Subset Sums of Quadratic Residues over Finite Fields
Weiqiong Wang, Liping Wang, Haiyan Zhou

TL;DR
This paper presents an explicit combinatorial formula for counting the number of k-subset sums of quadratic residues in finite fields, advancing understanding of their additive properties.
Contribution
It introduces a new explicit formula for subset sums of quadratic residues over finite fields, which was not previously available.
Findings
Derived an explicit combinatorial formula for subset sums
Provides new insights into additive properties of quadratic residues
Enhances methods for analyzing finite field structures
Abstract
In this paper, we derive an explicit combinatorial formula for the number of -subset sums of quadratic residues over finite fields.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsCoding theory and cryptography · graph theory and CDMA systems · Limits and Structures in Graph Theory
Subset Sums of Quadratic Residues over Finite Fields ††thanks: Research is supported
in part by 973 Program (2013CB834203), National Natural Science Foundation of China under Grant No.61202437 and 11471162, in part by Natural Science Basic Research Plan in Shaanxi Province of China under Grant No.2015JM1022 and Natural Science Foundation of the Jiangsu Higher Education Institutes of China under Grant No.13KJB110016.
Weiqiong Wanga Li-Ping Wangb† Haiyan Zhouc
School of Science, Chan’an University, Xi’an 710064, China
Email: [email protected]
Institute of Information Engineering, Chinese Academy of Sciences Beijing 100093, China
Email: [email protected]
School of Mathematics, Nanjing Normal University, Nanjing 210023, China
Email: [email protected]
Abstract
In this paper, we derive an explicit combinatorial formula for the number of -subset sums of quadratic residues over finite fields.
Keywords: Subset sums, quadratic residue, character sum, distinct coordinate sieve
1 Introduction
Let be the finite field with elements, where is a prime and is an integer. Let be a subset of , and be a positive integer. For , let denotes the number of -element subsets such that
[TABLE]
Understanding the number is the well known -subset sum problem over finite fields. It arises from several applications in coding theory, cryptography, graph theory and some other fields. For example, it is directly related to the deep hole problem of generalized Reed-Solomon codes with evaluation set [1, 2, 3, 4]. It is also related to the spectrum and the diameter of the Wenger type graphs [5].
However, the -subset sum problem over finite fields for general is well known to be NP-hard. The difficulty mainly comes from the combinatorial flexibility of choosing the subset and also the lack of algebraic structure of . Due to the NP-hardness, there is little that we can say about the exact value of in general. But from mathematic point of view, we would like to obtain an explicit formula or at least an asymptotic formula for . This is again out of our expectation in general. But if is certain special subset with good algebraic structure, one can hope to obtain the exact value or asymptotic formula for . For example, it is known that if is a small set, there is a simple asymptotic formula for [6]. In addition, if , or , or any additive subgroup of , there is also an explicit combinatorial formula for [6, 7, 8].
If is a multiplicative subgroup of of index (thus divides ), the subset sum problem becomes harder as it is a non-linear algebraic problem with many combinatorial constraints. Zhu and Wan [9] provided an asymptotic formula for in this case. As a consequence, they proved that for small index and , for all . This is the only known result in the case that is a proper multiplicative subgroup.
The complexity of the subset sum problem grows as the index of the subgroup grows. In the simplest case , then and an explicit combinatorial formula for is known. In this paper, we study the next simplest case . Our main result is an explicit combinatorial formula for , where is the subgroup of quadratic residues in , that is, . Equivalently, we obtain an explicit combinatorial formula for
[TABLE]
Note that there is the coefficient because denotes the number of the unordered -tuples with distinct coordinates satisfying the equation with . When , one should not expect an explicit formula for .
Our main tools in this paper are the new sieve [7], some combinatorial properties and the standard character sums over finite fields. Our technique is to find out the exact number of points with nonzero coordinates on quadratic diagonal equations first, and then sieve twice to obtain our desired results. Our formula is more complicated in the case that is odd, but greatly simplified in the case is even.
2 Preliminary
In this section, we review some basic properties of Gauss-Jacobi sums that will be used in the following sections.
A multiplicative character on is a map from to the nonzero complex numbers set which satisfies for all . We extend the definition to the whole field by defining
[TABLE]
Definition 1**.**
Let be a multiplicative character on and . Set
[TABLE]
where and Tr denotes the trace from to . We call the Gauss sum on , and usually denote by .
Proposition 2.1**.**
[10]** Let be a finite field with , where is an odd prime and . Let be the quadratic character of . Then we have
[TABLE]
where
Definition 2**.**
Let be multiplicative characters on . We define the following Jacobi type sum by
[TABLE]
[TABLE]
[TABLE]
[TABLE]
These Jacobi type sums have the following properties.
Proposition 2.2**.**
[9]** If , and . Then
[TABLE]
[TABLE]
[TABLE]
Based on the above two propositions, we can derive the following conclusion.
Lemma 2.3**.**
*Let be a finite field with , where is an odd prime and . Let , and be the nontrivial quadratic character of .
If either mod , or mod and is even, then*
[TABLE]
* If mod and is odd, then*
[TABLE]
Proof.
Based on proposition , and the relationships between Gauss sum and Jacobi sum, we can prove that if is odd,
[TABLE]
On the other hand, if is even, we know from Theorem in [10] that
[TABLE]
Since for mod and for mod , it follows that in this case
[TABLE]
Finally we arrive at the desired results by discussing on and . ∎
3 Counting points on quadratic equations
A diagonal equation over is an equation of the form
[TABLE]
with positive integers , and , . The number of solutions in of this kind of diagonal equations can be expressed by Jacobi type sums, and the precise number of solutions can also be obtained when [10]. However, sometimes we only want solutions in . So in this paper, we first calculate the number of solutions with nonzero coordinates of quadratic diagonal equations. We denote it by
[TABLE]
where , and .
Obviously, the equation in reduces to a linear equation if the characteristic of is since it is a square. So in the following sections, we assume the characteristic is odd, which is all we need since divides in our applications. We provide firstly some lemmas that will be used in the following theorems.
Lemma 3.1**.**
*Let and be two positive integers, . Let . Then we have the following results:
[TABLE]
where .
Proof.
We only prove the first two equations, the other equations can be obtained with the same method.
[TABLE]
Similarly, we have
[TABLE]
We can easily obtain the first two equations by combing the above two results.
∎
Lemma 3.2**.**
Let be the nontrivial quadratic character of . For , set , then we have for ,
[TABLE]
Proof.
It is not difficulty to prove that is just the coefficient of in the polynomial , that is to say, the coefficient of in the polynomial since .
On the other hand,
[TABLE]
Comparing the coefficient of yields the desired fact. ∎
Theorem 3.3**.**
*Let be the finite field with . Let be the nontrivial quadratic character of . For all in , set .
If either mod , or mod and is even, then*
[TABLE]
* If mod , is odd, then*
[TABLE]
where .
Proof.
Firstly, we consider the case mod , and the case of mod and is even. Without loss of generality, we can assume . In this case, . The following proof mainly based on Proposition , Lemma , Lemma and .
[TABLE]
Generally, if , we can transform the equation into . In this case, we can derive the same formula but .
The case of mod and is odd can be similarly proved. ∎
Similarly, we can solve out the number of solutions with nonzero coordinates of the equation in when .
Lemma 3.4**.**
Let be a finite field with . Let be a nontrivial quadratic character of and be a positive even integer. Then
[TABLE]
This Lemma follows from Theorem in [10] and Lemma in this paper.
Theorem 3.5**.**
*Let be a finite field with . Let be the nontrivial quadratic character of and set .
If either mod , or mod and is even, then*
[TABLE]
* If mod , is odd, then
[TABLE]
where .
Proof.
If either mod , or mod and is even, we can provide the following proof based on the Proposition , Lemma , and .
[TABLE]
Then based on Lemma , we have
[TABLE]
Similarly, we can prove the case of mod and is odd. ∎
4 Distinct coordinate sieve
In this section, we consider the number of solutions with distinct nonzero coordinates of the second moment equations. We denote it by
[TABLE]
In [7], Li and Wan proposed a new sieve for distinct coordinate counting problem, which greatly improves the classical inclusion-exclusion sieve for this problem.
Let be a finite set, be the cartesian product of copies of . Let be a subset of . We are interested in the number of elements in with distinct coordinates, i.e., the cardinality of the set
[TABLE]
Let be the symmetric group. For a given permutation , we can write it as disjoint cycle product, i.e., , where . The group acts on by permuting its coordinates, that is
[TABLE]
If is invariant under the action of , we call it symmetric. A permutation is said to be of type if has exactly cycles of length .
In order to illustrate the conclusion, we define
[TABLE]
Theorem 4.1**.**
[7]** If is symmetric, we have
[TABLE]
where is the number of permutations in of type , i.e
[TABLE]
Usually, if can be written by the form for some nonzero real numbers , we can induce a generating function to compute .
Definition 3**.**
Define the generating function
[TABLE]
Lemma 4.2**.**
* If , then*
[TABLE]
*where for a real number and a positive integer .
If for , for , then*
[TABLE]
Proof.
Firstly, we have the following exponential generating function
[TABLE]
We denote by the coefficient of in the formal power series expansion of .
If ,
[TABLE]
If for , for , then
[TABLE]
∎
Definition 4**.**
For , we define
[TABLE]
where
[TABLE]
Note that depends only on the value of , not on . In the case , we simply write as and have the greatly simplifed formula
[TABLE]
Theorem 4.3**.**
*Let be a finite field with . For all ,
If either mod , or mod and is even, we have*
[TABLE]
* If mod , is odd, we have*
[TABLE]
where .
Proof.
Let . Obviously, is symmetric, so we can use the relation
[TABLE]
where is of type , Then we need to compute first.
Set , , . Obviously, , , and the number of the variables in the equation is . If , we can use the conclusion of theorem to compute .
If either mod , or mod and is even,
[TABLE]
Otherwise, if , i.e., consists only of cycles with length divisible by , then the equation changes into , which never holds for . So in this case . Fortunately, this result is formally in accordance with the case of .
So we have
[TABLE]
The case of mod and is odd can be proved similarly. ∎
Theorem 4.4**.**
*Let be a finite field with .
If either mod , or mod and is even, we have*
[TABLE]
* If mod , is odd, we have*
[TABLE]
Proof.
Let . Since is symmetric, we can apply
[TABLE]
where is of type , Next we need to compute . Set , , . Obviously, , , and the number of the variables in the equation is . If , we can use the conclusion of theorem to compute .
If either mod , or mod and is even,
[TABLE]
Otherwise, if , i.e., consists only of cycles with length divisible by , the equation changes into , which holds for any . So in this case . Fortunately, this result also formally coincides with the case of .
So we have
[TABLE]
Note that we have in the above equation because of the definition of and for . The other case can be proved similarly. ∎
5 Sieve again for solving the subset sum problem
Now let us come back to the subset sum problem on quadratic residues. Since , it is obviously a subgroup of with elements, and every element can be expressed as for exactly two . What’s more, iff . Therefore, if we denote by
[TABLE]
[TABLE]
Then obviously, , and we can also use to calculate since is symmetric. As a consequence, we have
[TABLE]
where is a permutation of type in , and
[TABLE]
On the other hand, we have defined in the previous section that
[TABLE]
and have calculated the cardinality of . It is also not hard to see
[TABLE]
Replacing in by yields the following conclusion.
Theorem 5.1**.**
*Let be a finite field with . For any ,
If either mod , or mod and is even, we have*
[TABLE]
* If mod , is odd, we have*
[TABLE]
where .
Similarly, we can derive the following results of subset sums if .
Theorem 5.2**.**
*Let be a finite field with .
If either mod , or mod and is even,we have*
[TABLE]
* If mod , is odd, we have*
[TABLE]
where .
Note that all the results we discussed in the above sections are all on finite fields with elements and odd characteristic . Especially, if is even, our computational formula can be greatly simplified because of the following proposition.
Proposition 5.3**.**
Let be a finite field with odd characteristic , . Let be the quadratic character of and be the quadratic character of , then the restriction of to is , which is trivial if is even.
In this occasion, we can derive more concise explicit formulas for .
Corollary 5.4**.**
Let be a finite field with , where is an odd prime and is even. For any , we have
[TABLE]
Corollary 5.5**.**
*Let be a finite field with , where is an odd prime and is even. We have
[TABLE]
The reference list from the paper itself. Each links out to its DOI / PubMed record.
- 1[1] Q. Cheng, E. Murray, On deciding deep holes of Reed-Solomon codes, In Proceedings of TAMC 2007, LNCS 4484, 296-395.
- 2[2] Q. Cheng, D. Wan, On the list and bounded distance decodability of Reed-Solomon codes, SIAM J. Comput. 37(1) (2007), 195-209.
- 3[3] Q. Cheng, D. Wan, Complexity of decoding positive-rate Reed-Solomon codes, IEEE Trans Inform Theory, 56(10) (2010), 5217-5222.
- 4[4] V. Gandikota, B. Ghazi, and E. Grigorescu, On the NP-hardness of bounded distance decoding of Reed-Solomon codes, In Information Theory (ISIT), 2015, 2904-2908.
- 5[5] X. Cao, M. Lu, D. Wan, L. Wang, Q. Wang, Linearized Wenger graphs, Discrete Mathematics, 338 (2015), 1595-1602.
- 6[6] J. Li, D. Wan, On the subset sum problem over finite fields, Finite Fields Appl, 14 (2008) 911-929.
- 7[7] J. Li, D. Wan, A new sieve for distinct coordinate counting, Sci. China Math. 53(9) (2010) 2351-2362.
- 8[8] J. Li, D. Wan, Counting subset sums of finite abelian groups, Journal of Combinatorial Theory Series A, archive 119(1), 2012.
