# Modular Arithmetic

## Euclid's Algorithm
The following algorithm, given two non-negative integers $a$ and $b$, computes their greatest common divisor $d$ as well as its linear combination as $d=ax+by$. For this, we first consider the case $b=0$: then $d=a$ and $d=1 \cdot a + 0 \cdot b$. Otherwise, we make a recursive call to find a triple $(d, x, y)$ such that $d=x \cdot b + y \cdot (a \bmod b)$. Then, $d=x \cdot b + y \cdot (a \bmod b)=x \cdot b + y \cdot (a - \lfloor \frac ab \rfloor \cdot b) = y \cdot a + (x-\lfloor \frac ab \rfloor \cdot y) \cdot b$.

In [1]:
def extended_euclid(a, b):
    if b == 0:
        return (a, 1, 0)
    (d, x, y) = extended_euclid(b, a % b)
    return (d, y, x - (a // b) * y)

In [4]:
for (a, b) in [(5, 7), (6, 8), (9, 18), (307983627, 9097422), (33269915070672605169415, 1624839375846662197519665903669736)]:
    (d, x, y) = extended_euclid(a, b)
    print("The greatest common divisor of {} and {} is {}: {}={}*{}+{}*{}".format(a, b, d, d, a, x, b, y))

The greatest common divisor of 5 and 7 is 1: 1=5*3+7*-2
The greatest common divisor of 6 and 8 is 2: 2=6*-1+8*1
The greatest common divisor of 9 and 18 is 9: 9=9*1+18*0
The greatest common divisor of 307983627 and 9097422 is 543: 543=307983627*7059+9097422*-238975
The greatest common divisor of 33269915070672605169415 and 1624839375846662197519665903669736 is 186436501: 186436501=33269915070672605169415*-1029054988329124573620253+1624839375846662197519665903669736*21070742483036


## Modular Exponentiation
The following procedure computes $a^k \bmod{m}$ using the repeated squaring idea.

In [5]:
def modular_exponentiation(a, k, m):
    assert m >= 2
    if k == 0:
        return 1
    b = modular_exponentiation(a, k // 2, m)
    if k % 2 == 0:
        return (b * b) % m
    else:
        return (b * b * a) % m


In [6]:
for (a, k) in [(5, 2), (7, 100), (239, 789), (3, 156187152426181527254959556325)]:
    r = modular_exponentiation(a, k, 10)
    print("The last digits of {} to the {} is {}".format(a, k, r))

The last digits of 5 to the 2 is 5
The last digits of 7 to the 100 is 1
The last digits of 239 to the 789 is 9
The last digits of 3 to the 156187152426181527254959556325 is 3


## Modular Division and Inverses
The following procedure, given $a$ and $m$, computes $a^{-1} \bmod m$. Recall that it exists iff $\operatorname{gcd}(a, m)=1$. Then, we find integers $x$ and $y$ such that $1=a\cdot x + m \cdot y$. Hence $x \bmod m$ is the inverse of $a$ modulo $m$.

In [7]:
def modulo_inverse(a, m):
    (d, x, y) = extended_euclid(a, m)
    assert d == 1
    return x % m

In [8]:
for (a, m) in [(3, 7), (7, 15), (18, 239)]:
    i = modulo_inverse(a, m)
    print("The inverse of {} modulo {} is {}: indeed, {}*{}={}={} mod {}".format(a, m, i, a, i, a * i, (a * i) % m, m))

The inverse of 3 modulo 7 is 5: indeed, 3*5=15=1 mod 7
The inverse of 7 modulo 15 is 13: indeed, 7*13=91=1 mod 15
The inverse of 18 modulo 239 is 93: indeed, 18*93=1674=1 mod 239


## Chinese Remainder Theorem
The following procedure, given $a, b, m, n$ where $\operatorname{gcd}(n,m)=1$, find the unique integer $0 \le x <mn$ 
such that $x \equiv a \pmod{m}$ and $x \equiv b \pmod{n}$. It is computed as 
$$(a\cdot n \cdot (n^{-1} \bmod{m})+b\cdot m \cdot (m^{-1} \bmod{n})) \bmod{mn} \, .$$

In [10]:
def chinese_remainder(a, b, m, n):
    return (a * n * modulo_inverse(n, m) + b * m * modulo_inverse(m, n)) % (m * n)

In [14]:
for (a, b, m, n) in [(2, 3, 5, 7), (7, 19, 239, 5)]:
    x = chinese_remainder(a, b, m, n)
    print("{}={} mod {} and {}={} mod {}".format(x, a, m, x, b, n))

17=2 mod 5 and 17=3 mod 7
724=7 mod 239 and 724=19 mod 5


## RSA