# Galois Feilds

Sources list

* [Irreducable polynomials](http://abstract.ups.edu/aata/section-irreducible-poly.html)
* [Factor table for polynomials in GF(2)](https://www.ece.unb.ca/tervo/ece4253/polytable.shtml)
* [Galois Fields in cryptography](https://sites.math.washington.edu/~morrow/336_12/papers/juan.pdf)

## Modulo 2 arithmetics

[Source](https://www.csus.edu/indiv/p/pangj/166/f/d8/5_Modulo%202%20Arithmetic.pdf)

Modulo 2 arithmetic is performed digit by digit on binary numbers. Each digit is considered independently
from its neighbours. Numbers are not carried or borrowed.

### Additon
$0\pm0=0; \quad 0 \pm 1 = 1; \quad 1 \pm 0 = 1; \quad 1 \pm 1 = 0$

### Multiplication

$
\verb+    1011+ \\
\verb+    0101+ \\
\verb+   1011+ \\
\verb+  0000+ \\
\verb+ 1011+ \\
\verb+0000+ \\
\verb+0100111+
$

### Division
Modulo 2 division can be performed in a manner similar to arithmetic long division. Subtract the denominator (the bottom number) from the leading parts of the enumerator (the top number). Proceed along the enumerator until its end is reached. Remember that we are using modulo 2 subtraction. Note that $\verb+X/Y = Y/X+$. See also [top row](https://math.stackexchange.com/questions/682301/modulo-2-binary-division-xor-not-subtracting-method). For example, we can divide 100100110 by 10011 as follows:

$
\verb=           10001 remainder 101=\\
\verb=10011  100100110=\\
\verb=       10011=\\
\verb=           10110=\\
\verb=           10011=\\
\verb=             101=
$

* Note that 1 = -1 mod 2.
* Just shift the top row by the leading bit in the divisor.

## Addition, multiplication and division in Galois Fields GF($2^m$)

A finite field or Galois field (GF) has a finite number of elements, and has an order which is equal to a prime number (GF(p)) or to the power of a prime number (GF($p^n$)). For example GF($2^n$) has $2^n$ elements, and its elements are known as binary polynomals (where the co-efficients of the polynomial factors either are either zero or one values. If $n$ is four, we have 16 output values. GF($p$) - the Galois field of $p$ - is also identified as $\mathbb{F}_p$, and where we perform arithmetic operations modulo of a prime ($p$) ([link](https://asecuritysite.com/encryption/finite)). With GF($2$) we have modulo 2 operations. For the division, we need to field to be defined with an irreducible polynomial ([link](https://asecuritysite.com/encryption/gf2)).

A polynomial $a_nx^n + a_{n-1}x^{n-1} + \ldots + a_1x + a_0$ where $a_n \in \{0,1\}$ can be represented as a binary number modulo $2^n$.

$\texttt{1011}$ represents $x^3+x+1$

$\texttt{1100} + \texttt{1010} = \texttt{0110}$ using [modulo 2 addition](https://www.csus.edu/indiv/p/pangj/166/f/d8/5_Modulo%202%20Arithmetic.pdf), i.e., bitwise XOR, represents $(x^3 + x)(x^3+x^2) = x^2 + x$

Multiplication and division can end up with a power greater than the field, so you need to divide the output value by an irreducible polynomial that produces the same order as the field.

### Primitives of different fields

[List of primitives found here](https://www.partow.net/programming/polynomials/index.html)



### AES example

AES uses a finite field GF($2^8$). As such we operate on 8 bits in the form $b_7 b_6 b_5 b_4 b_3 b_2 b_1 b_0$. The irreducible polynomial is $x^8+x^4 + x^3 +x +1$ ([read here to understand why](https://crypto.stackexchange.com/questions/51848/why-is-x8-x4-x3-x-1-used-in-aess-rcon)).

Examples with GF(3)

$
\verb/111 + 011 = 100/\\
\verb/111 × 011 = 111 + 1110 + 00000 = 1001/
$

## On Finite fields 

[Medium article on GF](https://medium.com/loopring-protocol/learning-cryptography-finite-fields-ced3574a53fe)

A finite field has the following properties:

* Closed under any operation
* Associative $ab(c) = a(bc)$
* Identity element exists
* Every element has an inverse
* Commutative $ab = ba$

The most crucial property of a finite field is that it has $p^m$ elements where $p$ is a prime and $m$ is an integer. A finite field of 11 elements can be written as GF($11^1$). A finite field of 256 elements can be written as GF($2^8$)

When $m=1$ we get prime fields. When $m > 1$ we have extension fields.

### Additive operation
GF($5^1$) = {0,1,2,3,4}

$
\verb-(3 + 4) mod 5 = 2-\\
\verb-(1 + 4) mod 5 = 0-\\
\verb-(1 + 2) mod 5 = 3-\\
\verb+(4 - 0) mod 5 = 4+\\
\verb+(4 - 2) mod 5 = 2+\\
\verb+(3 - 0) mod 5 = 1+
$

### Multiplicative operation
$ 
\verb+(0 * 4) mod 5 = 0+\\
\verb+(2 * 4) mod 5 = 3+\\
\verb+(3 * 4) mod 5 = 2+\\
\verb+(4 * 4) mod 5 = 1+\\
\verb+(3 * 2) mod 5 = 1+\\
\verb+(2 * 3) mod 5 = 1+\\
\verb+(1 * 1) mod 5 = 1+\\
\verb+(0 * ?) mod 5 = 1 // this doesn’t exist!
GCD(0, 5) = undefined!+
$

### Extension fields

When $m > 1$, we are dealing with polynomial elements.

GF($2^m$) will take the form $a_{m-1}x^{m-1}+ \ldots + a_1x + a_o$

The $p$ tells you the coefficient modulus. The $m$ the number of elements you will have, i.e., the polynomial degree - 1.

GF($2^3$) gives $\verb+{000, 001, 010, 011, 100, 101, 110, 111}+$