DOCSLIB.ORG

Low-Rank Parity-Check Codes Over Finite Commutative Rings And

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Low-Rank Parity-Check Codes Over Finite Commutative Rings And 1 Low-Rank Parity-Check Codes Over Finite Commutative Rings and Application to Cryptography Hermann Tchatchiem Kamche, Herve´ Tale´ Kalachi, Franck Rivel Kamwa Djomou, Emmanuel Fouotsa Abstract—Low-Rank Parity-Check (LRPC) codes are a class third round of this competition and the recent generic attacks of rank metric codes that have many applications specifically [6], [7] which considerably improved the cost of all known in cryptography. Recently, LRPC codes have been extended to decoding attacks. And this, even if we are only talking about Galois rings which are a specific case of finite rings. In this paper, we first define LRPC codes over finite commutative local rings, a reduction of security levels of rank based candidates. which are bricks of finite rings, with an efficient decoder and Note that the attacks from [6], [7] exploit the fact that the derive an upper bound of the failure probability together with code used is defined on a finite field. A natural question that the complexity of the decoder. We then extend the definition to generally arises is that of knowing what would become these arbitrary finite commutative rings and also provide a decoder attacks if we are dealing with a code defined on another poorer in this case. We end-up by introducing an application of the corresponding LRPC codes to cryptography, together with the algebraic structure such as finite rings for example. In this case new corresponding mathematical problems. of finite rings, it is interesting to precede such a question by defining LRPC codes over finite rings as well as an application Index Terms—Cryptography; Decoding Algorithm; Finite Rings; Galois Extension; LRPC Codes; Local Rings; Rank Metric to cryptography. Codes. It was recently shown in [8] that LRPC codes can be generalized to the ring of integers modulo a prime power. This work was followed by [9] where the authors generalized the I. INTRODUCTION results of [8] to Galois rings. LRPC codes over finite fields were first introduced in [1] si- In this paper, we use the structure theorem for finite commu- multaneously with an application to cryptography. These codes tative rings [10] to generalize the definition of LRPC codes have two peculiarities which make them attractive enough for over finite commutative rings. We also provide a decoding cryptographic applications. First, LRPC codes are rank metric algorithm, a correction capability together with an upper bound codes [2]. In code-based cryptography, this metric is very of the failure probability of our decoding algorithm. We end- famous because it makes generic attacks [3], [4] in the context up by introducing an application of the corresponding LRPC of Hamming metric impracticable. Therefore, decoding attacks codes to cryptography, together with the corresponding new are more expensive in practice for rank metric compared mathematical problems. to Hamming metric. Second, LRPC codes are by definition The rest of the paper is organized as follows: in Section analogues of low-density parity-check codes [5]. Thus, they II, we give some properties and mathematical notions that have a poor algebraic structure, which makes several known will be needed throughout the paper. That is, the resolution structural attacks impracticable. of linear systems, the rank, the free-rank and the product of Rank metric based cryptography and LRPC codes have re- two submodules in the Galois extension of finite commutative ceived a lot of attention these recent years thanks to the NIST 1 local rings. In Section III, we define LRPC codes over finite arXiv:2106.08712v1 [cs.IT] 16 Jun 2021 competition for Post-Quantum Cryptography Standardization, commutative local rings with a decoding algorithm and its where several code based candidates using LRPC codes went complexity. We also give an upper bound for the failure prob- up to the second round of the competition. However, it is ability. In Section IV, we generalize the definition of LRPC today difficult to ignore the existence of a link between the codes to finite commutative rings and propose in Section V a absence of a candidate from rank based cryptography in the cryptosystem for its applications in cryptography and finally, conclusions and perspectives are given in Section VI. Hermann Tchatchiem Kamche is with the Department of Mathemat- ics, Faculty of Science, University of Yaounde I, Cameroon e-mail: II. PRELIMINARIES [email protected]. Herve´ Tale´ Kalachi is with the Department of Computer Engineering, Let R be a finite commutative ring. The set of units in R will National Advanced School of Engineering of Yaounde,´ University of Yaounde be denoted by R∗. The set of all m × n matrices with entries I, Cameroon e-mail: (see http://perso.prema-a.org/herve.tale-kalachi/). from R will be denoted by Rm×n. The k × k identity matrix Franck Rivel Kamwa Djomou is with the Department of Mathematics and m×n Computer Science, Faculty of Science, University of Dschang, Cameroon e- is denoted by Ik. Let A 2 R , we denote by row (A) and mail: [email protected]. col (A) the R−submodules generated by the row and column Emmanuel Fouotsa is with the Department of Mathematics, Higher vectors of A, respectively. Teacher Training College, University of Bamenda, Cameroon e-mail: em- n [email protected]. Let fa1;:::; arg be a subset of R . The R−submodule of 1 n National Institute of Standards and Technology R generated by fa1;:::; arg is denoted by ha1;:::; ariR. 2 Recall that fa1;:::; arg is linearly independent over R if The solutions of Equation (3) are (3; 2; 2; 2); (1; 2; 3; 0); whenever α1a1 + ··· + αrar = 0 for some α1; : : : ; αr 2 R, (3; 2; 0; 2); (1; 2; 1; 0). then α1 = 0; : : : ; αr = 0. If fa1;:::; arg is linearly inde- Thus, the solutions of Equation (2) are (3 + 2ξ; 2 + 2ξ); pendent, then we say that it is a basis of the free module (1 + 3ξ; 2); (3; 2 + 2ξ); (1 + ξ; 2). ha1;:::; ariR. If the column vectors of A are linearly independent, then A local ring is a ring with exactly one maximal ideal. As an Equation (1) is easy to solve using the following: k m×n example, the ring Zpk of integers modulo p , p is a prime, is a Proposition 2.3: Let A 2 R . Assume that the column local ring whose the maximal ideal is pZpk . By [10, Theorem vectors of A are linearly independent. Then there is an VI.2] each finite commutative ring can be decomposed as a invertible matrix P 2 Rm×m such that direct sum of a local rings. Using this decomposition, some I PA = n results over local rings can naturally be extended to finite rings. 0 Thus, in this section, we will first study some properties that we will need over finite commutative local rings. Moreover, P can be calculated in time O (mn min fm; ng) = O mn2. Proof. In [12], Fan et al. proved the existence of P and A. Linear Equations Over Finite Commutative Local Rings calculated it using the Gaussian elimination. Thus, as in In the decoding algorithm, we will solve linear equations. the case of fields, the computation can be done in time 2 In [11], Bulyovszky and Horvath´ gave a good method to solve O (mn min fm; ng) = O mn . linear equations over finite local rings. In this subsection, we Corollary 2.4: Assume that the column vectors of the matrix assume that R is a local ring with maximal ideal m and residue A of Equation (1) are linearly independent. Then, Equation (1) can be solved in O (mn min fm; ng) = O mn2 operations. field Fq = R=m. By [10], there is a positive integer υ such that jRj = qυ and jmj = qυ−1 where jRj and jmj are respectively the cardinality of R and m. Set q = pµ where p is a prime B. Rank and Free-Rank of Modules & number. Then the characteristic of R is p where & is a non As in [13], we recall here the notions of Rank and Free-rank negative integer. As in [11], There is a subring R0 of R such for modules. & that R0 is isomorphic to the Galois ring of characteristic p Definition 2.5: (Rank of a module) Let R be a finite µς and cardinality p , that is, a ring of the form Zp& [X] = (hµ) commutative ring. Let M be a finitely generated R−module. & where hµ 2 Zp [X] is a monic polynomial of degree µ, where (i) The rank of M, denoted by rkR (M), or simply by its projection in Zp [X] is irreducible. Considering R as an rk (M), is the smallest number of elements in M which R0−module, there are z1; : : : ; zγ 2 R such that R = R0z1 ⊕ generate M as an R−module. · · · ⊕ R0zγ . (ii) The free rank of M, denoted by frkR (M) or simply by Consider the linear system frk (M), is the maximum of the ranks of free R−submodules of M. Ax = b (1) Proposition 2.6: [14] Let F be a finitely generated with unknown x 2 Rn×1, where A 2 Rm×n and b 2 Rm×1. free R−module and fe1; : : : ; eng be a basis of F . Then In [11], Bulyovszky and Horvath´ transformed Equation (1) frkR (F ) = rkR (F ) = n and any generating set of F to a linear system of γm equations of γn unknowns over consisting of n elements is a basis of F . the Galois ring R0. Then, they used Hermite normal form to Corollary 2.7: Let M be a finitely generated R−module. solve them.
Load more

Recommended publications
  • Parity Alternating Permutations Starting with an Odd Integer
    Parity alternating permutations starting with an odd integer Frether Getachew Kebede1a, Fanja Rakotondrajaob aDepartment of Mathematics, College of Natural and Computational Sciences, Addis Ababa University, P.O.Box 1176, Addis Ababa, Ethiopia; e-mail: [email protected] bD´epartement de Math´ematiques et Informatique, BP 907 Universit´ed’Antananarivo, 101 Antananarivo, Madagascar; e-mail: [email protected] Abstract A Parity Alternating Permutation of the set [n] = 1, 2,...,n is a permutation with { } even and odd entries alternatively. We deal with parity alternating permutations having an odd entry in the first position, PAPs. We study the numbers that count the PAPs with even as well as odd parity. We also study a subclass of PAPs being derangements as well, Parity Alternating Derangements (PADs). Moreover, by considering the parity of these PADs we look into their statistical property of excedance. Keywords: parity, parity alternating permutation, parity alternating derangement, excedance 2020 MSC: 05A05, 05A15, 05A19 arXiv:2101.09125v1 [math.CO] 22 Jan 2021 1. Introduction and preliminaries A permutation π is a bijection from the set [n]= 1, 2,...,n to itself and we will write it { } in standard representation as π = π(1) π(2) π(n), or as the product of disjoint cycles. ··· The parity of a permutation π is defined as the parity of the number of transpositions (cycles of length two) in any representation of π as a product of transpositions. One 1Corresponding author. n c way of determining the parity of π is by obtaining the sign of ( 1) − , where c is the − number of cycles in the cycle representation of π.
    [Show full text]
  • On the Parity of the Number of Multiplicative Partitions and Related Problems
    PROCEEDINGS OF THE AMERICAN MATHEMATICAL SOCIETY Volume 140, Number 11, November 2012, Pages 3793–3803 S 0002-9939(2012)11254-7 Article electronically published on March 15, 2012 ON THE PARITY OF THE NUMBER OF MULTIPLICATIVE PARTITIONS AND RELATED PROBLEMS PAUL POLLACK (Communicated by Ken Ono) Abstract. Let f(N) be the number of unordered factorizations of N,where a factorization is a way of writing N as a product of integers all larger than 1. For example, the factorizations of 30 are 2 · 3 · 5, 5 · 6, 3 · 10, 2 · 15, 30, so that f(30) = 5. The function f(N), as a multiplicative analogue of the (additive) partition function p(N), was first proposed by MacMahon, and its study was pursued by Oppenheim, Szekeres and Tur´an, and others. Recently, Zaharescu and Zaki showed that f(N) is even a positive propor- tion of the time and odd a positive proportion of the time. Here we show that for any arithmetic progression a mod m,thesetofN for which f(N) ≡ a(mod m) possesses an asymptotic density. Moreover, the density is positive as long as there is at least one such N. For the case investigated by Zaharescu and Zaki, we show that f is odd more than 50 percent of the time (in fact, about 57 percent). 1. Introduction Let f(N) be the number of unordered factorizations of N,whereafactorization of N is a way of writing N as a product of integers larger than 1. For example, f(12) = 4, corresponding to 2 · 6, 2 · 2 · 3, 3 · 4, 12.
    [Show full text]
  • The ℓ-Parity Conjecture Over the Constant Quadratic Extension
    THE `-PARITY CONJECTURE OVER THE CONSTANT QUADRATIC EXTENSION KĘSTUTIS ČESNAVIČIUS Abstract. For a prime ` and an abelian variety A over a global field K, the `-parity conjecture predicts that, in accordance with the ideas of Birch and Swinnerton-Dyer, the Z`-corank of the `8-Selmer group and the analytic rank agree modulo 2. Assuming that char K ¡ 0, we prove that the `-parity conjecture holds for the base change of A to the constant quadratic extension if ` is odd, coprime to char K, and does not divide the degree of every polarization of A. The techniques involved in the proof include the étale cohomological interpretation of Selmer groups, the Grothendieck–Ogg–Shafarevich formula, and the study of the behavior of local root numbers in unramified extensions. 1. Introduction 1.1. The `-parity conjecture. The Birch and Swinnerton-Dyer conjecture (BSD) predicts that the completed L-function LpA; sq of an abelian variety A over a global field K extends meromorphically to the whole complex plane, vanishes to the order rk A at s “ 1, and satisfies the functional equation LpA; 2 ´ sq “ wpAqLpA; sq; (1.1.1) where rk A and wpAq are the Mordell–Weil rank and the global root number of A. The vanishing assertion combines with (1.1.1) to give “BSD modulo 2,” namely, the parity conjecture: ? p´1qrk A “ wpAq: Selmer groups tend to be easier to study than Mordell–Weil groups, so, fixing a prime `, one sets 8 rk` A :“ dimQ` HompSel` A; Q`{Z`q bZ` Q`; where Sel 8 A : lim Sel n A ` “ ÝÑ ` is the `8-Selmer group, notes that the conjectured finiteness of the Shafarevich–Tate group XpAq implies rk` A “ rk A, and instead of the parity conjecture considers the `-parity conjecture: ? p´1qrk` A “ wpAq: (1.1.2) 1.2.
    [Show full text]
  • Some Problems of Erdős on the Sum-Of-Divisors Function
    TRANSACTIONS OF THE AMERICAN MATHEMATICAL SOCIETY, SERIES B Volume 3, Pages 1–26 (April 5, 2016) http://dx.doi.org/10.1090/btran/10 SOME PROBLEMS OF ERDOS˝ ON THE SUM-OF-DIVISORS FUNCTION PAUL POLLACK AND CARL POMERANCE For Richard Guy on his 99th birthday. May his sequence be unbounded. Abstract. Let σ(n) denote the sum of all of the positive divisors of n,and let s(n)=σ(n) − n denote the sum of the proper divisors of n. The functions σ(·)ands(·) were favorite subjects of investigation by the late Paul Erd˝os. Here we revisit three themes from Erd˝os’s work on these functions. First, we improve the upper and lower bounds for the counting function of numbers n with n deficient but s(n) abundant, or vice versa. Second, we describe a heuristic argument suggesting the precise asymptotic density of n not in the range of the function s(·); these are the so-called nonaliquot numbers. Finally, we prove new results on the distribution of friendly k-sets, where a friendly σ(n) k-set is a collection of k distinct integers which share the same value of n . 1. Introduction Let σ(n) be the sum of the natural number divisors of n,sothatσ(n)= d|n d. Let s(n) be the sum of only the proper divisors of n,sothats(n)=σ(n) − n. Interest in these functions dates back to the ancient Greeks, who classified numbers as deficient, perfect,orabundant according to whether s(n) <n, s(n)=n,or s(n) >n, respectively.
    [Show full text]
  • Gender Equality: Glossary of Terms and Concepts
    GENDER EQUALITY: GLOSSARY OF TERMS AND CONCEPTS GENDER EQUALITY Glossary of Terms and Concepts UNICEF Regional Office for South Asia November 2017 Rui Nomoto GENDER EQUALITY: GLOSSARY OF TERMS AND CONCEPTS GLOSSARY freedoms in the political, economic, social, a cultural, civil or any other field” [United Nations, 1979. ‘Convention on the Elimination of all forms of Discrimination Against Women,’ Article 1]. AA-HA! Accelerated Action for the Health of Adolescents Discrimination can stem from both law (de jure) or A global partnership, led by WHO and of which from practice (de facto). The CEDAW Convention UNICEF is a partner, that offers guidance in the recognizes and addresses both forms of country context on adolescent health and discrimination, whether contained in laws, development and puts a spotlight on adolescent policies, procedures or practice. health in regional and global health agendas. • de jure discrimination Adolescence e.g., in some countries, a woman is not The second decade of life, from the ages of 10- allowed to leave the country or hold a job 19. Young adolescence is the age of 10-14 and without the consent of her husband. late adolescence age 15-19. This period between childhood and adulthood is a pivotal opportunity to • de facto discrimination consolidate any loss/gain made in early e.g., a man and woman may hold the childhood. All too often adolescents - especially same job position and perform the same girls - are endangered by violence, limited by a duties, but their benefits may differ. lack of quality education and unable to access critical health services.i UNICEF focuses on helping adolescents navigate risks and vulnerabilities and take advantage of e opportunities.
    [Show full text]
  • Introduction to Groups, Rings and Fields
    Introduction to Groups, Rings and Fields HT and TT 2011 H. A. Priestley 0. Familiar algebraic systems: review and a look ahead. GRF is an ALGEBRA course, and specifically a course about algebraic structures. This introduc- tory section revisits ideas met in the early part of Analysis I and in Linear Algebra I, to set the scene and provide motivation. 0.1 Familiar number systems Consider the traditional number systems N = 0, 1, 2,... the natural numbers { } Z = m n m, n N the integers { − | ∈ } Q = m/n m, n Z, n = 0 the rational numbers { | ∈ } R the real numbers C the complex numbers for which we have N Z Q R C. ⊂ ⊂ ⊂ ⊂ These come equipped with the familiar arithmetic operations of sum and product. The real numbers: Analysis I built on the real numbers. Right at the start of that course you were given a set of assumptions about R, falling under three headings: (1) Algebraic properties (laws of arithmetic), (2) order properties, (3) Completeness Axiom; summarised as saying the real numbers form a complete ordered field. (1) The algebraic properties of R You were told in Analysis I: Addition: for each pair of real numbers a and b there exists a unique real number a + b such that + is a commutative and associative operation; • there exists in R a zero, 0, for addition: a +0=0+ a = a for all a R; • ∈ for each a R there exists an additive inverse a R such that a+( a)=( a)+a = 0. • ∈ − ∈ − − Multiplication: for each pair of real numbers a and b there exists a unique real number a b such that · is a commutative and associative operation; • · there exists in R an identity, 1, for multiplication: a 1 = 1 a = a for all a R; • · · ∈ for each a R with a = 0 there exists an additive inverse a−1 R such that a a−1 = • a−1 a = 1.∈ ∈ · · Addition and multiplication together: forall a,b,c R, we have the distributive law a (b + c)= a b + a c.
    [Show full text]
  • Matrix Characterization of MDS Linear Codes Over Modules
    LINEAR ALGEBRA AND ITS APPLICATIONS ELSEVIER Linear Algebra and its Applications 277 (1998) 57 61 Matrix characterization of MDS linear codes over modules Xue-Dong Dong, Cheong Boon Soh *, Erry Gunawan Block $2, School of Electrical and Electronic' Engineering, Nanyang Technological University, Nanyang Avenue, Singapore 639798, Singupore Received 23 June 1997; accepted 13 August 1997 Submitted by R. Brualdi Abstract Let R be a commutative ring with identity, N be an R-module, and M = (a,/),.×~. be a matrix over R. A linear code C of length n over N is defined to be a submodule of N '~. It is shown that a linear code C(k, r) with parity check matrix (-MI/,.) is maximum dis- tance separable (MDS) iff the determinant of every h × h submatrix, h = 1,2,..., rain{k, r}, of M is not an annihilator of any nonzero element of N. This characterization is used to derive some results for group codes over abelian groups. © 1998 Elsevier Science Inc. All rights reserved. Keywords. Linear codes; MDS codes; Codes over rings; Group codes: Codes over modules I. Introduction Recently, Zain and Rajan [1] gave a good algebraic characterization of max- imum distance separable (MDS) group codes over cyclic groups. They pointed out that the algebraic approach can be extended to the general case of group codes over abelian groups using the complex theory of determinants of matri- ces over noncommutative rings [1]. In this short paper, the matrix characteriza- tions of MDS codes over finite fields and MDS group codes over cyclic groups are extended to linear codes with systematic parity check matrices over *Corresponding author.
    [Show full text]
  • Fairness Definitions Explained
    2018 ACM/IEEE International Workshop on Software Fairness Fairness Definitions Explained Sahil Verma Julia Rubin Indian Institute of Technology Kanpur, India University of British Columbia, Canada [email protected] [email protected] ABSTRACT training data containing observations whose categories are known. Algorithm fairness has started to attract the attention of researchers We collect and clarify most prominent fairness definitions for clas- in AI, Software Engineering and Law communities, with more than sification used in the literature, illustrating them on a common, twenty different notions of fairness proposed in the last few years. unifying example – the German Credit Dataset [18]. This dataset Yet, there is no clear agreement on which definition to apply in is commonly used in fairness literature. It contains information each situation. Moreover, the detailed differences between multiple about 1000 loan applicants and includes 20 attributes describing definitions are difficult to grasp. To address this issue, thispaper each applicant, e.g., credit history, purpose of the loan, loan amount collects the most prominent definitions of fairness for the algo- requested, marital status, gender, age, job, and housing status. It rithmic classification problem, explains the rationale behind these also contains an additional attribute that describes the classification definitions, and demonstrates each of them on a single unifying outcome – whether an applicant has a good or a bad credit score. case-study. Our analysis intuitively explains why the same case When illustrating the definitions, we checked whether the clas- can be considered fair according to some definitions and unfair sifier that uses this dataset exhibits gender-related bias.
    [Show full text]
  • Interferometry with Independent Bose-Einstein Ondensates: Parity As an EPR/Bell Quantum Variable Franck Laloë, William Mullin
    Interferometry with independent Bose-Einstein ondensates: parity as an EPR/Bell quantum variable Franck Laloë, William Mullin To cite this version: Franck Laloë, William Mullin. Interferometry with independent Bose-Einstein ondensates: parity as an EPR/Bell quantum variable. 2008. hal-00345342v1 HAL Id: hal-00345342 https://hal.archives-ouvertes.fr/hal-00345342v1 Preprint submitted on 8 Dec 2008 (v1), last revised 14 Sep 2009 (v2) HAL is a multi-disciplinary open access L’archive ouverte pluridisciplinaire HAL, est archive for the deposit and dissemination of sci- destinée au dépôt et à la diffusion de documents entific research documents, whether they are pub- scientifiques de niveau recherche, publiés ou non, lished or not. The documents may come from émanant des établissements d’enseignement et de teaching and research institutions in France or recherche français ou étrangers, des laboratoires abroad, or from public or private research centers. publics ou privés. Interferometry with independent Bose-Einstein condensates: parity as an EPR/Bell quantum variable F. Lalo¨ea and W. J. Mullinb aLaboratoire Kastler Brossel, ENS, UPMC, CNRS ; 24 rue Lhomond, 75005 Paris, France bDepartment of Physics, University of Massachusetts, Amherst, Massachusetts 01003 USA December 8, 2008 Abstract When independent Bose-Einstein condensates (BEC), described quantum mechanically by Fock (number) states, are sent into interferometers, the measurement of the output port at which the particles are detected provides a binary measurement, with two possible results ±1. With two inter- ferometers and two BEC’s, the parity (product of all results obtained at each interferometer) has all the features of an Einstein-Podolsky-Rosen quantity, with perfect correlations predicted by quantum mechanics when the settings (phase shifts of the interferometers) are the same.
    [Show full text]
  • Parity Check Matrices and Product Representations of Squares
    Parity check matrices and product representations of squares Assaf Naor Jacques VerstraÄete Microsoft Research University of Waterloo [email protected] [email protected] Abstract Let NF(n; k; r) denote the maximum number of columns in an n-row matrix with entries in a ¯nite ¯eld F in which each column has at most r nonzero entries and every k columns are linearly independent over F. We obtain near-optimal upper bounds for NF(n; k; r) in the case r cr 2 + k 4 k > r. Namely, we show that NF(n; k; r) ¿ n where c ¼ 3 for large k. Our method is based on a novel reduction of the problem to the extremal problem for cycles in graphs, and yields a fast algorithm for ¯nding short linear dependences. We present additional applications of this method to problems in extremal hypergraph theory and combinatorial number theory. \It is certainly odd to have an instruction in an algorithm asking you to play with some numbers to ¯nd a subset with product a square . Why should we expect to ¯nd such a subsequence, and, if it exists, how can we ¯nd it e±ciently?" Carl Pomerance [32]. 1 Introduction Since the mid-1930s it has been well established that there is a tight connection between combi- natorial number theory and extremal combinatorics (see [33, 12] and the references therein). The basic paradigm is that for certain number theoretical problems one can construct a combinatorial object (e.g. a graph or a hypergraph), and prove that it cannot contain certain con¯gurations (e.g.
    [Show full text]
  • Carmichael Numbers in the Sequence {2 K + 1}N≥1
    n Carmichael numbers in the sequence f2 k + 1gn¸1 Javier Cilleruelo Instituto de Ciencias Matem¶aticas(CSIC-UAM-UC3M-UCM) and Departamento de Matem¶aticas Universidad Aut¶onomade Madrid 28049, Madrid, Espa~na [email protected] Florian Luca Instituto de Matem¶aticas Universidad Nacional Autonoma de M¶exico C.P. 58089, Morelia, Michoac¶an,M¶exico fl[email protected] Amalia Pizarro-Madariaga Departamento de Matem¶aticas Uinversidad de Valparaiso, Chile [email protected] May 22, 2012 1 Introduction A Carmichael number is a positive integer N which is composite and the con- gruence aN ´ a (mod N) holds for all integers a. The smallest Carmichael number is N = 561 and was found by Carmichael in 1910 in [6]. It is well{ known that there are in¯nitely many Carmichael numbers (see [1]). Here, we let k be any odd positive integer and study the presence of Carmichael numbers in the sequence of general term 2nk + 1. Since it is known [15] that the sequence 2n + 1 does not contain Carmichael numbers, we will assume that k ¸ 3 through the paper. We have the following result. For a positive integer m let ¿(m) be the number of positive divisors of m. We also write !(m) for the number of distinct prime factors of m. For a positive real number x we write log x for its natural logarithm. 1 Theorem 1. Let k ¸ 3 be an odd integer. If N = 2nk + 1 is Carmichael, then 6 2 2 n < 22£10 ¿(k) (log k) !(k): (1) The proof of Theorem 1 uses a quantitative version of the Subspace Theorem as well as lower bounds for linear forms in logarithms of algebraic numbers.
    [Show full text]
  • The Odd-Even Effect in Multiplication: Parity Rule Or Familiarity with Even Numbers?
    Memory & Cognition 2000, 28 (3), 358-365 The odd-even effect in multiplication: Parity rule or familiarity with even numbers? AUETTELOCHYandXA~ERSERON Universite Catholique de Louvain, Louvain-La-Neuve, Belgium MARGARETE DELAZER UniversiUitklinikjilr Neurologie, Innsbruck, Austria and BRIAN BUTTERWORTH University College ofLondon, London, England This study questions the evidence that a parity rule is used during the verification of multiplication. Previous studies reported that products are rejected faster when they violate the expected parity, which was attributed to the use of a rule (Krueger, 1986; Lemaire & Fayol, 1995). This experiment tested an alternative explanation of this effect: the familiarity hypothesis. Fifty subjects participated in a verifi­ cation task with contrasting types of problems (even X even, odd X odd, mixed). Some aspects of our results constitute evidence against the use of the parity rule: False even answers were rejected slowly, even when the two operands were odd. Wesuggest that the odd-even effect in verification of multipli­ cation could not be due to the use of the parity rule, but rather to a familiarity with even numbers (three quarters of products are indeed even). Besides the issues concerning the representation for­ feet has been observed for both addition (Krueger & mat in which parity information is coded and the way this Hallford, 1984) and multiplication (Krueger, 1986), and information is retrieved (Campbell & Clark, 1992; Clark it has been attributed to the use ofa rule. Inproduct ver­ & Campbell, 1991; Dehaene, Bossini, & Giraux, 1993; ification, subjects likewise use the rule "the true product McCloskey, Aliminosa, & Sokol, 1991; McCloskey, Cara­ must be even ifany multiplier is even; otherwise it must mazza, & Basili, 1985), the role of parity in arithmetic be odd" (Krueger, 1986).
    [Show full text]