# Finite Field Definition

Mathematically, a *finite field* is defined as a finite set of numbers and two operations + (addition) and *•* (multiplication) that satisfy the following:

1. If *a* and *b* are in the set, *a + b* and *a • b* are in the set. We call this property *closed*.
    - Consider a set containing {0,1,2}
    - This set would not be *closed*, because 1 + 2 = 3 and 3 is not in the set
    - {-1, 0, 1} is *closed* under multiplication (but not addition)
    - We can alter the definition of multiplication or addition in another way to make these sets closed
    
    
2. 0 exists and has the property *a + 0 = a*. We call this the *additive identity*.
3. 1 exists and has the property *a • 1 = a*. We call this the *multiplicative identity*.
    - These put some limits on how addition and multiplication can be defined
    - These also require 0 and 1 to be in the set
    
    
4. If *a* is in the set, *-a* is in the set, which is defined as the value that makes *a + (-a) = 0*. This is what we call the *additive inverse*.
    - This allows us to define subtraction
    
    
5. If *a* is in the set and is not 0, *a<sup>-1</sup>* is in the set, which is defined as the value that makes *a • a<sup>-1</sup> = 1*. This is what we call the *multiplicative inverse*.
    - This allows us to define division
    
    
Because the set is finite, we have a number *p*, which is how big the set it. This is the *order* of the set.

Finite field set:
$F_p$ = {0, 1, 2, ... p-1}

Thus:

$F_{11}$ = {0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10}

$F_{17}$ = {0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16}

$F_{983}$ = {0, 1, 2, ... 982}

Notice that the fields represented above have a prime number order. Cryptographic finite fields must have a prime order. 

In [1]:
from math import floor

In [2]:
class FieldElement:
    def __init__(self, num, prime):
        # Check that num is between 0 and prime -1 (inclusive)
        if num >= prime or num < 0:
            error = 'Num {} not in field range 0 to {}'.format(num, prime -1)
            raise ValueError(error)
        # Assign initialization values to the object    
        self.num = num
        self.prime = prime
    
    def __repr__(self):
        return 'FieldElement_{}({})'.format(self.prime, self.num)
    
    def __eq__(self, other):
        if other is None:
            return False
        # Both num and prime properties must be equal to establish equivalence
        return self.num == other.num and self.prime == other.prime

In [3]:
a = FieldElement(7, 13)
b = FieldElement(6, 13)

In [4]:
print(a == b)

False


In [5]:
print(a == a)

True


Let's add a method `__ne__` which checks if two FieldElement objects *not* equal to each other

In [6]:
class FieldElement:
    def __init__(self, num, prime):
        # Check that num is between 0 and prime -1 (inclusive)
        if num >= prime or num < 0:
            error = 'Num {} not in field range 0 to {}'.format(num, prime -1)
            raise ValueError(error)
        # Assign initialization values to the object    
        self.num = num
        self.prime = prime
    
    def __repr__(self):
        return 'FieldElement_{}({})'.format(self.prime, self.num)
    
    def __eq__(self, other):
        if other is None:
            return False
        # Both num and prime properties must be equal to establish equivalence
        return self.num == other.num and self.prime == other.prime
    
    def __ne__(self, other):
        if other is None:
            return False
        return not (self == other)

In [7]:
a.__ne__(b)

True

## Modulo Arithmetic

One way to make a finite field closed under addition, subtraction, multiplcation, and division is to use *modulo arithmetic*

In [8]:
1747 % 241

60

Formally speaking, the modulo operation is the remainder after division of one number by another.

**It's currently 3 o'clock. What hour will it be 47 hours from now?**

In [9]:
(3 + 47) % 12

2

Consider that we can break the question above into steps.

It's currently 3 o'clock. What hour will it be 12 hours from now? How many hours will have passed?

    A: 3 o'clock, 12 hours

And 12 hours after that?

    A: 3 o'clock, 24 hours

And 12 hours after that?

    A: 3 o'clock, 36 hours

And 11 hours after that?

    A: 2 o'clock, 47 hours
    
Thus, we can think of modulo arithmetic as a kind of "wraparound" or "clock" math.

We can perform modulo on negative numners. For example:

**It is currently 3 o'clock. What hour was it 16 hours ago?**

In [10]:
(3 - 16) % 12

11

**It is currently 12 minutes past the hour. What minute wil it be 843 minutes from now?**

In [11]:
(12 + 843) % 60

15

**It is currently 23 minutes past the hour. What minute will it be 97 minutes from now?**

In [12]:
(23 + 97) % 60

0

The result of the moduleo operation for mnutes is always between 0 and 59. This is a useful property, as even very large numbers can be brought down to a relatively small range.

In [13]:
1441829712894 % 60

54

In [14]:
7 % 3

1

Simple enough. But things get a little tricky when you throw negative numbers into the mix:

In [15]:
-27 % 13

12

In [16]:
def modulo_explained(a, b):
    print('Identities:')
    print(f'a: {a}')
    print(f'b: {b}', '\n')
    print('Normal Division:')
    print(f'a / b: {a/b}', '\n')
    print('Modulo = a - b * floor(a/b):')
    print(f'floor(a/b): {floor(a/b)}')
    print(f'b * floor(a/b): {b * (floor(a/b))}')
    print(f'a - b * floor(a/b): {a - b * floor (a / b)}', '\n')
    print(f'a % b = {a - b * floor (a / b)}')

In [17]:
modulo_explained(-27, 13)

Identities:
a: -27
b: 13 

Normal Division:
a / b: -2.076923076923077 

Modulo = a - b * floor(a/b):
floor(a/b): -3
b * floor(a/b): -39
a - b * floor(a/b): 12 

a % b = 12


## Finite Field Addition and Substraction

We can use modulo arithmetic to make addition closed in our finite field. Let's say we have a finite field of 19:

$F_{19}$ = {0, 1, 2 ... 18}

Where *a*, *b* ∈ $F_{19}$ (∈ means "elements of")

Then addition being closed we can say:

*a* $+_f$ *b* ∈ $F_{19}$

Addition is denoted by $_f$ to avoid confusion with normal integer addition. By utilizing modulo arithmetic we can guarantee closure.

*a* $+_f$ *b* = (*a* + *b*) % 19

For example:

In [18]:
# 7 +f 8 (derived from F19)
(7 + 8) % 19

15

In [19]:
# 11 + 17 (deroved from F19)
(11 + 17) % 19

9

In every possible case, modulo arithmetic will result in a value within the set.

We can also define the additive inverse this way. *a* ∈ $F_p$ implies that $-_f$*a* ∈ $F_p$. We denote - with $_f$ to again distinguish it from normal subtraction.

$-_f$*a* = (-a) % *p*

Thus in $F_{19}$:

$-_f$9 = (-9) % 19 = 10

In [20]:
-9 % 19

10

which means that:

9 $+_f$10 = 0

In [21]:
(9 + 10) % 19

0

Therefore, we can define field subtraction:

*a*$-_f$*b* = (*a* - *b*) % p

where *a*, *b* ∈ $F_p$

In [22]:
# 11 -f 9
(11 - 9) % 19

2

In [23]:
# 6 -f 13 
(6 - 13) % 19

12

In [24]:
# 9 -f 9
(9 - 9) % 19

0

In $F_{57}$

In [25]:
# 44 +f 33
(44 + 33) % 57

20

In [26]:
# 9 -f 29
(9 - 29) % 57

37

In [27]:
# 17 +f 42 +f 49
(((17 + 42) % 57) + 49) % 57

51

In [39]:
(17 + 42 + 49) % 57

51

In [28]:
# 52 -f 30 -f 38
(((52 - 30) % 57) - 38) % 57

41

In [40]:
(52 - 30 - 38) % 57

41

## Adding Modulo Addition/Subtraction to our FieldElement Class

In [32]:
class FieldElement:
    def __init__(self, num, prime):
        # Check that num is between 0 and prime -1 (inclusive)
        if num >= prime or num < 0:
            error = 'Num {} not in field range 0 to {}'.format(num, prime -1)
            raise ValueError(error)
        # Assign initialization values to the object    
        self.num = num
        self.prime = prime
    
    def __repr__(self):
        return 'FieldElement_{}({})'.format(self.prime, self.num)
    
    def __eq__(self, other):
        if other is None:
            return False
        # Both num and prime properties must be equal to establish equivalence
        return self.num == other.num and self.prime == other.prime
    
    def __ne__(self, other):
        if other is None:
            return False
        return not (self == other)
    
    def __add__(self, other):
        # Ensure the elements are from the same field
        if self.prime != other.prime:
            raise TypeError('Cannot add two numbers in different fields')
        # modulo addition
        num = (self.num + other.num) % self.prime
        # We return an instance of the class by passing the two initializing arguments num and self.prime
        return self.__class__(num, self.prime)
    
    def __sub__(self, other):
        # Ensure the elements are from the same field
        if self.prime != other.prime:
            raise TypeError('Cannot add two numbers in different fields')
        # modulo subtraction
        num = (self.num - other.num) % self.prime
        # We return an instance of the class by passing the two initializing arguments num and self.prime
        return self.__class__(num, self.prime)        

In [36]:
# Confirm that our method works as intended
a = FieldElement(7, 13)
b = FieldElement(4, 13)
print(a.__sub__(b))

FieldElement_13(3)


In [37]:
type(a.__sub__(b))

__main__.FieldElement

In [38]:
(7 - 4) % 13

3

## Finite Field Multiplication and Exponentiation

Multiplication is adding multiple times

5 • 3 = 5 + 5 + 5 + 5 + 5 = 15

We can define multiplication on a finite field the same way:

5 $•_f$ 3 = 5 $+_f$ 5 $+_f$ 5

In [41]:
# 5 *f 3
(5 + 5 + 5) % 19

15

Exponentiation is just multiplying a number many times:

$7^3$ = 7 $•_f$ 7 $•_f$ 7 = 1

In [42]:
(7 * 7 * 7) % 19

1

In $F_{97}$

In [48]:
(95 * 45 * 31) % 97

23

In [49]:
(17 * 13 * 19 * 44) % 97

68

In [47]:
# 12^7 * 77^49
(((12 ** 7) % 97) * ((77 **49) % 97)) % 97

63

For *k* = 1, 3, 7, 13, 18 what is this set in $F_{19}$?

Where {k • 0, k • 1 ... k • 18}

In [62]:
prime = 19
for k in (1, 3, 7, 13, 18):
    print([k*i%prime for i in range(prime)])

[0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18]
[0, 3, 6, 9, 12, 15, 18, 2, 5, 8, 11, 14, 17, 1, 4, 7, 10, 13, 16]
[0, 7, 14, 2, 9, 16, 4, 11, 18, 6, 13, 1, 8, 15, 3, 10, 17, 5, 12]
[0, 13, 7, 1, 14, 8, 2, 15, 9, 3, 16, 10, 4, 17, 11, 5, 18, 12, 6]
[0, 18, 17, 16, 15, 14, 13, 12, 11, 10, 9, 8, 7, 6, 5, 4, 3, 2, 1]


In [63]:
for k in (1, 3, 7, 13, 18):
    print(sorted([k*i%prime for i in range(prime)]))

[0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18]
[0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18]
[0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18]
[0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18]
[0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18]


## Adding Multiplication/Exponentiation to our FieldElement Class

In [65]:
class FieldElement:
    def __init__(self, num, prime):
        # Check that num is between 0 and prime -1 (inclusive)
        if num >= prime or num < 0:
            error = 'Num {} not in field range 0 to {}'.format(num, prime -1)
            raise ValueError(error)
        # Assign initialization values to the object    
        self.num = num
        self.prime = prime
    
    def __repr__(self):
        return 'FieldElement_{}({})'.format(self.prime, self.num)
    
    def __eq__(self, other):
        if other is None:
            return False
        # Both num and prime properties must be equal to establish equivalence
        return self.num == other.num and self.prime == other.prime
    
    def __ne__(self, other):
        if other is None:
            return False
        return not (self == other)
    
    def __add__(self, other):
        # Ensure the elements are from the same field
        if self.prime != other.prime:
            raise TypeError('Cannot add two numbers in different fields')
        # modulo addition
        num = (self.num + other.num) % self.prime
        # We return an instance of the class by passing the two initializing arguments num and self.prime
        return self.__class__(num, self.prime)
    
    def __sub__(self, other):
        # Ensure the elements are from the same field
        if self.prime != other.prime:
            raise TypeError('Cannot add two numbers in different fields')
        # modulo subtraction
        num = (self.num - other.num) % self.prime
        # We return an instance of the class by passing the two initializing arguments num and self.prime
        return self.__class__(num, self.prime)       
    
    def __mul__(self, other):
        # Ensure the elements are from the same field
        if self.prime != other.prime:
            raise TypeError('Cannot add two numbers in different fields')
        # modulo multiplication
        num = (self.num * other.num) % self.prime
        # We return an instance of the class by passing the two initializing arguments num and self.prime
        return self.__class__(num, self.prime)   
    
    def __pow__(self, exponent):
        # We do not want the exponent to be a FieldElement class object
        num = (self.num ** exponent) % self.prime
        return self.__class__(num, self.prime)

In [66]:
a = FieldElement(3, 11)
b = FieldElement(5, 11)

In [67]:
a.__pow__(10)

FieldElement_11(1)

In [68]:
a.__mul__(b)

FieldElement_11(4)

For *p* = 7, 11, 17, 31, what is this set in $F_p$?

{1$^{(p-1)}$, 2$^{(p-1)}$, 3$^{(p-1)}$ ... (*p*-1)$^{(p-1)}$}

In [70]:
primes = [7, 11, 17, 31]
for prime in primes:
    p_set = list()
    for num in range(1, prime):
        i = FieldElement(num, prime)
        i_exp = i.__pow__(prime-1)
        p_set.append(i_exp.num)
    print(p_set)

[1, 1, 1, 1, 1, 1]
[1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]


In [71]:
for prime in (7, 11, 17, 31):
    print([pow(i, prime-1, prime) for i in range(1, prime)])

[1, 1, 1, 1, 1, 1]
[1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
[1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
