In [1]:
from Crypto.Util.number import *

# Theory of Numbers and finite fields

## Divisibility

A non-zero number $b$ **divides** $a$ if exists a number $m$ that $a=mb$.

$$b \neq 0, b|a \iff \exists m: a=mb \land a,b,m \in N$$

In other words, $b$ divides a without a remainder and $b$ is **divisor** of $a$.

### Divisibility Properties

There are some properties on divisibility:

$$a|1 \implies a=\pm 1$$
$$a|b \land b|a \implies a=\pm b$$
$$\forall b \neq 0 \implies b|0$$
$$a|b \land b|c \implies a|c$$
$$b|g \land b|h \implies \forall m,n \in N, b|(mg+nh)$$







## Greatest Common Divisor

An important problem in theory number is determining GCD (Greatest Common Divisor).

$GCD(a,b)$ is greatest divisor for $a$ and $b$.

# Prime Number

A number is prime if only numbers that divide it are 1 and itself.

$$a \text{ is prime} \iff \nexists m \neq 1 \land m \neq a : m|a$$

In [2]:
for i in range(10):
  print(getPrime(30))

1053081199
886014733
750662021
541418219
1066838023
645107669
634210001
1040609863
1032402821
745048033


Prime numbers play a critical role in number theory because there are not predictable. Not prime predictable involves that factoring problem is not an easy problem.

## Factoring in prime numbers

Factoring a number is finding numbers which divide into it. Through factors a number can be writed as product of powers of primes (**prime factorisation**).

$$n = a_0 \times a_{..} \times a_m =  \prod_{i=1}^m a_i$$

## Coprime numbers

A new concept is relatively prime or coprime numbers:

$$\text{a and b are} \textbf{ coprime} \iff GCD(a,b) = 1$$

So they are relatively prime if they doesn t have any common factor.

Another common problem is to determine the "greatest common divisor” $GCD(a,b)$ which is the largest number that divides into both $a$ & $b$.



In [3]:
a = getRandomInteger(8)
b = getRandomInteger(8)
print("a = %d" %a)
print("b = %d" %b)
print("GCD(a,b) = %d" %(GCD(a,b)))

a = 4
b = 74
GCD(a,b) = 2


## Fermat's little theorem



An important theorem in theory number is Fermat's little theorem, because it can be used as **primality test** and useful in factorising problem.

$$p \text{ is prime } \land GCD(a,p)=1 \implies a^{p-1} = 1 \mod p$$

or, equivalently:

$$p \text{ is prime } \land GCD(a,p)=1 \implies a^p = a \mod p$$

Note:

If $p$ is prime then his relative prime $a$ is any number $a \lt p$, but $a$ could be $a \gt p$ .

In [4]:
p = getPrime(8)
a = getRandomInteger(7)
print("p = %d" %p)
print("a = %d" %a)
print("Coprimes" if GCD(a,p) == 1 else "Not coprimes")
print("a^(p-1) mod p = %d" % pow(a,p-1,p))

p = 151
a = 6
Coprimes
a^(p-1) mod p = 1


## Primality test 

In order to determine primes numbers, there exists two approachs:

- Sieve techniques
- Statistical techniques

### Sieve Eratosthenes

This techniques is really simple, in order to determine if $n$ is prime, I divide it by any number prime $m < \sqrt(n)$.

In [5]:
def SieveOfEratosthenes(n): 
    # Create a boolean array "prime[0..n]" and initialize
    # all entries it as true. A value in prime[i] will
    # finally be false if i is Not a prime, else true.
    prime = [True for i in range(n + 1)]
    p = 2
    while (p * p <= n):
          
        # If prime[p] is not changed, then it is a prime
        if (prime[p] == True):
              
            # Update all multiples of p
            for i in range(p * 2, n + 1, p):
                prime[i] = False
        p += 1
    prime[0]= False
    prime[1]= False
    # Print all prime numbers
    for p in range(n + 1):
        if prime[p]:
            print (p) #Use print(p) for python 3

SieveOfEratosthenes(30)
  

2
3
5
7
11
13
17
19
23
29


This technique is really simple, but it has a exponential complexity.

### Test Miller Rabin

Miller Rabin Test uses Fermat's little theorem in order to dermine if $n$ is certainly not prime or if it is very likely a prime.


In [6]:
import random
def is_Prime(n):
    """
    Miller-Rabin primality test.
 
    A return value of False means n is certainly not prime. A return value of
    True means n is very likely a prime.
    """
    if n!=int(n):
        return False
    n=int(n)
    #Miller-Rabin test for prime
    if n==0 or n==1 or n==4 or n==6 or n==8 or n==9:
        return False
 
    if n==2 or n==3 or n==5 or n==7:
        return True
    s = 0
    d = n-1
    while d%2==0:
        d>>=1
        s+=1
    assert(2**s * d == n-1)
 
    def trial_composite(a):
        if pow(a, d, n) == 1:
            return False
        for i in range(s):
            if pow(a, 2**i * d, n) == n-1:
                return False
        return True  
 
    for i in range(10):#number of trials 
        a = random.randrange(2, n)
        if trial_composite(a):
            return False
 
    return True

is_Prime(getPrime(512))


True

Miller Rabin test return if number is not prime surely or if test is inconclusive and number is a pseudo-prime:

$$ Pr(\text{n pseudo-prime is not a prime}) \lt \frac{1}{4}$$

Reapeating test for different values improves probability to check primality of number.

$$Pr(\text{n pseudo-prime is not a prima after t test})  \gt 1 - \frac{1}{4^t}$$

After 10 tests, pseudo-prime is prime with a probability $ \gt 0.99999$ 

## Number Prime Distribution

**Prime number theorem (PNT)** describes the asymptotic distribution of the prime numbers among the positive integers, that occours every $ln(n)$. 

Due to PNT, it is necessary test only $0.5 \cdot ln(n)$ numbers to identify a prime number, nevertheless this is asymptotic distribution, infact can exists prime more near each other, so doesn't exists any function that generates primes number in order.

## Euler's totient function

In number theory, **Euler's totient function** $\phi(n)$ counts the positive integers up to a given integer $n$ that are coprime to $n$.

Define **Complete Set of Residues** $CR(n)$ as set $\{ 0, ..., n-1\}$.

Define **Reduced Set of Residues** $RR(n)$ as set of numbers coprime to $n$.

$$a \in RR(n) \iff a \in CR(n) \land GCD(a,n) = 1$$

Euler's totient function $\phi(n)$ is cardinality of $RR(n)$.

In order to calculate totient function, we must counts numbers of residues to exclude in $RR(n)$, so it's needed factorising $n$ in prime numbers.

Euler's totient has some properties:

$$\text{If p is prime} \implies \phi(p) = p-1$$
$$\text{If p and q are prime} \implies \phi(p \cdot q ) = (p-1) \cdot (q-1)$$

If factorising $n$ then $\phi(n) = \prod_{i=1}^m (p_i-1)$ where $p_i$ is a factor of $n$



## Euler's Theorem

Euler's theorem is a Fermat's little theorem's generalization: 

For any number $n$ and $a$ coprime then $a^{\phi (n)} \mod n = 1$

$$\forall a,n \in N: GCD(a,n) = 1 \implies a^{\phi (n)} \mod n = 1$$

In [7]:
n = getPrime(8)
a = getRandomInteger(3)
phin = n-1
print("a^phi(n) mod n = %d" %(pow(a,phin,n)))

a^phi(n) mod n = 1
