# MODULAR ARITHMETIC

This is the foundation of mathematics of which all of public key cryptocraphy is built upon.

Unlike integers which get bigger infinitely, modular arithmetic "wraps around" and returns back to zero. A good example is the 24 Hour clock system where after 23:59 we wrap around back to 00:00.

## Greatest Common Divisor

This is the largest number which can divide 2 positive integers `a` and `b`.

In the case that we are taking the GCD of 2 prime numbers, then `gcd(a,b) = 1` which implies that they are <span color = "green">coprime</span>. The 2 cases for which numbers are coprime are:
1. Both numbers `a` and `b` are prime.
2. `a` is prime and `b < a`.

To calculate the gcd of 2 integers we can emply the Euclidean Algorithm.

### Euclidean Algorithm

Given 2 integers `a` and `b` where `a > b`, we can express `a/b` as `a = bq + r` where `q` is the quotient and `r` is the remainder.

To calculate the GCD of 2 numbers using this algorithm we follow these steps:
1. Express `gcd(a, b)` as `a/b`
2. Express `a/b` as `a = bq + r`
3. Replace `a,b` with `b,r` respectively
4. Repeat steps 2 and 3 until `r = 0`
5. `gcd(a, b)` is the last non-zero remainder or value of `b` in the last iteration.

Example: Calculate the gcd of 252 and 105

<span style = "color:yellow">

gcd(252, 105) = > 252, 105


Step 1: 252 = 105(2) + 42 => a = 252, b = 105, q = 2, r = 42

Step 2: 104 = 42(2) + 21 => a = 105, b = 42, q = 2, r = 21

Step 3: 42 = 21(2) + 0 => a = 42, b = 21, q = 2, r = 0

Therefore, gcd(252, 105) = 21
</span>


We can express the steps shown above in Python as shown below

In [2]:
def euclidean_gcd(a,b):
    while b != 0:
        a,b = b, a % b
        # return euclidean_gcd*(b, a % b)
    return a

a,b = 12, 8

print(f"GCD of {a} and {b}: {euclidean_gcd(a, b)}")

GCD of 12 and 8: 4


## Extended Euclidean Algorithm

Assuming we have 2 positive integers `a` and `b`, the extended euclidean algorithm is an efficient way to find integers `x` and `y` such that:

`a` * `x` + `b` * `y` = gcd(a, b)

Steps
1. let gcd(a, b) = g
2. This implies that a = g, b = 0 as the results in the final iteration of Euclidean algorithm
3. Rewritten: gx + by = g, thus g(1) + b(0) = g
4. This implies that x1 = 1 and y1 = 0
5. Recall that (a,b) = (b,r) = (b, a%b)
6. Substitution into 3: b*x1 + (a%b)y1 = g
7. let a%b = a - (a//b)b
8. After subtitution, final solution is x = y1, y = x1 - (a//b)y1

Example:
Finding the gcd of 81 and 57 by the Euclidean Algorithm:

0. 81 = 1(57) + 24
1. 57 = 2(24) + 9
2. 24 = 2(9) + 6
3. 9 = 1(6) + 3
4. 6 = 2(3) + 0.

Reversing the steps to find our values `x` and `y`
gcd(a, b) i.e r = a - qb

4. 3 = 9 - 1(<span style = color:red>6</span>)
3. 3 = 9 - 1(24 - 2(9)) = 3(<span style = color:red>9</span>) - 1(24)
2. 3 = 3(57 - 2(24)) - 1(24) = 3(57) - 7(<span style = color:red>24</span>)
1. 3 = 3(57) - 7(81 - 1(57)) = 10(57) - 7(81)

thus x, y = 10, -7

In [1]:
def extended_euclidean(a, b):
    # x and y are the coefficients that will be updated to store the result.
    if b == 0:
        x = 1
        y = 0
        return a, x, y  # Return gcd and coefficients
    
    gcd_val, x1, y1 = extended_euclidean(b, a % b)
    x = y1
    y = x1 - y1 * (a // b)
    
    return gcd_val, x, y

p = 26513
q = 32321

gcd_val, u, v = extended_euclidean(p, q)
print(f"gcd: {gcd_val}, u: {u}, v: {v}")

gcd: 1, u: 10245, v: -8404


## Modular Arithmetic I

Modular arithmetic follows the concept of wrapping around. This visible when calculating time in both 12 nd 24 hour clock system where we move from 2359hrs to 0000hrs.

Formally, "calculating time" is described by the theory of congruences. We say that two integers are congruent modulo `m` if `a ≡ b mod m` which can also mean that when we divide `a` by `m`, the reaminder is `b`. Thus if a is divisible by m then `a ≡ 0 mod m`.

Calculating `x` and `y` for the cases below:
1. 11 ≡ x mod 6
2. 8146798528947 ≡ y mod 17

In [1]:
def modular(a, mod):
    # a == b modulo mod
    return a % mod

print(f"11 ≡ {modular(11, 6)} mod 6")
print(f"8146798528947 ≡ {modular(8146798528947, 17)} mod 17")

11 ≡ 5 mod 6
8146798528947 ≡ 4 mod 17


## Modular Arithmetic 2

If we pick a prime modulus `p`, the integers modulo `p` define a field `Fp`, whereas if modulus is not prime then the integers modulo `p` define a ring.

A finite field `Fp` is the set of integers 0,1,...,p-1 and under both addition and muliplication there are inverse elements b+ and b* for every element `a` in the set such that `a + b = 0` and `a . b* = 1`

### Fermat's Little Theorem
This is an interesting theorem that will be needed for RSA cryptography.

1. `a**p == a mod p` iff `p` is prime
2. `a**(p-1) == 1 mod p` iff `a` and `p` are coprime

Now take the prime `p`= 65537. Calculate 273246787654 ^ 65536 mod 65537


In [2]:
print(modular(273246787654**65536, 65537))

1


## Modular Inverting - Using Fermat's Little Theorem

Working in a finite field `Fp`, adding and multiplying elements always gives us another elelment within the field. For all elements `g` in the field, there exists a unique integer `d` such that `g.d ≡ 1 mod p`. `d` is thus the multiplicative inverse of `g`. 

Example:
7 ⋅ 8 = 56 ≡ 1 mod 11

### Fermat's Little Theorem Continuation
If `p` i a prime number, then for any integer `a`, the number `(a^p) - a` is an integer multiple of `p` i.e `a**p == a mod p`.65537

Example: if a=2, p=7 then (2^7) = 128, 128 - 2 = 126 = 7 * 18 i.e a multiple of 7

If `a` is not divisible by `p`, i.e `a` and `p` are coprime, then `a^(p-1) - 1` is an integer multiple of `p`.

1. `a^(p-1) - 1 ≡ 0 mod p` thus
2. `a^(p-1) ≡ 1 mod p` thus
3. `a^(p-1) ≡ a^0 mod p`
4. `a^(p) ≡ a mod p`

Using this relationship, we can deduce that to calculate the modular inverse of `a` modulus `p` to discover that `a^(p-2) ≡ a^(-1) mod p`

Using this deduction we can solve the qusetion: What is the inverse element `d` = 3^(-1) such that `3 * d ≡ 1 mod 13.`


In [3]:
def fermats_inverse(a, p):
    # d = a ** (p-2) % p
    return pow(a, p-2, p)

a,p = 3,13
print(f"Modular inverse of {a} mod {p} is {fermats_inverse(a,p)}")

Modular inverse of 3 mod 13 is 9


## Modulo Square Root and Quadratic Residues

We can also calculate the square root of `a` usig modular arithmetic. For example: if `a=11` and `p=29` then `a^2 = 5 mod 29`. Thus as `a=11, a^2=5`,we can say that the square root of 5 is 11.

For some `a` in `Fp` we never find an `a` such that `a^2` exists e.g for 18. This means that not every element in  `Fp` has a square root, specifically for roughly half of elements in `Fp`, there is no square root.

We say yhay an integer `x` is a **quadraric residue** if there exists an `a` such that `a^2 ≡ x mod p` i.e when its square root exists. If there is no such solution, then the integer is a **quadratic non-residue**.

Confirm if the following integers `ints = [14,6,11]` are quadratic residues and then calculate its square root.

In [6]:
def modulo_sqrt(x, p):
    # a^2 ≡ x mod p
    for a in range(1,p-1):
        if pow(a,2,p) == x%p:
            return a
    print(f"{x} is a quadratic non residue")
    
ints = [14,6,11]
p = 29

for i in ints:
    print(modulo_sqrt(i, p))
    print()

14 is a quadratic non residue
None

8

11 is a quadratic non residue
None



This implies that 6 is a quadratic residue whose square root modulus 29 is 8