-3-Final.pptADVANCED ALGORITHMS-UNIT-3-Final.ppt
ADVANCED ALGORITHMS-UNIT-3-Final.ppt
 
Ch04
Ch04Ch04
Ch04
 
Cryptography
CryptographyCryptography
Cryptography
 
Cryptography and Network Security Principles and Practice.docx
Cryptography and Network Security Principles and Practice.docxCryptography and Network Security Principles and Practice.docx
Cryptography and Network Security Principles and Practice.docx
 
Chapter 2 Lecture Notes_ Divisibility.pdf
Chapter 2 Lecture Notes_ Divisibility.pdfChapter 2 Lecture Notes_ Divisibility.pdf
Chapter 2 Lecture Notes_ Divisibility.pdf
 
Information Security Seminar #2
Information Security Seminar #2Information Security Seminar #2
Information Security Seminar #2
 
Number theory
Number theoryNumber theory
Number theory
 
DAA - UNIT 4 - Engineering.pptx
DAA - UNIT 4 - Engineering.pptxDAA - UNIT 4 - Engineering.pptx
DAA - UNIT 4 - Engineering.pptx
 
NumberTheory.ppt
NumberTheory.pptNumberTheory.ppt
NumberTheory.ppt
 
parameterized complexity for graph Motif
parameterized complexity for graph Motifparameterized complexity for graph Motif
parameterized complexity for graph Motif
 
Mathematics TAKS Exit Level Review
Mathematics TAKS Exit Level ReviewMathematics TAKS Exit Level Review
Mathematics TAKS Exit Level Review
 
CRYPTO 2.pptx
CRYPTO 2.pptxCRYPTO 2.pptx
CRYPTO 2.pptx
 
Modular arithmetic
Modular arithmeticModular arithmetic
Modular arithmetic
 
Number theory
Number theory Number theory
Number theory
 
Matdis 3.4
Matdis 3.4Matdis 3.4
Matdis 3.4
 
Lecture-1.pptx
Lecture-1.pptxLecture-1.pptx
Lecture-1.pptx
 

More from TapodhirAcharjee2

More from TapodhirAcharjee2 (7)

Wireless-4.pptx
Wireless-4.pptxWireless-4.pptx
Wireless-4.pptx
 
41.ppt
41.ppt41.ppt
41.ppt
 
32.pptx
32.pptx32.pptx
32.pptx
 
23.ppt
23.ppt23.ppt
23.ppt
 
MANET.ppt
MANET.pptMANET.ppt
MANET.ppt
 
3.pptx
3.pptx3.pptx
3.pptx
 
4.ppt
4.ppt4.ppt
4.ppt
 

Recently uploaded

Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...EduSkills OECD
 
Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104misteraugie
 
Measures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeMeasures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeThiyagu K
 
Introduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher EducationIntroduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher Educationpboyjonauth
 
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...Krashi Coaching
 
Student login on Anyboli platform.helpin
Student login on Anyboli platform.helpinStudent login on Anyboli platform.helpin
Student login on Anyboli platform.helpinRaunakKeshri1
 
Organic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptxOrganic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptxVS Mahajan Coaching Centre
 
Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)eniolaolutunde
 
Web & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdfWeb & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdfJayanti Pande
 
Paris 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityParis 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityGeoBlogs
 
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptxContemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptxRoyAbrique
 
Introduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptxIntroduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptxpboyjonauth
 
Interactive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationInteractive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationnomboosow
 
Grant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy ConsultingGrant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy ConsultingTechSoup
 

Recently uploaded (20)

Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
 
Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104
 
Measures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeMeasures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and Mode
 
Introduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher EducationIntroduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher Education
 
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
 
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
 
Código Creativo y Arte de Software | Unidad 1
Código Creativo y Arte de Software | Unidad 1Código Creativo y Arte de Software | Unidad 1
Código Creativo y Arte de Software | Unidad 1
 
Student login on Anyboli platform.helpin
Student login on Anyboli platform.helpinStudent login on Anyboli platform.helpin
Student login on Anyboli platform.helpin
 
Mattingly "AI & Prompt Design: The Basics of Prompt Design"
Mattingly "AI & Prompt Design: The Basics of Prompt Design"Mattingly "AI & Prompt Design: The Basics of Prompt Design"
Mattingly "AI & Prompt Design: The Basics of Prompt Design"
 
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptxINDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
 
TataKelola dan KamSiber Kecerdasan Buatan v022.pdf
TataKelola dan KamSiber Kecerdasan Buatan v022.pdfTataKelola dan KamSiber Kecerdasan Buatan v022.pdf
TataKelola dan KamSiber Kecerdasan Buatan v022.pdf
 
Organic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptxOrganic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptx
 
Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)
 
Staff of Color (SOC) Retention Efforts DDSD
Staff of Color (SOC) Retention Efforts DDSDStaff of Color (SOC) Retention Efforts DDSD
Staff of Color (SOC) Retention Efforts DDSD
 
Web & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdfWeb & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdf
 
Paris 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityParis 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activity
 
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptxContemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
 
Introduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptxIntroduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptx
 
Interactive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationInteractive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communication
 
Grant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy ConsultingGrant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy Consulting
 

2.ppt

  • 1. Basic Concepts in Number Theory and Finite Fields
  • 2. Introduction • finite fields has increasing importance in cryptography – AES, Elliptic Curve, IDEA, Public Key • concern operations on “numbers” – where what constitutes a “number” and the type of operations varies considerably • start with basic number theory concepts
  • 3. Divisors • We say that a non-zero number b divides a if for some m have a=mb (a,b,m all integers) • that is b divides a with no remainder • denote this b|a • and say that b is a divisor of a • eg. all of 1,2,3,4,6,8,12,24 divide 24 • eg. 13 | 182; –5 | 30; 17 | 289; –3 | 33; 17 | 0
  • 4. Properties of Divisibility • If a|1, then a = ±1. • If a|b and b|a, then a = ±b. • Any b ≠ 0 divides 0. • If a | b and b | c, then a | c – e.g. 11 | 66 and 66 | 198 , 11 | 198 • If b|g and b|h, then b|(mg + nh) for arbitrary integers m and n e.g. b = 7; g = 14; h = 63; m = 3; n = 2 hence 7|14 and 7|63
  • 5. Division Algorithm • Given any positive integer n and any nonnegative integer a, if we divide a by n, we get an integer quotient q and an integer remainder r that obey the following relationship: • a = qn + r where 0 <= r < n; q = floor(a/n) • remainder r often referred to as a residue
  • 6. Greatest Common Divisor (GCD) A common problem in number theory GCD (a,b) of a and b is the largest integer that divides evenly into both a and b eg GCD(60,24) = 12 define gcd(0, 0) = 0 often want no common factors (except 1) define such numbers as relatively prime eg GCD(8,15) = 1 hence 8 & 15 are relatively prime
  • 7. Example GCD(1970,1066) 1970 = 1 x 1066 + 904 gcd(1066, 904) 1066 = 1 x 904 + 162 gcd(904, 162) 904 = 5 x 162 + 94 gcd(162, 94) 162 = 1 x 94 + 68 gcd(94, 68) 94 = 1 x 68 + 26 gcd(68, 26) 68 = 2 x 26 + 16 gcd(26, 16) 26 = 1 x 16 + 10 gcd(16, 10) 16 = 1 x 10 + 6 gcd(10, 6) 10 = 1 x 6 + 4 gcd(6, 4) 6 = 1 x 4 + 2 gcd(4, 2) 4 = 2 x 2 + 0 gcd(2, 0)
  • 8. GCD(1160718174, 316258250) Dividend Divisor Quotient Remainder a = 1160718174 b = 316258250 q1 = 3 r1 = 211943424 b = 316258250 r1 = 211943424 q2 = 1 r2 = 104314826 r1 = 211943424 r2 = 104314826 q3 = 2 r3 = 3313772 r2 = 104314826 r3 = 3313772 q4 = 31 r4 = 1587894 r3 = 3313772 r4 = 1587894 q5 = 2 r5 = 137984 r4 = 1587894 r5 = 137984 q6 = 11 r6 = 70070 r5 = 137984 r6 = 70070 q7 = 1 r7 = 67914 r6 = 70070 r7 = 67914 q8 = 1 r8 = 2516 r7 = 67914 r8 = 2516 q9 = 31 r9 = 1078 r8 = 2516 r9 = 1078 q10 = 2 r10 = 0
  • 9. Modular Arithmetic • define modulo operator “a mod n” to be remainder when a is divided by n – where integer n is called the modulus • b is called a residue of a mod n – since with integers can always write: a = qn + b – usually chose smallest positive remainder as residue • ie. 0 <= b <= n-1 • For a given positive integer , two integers a and b are called congruent modulo , written a ≡ b (mod n) • if a-b is divisible by n (or equivalently if a and b have the same remainder when divided by n ). • e.g., 37 ≡ 57 (mod 10)
  • 10. Modular Arithmetic Operations • can perform arithmetic with residues • uses a finite number of values, and loops back from either end Zn = {0, 1, . . . , (n – 1)} • modular arithmetic is when do addition & multiplication and modulo reduce answer • can do reduction at any point, ie – a+b mod n = [a mod n + b mod n] mod n
  • 11. Modular Arithmetic Operations 1.[(a mod n) + (b mod n)] mod n = (a + b) mod n 2.[(a mod n) – (b mod n)] mod n = (a – b) mod n 3.[(a mod n) x (b mod n)] mod n = (a x b) mod n e.g. [(11 mod 8) + (15 mod 8)] mod 8 = 10 mod 8 = 2 (11 + 15) mod 8 = 26 mod 8 = 2 [(11 mod 8) – (15 mod 8)] mod 8 = –4 mod 8 = 4 (11 – 15) mod 8 = –4 mod 8 = 4 [(11 mod 8) x (15 mod 8)] mod 8 = 21 mod 8 = 5 (11 x 15) mod 8 = 165 mod 8 = 5
  • 12. Modulo 8 Addition Example + 0 1 2 3 4 5 6 7 0 0 1 2 3 4 5 6 7 1 1 2 3 4 5 6 7 0 2 2 3 4 5 6 7 0 1 3 3 4 5 6 7 0 1 2 4 4 5 6 7 0 1 2 3 5 5 6 7 0 1 2 3 4 6 6 7 0 1 2 3 4 5 7 7 0 1 2 3 4 5 6
  • 13. Modulo 8 Multiplication + 0 1 2 3 4 5 6 7 0 0 0 0 0 0 0 0 0 1 0 1 2 3 4 5 6 7 2 0 2 4 6 0 2 4 6 3 0 3 6 1 4 7 2 5 4 0 4 0 4 0 4 0 4 5 0 5 2 7 4 1 6 3 6 0 6 4 2 0 6 4 2 7 0 7 6 5 4 3 2 1
  • 14. Additive and Multiplicative inverse of Modulo 8 w -w W-1 0 0 ----- 1 7 1 2 6 ------- 3 5 3 4 4 ------ 5 3 5 6 2 --- 7 1 7
  • 15. Euclidean Algorithm • an efficient way to find the GCD(a,b) • uses theorem that: – GCD(a,b) = GCD(b, a mod b) • Euclidean Algorithm to compute GCD(a,b) is: Euclid(a,b) if (b=0) then return a; else return Euclid(b, a mod b);
  • 16. Extended Euclidean Algorithm • For given integers a and b, the extended Euclidean algorithm not only calculates the greatest common divisor d but also two additional integers x and y that satisfy the following equation • ax + by = d = gcd(a, b) • useful for later crypto computations • follow sequence of divisions for GCD but assume at each step i, can find x & y: r = ax + by • at the end find GCD value and also x & y • The Bézout coefficients are x and y, that is GCD(a,b)=r=ax+by • if GCD(a,b)=1 these values are inverses
  • 17. Example • The following table shows how the extended Euclidean algorithm proceeds with input 240 and 46. • The greatest common divisor is the last non zero entry, 2 in the column "remainder". • The computation stops at row 6, because the remainder in it is 0. • Bézout coefficients appear in the last two entries of the second-to-last row. • In fact, it is easy to verify that -9 × 240 + 47 × 46 = 2. • Finally the last two entries 23 and -120 of the last row are, up to the sign, the quotients of the input 46 and240 by the greatest common divisor 2.
  • 18. si+1= si-1 –qisi ti+1=ti-1 – qi ti
  • 19. The Extended Euclidean Algorithm Example 1: m = 65, n = 40 Step 1: The (usual) Euclidean algorithm: • (1) 65 = 1. 40 + 25 • (2) 40 = 1. 25 + 15 • (3) 25 = 1 .15 + 10 • (4) 15 = 1 .10 + 5 • 10 = 2 . 5 • Therefore: gcd(65,40) = 5
  • 21.
  • 22.
  • 23. Finding Inverse Problem: Find an inverse of a (mod n) for the pair of relatively prime numbers a=4, n=9 • gcd(4,9)= gcd(9,4) • 9=4x2 + 1 • 4=1x4+0 Gcd(9,4)=mx9+ nx4 1=9 – 4x2 =1.9+-2x4 Bezut’s coeffiecients are(1,-2) Inverse of 4 (mod 9)= -2 (mod 9)= 7 (mod 9) So, 7 is the required inverse answer.
  • 24. Example Problem: Find an inverse of a (mod n) for the pair of relatively prime numbers a=19, n=141 • Gcd(19,141)= gcd(141,19) • 141=19.7 + 8 • 19=8.2+3 • 8=3.2+2 • 3=2.1 +1 • 2=1.2+0 • So,gcd(19,141)=1
  • 25. 1=3-2.1 =3 – (8-3.2).1 =3- 8.1 + 3.2.1=3.3 – 8.1 =(19 – 8.2).3 – 8.1=19.3 -8.2.3 -8.1=19.3-8.7 = 19.3 – 7.(141- 19.7)=19.3 – 7.141 + 49.19 =-7.141+52.19 19-1 (mod 141) = 52 Bezout’s coefficients= (-7,52) Inverse of 19 mod 141=52
  • 26. • Problem: Find the multiplicative inverse of 8 mod 11, using the Euclidean Algorithm. • Sol: 11 = 8(1) + 3 3 = 11 − 8(1) 8 = 3(2) + 2 2 = 8 − 3(2) 3 = 2(1) + 1 1 = 3 − 2(1) 2 = 1(2) Now reverse the process using the equations on the right. 1 = 3 − 2(1) 1 = 3 − (8 − 3(2))(1) = 3 − (8 − (3(2)) = 3(3) − 8 1 = (11 − 8(1))(3) − 8 = 11(3) − 8(4) = 11(3) + 8(−4) Therefore 1 ≡ 8(−4) mod 11, or if we prefer a residue value for the multiplicative inverse, 1 ≡ 8(7) mod 11.
  • 27. Problem: Find the multiplicative inverse of 17 mod 43, using the Euclidean Algorithm. Sol: 17x ≡ 1 (mod 43) So, x ≡ 17-1 (mod 43) 43= 17 x2 +9 17= 9 x1 +8 9= 8 x1 + 1 1= 9 – 8 1=9 – (17-9) [using 17= 9x1 + 8] =2.9 – 17 = 2(43- 17x2) – 17[ using 43= 17x2 + 9] =2x43 – 5x17 17-1 (mod 43) ≡ -5 ≡ 38 x=38
  • 28. Problem: Find the Multiplicative Inverse of 51 mod 88 Inverse of 51 mod 88 is 19. 51*19 mod 88 = 1
  • 29. Group • a set of elements or “numbers” – may be finite or infinite • with some operation whose result is also in the set (closure) • group is a set of elements that is closed under a binary operation and that is associative and that includes an identity element and an inverse element • obeys: – associative law: (a.b).c = a.(b.c) – has identity e: e.a = a.e = a – has inverses a-1: a.a-1 = e • if commutative a.b = b.a – then forms an abelian group – EXAMPLE???? set of integers with addition
  • 30. Cyclic Group • define exponentiation as repeated application of operator – example: a-3 = a.a.a • and let identity be: e=a0 • a group is cyclic if every element is a power of some fixed element – ie b = ak for some a and every b in group • a is said to be a generator of the group • Example: {1, 2, 4, 8} with mod 12 multiplication, the generator is 2.
  • 31. Ring • A ring is a set of elements that is closed under two binary operations, addition and subtraction, with the following: the addition operation is a group that is commutative; the multiplication operation is associative and is distributive over the addition operation. • a set of “numbers” • with two operations (addition and multiplication) which form: • an abelian group with addition operation • and multiplication: – has closure – is associative – distributive over addition: a(b+c) = ab + ac • if multiplication operation is commutative, it forms a commutative ring • if multiplication operation has an identity and no zero divisors, it forms an integral domain
  • 32. Consider the set S = {a, b} with addition and multiplication defined by the tables: Is S a ring? Justify your answer. Solution: (A1) Closure: The sum of any two elements in S is also in S. (A2) Associative: S is associative under addition, by observation. (A3) Identity element: a is the additive identity element for addition. (A4) Inverse element: The additive inverses of a and b are b and a, respectively. (A5) Commutative: S is commutative under addition, by observation. (M1) Closure: The product of any two elements in S is also in S. (M2) Associative: S is associative under multiplication, by observation. (M3) Distributive laws: S is distributive with respect to the two operations, by observation.
  • 33. Field  A field is a nonzero commutative ring that contains a multiplicative inverse for every nonzero element, or equivalently a ring whose nonzero elements form an abelian group under multiplication.e.g., the real numbers R w.r.t the usual operation + & *. two operations which form: abelian group for addition abelian group for multiplication (ignoring 0) ring have hierarchy with more axioms/laws group -> ring -> field
  • 35. Finite (Galois) Fields • finite fields play a key role in cryptography • can show number of elements in a finite field must be a power of a prime pn • known as Galois fields • denoted GF(pn) • in particular often use the fields: – GF(p) – GF(2n)
  • 36. Galois Fields GF(p) • GF(p) is the set of integers {0,1, … , p-1} with arithmetic operations modulo prime p • these form a finite field – since have multiplicative inverses – find inverse with Extended Euclidean algorithm • hence arithmetic is “well-behaved” and can do addition, subtraction, multiplication, and division without leaving the field GF(p)
  • 37. GF(7) Multiplication Example  0 1 2 3 4 5 6 0 0 0 0 0 0 0 0 1 0 1 2 3 4 5 6 2 0 2 4 6 1 3 5 3 0 3 6 2 5 1 4 4 0 4 1 5 2 6 3 5 0 5 3 1 6 4 2 6 0 6 5 4 3 2 1
  • 38. Polynomial Arithmetic • can compute using polynomials f(x) = anxn + an-1xn-1 + … + a1x + a0 = ∑ aixi • nb. not interested in any specific value of x • which is known as the indeterminate • several alternatives available – ordinary polynomial arithmetic – poly arithmetic with coords mod p – poly arithmetic with coords mod p and polynomials mod m(x)
  • 39. Ordinary Polynomial Arithmetic • add or subtract corresponding coefficients • multiply all terms by each other • eg let f(x) = x3 + x2 + 2 and g(x) = x2 – x + 1 f(x) + g(x) = x3 + 2x2 – x + 3 f(x) – g(x) = x3 + x + 1 f(x) x g(x) = x5 + 3x2 – 2x + 2
  • 40. Polynomial Arithmetic with Modulo Coefficients when computing value of each coefficient do calculation modulo some value forms a polynomial ring could be modulo any prime but we are most interested in mod 2 ie all coefficients are 0 or 1 eg. let f(x) = x3 + x2 and g(x) = x2 + x + 1 f(x) + g(x) = x3 + x + 1 f(x) x g(x) = x5 + x2
  • 41. Polynomial Division • can write any polynomial in the form: – f(x) = q(x) g(x) + r(x) – can interpret r(x) as being a remainder – r(x) = f(x) mod g(x) • if have no remainder say g(x) divides f(x) • if g(x) has no divisors other than itself & 1 say it is irreducible (or prime) polynomial • arithmetic modulo an irreducible polynomial forms a field
  • 42. Polynomial GCD • can find greatest common divisor for polys – c(x) = GCD(a(x), b(x)) if c(x) is the poly of greatest degree which divides both a(x), b(x) • can adapt Euclid’s Algorithm to find it: Euclid(a(x), b(x)) if (b(x)=0) then return a(x); else return Euclid(b(x), a(x) mod b(x));
  • 43.
  • 44. Problem: Find the GCD of 3x6 + 2x2+x +5 and 6x4 + x3 + 2x +4 in F7[x] Solution: Divide 3x6 + 2x2+x +5 by 6x4 + x3 + 2x +4 Q: 4x2+ 4x +4 R: 2x3 +6x2+5x +3 Divide 3x6 + 2x2+x +5 by 2x3 +6x2+5x +3 Q: 3x +2 R: x2+4x+5 Divide 2x3 +6x2+5x +3 by x2+4x+5 Q: 2x +5 R: 3x +6 Divide x2+4x+5 by 3x +6 Q: 5x +3 R: 1
  • 45. Problem: determine the GCD for the pair of polynomials X3 + x +1 and x2 + x +1 over GF(2). Ans: 1
  • 46. Modular Polynomial Arithmetic • can compute in field GF(2n) – polynomials with coefficients modulo 2 – whose degree is less than n – hence must reduce modulo an irreducible poly of degree n (for multiplication only) • form a finite field • can always find an inverse – can extend Euclid’s Inverse algorithm to find
  • 47.
  • 48.
  • 50. Computational Considerations • since coefficients are 0 or 1, can represent any such polynomial as a bit string • addition becomes XOR of these bit strings • multiplication is shift & XOR – cf long-hand multiplication • modulo reduction done by repeatedly substituting highest power with remainder of irreducible poly (also shift & XOR)
  • 51. Computational Example • in GF(23) have (x2+1) is 1012 & (x2+x+1) is 1112 • so addition is – (x2+1) + (x2+x+1) = x – 101 XOR 111 = 0102 • and multiplication is – (x+1).(x2+1) = x.(x2+1) + 1.(x2+1) = x3+x+x2+1 = x3+x2+x+1 – 011.101 = (101)<<1 XOR (101)<<0 = 1010 XOR 101 = 11112 • polynomial modulo reduction (get q(x) & r(x)) is – (x3+x2+x+1 ) mod (x3+x+1) = 1.(x3+x+1) + (x2) = x2 – 1111 mod 1011 = 1111 XOR 1011 = 01002
  • 52. Using a Generator • equivalent definition of a finite field • a generator g is an element whose powers generate all non-zero elements – in F have 0, g0, g1, …, gq-2 • can create generator from root of the irreducible polynomial • then implement multiplication by adding exponents of generator