On the Polynomial Basis of <svg xmlns:xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg" style="vertical-align:-2.993899pt" id="M1" height="16.1363pt" version="1.1" viewBox="-0.0657574 -13.1424 48.5763 16.1363" width="48.5763pt"><g transform="matrix(.017,0,0,-0.017,0,0)"><path id="g121-69" d="M692 302H438V274C537 267 543 260 543 188V103C543 61 531 48 511 37C489 26 458 20 424 20C231 20 146 188 146 333C146 517 258 630 411 630C507 630 582 597 606 474L634 480C627 546 622 601 619 636C586 643 510 665 426 665C230 665 44 552 44 321C44 122 191 -15 411 -15C491 -15 573 7 635 21C629 49 628 81 628 116V202C628 261 632 266 692 274V302Z"/></g><g transform="matrix(.017,0,0,-0.017,12.269,0)"><path id="g121-68" d="M493 503C489 551 484 614 483 650H43V622C120 616 128 611 128 525V126C128 40 120 34 40 28V0H312V28C221 34 213 40 213 126V307H316C407 307 412 296 424 227H453V420H424C412 355 407 346 316 346H213V584C213 613 216 616 246 616H322C398 616 419 607 436 579C449 559 455 539 464 499L493 503Z"/></g><g transform="matrix(.017,0,0,-0.017,21.347,0)"><path id="g113-41" d="M300 -147C201 -63 143 98 143 270S200 602 300 686L282 710C136 610 70 450 70 271V270C70 89 136 -72 282 -170L300 -147Z"/></g><g transform="matrix(.017,0,0,-0.017,27.284,0)"><path id="g113-51" d="M412 140C382 77 369 73 315 73H129L270 222C362 320 402 379 402 466C402 571 322 635 234 635C177 635 130 609 99 576L42 495L64 475C90 514 133 568 201 568C274 568 318 519 318 435C318 349 255 267 193 193C144 135 87 78 32 23V0H405C417 45 427 89 440 131L412 140Z"/></g><g transform="matrix(.012,0,0,-0.012,35.521,-7.578)"><path id="g50-111" d="M504 89L488 119C453 85 428 69 416 69C408 69 405 75 412 102L462 304C492 438 460 451 436 451S388 441 356 423C311 397 229 336 170 256H168L189 340C208 418 200 451 177 451C144 451 82 413 24 352L40 322C65 345 98 369 108 369C114 369 119 363 112 335L28 -3L36 -12C54 -3 83 4 112 10C125 73 138 122 153 174C205 258 328 382 376 382C395 382 399 369 384 305L330 93C312 25 323 -12 351 -12C378 -12 439 21 504 89Z"/></g><g transform="matrix(.017,0,0,-0.017,42.352,0)"><path id="g113-42" d="M275 270C275 450 212 609 64 710L45 686C145 604 203 442 203 270S147 -63 45 -147L64 -170C213 -68 275 89 275 270Z"/></g></svg> Having a Small Number of Trace-One Elements

Wang, Jiantao; Zheng, Dong; Huang, Zheng

doi:https://doi.org/10.1155/2016/9149041

Mathematical Problems in Engineering

On this page

Abstract Introduction Preliminaries Conclusion Acknowledgments References Copyright Related Articles

Research Article | Open Access

Volume 2016 | Article ID 9149041 | https://doi.org/10.1155/2016/9149041

On the Polynomial Basis of Having a Small Number of Trace-One Elements

Jiantao Wang,¹Dong Zheng,²and Zheng Huang¹

Academic Editor: Fazal M. Mahomed

Received15 Mar 2016

Revised09 Aug 2016

Accepted20 Oct 2016

Published05 Dec 2016

Abstract

In the Galois fields , a polynomial basis with a small number of trace-one elements is desirable for its convenience in computing. To find new irreducible polynomials over with this property, we research into the auxiliary polynomial with roots , such that the symmetric polynomials are relative to the symmetric polynomials of . We introduce a new class of polynomials with the number “1” occupying most of the values in its . This indicates that the number “0” occupies most of the values of the traces of the elements . This new class of polynomial gives us an indirect way to find irreducible polynomials having a small number of trace-one elements in their polynomial bases.

1. Introduction

Let denote the finite field with elements. Let be a root of an irreducible polynomial of degree over . The set forms a basis of , called a polynomial basis. An element can be represented as The trace of is defined as which is the linear combination of the traces of elements of the polynomial basis; that is, If the number of basis elements for which is small, the computation of in software and the implementation in hardware are faster. It is benefit for halving a point on an elliptic curve over [1, 2] or generating pseudo random sequences using elliptic curves [3]. Thus it is of interest to find irreducible polynomials having a small number of trace-one elements in their polynomial bases. As the value of equals the symmetric polynomial , the authors in [4] got the conditions for trinomials and pentanomials to have this property using the Newton function for symmetric polynomials [5, 6].

We presented an indirect strategy that is different from the above one, which is inspired by extending the work of [7] in [8]. We still use the Newton function to investigate the polynomial with the following two properties. First, the polynomial should have the factorization with irreducible. Second, let be the roots of , the number of different values of the symmetric polynomials, equaling one should be as many as possible. With these two properties, we can identify as having less trace-one elements in its polynomial basis. A class of polynomials suiting our demands is introduced, and we showed their existence by numerical experiments.

The paper is organized as follows. In Section 2 we give some basic definitions which are needed for our result. The new class of polynomials is introduced in Section 3. Section 4 draws the conclusion of our work.

2. Preliminaries

Let be a polynomial over of degree whose roots are . The elementary symmetric polynomials are the coefficients of :

Another particular kind of symmetric polynomial is defined as where is an integer.

The Newton function is a relation between and the coefficients of the polynomial; it is defined as follows [5, p.12]:

It is widely known that if is irreducible, then the traces of equal the value of .

Let ; the roots of are . We haveSo when more ones appeared in the set of the values of , more zeros appeared in the traces of elements of the polynomial basis of .

3. The Three Piece Polynomials

We first introduce a class of polynomials with roots over fitting the conditions that the value set of has plenty of ones and then search for the polynomials with the decomposition where is irreducible.

3.1. The Three Piece Polynomials

Definition 1. Let be a polynomial over with nonzero constant term. If where and mean consecutive bits of ones and zeros, respectively, we call three-piece polynomial over and denote it by its coefficients as .

Lemma 2. Let be a three-piece polynomial with coefficients over . Let be the roots of ; if , then

Proof. If , then , and the Newton formula tells us that and . Suppose is true for ; then and We have

We mainly divide our theorems into two parts according to the parity of . First, let us consider the condition that is even.

Theorem 3. Let be denoted as above. If both and are even, then the values of functions , all equal one.

Proof. From Lemma 2, we know that for . We have as is even and . Suppose is true for ; then as . Here we come to the next even number with , Suppose is true for ; then as .

In the following proofs, we still focus on the changes of the value in the summations of the symmetric polynomial . To simplify narration, we will divide the summations in into four parts according to the subscript of . That is, the summations with are contained in , the summation with comprises , the summations in are with , and the ending part .

Theorem 4. Let be denoted as above. If is even, is odd, and , then the values of functions , , are

Proof. The first case is contained in Theorem 3.
For the remaining cases, we declare they are periodic. We first show one period in the following. That is, for we haveBy the assumption , we get for and ; these simplify the above equation to .
For the value of , as appears in the of and its value is “0” we have .
We go on our proof by induction. Suppose holds for all satisfying ; only the summation with equals zero in of , so .
For , as goes into the summation in , the value of the summation turns back to and we have . Now, we finished computing the value of in one period in our declaration, which is .
The condition guarantees the subsequent computations can still use for (17), as and still holds. So the above method will work for the next periods, and our declaration holds.

Next we will deal with the situation that is odd, which is more complicated. It has been proved that for in Lemma 2.

Lemma 5. Let be denoted as above. If is odd, then the values of functions , , are

Proof. We follow the idea in the proof of Theorem 4. For , letWe have and it fixes the value of in for to be which makes . If then and the next period starts; otherwise the equation holds within one period.

In the following, we will deal with with ; remember that is odd. We define a comparative sequence here to simplify the narration. Let be the coefficient of a polynomial with and then of , which is denoted by , follows the period shown in Lemma 5. That is,

Theorem 6. Let and be denoted as above. If is odd, is even, and , then the values of functions , have two cases.

Proof. For , we haveFor , we have as enters the summations of , so . By induction, we haveThe value of for is opposite to the corresponding .
We have for as the value of is changed in the of .
As all the summations in and are the same for , we get and our claim follows.

Using the same method, we can also prove the following theorem.

Theorem 7. Let and be denoted as above. If is odd, is odd, and , then the values of functions , have two cases.

That is, the changed value appears at the position where .

Corollary 8. Let and be denoted as above. If and , then the values of function , are

Proof. As all the coefficients , equal zero, the first case is straightforward. For , we have and the corollary follows.

We have discussed the four cases concerning the three-piece polynomials over . The condition guarantees that the above cases cover all the possible kinds of three-piece polynomials. The number “1” does occupy a great proportion of the values of , as the examples shown in Table 1.

3.2. Experiment Results

Next, we search for the three-piece polynomial whose decomposition is with irreducible. As there exists a trinomial or pentanomial basis for having at most four elements of trace one for each [4], the polynomial with less number of trace-one elements that appeared in its polynomial basis is acceptable.

With the formula , we choose the number of trace-one elements to be at most four, and the result showed that the three-piece polynomials fitting these requirements exist for a great number of , and we guess they exist for . The proof for this conjecture is difficult as it remains open to prove the existence of irreducible polynomials when almost all coefficients of them are prescribed [9].

If we want to get a polynomial basis with less than two trace-one elements from a three-piece polynomial, then almost every odd degree will upset us. These two results are illustrated in Tables 2 and 3.

For example, we take in Table 2 to see how it works. The three-piece polynomial is representing the polynomial . The value set of of is We decompose as with irreducible, and the value set of of is

Combining with the fact that , we know the polynomial basis of has two trace-one elements.

4. Conclusion

We investigated the three-piece polynomials to get the polynomial basis with small number of trace-one elements. The regular pattern shown by the value of of the three-piece polynomial is the reason to choose them. Our numerical experiments showed that the three-piece polynomial relative to polynomial basis with small number of trace-one elements exists for many degrees, but the proof of the existence remains unsolved.

Competing Interests

The authors declare that they have no competing interests.

Acknowledgments

This work is supported by the National Natural Science Foundation of China under Grant nos. 61272037 and 61472472 and “New Generation of Broadband Wireless Communications Network” Ministry of Industry and Information Technology major projects (Project no. 2013ZX03002004).

References

K. Fong, D. Hankerson, J. López, and A. Menezes, “Field inversion and point halving revisited,” IEEE Transactions on Computers, vol. 53, no. 8, pp. 1047–1059, 2004.
View at: Publisher Site | Google Scholar
E. Knudsen, “Elliptic scalar multiplication using point halving,” in Advances in Cryptology—ASIACRYPT '99, vol. 1716 of Lecture Notes in Computer Science, pp. 135–149, Springer, 1999.
View at: Google Scholar
G. Gong, T. A. Berson, and D. R. Stinson, “Elliptic curve pseudorandom sequence generators,” in Selected Areas in Cryptography, vol. 1758 of Lecture Notes in Computer Science, pp. 34–48, Springer, Berlin, Germany, 2000.
View at: Publisher Site | Google Scholar | MathSciNet
O. Ahmadi and A. Menezes, “On the number of trace-one elements in polynomial bases for $F_{2} n$ ,” Designs, Codes and Cryptography, vol. 37, no. 3, pp. 493–507, 2005.
View at: Publisher Site | Google Scholar
H. M. Edwards, Galois Theory, Springer, Berlin, Germany, 1997.
R. Lidl and H. Niederreiter, Introduction to Finite Fields and Their Applications, Cambridge University Press, 1986.
View at: MathSciNet
R. G. Swan, “Factorization of polynomials over finite fields,” Pacific Journal of Mathematics, vol. 12, pp. 1099–1106, 1962.
View at: Publisher Site | Google Scholar | MathSciNet
A. W. Hales and D. W. Newhart, “Swan's theorem for binary tetranomials,” Finite Fields and Their Applications, vol. 12, no. 2, pp. 301–311, 2006.
View at: Publisher Site | Google Scholar | MathSciNet
D. Panario, “Open problems for polynomials over finite fields and applications,” in Open Problems in Mathematics and Computational Science, pp. 111–126, Springer, 2014.
View at: Google Scholar

Copyright

Copyright © 2016 Jiantao Wang et al. This is an open access article distributed under the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.

PDF Download Citation

Download other formats

Order printed copies

Views

486

Downloads

612

Citations