# Notes 11: List Decoding Folded Reed-Solomon Codes

Save this PDF as:

Size: px
Start display at page:

## Transcription

1 Introduction to Coding Theory CMU: Spring 2010 Notes 11: List Decoding Folded Reed-Solomon Codes April 2010 Lecturer: Venkatesan Guruswami Scribe: Venkatesan Guruswami At the end of the previous notes, we defined folded Reed-Solomon codes, parameterized by an integer folding parameter s 1, as follows. Definition 1 (s-folded RS code) Let F be a field of size q whose nonzero elements are {1, γ,..., γ n 1 } for n = q 1. Let s 1 be an integer which divides n. Let 1 k < n be the degree parameter. The folded Reed-Solomon code FRS (s) F [k] is a code over alphabet Fs that encodes a polynomial f F[X] of degree k as f(x) f(1) f(γ). f(γ s 1 ), f(γ s ) f(γ s+1 ). f(γ 2s 1 ),..., f(γ n s ) f(γ n s+1 ). f(γ n 1 ),. (1) Observe that the folded RS code is a code of block length N = n/s and rate R = k/n (which is the same as the original, unfolded Reed-Solomon code). 1 List decoding FRS codes Now suppose such a codeword was transmitted and we received a string in y (F s ) N which we view in matrix form as y 1 y s+1 y n s+2 y 2 y s+2. y 3 y s y s y n We would like to recover a list of all polynomials f F[X] of degree k whose folded RS encoding (1) agrees with y in at least t columns, for some agreement parameter t. The goal would be to give an algorithm for as small a t as possible, as this corresponds to list decoding up to n t errors. Note that we can solve this problem for t RN by simply unfolding the received word and using the algorithm for Reed-Solomon codes. Our hope is to do better by exploiting the fact that the agreements have some structure: when a column is correct we know the correct values of all s values in the column. In other words, the number of errors patterns we have to worry about is smaller and they have some structure, which could be potentially be exploited to correct from a larger number of errors. This is in fact what we will do, exploiting in a crucial way the algebraic structure of the folding. 1 (2)

2 As in the Reed-Solomon list decoding algorithm, we will use interpolation to fit a low-degree nonzero polynomial Q through the data. The gain will come by interpolating in more than two dimensions. This enables working with a smaller degree and offers the hope of leading to an algorithm that works with smaller agreement. The fact that an entire column is correct when there is no error will be used to argue that the interpolated polynomial Q and the message polynomial f must obey some identity (the higher-dimensional analog of the identity Q(X, f(x)) = 0 from the Reed-Solomon case). The algebraic crux is to argue that this identity suffices to pin down f to a small list of possibilities, and to find this list efficiently. 1.1 Interpolation step We will describe a decoding algorithm that can be viewed as a higher-dimensional generalization of the Welch-Berlekamp algorithm. The algorithm will interpolate a linear polynomial Q(X, Y 1, Y 2,..., Y s ) which has degree 1 in the Y i s through certain (s + 1)-tuples. We thank Salil Vadhan for pointing out this variant of the algorithm, which is simpler to describe. The algorithm described in the paper [1] uses higher degrees in Y i s as well as multiplicities in the interpolation. This leads to a stronger bound (as we will mention later), but the simpler linear polynomial based algorithm suffices for the main message of this lecture. Jumping ahead, this message is the explicit construction of codes of rate R which can be list decoded in polynomial time from a fraction 1 R ɛ of errors, for any desired ɛ > 0. Given a received word as in (2) we will interpolate a nonzero polynomial Q(X, Y 1, Y 2,..., Y s ) = A 0 (X) + A 1 (X)Y 1 + A 2 (X)Y A s (X)Y s with the degree restrictions deg(a i ) D 1 for i = 1, 2,..., s and deg(a 0 ) D + k 1 for a suitable degree parameter. The number of monomials in a polynomial Q with these degree restrictions equals Ds + D + k. The polynomial Q F[X, Y 1,..., Y s ] must satisfy the interpolation conditions Q(γ is, y is+1, y is+2,, y (i+1)s ) = 0 for i = 0, 1,..., n/s 1. (3) Provided Ds + D + k > n s = N, or in other words D > N k s + 1, (4) such a nonzero polynomial Q must exist, and can be found in polynomial time by solving a homogeneous linear system. The following lemma shows that any such polynomial Q gives an algebraic condition that the message polynomials f(x) we are interested in list decoding must satisfy. Lemma 2 If f F[X] is a polynomial of degree k whose FRS encoding (1) agrees with y in at least t columns for t D + k, then Q(X, f(x), f(γx),..., f(γ s 1 X)) = 0. (5) Proof: Define R(X) = Q(X, f(x), f(γx),..., f(γ s 1 X)). Due to the degree restrictions on Q, the degree of R(X) is easily seen to be at most D + k 1. If the FRS encoding of f agrees with y in the i th column (for some i {0, 1,..., N 1}), we have f(γ is ) = y is+1, f(γ is+1 ) = y is+2,, f(γ is+s 1 ) = y (i+1)s. 2

3 Together with the interpolation conditions (3), this implies R(γ is ) = Q(γ is, f(γ is ), f(γ is+1 ),, f(γ is+s 1 )) = 0. Hence R has at least t zeroes. Since deg(r) D + k 1, if t D + k, we must have R = Root-finding step The question that arises now is how restrictive is Equation (5) in terms of pinning down the number of possible solutions f(x) to a small (polynomial in F ) number? For purposes of illustration and ease of notation, let us focus on the s = 2 case, so that we need to find the list of all degree k solutions f(x) to Q(X, f(x), f(γx)) = 0. (6) For this part we will have use the fact that γ F is not arbitrary but is a primitive element. Indeed if γ = 1, then for the polynomial Q(X, Y, Z) = Y Z, every polynomial f will satisfy Q(X, f(x), f(x)) = 0. Likewise, if γ = 1, then every polynomial f(x) = g(x 2 ) will satisfy Q(X, f(x), f( X)) = 0 for Q(X, Y, Z) = Y Z. This argument shows that if the order of γ is small, then there can be too many ( F Ω(k) ) degree k solutions. We will next prove that for primitive γ, the number of f of degree less than q 1 (and hence also number with degree at most k) satisfying (6) is at most q. For this we need two lemmas. Lemma 3 If deg(f) < q 1, then f(γx) = f(x) q mod (X q 1 γ). Proof: We have X q γx (mod X q 1 γ), and therefore f(x q ) f(γx) (mod X q 1 γ). For f F[X], we have f(x q ) = f(x) q. Therefore f(x q ) f(γx) (mod X q 1 γ). Since the degree of f is less than q 1, the remainder of f(x) q mod X q 1 γ must equal f(γx). The next lemma (in fact a more general statement) was on problem set 2. Lemma 4 The polynomial X q 1 γ is irreducible over F q when γ is a primitive element of F q. Denote E(X) = X q 1 γ. Denote by L the extension field L = F[X]/(E(X)) (it is a field since E(X) is irreducible), and for a polynomial f F[X], let f denote its residue (modulo E(X)) in L. Theorem 5 Given a nonzero Q F[X, Y 1, Y 2 ] which is linear in Y 1, Y 2, the number of polynomials f F[X] of degree less than q 1 such that Q(X, f(x), f(γx)) = 0 is at most q. Moreover the list of all such polynomials can be found in time polynomial in q and the degree of Q. Proof: Factor out the largest power of E(X) that divides Q, so that Q(X, Y 1, Y 2 ) = E(X) a Q 1 (X, Y 1, Y 2 ) for some a 0 and polynomial Q 1 that is not divisible by E(X). Define the polynomial S L[Y ] as S(Y ) = Q 1 (X, Y, Y q ) mod E(X). 3

4 Since Q 1 has degree in Y 1, Y 2 less than q (in fact it is linear in Y 1, Y 2 ), and it is not divisible by E(X), we have S 0. Clearly if Q(X, f(x), f(γx)) = 0, then Q 1 (X, f(x), f(γx)) = 0, so certainly Q 1 (X, f(x), f(γx)) mod E(X) = 0. By Lemma??, this implies Q 1 (X, f(x), f(x) q ) mod E(X) = 0, i.e., S( f) = 0. Thus f must be a root of S, which has degree at most q in Y. This implies that there are most q solutions for f. Since f has degree less than q 1, f can be uniquely recovered from f, and hence there are at most q solutions f to Q(X, f(x), f(γx)) = 0, as desired. The claim about the running time follows since the polynomial S can be computed efficiently from Q, and there are efficient root finding algorithms known over large extension fields. (One can either have a randomized algorithm running in time polynomial in the degree and log of the field size, or a deterministic algorithm running in time polynomial in the degree, log of the field size, and the characteristic of the field. In our case, even the deterministic runtime will be polynomial in q.) The above approach generalizes readily to the larger variate case. Any solution f F[X] to Q(X, f(x), f(γx),..., f(γ s 1 X)) = 0 will have its residue f as a root of (the nonzero polynomial) S(Y ) = Q(X, Y, Y q,, Y qs 1 ) mod E(X). Therefore there will be at most q s 1 such polynomials f and they can all be found in polynomial (in q) time. 1.3 Decoding guarantee Combining Lemma 2 and Theorem 5, and recalling the requirement (4) on the degree parameter D we conclude that we have a polynomial time list decoding algorithm for FRS (s) F [k] to find all message polynomials whose encoding has agreement t with an input y (F s ) N provided t > N k s k = N s The fractional agreement τ required (in terms of the rate) is since N = n/s and R = k/n. τ = t N > 1 s k s N (s + 1) = 1 s (sr) s s + 1 s s + 1 k. (7) Our goal was to decode from an agreement fraction τ R, but the factor s multiplying R implies that we require τ sr which is much worse for large s. In particular we do not get anything meaningful for R > 1/s! Remark 6 By allowing higher degree terms in the Y i s in the interpolated polynomial and using multiplicities in the interpolation (as in the improved Reed-Solomon list-decoding algorithm, extended to the multivariate case in the obvious manner), one can improve the above guarantee and decode from agreement fraction τ (sr) s/(s+1). (9) Note that this quantity is the geometric mean of 1, R, R,, R, whereas the agreement required } {{ } s times in (8) was the arithmetic mean of these values (which is in general larger). Recall that for Reed- Solomon codes (s = 1) this was also exactly the case: we reduced the agreement required from 1+R 2 to R to get an algorithm to list decode up to the Johnson radius. 4 (8)

5 Remark 7 (Parvaresh-Vardy) The decoding guarantee (9) was obtained by Parvaresh and Vardy [2]. Their construction was somewhat different. Instead of the folding operation, they encoded a degree k message polynomial f F[X] by the evaluation of f and (s 1) other polynomials f 1, f 2,..., f s 1 which are chosen to be algebraically related to f(x) in the following way: f i (X) = f(x) hi mod E(X) for i = 1, 2,..., s 1, where E(X) is an arbitrary irreducible polynomial of degree k + 1. Note that the rate of such a code is R 0 /s where R 0 is the rate of the original RS code (in particular this construction can never have rate exceed 1/s). We used f(γ i 1 X) in place of f i (X) in the above description in preparation for the optimal result which we discuss next. 2 Improving the decoding radius and correcting 1 R ɛ errors The idea to improve the agreement fraction required is to use folded codes with folding parameter m for m s, but still only do s+1-variate interpolation. The key gain will be that each agreement location will now lead to many zeroes for the polynomial Q(X, f(x), f(γx),..., f(γ s 1 X)) which ultimately ensures that this polynomial must equal zero even for a much smaller value of the agreement parameter t. Specifically, let us consider the code FRS (m) F [k], where as before F = q, n = q 1, m n, and the block length of the code equals N = nm. We will still interpolate a polynomial Q F[X, Y 1,..., Y s ] in s+1 variables, but now instead of n/s tuples, we will interpolate through (n/m)(m s+1) = N(m s+1) tuples given by (γ im+j, y im+j+1,..., y im+j+s ) 0 i < n/m, 0 j < m s. That is, for each column of m symbols, we interpolate through the (m s + 1) windows of s consecutive symbols. The rationale behind this is that if we have an agreement in location i, i.e., then we get m s + 1 zeroes (y im+1, y im+2,..., y (i+1)m ) = (f(γ is ), f(γ is+1 ),..., f(γ im+m 1 )) Q(γ im+j, f(γ im+j ),..., f(γ im+j+s 1 )) = 0 j {0, 1, 2,..., m s}. Thus t agreements leads to t(m s + 1) zeroes for R(X) = Q(X, f(x),..., f(γ s 1 X)). In place of (7), we get the new condition for successful decoding or equivalently (recalling that k = Rn = RNm). t(m s + 1) > τ = t N > 1 s N(m s + 1) s s s + 1 k s m s + 1 m s + 1 R (10) 5

6 We now have our desired optimal trade-off between τ and R: picking s > 1/ɛ and m s 2, the above condition (10) for successful decoding is met if τ R + ɛ. Let us look at the parameters of the code. The alphabet size in q m n m = (Nm) m which is (N/ɛ 2 ) O(1/ɛ2) for the choice m 1/ɛ 2. The bound on list size we obtain is at most q s 1 (Nm) O(s) = (N/ɛ 2 ) O(1/ɛ) for the choice s 1/ɛ. The running time of the decoding algorithm is also dominated by the root-finding step, which takes q O(s) time as it has to find roots of a polynomial of degree at most q s over an extension field of size at most q q. We can thus state our main theorem as follows. Theorem 8 (Explicit codes achieving list decoding capacity) For every ɛ > 0 and 0 < R < 1, there is a family of folded Reed-Solomon codes which have rate at least R and which can be list decoded up to a fraction 1 R ɛ of errors in time (N/ɛ 2 ) O(ɛ 1) where N is the block length of the code. The alphabet size of the code as a function of the block length N is (N/ɛ 2 ) O(1/ɛ2). Remark 9 (Improvement using higher degree and multiplicities in interpolation) Similar to Remark 6, by allowing higher degree terms in the Y i s in the interpolated polynomial and using multiplicities in the interpolation, one can improve the above guarantee and decode from agreement fraction ( ) mr s/(s+1) τ. (11) m s + 1 instead of the arithmetic mean 1 s+1 + s mr s+1 m s+1. For details see the original paper [1]. References [1] Venkatesan Guruswami and Atri Rudra. Explicit codes achieving list decoding capacity: Errorcorrection with optimal redundancy. IEEE Transactions on Information Theory, 54(1): , , 6 [2] Farzad Parvaresh and Alexander Vardy. Correcting errors beyond the Guruswami-Sudan radius in polynomial time. In Proceedings of the 46th Annual IEEE Symposium on Foundations of Computer Science, pages ,

### Linear Codes. Chapter 3. 3.1 Basics

Chapter 3 Linear Codes In order to define codes that we can encode and decode efficiently, we add more structure to the codespace. We shall be mainly interested in linear codes. A linear code of length

### The Division Algorithm for Polynomials Handout Monday March 5, 2012

The Division Algorithm for Polynomials Handout Monday March 5, 0 Let F be a field (such as R, Q, C, or F p for some prime p. This will allow us to divide by any nonzero scalar. (For some of the following,

### Notes on Factoring. MA 206 Kurt Bryan

The General Approach Notes on Factoring MA 26 Kurt Bryan Suppose I hand you n, a 2 digit integer and tell you that n is composite, with smallest prime factor around 5 digits. Finding a nontrivial factor

### 2.1 Complexity Classes

15-859(M): Randomized Algorithms Lecturer: Shuchi Chawla Topic: Complexity classes, Identity checking Date: September 15, 2004 Scribe: Andrew Gilpin 2.1 Complexity Classes In this lecture we will look

### it is easy to see that α = a

21. Polynomial rings Let us now turn out attention to determining the prime elements of a polynomial ring, where the coefficient ring is a field. We already know that such a polynomial ring is a UF. Therefore

### The finite field with 2 elements The simplest finite field is

The finite field with 2 elements The simplest finite field is GF (2) = F 2 = {0, 1} = Z/2 It has addition and multiplication + and defined to be 0 + 0 = 0 0 + 1 = 1 1 + 0 = 1 1 + 1 = 0 0 0 = 0 0 1 = 0

### Chapter 4, Arithmetic in F [x] Polynomial arithmetic and the division algorithm.

Chapter 4, Arithmetic in F [x] Polynomial arithmetic and the division algorithm. We begin by defining the ring of polynomials with coefficients in a ring R. After some preliminary results, we specialize

### Lecture Notes on Polynomials

Lecture Notes on Polynomials Arne Jensen Department of Mathematical Sciences Aalborg University c 008 Introduction These lecture notes give a very short introduction to polynomials with real and complex

### Prime Numbers and Irreducible Polynomials

Prime Numbers and Irreducible Polynomials M. Ram Murty The similarity between prime numbers and irreducible polynomials has been a dominant theme in the development of number theory and algebraic geometry.

### PROBLEM SET 6: POLYNOMIALS

PROBLEM SET 6: POLYNOMIALS 1. introduction In this problem set we will consider polynomials with coefficients in K, where K is the real numbers R, the complex numbers C, the rational numbers Q or any other

### RESULTANT AND DISCRIMINANT OF POLYNOMIALS

RESULTANT AND DISCRIMINANT OF POLYNOMIALS SVANTE JANSON Abstract. This is a collection of classical results about resultants and discriminants for polynomials, compiled mainly for my own use. All results

### Factoring Polynomials

Factoring Polynomials Sue Geller June 19, 2006 Factoring polynomials over the rational numbers, real numbers, and complex numbers has long been a standard topic of high school algebra. With the advent

### Mathematics Course 111: Algebra I Part IV: Vector Spaces

Mathematics Course 111: Algebra I Part IV: Vector Spaces D. R. Wilkins Academic Year 1996-7 9 Vector Spaces A vector space over some field K is an algebraic structure consisting of a set V on which are

### PUTNAM TRAINING POLYNOMIALS. Exercises 1. Find a polynomial with integral coefficients whose zeros include 2 + 5.

PUTNAM TRAINING POLYNOMIALS (Last updated: November 17, 2015) Remark. This is a list of exercises on polynomials. Miguel A. Lerma Exercises 1. Find a polynomial with integral coefficients whose zeros include

### Lattice-Based Threshold-Changeability for Standard Shamir Secret-Sharing Schemes

Lattice-Based Threshold-Changeability for Standard Shamir Secret-Sharing Schemes Ron Steinfeld (Macquarie University, Australia) (email: rons@ics.mq.edu.au) Joint work with: Huaxiong Wang (Macquarie University)

### U.C. Berkeley CS276: Cryptography Handout 0.1 Luca Trevisan January, 2009. Notes on Algebra

U.C. Berkeley CS276: Cryptography Handout 0.1 Luca Trevisan January, 2009 Notes on Algebra These notes contain as little theory as possible, and most results are stated without proof. Any introductory

### Unique Factorization

Unique Factorization Waffle Mathcamp 2010 Throughout these notes, all rings will be assumed to be commutative. 1 Factorization in domains: definitions and examples In this class, we will study the phenomenon

### Algebraic Computation Models. Algebraic Computation Models

Algebraic Computation Models Ζυγομήτρος Ευάγγελος ΜΠΛΑ 201118 Φεβρουάριος, 2013 Reasons for using algebraic models of computation The Turing machine model captures computations on bits. Many algorithms

### Revised Version of Chapter 23. We learned long ago how to solve linear congruences. ax c (mod m)

Chapter 23 Squares Modulo p Revised Version of Chapter 23 We learned long ago how to solve linear congruences ax c (mod m) (see Chapter 8). It s now time to take the plunge and move on to quadratic equations.

### SECRET sharing schemes were introduced by Blakley [5]

206 IEEE TRANSACTIONS ON INFORMATION THEORY, VOL. 52, NO. 1, JANUARY 2006 Secret Sharing Schemes From Three Classes of Linear Codes Jin Yuan Cunsheng Ding, Senior Member, IEEE Abstract Secret sharing has

### A New Generic Digital Signature Algorithm

Groups Complex. Cryptol.? (????), 1 16 DOI 10.1515/GCC.????.??? de Gruyter???? A New Generic Digital Signature Algorithm Jennifer Seberry, Vinhbuu To and Dongvu Tonien Abstract. In this paper, we study

### Chapter 1. Search for Good Linear Codes in the Class of Quasi-Cyclic and Related Codes

Chapter 1 Search for Good Linear Codes in the Class of Quasi-Cyclic and Related Codes Nuh Aydin and Tsvetan Asamov Department of Mathematics, Kenyon College Gambier, OH, USA 43022 {aydinn,asamovt}@kenyon.edu

### Equivalence of Polynomial Identity Testing and Deterministic Multivariate Polynomial Factorization

Equivalence of Polynomial Identity Testing and Deterministic Multivariate Polynomial Factorization Swastik Kopparty Shubhangi Saraf Amir Shpilka Abstract In this paper we show that the problem of deterministically

### Mathematics Review for MS Finance Students

Mathematics Review for MS Finance Students Anthony M. Marino Department of Finance and Business Economics Marshall School of Business Lecture 1: Introductory Material Sets The Real Number System Functions,

### Efficient Recovery of Secrets

Efficient Recovery of Secrets Marcel Fernandez Miguel Soriano, IEEE Senior Member Department of Telematics Engineering. Universitat Politècnica de Catalunya. C/ Jordi Girona 1 i 3. Campus Nord, Mod C3,

### Computing divisors and common multiples of quasi-linear ordinary differential equations

Computing divisors and common multiples of quasi-linear ordinary differential equations Dima Grigoriev CNRS, Mathématiques, Université de Lille Villeneuve d Ascq, 59655, France Dmitry.Grigoryev@math.univ-lille1.fr

### Algebra Unpacked Content For the new Common Core standards that will be effective in all North Carolina schools in the 2012-13 school year.

This document is designed to help North Carolina educators teach the Common Core (Standard Course of Study). NCDPI staff are continually updating and improving these tools to better serve teachers. Algebra

### THE FUNDAMENTAL THEOREM OF ALGEBRA VIA PROPER MAPS

THE FUNDAMENTAL THEOREM OF ALGEBRA VIA PROPER MAPS KEITH CONRAD 1. Introduction The Fundamental Theorem of Algebra says every nonconstant polynomial with complex coefficients can be factored into linear

### 9.2 Summation Notation

9. Summation Notation 66 9. Summation Notation In the previous section, we introduced sequences and now we shall present notation and theorems concerning the sum of terms of a sequence. We begin with a

### Some Polynomial Theorems. John Kennedy Mathematics Department Santa Monica College 1900 Pico Blvd. Santa Monica, CA 90405 rkennedy@ix.netcom.

Some Polynomial Theorems by John Kennedy Mathematics Department Santa Monica College 1900 Pico Blvd. Santa Monica, CA 90405 rkennedy@ix.netcom.com This paper contains a collection of 31 theorems, lemmas,

### 11 Ideals. 11.1 Revisiting Z

11 Ideals The presentation here is somewhat different than the text. In particular, the sections do not match up. We have seen issues with the failure of unique factorization already, e.g., Z[ 5] = O Q(

### Information Theory and Coding Prof. S. N. Merchant Department of Electrical Engineering Indian Institute of Technology, Bombay

Information Theory and Coding Prof. S. N. Merchant Department of Electrical Engineering Indian Institute of Technology, Bombay Lecture - 17 Shannon-Fano-Elias Coding and Introduction to Arithmetic Coding

### Factoring & Primality

Factoring & Primality Lecturer: Dimitris Papadopoulos In this lecture we will discuss the problem of integer factorization and primality testing, two problems that have been the focus of a great amount

### Lecture 6: Finite Fields (PART 3) PART 3: Polynomial Arithmetic. Theoretical Underpinnings of Modern Cryptography

Lecture 6: Finite Fields (PART 3) PART 3: Polynomial Arithmetic Theoretical Underpinnings of Modern Cryptography Lecture Notes on Computer and Network Security by Avi Kak (kak@purdue.edu) January 29, 2015

### Lecture 15 An Arithmetic Circuit Lowerbound and Flows in Graphs

CSE599s: Extremal Combinatorics November 21, 2011 Lecture 15 An Arithmetic Circuit Lowerbound and Flows in Graphs Lecturer: Anup Rao 1 An Arithmetic Circuit Lower Bound An arithmetic circuit is just like

### SOLVING POLYNOMIAL EQUATIONS

C SOLVING POLYNOMIAL EQUATIONS We will assume in this appendix that you know how to divide polynomials using long division and synthetic division. If you need to review those techniques, refer to an algebra

### A Negative Result Concerning Explicit Matrices With The Restricted Isometry Property

A Negative Result Concerning Explicit Matrices With The Restricted Isometry Property Venkat Chandar March 1, 2008 Abstract In this note, we prove that matrices whose entries are all 0 or 1 cannot achieve

### Primality - Factorization

Primality - Factorization Christophe Ritzenthaler November 9, 2009 1 Prime and factorization Definition 1.1. An integer p > 1 is called a prime number (nombre premier) if it has only 1 and p as divisors.

### Integer roots of quadratic and cubic polynomials with integer coefficients

Integer roots of quadratic and cubic polynomials with integer coefficients Konstantine Zelator Mathematics, Computer Science and Statistics 212 Ben Franklin Hall Bloomsburg University 400 East Second Street

### Copyrighted Material. Chapter 1 DEGREE OF A CURVE

Chapter 1 DEGREE OF A CURVE Road Map The idea of degree is a fundamental concept, which will take us several chapters to explore in depth. We begin by explaining what an algebraic curve is, and offer two

### March 29, 2011. 171S4.4 Theorems about Zeros of Polynomial Functions

MAT 171 Precalculus Algebra Dr. Claude Moore Cape Fear Community College CHAPTER 4: Polynomial and Rational Functions 4.1 Polynomial Functions and Models 4.2 Graphing Polynomial Functions 4.3 Polynomial

### Basic Algorithms In Computer Algebra

Basic Algorithms In Computer Algebra Kaiserslautern SS 2011 Prof. Dr. Wolfram Decker 2. Mai 2011 References Cohen, H.: A Course in Computational Algebraic Number Theory. Springer, 1993. Cox, D.; Little,

### Chapter 13: Basic ring theory

Chapter 3: Basic ring theory Matthew Macauley Department of Mathematical Sciences Clemson University http://www.math.clemson.edu/~macaule/ Math 42, Spring 24 M. Macauley (Clemson) Chapter 3: Basic ring

### 3 1. Note that all cubes solve it; therefore, there are no more

Math 13 Problem set 5 Artin 11.4.7 Factor the following polynomials into irreducible factors in Q[x]: (a) x 3 3x (b) x 3 3x + (c) x 9 6x 6 + 9x 3 3 Solution: The first two polynomials are cubics, so if

### Copy in your notebook: Add an example of each term with the symbols used in algebra 2 if there are any.

Algebra 2 - Chapter Prerequisites Vocabulary Copy in your notebook: Add an example of each term with the symbols used in algebra 2 if there are any. P1 p. 1 1. counting(natural) numbers - {1,2,3,4,...}

### The van Hoeij Algorithm for Factoring Polynomials

The van Hoeij Algorithm for Factoring Polynomials Jürgen Klüners Abstract In this survey we report about a new algorithm for factoring polynomials due to Mark van Hoeij. The main idea is that the combinatorial

### 1 Sets and Set Notation.

LINEAR ALGEBRA MATH 27.6 SPRING 23 (COHEN) LECTURE NOTES Sets and Set Notation. Definition (Naive Definition of a Set). A set is any collection of objects, called the elements of that set. We will most

### r + s = i + j (q + t)n; 2 rs = ij (qj + ti)n + qtn.

Chapter 7 Introduction to finite fields This chapter provides an introduction to several kinds of abstract algebraic structures, particularly groups, fields, and polynomials. Our primary interest is in

### Adaptive Search with Stochastic Acceptance Probabilities for Global Optimization

Adaptive Search with Stochastic Acceptance Probabilities for Global Optimization Archis Ghate a and Robert L. Smith b a Industrial Engineering, University of Washington, Box 352650, Seattle, Washington,

### Some facts about polynomials modulo m (Full proof of the Fingerprinting Theorem)

Some facts about polynomials modulo m (Full proof of the Fingerprinting Theorem) In order to understand the details of the Fingerprinting Theorem on fingerprints of different texts from Chapter 19 of the

### Irreducibility criteria for compositions and multiplicative convolutions of polynomials with integer coefficients

DOI: 10.2478/auom-2014-0007 An. Şt. Univ. Ovidius Constanţa Vol. 221),2014, 73 84 Irreducibility criteria for compositions and multiplicative convolutions of polynomials with integer coefficients Anca

### 4: SINGLE-PERIOD MARKET MODELS

4: SINGLE-PERIOD MARKET MODELS Ben Goldys and Marek Rutkowski School of Mathematics and Statistics University of Sydney Semester 2, 2015 B. Goldys and M. Rutkowski (USydney) Slides 4: Single-Period Market

### Arithmetic algorithms for cryptology 5 October 2015, Paris. Sieves. Razvan Barbulescu CNRS and IMJ-PRG. R. Barbulescu Sieves 0 / 28

Arithmetic algorithms for cryptology 5 October 2015, Paris Sieves Razvan Barbulescu CNRS and IMJ-PRG R. Barbulescu Sieves 0 / 28 Starting point Notations q prime g a generator of (F q ) X a (secret) integer

### IRREDUCIBLE OPERATOR SEMIGROUPS SUCH THAT AB AND BA ARE PROPORTIONAL. 1. Introduction

IRREDUCIBLE OPERATOR SEMIGROUPS SUCH THAT AB AND BA ARE PROPORTIONAL R. DRNOVŠEK, T. KOŠIR Dedicated to Prof. Heydar Radjavi on the occasion of his seventieth birthday. Abstract. Let S be an irreducible

### MOP 2007 Black Group Integer Polynomials Yufei Zhao. Integer Polynomials. June 29, 2007 Yufei Zhao yufeiz@mit.edu

Integer Polynomials June 9, 007 Yufei Zhao yufeiz@mit.edu We will use Z[x] to denote the ring of polynomials with integer coefficients. We begin by summarizing some of the common approaches used in dealing

### A simple and fast algorithm for computing exponentials of power series

A simple and fast algorithm for computing exponentials of power series Alin Bostan Algorithms Project, INRIA Paris-Rocquencourt 7815 Le Chesnay Cedex France and Éric Schost ORCCA and Computer Science Department,

### FACTORING SPARSE POLYNOMIALS

FACTORING SPARSE POLYNOMIALS Theorem 1 (Schinzel): Let r be a positive integer, and fix non-zero integers a 0,..., a r. Let F (x 1,..., x r ) = a r x r + + a 1 x 1 + a 0. Then there exist finite sets S

### = 2 + 1 2 2 = 3 4, Now assume that P (k) is true for some fixed k 2. This means that

Instructions. Answer each of the questions on your own paper, and be sure to show your work so that partial credit can be adequately assessed. Credit will not be given for answers (even correct ones) without

### THE FUNDAMENTAL THEOREM OF ARBITRAGE PRICING

THE FUNDAMENTAL THEOREM OF ARBITRAGE PRICING 1. Introduction The Black-Scholes theory, which is the main subject of this course and its sequel, is based on the Efficient Market Hypothesis, that arbitrages

### Subsets of Euclidean domains possessing a unique division algorithm

Subsets of Euclidean domains possessing a unique division algorithm Andrew D. Lewis 2009/03/16 Abstract Subsets of a Euclidean domain are characterised with the following objectives: (1) ensuring uniqueness

### Breaking The Code. Ryan Lowe. Ryan Lowe is currently a Ball State senior with a double major in Computer Science and Mathematics and

Breaking The Code Ryan Lowe Ryan Lowe is currently a Ball State senior with a double major in Computer Science and Mathematics and a minor in Applied Physics. As a sophomore, he took an independent study

### The cyclotomic polynomials

The cyclotomic polynomials Notes by G.J.O. Jameson 1. The definition and general results We use the notation e(t) = e 2πit. Note that e(n) = 1 for integers n, e(s + t) = e(s)e(t) for all s, t. e( 1 ) =

### Lecture 13: Factoring Integers

CS 880: Quantum Information Processing 0/4/0 Lecture 3: Factoring Integers Instructor: Dieter van Melkebeek Scribe: Mark Wellons In this lecture, we review order finding and use this to develop a method

### The Dirichlet Unit Theorem

Chapter 6 The Dirichlet Unit Theorem As usual, we will be working in the ring B of algebraic integers of a number field L. Two factorizations of an element of B are regarded as essentially the same if

### RSA Attacks. By Abdulaziz Alrasheed and Fatima

RSA Attacks By Abdulaziz Alrasheed and Fatima 1 Introduction Invented by Ron Rivest, Adi Shamir, and Len Adleman [1], the RSA cryptosystem was first revealed in the August 1977 issue of Scientific American.

### Ideal Class Group and Units

Chapter 4 Ideal Class Group and Units We are now interested in understanding two aspects of ring of integers of number fields: how principal they are (that is, what is the proportion of principal ideals

### Non-unique factorization of polynomials over residue class rings of the integers

Comm. Algebra 39(4) 2011, pp 1482 1490 Non-unique factorization of polynomials over residue class rings of the integers Christopher Frei and Sophie Frisch Abstract. We investigate non-unique factorization

### 3.6 The Real Zeros of a Polynomial Function

SECTION 3.6 The Real Zeros of a Polynomial Function 219 3.6 The Real Zeros of a Polynomial Function PREPARING FOR THIS SECTION Before getting started, review the following: Classification of Numbers (Appendix,

### Some applications of LLL

Some applications of LLL a. Factorization of polynomials As the title Factoring polynomials with rational coefficients of the original paper in which the LLL algorithm was first published (Mathematische

### 1 Local Brouwer degree

1 Local Brouwer degree Let D R n be an open set and f : S R n be continuous, D S and c R n. Suppose that the set f 1 (c) D is compact. (1) Then the local Brouwer degree of f at c in the set D is defined.

### Die ganzen zahlen hat Gott gemacht

Die ganzen zahlen hat Gott gemacht Polynomials with integer values B.Sury A quote attributed to the famous mathematician L.Kronecker is Die Ganzen Zahlen hat Gott gemacht, alles andere ist Menschenwerk.

This page intentionally left blank Coding Theory A First Course Coding theory is concerned with successfully transmitting data through a noisy channel and correcting errors in corrupted messages. It is

### The Ideal Class Group

Chapter 5 The Ideal Class Group We will use Minkowski theory, which belongs to the general area of geometry of numbers, to gain insight into the ideal class group of a number field. We have already mentioned

### 9. POLYNOMIALS. Example 1: The expression a(x) = x 3 4x 2 + 7x 11 is a polynomial in x. The coefficients of a(x) are the numbers 1, 4, 7, 11.

9. POLYNOMIALS 9.1. Definition of a Polynomial A polynomial is an expression of the form: a(x) = a n x n + a n-1 x n-1 +... + a 1 x + a 0. The symbol x is called an indeterminate and simply plays the role

### Lecture 9 - Message Authentication Codes

Lecture 9 - Message Authentication Codes Boaz Barak March 1, 2010 Reading: Boneh-Shoup chapter 6, Sections 9.1 9.3. Data integrity Until now we ve only been interested in protecting secrecy of data. However,

### The Method of Least Squares

The Method of Least Squares Steven J. Miller Mathematics Department Brown University Providence, RI 0292 Abstract The Method of Least Squares is a procedure to determine the best fit line to data; the

### Monogenic Fields and Power Bases Michael Decker 12/07/07

Monogenic Fields and Power Bases Michael Decker 12/07/07 1 Introduction Let K be a number field of degree k and O K its ring of integers Then considering O K as a Z-module, the nicest possible case is

### Numerical Analysis Lecture Notes

Numerical Analysis Lecture Notes Peter J. Olver 5. Inner Products and Norms The norm of a vector is a measure of its size. Besides the familiar Euclidean norm based on the dot product, there are a number

### 3. INNER PRODUCT SPACES

. INNER PRODUCT SPACES.. Definition So far we have studied abstract vector spaces. These are a generalisation of the geometric spaces R and R. But these have more structure than just that of a vector space.

### Roots of Polynomials

Roots of Polynomials (Com S 477/577 Notes) Yan-Bin Jia Sep 24, 2015 A direct corollary of the fundamental theorem of algebra is that p(x) can be factorized over the complex domain into a product a n (x

### The Conference Call Search Problem in Wireless Networks

The Conference Call Search Problem in Wireless Networks Leah Epstein 1, and Asaf Levin 2 1 Department of Mathematics, University of Haifa, 31905 Haifa, Israel. lea@math.haifa.ac.il 2 Department of Statistics,

### GROUPS ACTING ON A SET

GROUPS ACTING ON A SET MATH 435 SPRING 2012 NOTES FROM FEBRUARY 27TH, 2012 1. Left group actions Definition 1.1. Suppose that G is a group and S is a set. A left (group) action of G on S is a rule for

### INTERPOLATION. Interpolation is a process of finding a formula (often a polynomial) whose graph will pass through a given set of points (x, y).

INTERPOLATION Interpolation is a process of finding a formula (often a polynomial) whose graph will pass through a given set of points (x, y). As an example, consider defining and x 0 =0, x 1 = π 4, x

### Rolle s Theorem. q( x) = 1

Lecture 1 :The Mean Value Theorem We know that constant functions have derivative zero. Is it possible for a more complicated function to have derivative zero? In this section we will answer this question

### Polynomials. Dr. philippe B. laval Kennesaw State University. April 3, 2005

Polynomials Dr. philippe B. laval Kennesaw State University April 3, 2005 Abstract Handout on polynomials. The following topics are covered: Polynomial Functions End behavior Extrema Polynomial Division

### List-Decoding Reed-Muller Codes over Small Fields

List-Decoding Reed-Muller Codes over Small Fields Parikshit Gopalan University of Washington parik@cs.washington.edu Adam R. Klivans UT Austin klivans@cs.utexas.edu David Zuckerman UT Austin diz@cs.utexas.edu

### On the coefficients of the polynomial in the number field sieve

On the coefficients of the polynomial in the number field sieve Yang Min a, Meng Qingshu b,, Wang Zhangyi b, Li Li a, Zhang Huanguo b a International School of Software, Wuhan University, Hubei, China,

### THE TURING DEGREES AND THEIR LACK OF LINEAR ORDER

THE TURING DEGREES AND THEIR LACK OF LINEAR ORDER JASPER DEANTONIO Abstract. This paper is a study of the Turing Degrees, which are levels of incomputability naturally arising from sets of natural numbers.

### Zeros of Polynomial Functions

Review: Synthetic Division Find (x 2-5x - 5x 3 + x 4 ) (5 + x). Factor Theorem Solve 2x 3-5x 2 + x + 2 =0 given that 2 is a zero of f(x) = 2x 3-5x 2 + x + 2. Zeros of Polynomial Functions Introduction

### SUBGROUPS OF CYCLIC GROUPS. 1. Introduction In a group G, we denote the (cyclic) group of powers of some g G by

SUBGROUPS OF CYCLIC GROUPS KEITH CONRAD 1. Introduction In a group G, we denote the (cyclic) group of powers of some g G by g = {g k : k Z}. If G = g, then G itself is cyclic, with g as a generator. Examples

### 230358 - BMAC - Basic Mathematics for Algebraic Coding Theory with Applications to Cryptography

Coordinating unit: Teaching unit: Academic year: Degree: ECTS credits: 2015 230 - ETSETB - Barcelona School of Telecommunications Engineering 743 - MA IV - Department of Applied Mathematics IV MASTER'S

### Information, Entropy, and Coding

Chapter 8 Information, Entropy, and Coding 8. The Need for Data Compression To motivate the material in this chapter, we first consider various data sources and some estimates for the amount of data associated

### Putnam Notes Polynomials and palindromes

Putnam Notes Polynomials and palindromes Polynomials show up one way or another in just about every area of math. You will hardly ever see any math competition without at least one problem explicitly concerning

### Alex, I will take congruent numbers for one million dollars please

Alex, I will take congruent numbers for one million dollars please Jim L. Brown The Ohio State University Columbus, OH 4310 jimlb@math.ohio-state.edu One of the most alluring aspectives of number theory

### CONTROLLABILITY. Chapter 2. 2.1 Reachable Set and Controllability. Suppose we have a linear system described by the state equation

Chapter 2 CONTROLLABILITY 2 Reachable Set and Controllability Suppose we have a linear system described by the state equation ẋ Ax + Bu (2) x() x Consider the following problem For a given vector x in

### Lines in higgledy-piggledy position

Lines in higgledy-piggledy position arxiv:1402.4028v1 [math.co] 17 Feb 2014 Szabolcs L. Fancsali MTA-ELTE Geometric and Algebraic Combinatorics Research Group Péter Sziklai MTA-ELTE Geometric and Algebraic

### December 4, 2013 MATH 171 BASIC LINEAR ALGEBRA B. KITCHENS

December 4, 2013 MATH 171 BASIC LINEAR ALGEBRA B KITCHENS The equation 1 Lines in two-dimensional space (1) 2x y = 3 describes a line in two-dimensional space The coefficients of x and y in the equation

### 2 Polynomials over a field

2 Polynomials over a field A polynomial over a field F is a sequence (a 0, a 1, a 2,, a n, ) where a i F i with a i = 0 from some point on a i is called the i th coefficient of f We define three special

### Functional-Repair-by-Transfer Regenerating Codes

Functional-Repair-by-Transfer Regenerating Codes Kenneth W Shum and Yuchong Hu Abstract In a distributed storage system a data file is distributed to several storage nodes such that the original file can

### Nonlinear Multi-Error Correction Codes for Reliable NAND Flash Memories

1 Nonlinear Multi-Error Correction Codes for Reliable NAND Flash Memories Zhen Wang, Student Member, IEEE, Mark Karpovsky, Fellow, IEEE, and Ajay Joshi, Member, IEEE Abstract Multi-level cell (MLC NAND