# Powers Modulo $m$ and Successive Squaring

In [1]:
import lib_path
from smalllab.nt import *
from smalllab.algebra import *
from random import randint

**Problem:**
> Compute $7^{327} \pmod{853}$

In [2]:
k, m = 327, 853

In [3]:
7*1 % m

7

In [4]:
7**2 % m

49

In [5]:
# 7**4 % m
49**2 % m

695

In [6]:
# 7**8 % m
695**2 % m

227

In [7]:
# 7**16 % m
227**2 % m

349

In [8]:
# 7**32 % m
349**2 % m

675

In [9]:
# 7**64 % m
675**2 % m

123

In [10]:
# 7**128 % m
123**2 % m

628

In [11]:
# 7**256 % m
628**2 % m

298

### Function

In [12]:
def power_mod(a: int, k: int, m: int) -> int:
    """Compute a^k mod m by successive squaring."""
    b = 1
    while k >= 1:
        if k % 2 == 1:
            b = b*a % m
        a = a**2 % m
        k //= 2
    return b

In [13]:
power_mod(7, k, m) # 286

286

In [14]:
power_mod(2, 283976710803262, 283976710803263) # 280196559097287

280196559097287

In [15]:
power_mod(3, 630249099480, 630249099481) # 1

1

In [16]:
help(decimal2binary)

Help on function decimal2binary in module smalllab.nt:

decimal2binary(n: int) -> str
    Return a string consisting digits of binary expansion of n.



In [17]:
b = decimal2binary(k)
b

'101000111'

In [18]:
powers = []
for j in range(len(b)):
    powers.append(2**(len(b)-1-j) * int(b[j]))
powers

[256, 0, 64, 0, 0, 0, 4, 2, 1]

In [19]:
A = []
for j in powers:
    mod = power_mod(7, j, m)
    A.append(mod)
A

[298, 1, 123, 1, 1, 1, 695, 49, 7]

In [20]:
S = 1
for j in A:
    S = S*j % m
S

286

## Fermat's Little Theorem and Carmichael Numbers

> If $\gcd(a,m)=1$ and if $a^{m-1} \pmod{m}$ not equal to $1$, then $m$ is composite.

In [21]:
2**14 % 15

4

Then $15$ is composite.

### Carmichael numbers

There exist composite numbers $m$ such that $a^{m-1}\equiv 1\pmod{m}$ for all $a$'s with $\gcd(a,m)=1$.

Such $m$'s are called **Carmichael numbers**. The smallest is $561$.

In [22]:
m = 561
decompose(m)

{3: 1, 11: 1, 17: 1}

In [23]:
U = units(m)
print(U)

[1, 2, 4, 5, 7, 8, 10, 13, 14, 16, 19, 20, 23, 25, 26, 28, 29, 31, 32, 35, 37, 38, 40, 41, 43, 46, 47, 49, 50, 52, 53, 56, 58, 59, 61, 62, 64, 65, 67, 70, 71, 73, 74, 76, 79, 80, 82, 83, 86, 89, 91, 92, 94, 95, 97, 98, 100, 101, 103, 104, 106, 107, 109, 112, 113, 115, 116, 118, 122, 124, 125, 127, 128, 130, 131, 133, 134, 137, 139, 140, 142, 145, 146, 148, 149, 151, 152, 155, 157, 158, 160, 161, 163, 164, 166, 167, 169, 172, 173, 175, 178, 179, 181, 182, 184, 185, 188, 190, 191, 193, 194, 196, 197, 199, 200, 202, 203, 205, 206, 208, 211, 212, 214, 215, 217, 218, 223, 224, 226, 227, 229, 230, 232, 233, 235, 236, 239, 241, 244, 245, 247, 248, 250, 251, 254, 256, 257, 259, 260, 262, 263, 265, 266, 268, 269, 271, 274, 277, 278, 280, 281, 283, 284, 287, 290, 292, 293, 295, 296, 298, 299, 301, 302, 304, 305, 307, 310, 311, 313, 314, 316, 317, 320, 322, 325, 326, 328, 329, 331, 332, 334, 335, 337, 338, 343, 344, 346, 347, 349, 350, 353, 355, 356, 358, 359, 361, 362, 364, 365, 367, 368, 370, 3

In [24]:
check = True
for u in U:
    if power_mod(u, m-1, m) != 1:
        check = False
check

True

### Find the smallest Carmichael numbers

In [25]:
found = False
j = 4
while not found:
    if is_prime(j):
        j += 1
        continue
        
    U = units(j)
    check = True
    for u in U:
        if power_mod(u, j-1, j) != 1:
            check = False
            break
            
    if check:
        found = True
    j += 1
j-1

561

**Exercise 4**

Write a program to check if a number $n$ is composite or probably prime as follows.
Choose $10$ random number $a_1,\ldots,a_{10}$ between $2$ and $n-1$ and compute $a_i^{n-1}\pmod{n}$.
If $a_i^{n-1} \not\equiv  1\pmod{n}$ for any $a_i$, return the message "$n$ is composite".
If $a_i^{n-1} \equiv 1 \pmod{n}$ for all the $a_i$'s, return the message "$n$ is probably prime".

In [26]:
help(randint)

Help on method randint in module random:

randint(a, b) method of random.Random instance
    Return random integer in range [a, b], including both end points.



In [27]:
n = 561
ns = [randint(2, n-1) for _ in range(5)]
rs = []
for j in ns:
    rs.append(power_mod(j, n-1, n))

prob = True
for r in rs:
    if r != 1:
        print(f"{n} is composite")
        prob = False
        break

if prob:
    print(f"{n} is probably prime")

print(ns)
print(rs)

561 is composite
[117, 126, 399, 495, 341]
[375, 375, 375, 528, 154]


In [28]:
def probably_prime(n):
    ns = [randint(2, n-1) for _ in range(10)]
    for j in ns:
        mod = power_mod(j, n-1, n)
        if mod != 1:
            return f"{n} is composite"
    return f"{n} is probably prime"

In [29]:
probably_prime(101)

'101 is probably prime'

In [30]:
is_prime(101)

True

In [31]:
probably_prime(561)

'561 is composite'

## Reference

- A Friendly Introduction to Number Theory 4ed by Joseph H. Silverman. Chapter 16.