Dietzfelbinger M. Primality testing in polynomial time ... - tiera.ru

More documents

Recommendations

Info

126 8. Deterministic Primality Testing in Polynomial Time Lemma 8.5.5. If I(u, f) and I(u, g), thenI(u, fg). Proof. We apply the hypothesis, exponentiation rules in Zp[X] andZp, and Lemma 7.2.5(b) to see that (fg) u = f u · g u ≡ f(X u ) · g(X u )=(fg)(X u ) (mod X r − 1). ⊓⊔ Lemmas 8.5.2 – 8.5.5 taken together imply that I(u, f) holdsforf an arbitrary product of linear terms X +a, 1≤ a ≤ ℓ, i.e., f ∈ P ,andu an arbitrary product of n’s and p’s. This set of exponents is central for the considerations to follow, so we give it a name as well: U = {n i p j | i, j ≥ 0}. (8.5.15) The overall result of this section can now be stated as follows: Lemma 8.5.6. For f ∈ P and u ∈ U we have (in Zp[X]): f u ≡ f(X u ) (mod X r − 1). ⊓⊔ 8.5.3 A Field F and a Large Subgroup G of F ∗ By Proposition 7.6.4 there is some monic irreducible polynomial h ∈ Zp[X] of degree d =ordr(p) that divides X r−1 + ···+ X + 1 and hence X r − 1. We keep this polynomial h fixed from here on, and turn our attention to the structure F = Zp[X]/(h), which is a field of size p d by Theorem 7.4.5. Some remarks are in place. As with p and Zp[X], Algorithm 8.2.1 does not refer to h at all; the existence of h is only used for the analysis. Thus, it is not necessary that operations in F can be carried out efficiently. Further, we should stress that as yet there are no restrictions we can establish on the degree d of h. Although we assume in (δ) thatordr(n) is not too small, it might even be the case that d =ordr(p) = 1. (Example: For r = 101, p = 607 ≡ 1(modr), n = 16389 = 27 · 607 ≡ 27 (mod r), the value ordr(n) = 100 is as large as possible, but nonetheless ordr(p) = 1.) Only later we will see that in the situation of the theorem it is not possible that deg(h) =1. At the center of attention from here on is the subset of F that is obtained by taking the elements of P modulo h; more precisely, let � � G = { f mod h | f ∈ P } = (X +a) βa � � � mod h � βa ≥ 0for1≤a≤ ℓ . 1≤a≤ℓ (see (8.5.11)). — We first note that G actually is a subset of F ∗ . (8.5.16) Lemma 8.5.7. The linear polynomials X + a, 1 ≤ a ≤ ℓ, are different in Zp[X] and in F , and they satisfy X + a mod h �= 0.
8.5 Proof of the Main Theorem 127 Proof. Because of Lemma 8.5.1, the difference (X +a ′ )−(X +a) =a ′ −a is a nonzero element of Zp and of Zp[X] for1≤ a
Page 1 and 2:
Lecture Notes in Computer Science 3
Page 3 and 4:
Martin Dietzfelbinger Primality Tes
Page 5 and 6:
To Angelika, Lisa, Matthias, and Jo
Page 7 and 8:
VIII Preface toundingly it gets by
Page 9 and 10:
X Contents 5. The Miller-Rabin Test
Page 11 and 12:
2 1. Introduction: Efficient Primal
Page 13 and 14:
Page 15 and 16:
Page 17 and 18:
Page 19 and 20:
10 1. Introduction: Efficient Prima
Page 21 and 22:
12 1. Introduction: Efficient Prima
Page 23 and 24:
14 2. Algorithms for Numbers and Th
Page 25 and 26:
Page 27 and 28:
Page 29 and 30:
Page 31 and 32:
3. Fundamentals from Number Theory
Page 33 and 34:
3.1 Divisibility and Greatest Commo
Page 35 and 36:
3.2 The Euclidean Algorithm 27 Prop
Page 37 and 38:
3.2 The Euclidean Algorithm 29 (b)
Page 39 and 40:
3.2 The Euclidean Algorithm 31 We n
Page 41 and 42:
3.3 Modular Arithmetic 33 Lemma 3.3
Page 43 and 44:
3.4 The Chinese Remainder Theorem 3
Page 45 and 46:
3.4 The Chinese Remainder Theorem 3
Page 47 and 48:
3.5 Prime Numbers 39 3.5.1 Basic Ob
Page 49 and 50:
3.5 Prime Numbers 41 steps in the v
Page 51 and 52:
3.5 Prime Numbers 43 r ≥ 0. Clear
Page 53 and 54:
ϕ(n) = � 3.6 Chebychev’s Theor
Page 55 and 56:
3.6 Chebychev’s Theorem on the De
Page 57 and 58:
Page 59 and 60:
Page 61 and 62:
Page 63 and 64:
56 4. Basics from Algebra: Groups,
Page 65 and 66:
Page 67 and 68:
Page 69 and 70:
Page 71 and 72:
Page 73 and 74:
Page 75 and 76:
Page 77 and 78:
Page 79 and 80:
5. The Miller-Rabin Test In this ch
Page 81 and 82: 5.1 The Fermat Test 75 multiples of
Page 83 and 84: 5.1 The Fermat Test 77 the set {n |
Page 85 and 86: 5.2 Nontrivial Square Roots of 1 79
Page 87 and 88: 5.2 Nontrivial Square Roots of 1 81
Page 89 and 90: Lemma 5.3.1. (a) L A n ⊆ BA n . (
Page 91 and 92: 6. The Solovay-Strassen Test The pr
Page 93 and 94: 6.2 The Jacobi Symbol 87 Definition
Page 95 and 96: a 6.3 The Law of Quadratic Reciproc
Page 97 and 98: 6.3 The Law of Quadratic Reciprocit
Page 99 and 100: 6.4 Primality Testing by Quadratic
Page 101 and 102: 7. More Algebra: Polynomials and Fi
Page 103 and 104: 7.1 Polynomials over Rings 97 Defin
Page 105 and 106: 7.1 Polynomials over Rings 99 Remar
Page 107 and 108: 7.1 Polynomials over Rings 101 (b)
Page 109 and 110: 7.2 Division with Remainder and Div
Page 111 and 112: 7.3 Quotients of Rings of Polynomia
Page 113 and 114: 7.3 Quotients of Rings of Polynomia
Page 115 and 116: 7.4 Irreducible Polynomials and Fac
Page 117 and 118: 7.5 Roots of Polynomials 111 X, has
Page 119 and 120: 7.6 Roots of the Polynomial X r −
Page 121 and 122: 8. Deterministic Primality Testing
Page 123 and 124: 8.2 The Algorithm of Agrawal, Kayal
Page 125 and 126: 8.3 The Running Time 119 Time for t
Page 127 and 128: 8.3 The Running Time 121 Lemma 8.3.
Page 129 and 130: 8.5 Proof of the Main Theorem 123 B
Page 131: 8.5 Proof of the Main Theorem 125 L
Page 135 and 136: 8.5 Proof of the Main Theorem 129 (
Page 137 and 138: 8.5 Proof of the Main Theorem 131 i
Page 139 and 140: 134 A. Appendix Proof. For k < 0ork
Page 141 and 142: 136 A. Appendix as an abbreviation
Page 143 and 144: 138 A. Appendix a 1 2 3 4 5 6 7 8 9
Page 145 and 146: 140 A. Appendix Lemma A.3.3. If p
Page 147 and 148: 142 A. Appendix Induction step: Ass
Page 149 and 150: 144 References 20. Gauss, C.F., Dis
Page 151 and 152: 146 Index efficient algorithm, 2 eq
show all

Dietzfelbinger M. Primality testing in polynomial time ... - tiera.ru

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?