In the previous tutorials we introduced you to some basic finite fields
$$\mathbb{Z}_p$$
and the collection of polynomials (polynomial rings if we want to use jargon) over them
$$\mathbb{Z}_p[X]$$
While these finite fields are very interesting, they're often not the most convenient space to do cryptographic computations. Part of the reason is that they're kind of exotic. As humans, we don't expect numbers to wrap at 19 or 31 or whatever prime we choose. How about
$$\mathbb{Z}_{10}$$
then? Unfortunately, this isn't a finite field (since 10 factors into 2,5). It turns out that the interesting place to look is "binary" finite fields. What's a binary finite field? Well to give a simplistic explanation, it's any finite field where
$$1 + 1 = 0$$
The simplest example of a binary finite field is 
$$\mathbb{Z}_2$$
Let's play with this finite field a bit.

In [2]:
import starks
from starks.modp import IntegersModP

mod2 = IntegersModP(2)
one = mod2(1)
one + one

0 (mod 2)

Ok, this is neat. Let's play with this a bit more. Can we make an `AND` gate for example? Recall that an `AND` gate implements the logical operator `AND`

![and_gate](http://www.circuitstoday.com/wp-content/uploads/2010/04/2-Input-AND-Gate-Truth-Table.jpg)

Luckily, it turns out that the `AND` gate is really simple to make! It's just a multiplication operation in $\mathbb{Z}_2$.

In [5]:
def AND(x, y):
  return x * y
zero = mod2(0)
one = mod2(1)
print("AND(0, 0) = %s" % str(AND(zero, zero)))
print("AND(0, 1) = %s" % str(AND(zero, one)))
print("AND(1, 0) = %s" % str(AND(one, zero)))
print("AND(1, 1) = %s" % str(AND(one, one)))

AND(0, 0) = 0
AND(0, 1) = 0
AND(1, 0) = 0
AND(1, 1) = 1


This is pretty neat. Note that `AND` is equivalently represented as a simple polynomial in $\mathbb{Z}_2[X, y]$
$$\textrm{and}(x, y) = xy$$
Can we do this for other logical operators? Let's take a look at an `OR` gate
![or_gate](http://hyperphysics.phy-astr.gsu.edu/hbase/Electronic/ietron/or.gif)
This one is a little trickier to write down as a function, but it's not too bad.

In [7]:
def OR(x, y):
  return x + y - x * y
zero = mod2(0)
one = mod2(1)
print("OR(0, 0) = %s" % str(OR(zero, zero)))
print("OR(0, 1) = %s" % str(OR(zero, one)))
print("OR(1, 0) = %s" % str(OR(one, zero)))
print("OR(1, 1) = %s" % str(OR(one, one)))

OR(0, 0) = 0
OR(0, 1) = 1
OR(1, 0) = 1
OR(1, 1) = 1


Take a minute to study this function to understand why it makes sense. Note again that we can write `OR` as a polynomial
$$\textrm{OR}(x, y) = x + y - xy$$
How about `NOT`? Turns out this one is pretty simple to do too.

In [8]:
def NOT(x):
  return (1 - x)
zero = mod2(0)
one = mod2(1)
print("NOT(0) = %s" % str(NOT(zero)))
print("NOT(1) = %s" % str(NOT(one)))

NOT(0) = 1
NOT(1) = 0


This is an interesting result since the three logical operators `OR`, `AND`, and `NOT` are "functionally complete". That means that any boolean circuit can be represented in terms of these operators. Since we've encoded these operators as polynomials over $\mathbb{Z}_2$, we now know we can represent any boolean circuit as a polynomial!

This is neat result, but it's not yet as useful as we'd like it. For one thing, we're operating on $\mathbb{Z}_2$, which is essentially a single bit. What if we want to represent a complex program, which accepts as input 64 bit words? We could represent 64-bit words as lists of 64 elements of $\mathbb{Z}_2$, but this is somewhat awkward. Isn't there a more elegant way to represent such words? How about the set of numbers $\mathbb{Z}/2^{64}$ modulo $2^64$? This seems to fit what we're looking for, but we know that it's not a finite field. Division doesn't work since $2^64$ has many prime factors.

It seems like we're stuck here. Luckily, there is a w