Linear complexity of Legendre-polynomial quotients
Zhixiong Chen

TL;DR
This paper analyzes the linear complexity of a binary sequence defined via Legendre symbols, extending previous results to all w in the range 1 to p-1, under certain number-theoretic conditions.
Contribution
It provides a comprehensive determination of the linear complexity for all relevant w values, generalizing earlier work limited to w=p-1.
Findings
Linear complexity values are characterized for all 1 β€ w < p-1.
The case w β₯ p can be reduced to smaller w cases.
Results depend on the condition 2^{p-1} β 1 mod p^2.
Abstract
We continue to investigate binary sequence over defined by for integers , where is the Legendre symbol and we restrict . In an earlier work, the linear complexity of was determined for under the assumption of . In this work, we give possible values on the linear complexity of for all under the same conditions. We also state that the case of larger can be reduced to that of .
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Linear complexity of Legendre-polynomial quotients
Zhixiong Chen
Provincial Key Laboratory of Applied Mathematics,
Putian University, Putian, Fujian 351100, P.R. China
Abstract
We continue to investigate binary sequence over defined by for integers , where is the Legendre symbol and we restrict . In an earlier work, the linear complexity of was determined for under the assumption of . In this work, we give possible values on the linear complexity of for all under the same conditions. We also state that the case of larger can be reduced to that of .
Keywords: polynomial quotients, Fermat quotients, Legendre symbol, linear complexity.
2010 MSC: 11K45, 11L40, 94A60.
1 Introduction
For an odd prime and an integer with , the *Fermat quotient * is defined as the unique integer
[TABLE]
and
[TABLE]
An equivalent definition is
[TABLE]
For all positive integers , Chen and Winterhof extended the equation above to define
[TABLE]
which is called a polynomial quotient in [7]. In fact . We have the following relation between and :
[TABLE]
Many number theoretic and cryptographic questions have been studied for polynomial quotients [1, 2, 3, 4, 5, 6, 7, 8, 11, 12, 13].
For any positive with , we have for all by (1). For with , write with and . By (1) again one can get for
[TABLE]
which implies that for can be reduced to a polynomial quotient with . Hence, we may restrict ourselves to from now on.
Two families of binary sequences have been considered in the literature. The first one is defined by
[TABLE]
The second one is defined by
[TABLE]
where is the Legendre symbol.
Both and have interesting cryptographic properties. In particular, when , the linear complexity (see below for the notion) of has been determined if in [4, 3] and of if in [2]. While in [5], the -error linear complexity of and has been determined for any under the assumption of 2 being a primitive root modulo . We note that ,if is a primitive root modulo , then we always have . But the converse is not true, because there do exist such primes , e.g., . On the other hand, the primes satisfying are very rare. To date the only known such primes are and and it was reported that there are no new such primes , see [9].
In this work, we will continue to investigate the linear complexity of for all under the assumption of . Equation (1) is a key tool for our purpose. But, it seems that the technique here does not work for when .
We finally recall that the linear complexity of a -periodic sequence over the binary field is the least order of a linear recurrence relation over
[TABLE]
which is satisfied by and where The polynomial
[TABLE]
is called the minimal polynomial of . The generating polynomial of is defined by
[TABLE]
It is easy to see that
[TABLE]
hence
[TABLE]
which is the degree of the minimal polynomial, seeΒ [10] for a more detailed exposition.
2 Linear complexity
From (1), we write
[TABLE]
We will use the theory of cyclotomy, since is a group homomorphism
[TABLE]
by the fact that for , see e.g. [13]. In the context, we denote by Β (respectively ) the residue class ring modulo Β (respectively ) and by the unit group of .
Define
[TABLE]
for . Indeed, if is a (fixed) primitive root modulo , we have by (4)
[TABLE]
and for , there exists an integer such that . Hence each has the cardinality . Naturally form a partition of . Let .
We use the notation . Using (4) we have the following basic fact
- (I).
if .
Define
[TABLE]
for
2.1 The case of even .
Theorem 1**.**
Let be the -periodic binary sequence defined in (2) with even . Assume that then,
[TABLE]
Proof. For even , we have by (1)
[TABLE]
and define in an equivalent way by
[TABLE]
here and hereafter denotes the set of quadratic residues modulo and denotes the set of quadratic non-residues modulo . We note that the cardinality .
Then the proof of [2, Th. 4] can help us to get the desired result. Here we present a detailed proof for completeness.
Let
[TABLE]
Clearly is the generating polynomial of . For , we only need to show for a primitive -th root of unity by (3).
We assume that for some . Since , we set . Then by Fact (I) we have for
[TABLE]
where the subscript of is reduced modulo . That is, for all . We have furtherly by Fact (I) again for all and . On the other hand, all ( many) elements for are roots of
[TABLE]
which has no other roots. Hence we have
[TABLE]
Let
[TABLE]
Using the fact that
[TABLE]
we restrict . However, has terms and the right hand side of (5) has terms if has terms, a contradiction. So we conclude that for all and .
On the other hand, we have
[TABLE]
for . We draw a conclusion that , the generating polynomial of , and have exactly many common roots if and one common root otherwise. Β
2.2 The case of odd .
For , we define
[TABLE]
Using (4) aagain we have the following facts:
- (II).
if . 2. (III).
if . 3. (IV).
if . 4. (V).
if . 5. (VI).
. Hence, .
Define
[TABLE]
for . We see that . Now we present the results in the following two theorems.
Theorem 2**.**
Let be the -periodic binary sequence defined in (2) with odd . Assume that then,
[TABLE]
Proof. For odd , we have by (1)
[TABLE]
and define in an equivalent way by
[TABLE]
Then the generating polynomial of is
[TABLE]
Below we will consider the common roots of and . The number of the common roots will lead to the values of linear complexity of by (3). We need the following lemmas, which can be proved by following the way of [4].
Lemma 1**.**
[4]** Let be a primitive -th root of unity. We have
[TABLE]
Lemma 2**.**
[4]** Let be a primitive -th root of unity. For all , we have .
Lemma 3**.**
[4]** Let be a primitive -th root of unity. If for some , we have for all and .
We use Lemmas 2 and 3 to show the following lemma.
Lemma 4**.**
[4]** Let be a primitive -th root of unity, then
- (1).
If for some , then there exist(s) either exactly many or no such that . 2. (2).
If for some , then for all .
Now we continue the proof of TheoremΒ 2.
First we suppose that . In this case, . If , we have if by Lemma 1 and there are either no numbers in or many such that by Lemma 4. Then the number of the common roots of and is either or and hence the linear complexity of is or . For the case of , the result follows similarly.
Under the condition of , it can be proved in a similar way. Β
We calculate the linear complexity of for all primes . We list some examples in Table 1. The experiment results illuminate that, when the linear complexity only equals . So we might ask whether there exists such that linear complexity equals if .
[TABLE]
Table 1. Linear complexity of for odd .
2.3 The case of .
Theorem 3**.**
Let be the -periodic binary sequence defined in (2) with . Assume that then,
[TABLE]
Proof. We have by (1)
[TABLE]
and define in an equivalent way by
[TABLE]
Then the generating polynomial of is
[TABLE]
We need to compute the number of with for a primitive -th root of unity .
Lemma 5**.**
Let be a primitive -th root of unity. We have
[TABLE]
Lemma 6**.**
Let be a primitive -th root of unity. If for some , we have for all and .
(Proof of Lemma 6). Let . Suppose that there is an for some such that for some . Then we have and drive that each polynomial has at least many roots using the proof of Lemma 3. We get a contradiction since at least one has degree . We complete the proof of Lemma 6.
Lemma 7**.**
Let be a primitive -th root of unity. Then
- (1).
we have . 2. (2).
we have
[TABLE]
and
[TABLE]
for .
Lemma 8**.**
Let be a primitive -th root of unity. If or for some , then there exist(s) either exactly many or no such that .
(Proof of Lemma 8). It is easy to see that for all
[TABLE]
by LemmaΒ 2. Let and as before
[TABLE]
Then together with Facts (I)-(V), we have
[TABLE]
which indicates for and by Lemma 6.
Case (i). Let . We suppose that for some . If , then for . For all , by (6) we derive
[TABLE]
which also implies for all . So we have for
[TABLE]
Similarly, if , we have
[TABLE]
Case (ii). For the case of , i.e., , if for some , then we have for odd and for even .
We note that by Lemma 7. So for even we have by (6)
[TABLE]
and so iff .
Similarly, if for some , we will get iff .
Thus we conclude that there exist many such that since both and contain elements. We complete the proof of Lemma 8.
Finally we finish the proof of TheoremΒ 3 by Lemmas 5 and 8. Β
We calculate the linear complexity of for all primes and list some examples in Table 2. The experiment results illuminate that, no primes such that the linear complexity equals , , when , respectively. We leave it open.
[TABLE]
Table 2. Linear complexity of for .
3 Final remarks
In this work, we have determined all possible values on the linear complexity of the binary sequences defined via computing the Legendre symbol of polynomial quotients. The achievement extends corresponding results of the Legendre-Fermat quotients studied in [2].
It is interesting to consider the linear complexity of defined in Section 1 for .
Acknowledgements
The work was partially supported by the National Natural Science Foundation of China under grant No. 61373140.
The reference list from the paper itself. Each links out to its DOI / PubMed record.
- 1[1] H. Aly and A. Winterhof. Boolean functions derived from Fermat quotients. Cryptogr. Commun. 3 (2011) 165β174.
- 2[2] Z. X. Chen. Trace representation and linear complexity of binary sequences derived from Fermat quotients. Sci. China Inf. Sci. 57 (2014) 11:2109(10)
- 3[3] Z. X. Chen and X. N. Du. On the linear complexity of binary threshold sequences derived from Fermat quotients. Des. Codes Cryptogr. 67 (2013) 317β323.
- 4[4] Z. X. Chen and D. GΓ³mez-PΓ©rez. Linear complexity of binary sequences derived from polynomial quotients. Sequences and Their Applications-SETA 2012, 181β189, Lecture Notes in Comput. Sci., 7280, Springer, Berlin, 2012.
- 5[5] Z. X. Chen, Z. H. Niu and C. H. Wu. On the k π k -error linear complexity of binary sequences derived from polynomial quotients. 58 (2015) 09:2107(15)
- 6[6] Z. X. Chen, A. Ostafe and A. Winterhof. Structure of pseudorandom numbers derived from Fermat quotients. Arithmetic of Finite Fields-WAIFI 2010, 73β85, Lecture Notes in Comput. Sci., 6087, Springer, Berlin, 2010.
- 7[7] Z. X. Chen and A. Winterhof. Additive character sums of polynomial quotients. Theory and Applications of Finite Fields-Fq 10, 67β73, Contemp. Math., 579, Amer. Math. Soc., Providence, RI, 2012.
- 8[8] Z. X. Chen and A. Winterhof. Polynomial quotients: Distribution of values and Waringβs problem. Acta Arithmetica 170 (2) (2015) 121β134.
