# Math Primer

Public key cryptography is unbelievable technology. I mean that literally. It's so counter-intuitive, people just can't believe it could possible work. That's why we're going to spend some time learning a bit of the underlying mathematics. On some level, I hope you'll gain an intuition and appreciation for how it works.

That means we're going to need to do a little math. Don't worry. I'll try to make it as intuitive as possible. You're welcome to ask if you have any questions. We're going to go over the basics first in this notebook.

## Factoring

In grade school, you learned how to factor numbers. For a number n, factors are numbers that evenly divide n. The factors of 6 are 1, 2, 3, and 6. You probably also learned that a number can be decomposed into a unique prime factorization. This is known as the Fundamental Theorem of Arithmetic. Prime numbers are like ingredients we can combine together to cook up all the other numbers (composite numbers.) The prime factorization of 20, for example, is $2^2*5$.

Building a number from its prime factors is easy. Multiplication of two numbers is relatively straightforward. You learned how to multiply two numbers together when you were very young. Though it would be tedious, you could multiply large numbers together. For numbers with n digits, the multiplication algorithm you learned in elementary school takes about $n^2$ steps. Computer scientists know even faster multiplication algorithms, so a computer can multiply together extremely large numbers very quickly. Here are two prime numbers multiplied together.

In [None]:
104123*102013

Is it fast? Let's compute how long it takes to do this multiplication 1000 times.

In [None]:
import timeit
startTime=timeit.default_timer()
for i in range(1000):
    104123*102013
endTime=timeit.default_timer()
print((endTime-startTime),"seconds")

That's pretty fast. But what about going the other way? What about undoing the multiplication to find the prime factors of a number?

You might have learned how to factor a number into its prime decomposition. What you probably didn't learn is that the process of factoring a number is actually somewhat mysterious. We believe it requires substantially more steps than multiplication. Here is a Python library that implements a very fast factoring algorithm.

In [None]:
from sympy import ntheory
ntheory.factorint(10621899599)

As you can see, the factorint function just undid the multiplication we performed earlier. Let's see how long it takes to factor this number 1000 times.

In [None]:
from sympy import ntheory

import timeit
startTime=timeit.default_timer()
for i in range(1000):
    ntheory.factorint(10621899599)
endTime=timeit.default_timer()
print(endTime-startTime,"seconds")

As you can see, it takes much more time to factor the number than it did to multiply the number. This is a key concept. It's easy to go one way, but difficult to go the other way.

As noted earlier, we **believe** it takes longer to factor a number. We don't **know** it takes longer. Nobody has ever been able to prove it. Someone could discover a factoring algorithm tomorrow that makes factoring as easy as multiplication. It seems doubtful, though. People have been trying for hundreds of years with no success.

## Greatest Common Divisor

The greatest common divisor between two numbers (GCD) is largest integer that divides both numbers. You probably learned about GCDs when you were taught to simplify fractions. Let's look at an example to remember how it works. 15 has factors 1, 3, 5, and 15. 12 has factors 1, 2, 3, 4, 6, and 12. The GCD of 15 and 12 is 3, since it's the largest number that both 15 and 12.

The Python math library can find the GCD for us.

In [None]:
import math
math.gcd(15,12)

We discussed earlier that multiplication is easy, and that factoring seems hard. What about finding the GCD? Do you think it's easy or difficult?

It's easy. There's a famous efficient algorithm known as the Euclidean Algorithm that's been around for thousands of years. You might even know it. If not, don't worry. I won't make you learn it. Python can do the math for us.

An important definition related to the GCD before we continue. Two numbers are said to be **relatively prime** if their GCD is 1. For example, 25 and 9 are relatively prime. In other words, these numbers share no common factors. We'll use this concept later, so don't forget it.

In [None]:
import math
math.gcd(25,9)

## Modular Multiplicative Inverse
The inverse of a number $x$ is $\frac{1}{x}$. If you want to "reverse" multiplying by a number, you can divide by it. In words, a number mutiplied by its multiplicative inverse is 1. In equations, $x\times\frac{1}{x}=1$.

Numbers can also have a multiplicative inverse in modular arithmetic. We want to know what number to multiply by to get 1 modulo n. Say the modulo we're interested is 31, and we want to know the multiplicative inverse of 9 modulo 31. We're trying to solve this equation for x $9x\equiv1 \bmod 31$. What other number can we multiply 9 by to get 1 mod 31?

We can find the solution through trial and error if the numbers are small enough. Since the modular base is 31, we can just guess every number between 0 and 31.

In [None]:
for i in range(1,31):
    if (9*i)%31 == 1:
        print(i)

According to our result, 7 is the multiplicative inverse of 9 mod 31.

In [None]:
(9*7)%31

Now we know 9 and 7 are multiplicative inverses, but only for mod 31. Our answer might change if we use a different modulo. For example, if we switch to mod 37, 9 and 33 are multiplicative inverses and 7 and 16 are multiplicative inverses.

For bigger numbers, guessing every possible solution would take too long. Fortunately, the Euclidean Algorithm mentioned earlier can be extended to find the multiplicative inverse of a number. I won't make you learn that either. We'll again import a Python library to do the work for us.

In [None]:
import gmpy2
int(gmpy2.invert(9,31))

## Euler's Totient Function
The mathematician Euler invented a math function we write as $\phi(n)$. This function counts all of the numbers less than $n$ that are relatively prime to $n$. In other words, how many numbers between $1$ and $n$ share no factors with $n$. It turns out this strange little function is very important.

To get a better handle on the concept, let's write a Python program to compute $\phi(24)$. We'll loop through all of the numbers less than 24 and check to see if the gcd is 1. If so, we'll update our count.

In [None]:
import math
n=24
phi=0
for i in range(1,n):
    print("i:",i,"gcd:",math.gcd(i,n))
    if math.gcd(i,n)==1:
        phi+=1
print("The totient function of",n,"is",phi)

Hopefully, that clarifies the concept a bit. There are 8 numbers relatively prime to 24: 1, 5, 7, 11, 13, 17, 19, and 23.

We can also import a library to efficiently compute $\phi(n)$ for us.

In [None]:
from sympy import ntheory
ntheory.totient(24)

A useful fact. If n is prime, then $\phi(n)=n-1$. By definition, a prime number has no factors. That means its gcd with all the numbers less than it are 1. How many numbers are less than $n$? $n-1$.

In [None]:
ntheory.totient(19)

## Euler's Theorem

Euler's Theorem is a famous result in number theory. Proving it is complicated, and it's not a very intuitive concept. We will just treat it as a fact, the same way you treated the quadratic formula as a fact. 

Here's Euler's Theorem, stated in all its glory:

If two numbers $a$ and $n$ are relatively prime (i.e. $gcd(a,n)=1$), then $a^{\phi(n)}\equiv 1 \bmod n$.

Let's just pick two numbers and see how it works. Let's say $a=15$ and $n=427$. First, we'll make sure they're relatively prime. Then, we'll compute $15^{\phi(427)} \bmod 427$. If Euler is right, the result should be 1.

In [None]:
a=15
n=427

print("GCD is ",math.gcd(a,n))

print("Result of equation is: ",a**ntheory.totient(n)%n)

Well look at that. Euler was right. 

## Discrete Logarithm

The logarithm is the inverse of exponentiation. If $b^y=x$, then $\log_b(x)=y$. For example, $10^4=10,000$, so $\log_{10}10,000=4$.

In [None]:
import math
print(10**4)
print(math.log(10000,10))

There is a similar concept in modular arithmetic. Given $a$, $g$, and $n$, we want to solve this equation for $x$: $a\equiv g^{x}\bmod n$. For example, maybe we want to find $x$ such that $9\equiv 2^x \bmod 19$.

How do we find $x$? The simplest way would be to guess and check. Let's plug in all the numbers between 1 and 19 and see which one results in 9.

In [None]:
for i in range(1,19):
    print(i,(2**i)%19)

It looks like the answer is 8. $2^8 \equiv 9 \bmod 19$.

One brief technicality before we get to the exercises. The discrete log only works properly if $a$, $n$, and $g$ are specially chosen. If not, there might not be a solution. You can assume I'm being careful to choose numbers that work.

## Exercises
Below, you'll find the exercises for this section. Don't forget that you can (and should!) make use of the libraries we used above. If you have any difficulties, don't forget to take breaks and ask questions.

1) What is the prime factorization of 3590987482823894196083649330108242777592064?

In [None]:
n=3590987482823894196083649330108242777592064

2) What is the greatest common divisor of 1365701 and 20773031?

In [None]:
a=1365701
b=20773031

3) What is the multiplicative inverse of 3109 modulo 67801?

In [None]:
a=3109
m=67801

4) Without using Python, compute $\phi(23)$.

5) Using Python, compute $\phi(4165615602567070652790521514038969014184416660593860649)$.

In [None]:
n=4165615602567070652790521514038969014184416660593860649

6) Without using Python, compute $7^{22} \bmod 23$.

7) What is the discrete log base 5 of 18 mod 23? In other words, solve this equation for $x$: $18\equiv 5^x \bmod 23$.

In [None]:
g=5
m=23
a=18