DOCSLIB.ORG

Number Theory and Cryptography

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Number Theory and Cryptography Number Theory and Cryptography Paul Yiu Department of Mathematics Florida Atlantic University Fall 2017 Chapters 9–14 October 23, 2017 ii Contents 5 Quadratic Residues 39 5.1 Quadraticresidues.......................... 39 5.2 TheLegendresymbol ........................ 40 1 5.3 The Legendre symbol −p ..................... 41 5.3.1 The square roots of 1 (mod p) ............... 42 5.4 Gauss’lemma ............................− 43 2 5.5 The Legendre symbol p ..................... 43 5.6 The law of quadratic reciprocity . 44 5.7 Smallest quadratic nonresidue modulo p .............. 47 5.8 Square roots modulo p ........................ 48 5.8.1 Square roots modulo prime p 1 (mod 8) ......... 48 5.8.2 Square roots modulo p for a generic6≡ prime p ......... 49 5.9 TheJacobisymbol.......................... 51 6 Primality Tests and Factorization of Integers 53 6.1 Primality of Mersenne numbers . 53 6.2 Germainprimes ........................... 55 6.3 Probabilistic primality tests . 56 6.3.1 Pseudoprimes......................... 56 6.3.2 Euler b-pseudoprimes. 58 6.3.3 Strong b-pseudoprimes . 58 6.4 Carmichaelnumbers......................... 61 6.5 Quadratic sieve and factor base . 62 6.5.1 Fermat’s factorization . 62 6.5.2 Factorbase .......................... 63 6.6 Pollard’smethods .......................... 66 6.6.1 The ρ-method......................... 66 6.6.2 The (p 1)-method ..................... 67 − 7 Pythagorean Triangles 69 7.1 Construction of Pythagorean triangles . 69 7.2 Fermat’s construction of primitive Pythagorean triangles with con- secutivelegs ............................. 70 iv CONTENTS 7.3 Fermat Last Theorem for n =4 ................... 72 7.4 Two ternary trees of rational numbers . 73 7.5 Genealogy of Pythagorean triangles . 75 8 Homogeneous Quadratic Equations in 3 Variables 79 8.1 Pythagorean triangles revisited . 79 8.2 Rational points on a conic . 80 8.2.1 Integer triangles with a 60◦ angle .............. 80 8.2.2 Integer triangles with a 120◦ angle.............. 82 8.3 Herontriangles............................ 84 8.3.1 The Heron formula . 84 8.3.2 Construction of Heron triangles . 85 8.3.3 Heron triangles with sides in arithmetic progression ..... 86 8.3.4 Heron triangles with integer inradii . 87 8.4 The equation Pk,a + Pk,b = Pk,c for polynomial numbers . 88 8.4.1 Double ruling of S ...................... 89 8.4.2 Primitive Pythagorean triple associated with a k-gonal triple 91 8.4.3 Triangular triples . 91 8.4.4 Pentagonal triples . 92 38 CONTENTS Chapter 5 Quadratic Residues 5.1 Quadratic residues Let n > 1 be a given positive integer, and gcd(a,n)=1. We say that a Zn• is a quadratic residue mod n if the congruence x2 a (mod n) is solvable. Otherwise,∈ a is called a quadratic nonresidue mod n. ≡ 1. If a and b are quadratic residues mod n, so is their product ab. 2. If a is a quadratic residue, and b a quadratic nonresidue mod n, then ab is a quadratic nonresidue mod n. 3. The product of two quadratic nonresidues mod n is not necessarily a quadratic residue mod n. For example, in Z12• = 1, 5, 7, 11 , only 1 is a quadratic residue; 5, 7, and 11 5 7 are all quadratic{ nonresidues.} ≡ · Proposition 5.1. Let p be an odd prime, and p ∤ a. The quadratic congruence ax2 +bx+c 0 (mod p) is solvable if and only if (2ax+b)2 b2 4ac (mod p) is solvable. ≡ ≡ − Theorem 5.2. Let p be an odd prime. Exactly one half of the elements of Zp• are quadratic residues. 1 Proof. Each quadratic residue modulo p is congruent to one of the following 2 (p 1) residues. − p 1 2 12, 22, ...,k2, ..., − . 2 p 1 2 2 We show that these residue classes are all distinct. For 1 h < k −2 , h k (mod p) if and only if (k h)(h + k) is divisible by p, this≤ is impossible≤ since≡ each of k h and h + k is smaller− than p. − Corollary 5.3. If p is an odd prime, the product of two quadratic nonresidues is a quadratic residue. 40 Quadratic Residues In the table below we list, for primes < 50, the quadratic residues and their square roots. It is understood that the square roots come in pairs. For example, the entry (2,7) for the prime 47 should be interpreted as saying that the two solutions of the congruence x2 2 (mod 47) are x 7 (mod 47). Also, for primes of the form p = 4n +1, since≡ 1 is a quadratic≡ residue ± modulo p, we only list quadratic p − p residues smaller than 2 . Those greater than 2 can be found with the help of the square roots of 1. − Quadratic residues mod p and their square roots 3 (1, 1) 5 (−1, 2) (1, 1) 7 (1, 1) (2, 3) (4, 2) 11 (1, 1) (3, 5) (4, 2) (5, 4) (9, 3) 13 (−1, 5) (1, 1) (3, 4) (4, 2) 17 (−1, 4) (1, 1) (2, 6) (4, 2) (8, 5) 19 (1, 1) (4, 2) (5, 9) (6, 5) (7, 8) (9, 3) (11, 7) (16, 4) (17, 6) 23 (1, 1) (2, 5) (3, 7) (4, 2) (6, 11) (8, 10) (9, 3) (12, 9) (13, 6) (16, 4) (18, 8) 29 (−1, 12) (1, 1) (4, 2) (5, 11) (6, 8) (7, 6) (9, 3) (13, 10) 31 (1, 1) (2, 8) (4, 2) (5, 6) (7, 10) (8, 15) (9, 3) (10, 14) (14, 13) (16, 4) (18, 7) (19, 9) (20, 12) (25, 5) (28, 11) 37 (−1, 6) (1, 1) (3, 15) (4, 2) (7, 9) (9, 3) (10, 11) (11, 14) (12, 7) (16, 4) 41 (−1, 9) (1, 1) (2, 17) (4, 2) (5, 13) (8, 7) (9, 3) (10, 16) (16, 4) (18, 10) (20, 15) 43 (1, 1) (4, 2) (6, 7) (9, 3) (10, 15) (11, 21) (13, 20) (14, 10) (15, 12) (16, 4) (17, 19) (21, 8) (23, 18) (24, 14) (25, 5) (31, 17) (35, 11) (36, 6) (38, 9) (40, 13) (41, 16) 47 (1, 1) (2, 7) (3, 12) (4, 2) (6, 10) (7, 17) (8, 14) (9, 3) (12, 23) (14, 22) (16, 4) (17, 8) (18, 21) (21, 16) (24, 20) (25, 5) (27, 11) (28, 13) (32, 19) (34, 9) (36, 6) (37, 15) (42, 18) 5.2 The Legendre symbol Let p be an odd prime. For an integer a, we define the Legendre symbol a +1, if a is a quadratic residue mod p, := p 1, otherwise. (− ab a b Lemma 5.4. p = p p . Proof. This is equivalent to saying that modulo p, the product of two quadratic residues (respectively nonresidues) is a quadratic residue, and the product of a quadratic residue and a quadratic nonresidue is a quadratic nonresidue. 1 5.3 The Legendre symbol −p 41 Theorem 5.5 (Euler). Let p be an odd prime. For each integer a not divisible by p, a 1 (p 1) a 2 − mod p. p ≡ Proof. Suppose a is a quadratic nonresidue mod p. The mod p residues 1, 2,...,p 1 are partitioned into pairs satisfying xy = a. In this case, − 1 (p 1) (p 1)! a 2 − (mod p). − ≡ On the other hand, if a is a quadratic residue, with a k2 (p k)2 (mod p), ≡ ≡ − apart from 0, k, the remaining p 3 elements of Zp can be partitioned into pairs satisfying xy ±= a. − 1 (p 3) 1 (p 1) (p 1)! k(p k)a 2 − a 2 − (mod p). − ≡ − ≡− Summarizing, we obtain a 1 (p 1) (p 1)! a 2 − (mod p). − ≡− p Note that by putting a = 1, we obtain Wilson’s theorem: (p 1)! 1 (mod p). a − ≡ − By comparison, we obtain a formula for p : a 1 (p 1) a 2 − (mod p). p ≡ 1 5.3 The Legendre symbol −p Theorem 5.6. Let p be an odd prime. 1 is a quadratic residue modulo p if and only if p 1 (mod 4). − ≡ − 2 p 1 p 1 Proof. ( ) If x 1 (mod p), then ( 1) 2 x − 1 (mod p) by Fermat’s ⇒ ≡− p 1 − ≡ ≡ little theorem. This means that −2 is even, and p 1 (mod 4). p 1 ≡ ( ) If p 1 (mod 4), the integer − is even. By Wilson’s theorem, ⇐ ≡ 2 p−1 p−1 p−1 p 1 2 2 2 2 − ! = j2 = j ( j) j (p j)=(p 1)! 1 (mod p). 2 · − ≡ · − − ≡− i=1 i=1 i=1 Y Y Y 2 p 1 The solutions of x 1 (mod p) are therefore x ( − )!. ≡− ≡± 2 Theorem 5.7. There are infinitely many primes of the form 4n +1. 42 Quadratic Residues Proof. Suppose there are only finitely many primes p1, p2,..., pr of the form 4n+1. Consider the product P = (2p p p )2 +1. 1 2 ··· r Note that P 1 (mod 4). Since P is greater than each of p , p ,..., p , it cannot ≡ 1 2 r be prime, and so must have a prime factor p different from p1, p2, ..., pr. But then modulo p, 1 is a square. By Theorem 5.6, p must be of the form 4n +1,a contradiction. − 5.3.1 The square roots of 1 (mod p) − Here are the square roots of 1 for the first 20 primes p of the form 4k +1: − p √ 1 p √ 1 p √ 1 p √ 1 p √ 1 − − − − − 5 2 13 5 17 4 29 12 37 6 41 ±9 53 ±23 61 ±11 73 ±27 89 ±34 97 ±22 101 ±10 109 ±33 113 ±15 137 ±37 149 ±44 157 ±28 173 ±80 181 ±19 193 ±81 ± ± ± ± ± In general, the square roots of 1 (mod p) can be found as nk for a quadratic nonresidue n modulo p.
Load more

Recommended publications
  • FACTORING COMPOSITES TESTING PRIMES Amin Witno
    WON Series in Discrete Mathematics and Modern Algebra Volume 3 FACTORING COMPOSITES TESTING PRIMES Amin Witno Preface These notes were used for the lectures in Math 472 (Computational Number Theory) at Philadelphia University, Jordan.1 The module was aborted in 2012, and since then this last edition has been preserved and updated only for minor corrections. Outline notes are more like a revision. No student is expected to fully benefit from these notes unless they have regularly attended the lectures. 1 The RSA Cryptosystem Sensitive messages, when transferred over the internet, need to be encrypted, i.e., changed into a secret code in such a way that only the intended receiver who has the secret key is able to read it. It is common that alphabetical characters are converted to their numerical ASCII equivalents before they are encrypted, hence the coded message will look like integer strings. The RSA algorithm is an encryption-decryption process which is widely employed today. In practice, the encryption key can be made public, and doing so will not risk the security of the system. This feature is a characteristic of the so-called public-key cryptosystem. Ali selects two distinct primes p and q which are very large, over a hundred digits each. He computes n = pq, ϕ = (p − 1)(q − 1), and determines a rather small number e which will serve as the encryption key, making sure that e has no common factor with ϕ. He then chooses another integer d < n satisfying de % ϕ = 1; This d is his decryption key. When all is ready, Ali gives to Beth the pair (n; e) and keeps the rest secret.
    [Show full text]
  • A Member of the Order of Minims, Was a Philosopher, Mathematician, and Scientist Who Wrote on Music, Mechanics, and Optics
    ON THE FORM OF MERSENNE NUMBERS PREDRAG TERZICH Abstract. We present a theorem concerning the form of Mersenne p numbers , Mp = 2 − 1 , where p > 3 . We also discuss a closed form expression which links prime numbers and natural logarithms . 1. Introduction. The friar Marin Mersenne (1588 − 1648), a member of the order of Minims, was a philosopher, mathematician, and scientist who wrote on music, mechanics, and optics . A Mersenne number is a number of p the form Mp = 2 − 1 where p is an integer , however many authors prefer to define a Mersenne number as a number of the above form but with p restricted to prime values . In this paper we shall use the second definition . Because the tests for Mersenne primes are relatively simple, the record largest known prime number has almost always been a Mersenne prime . 2. A theorem and closed form expression Theorem 2.1. Every Mersenne number Mp , (p > 3) is a number of the form 6 · k · p + 1 for some odd possitive integer k . Proof. In order to prove this we shall use following theorems : Theorem 2.2. The simultaneous congruences n ≡ n1 (mod m1) , n ≡ n2 (mod m2), .... ,n ≡ nk (mod mk) are only solvable when ni = nj (mod gcd(mi; mj)) , for all i and j . i 6= j . The solution is unique modulo lcm(m1; m2; ··· ; mk) . Proof. For proof see [1] Theorem 2.3. If p is a prime number, then for any integer a : ap ≡ a (mod p) . Date: January 4 , 2012. 1 2 PREDRAG TERZICH Proof.
    [Show full text]
  • The Pseudoprimes to 25 • 109
    MATHEMATICS OF COMPUTATION, VOLUME 35, NUMBER 151 JULY 1980, PAGES 1003-1026 The Pseudoprimes to 25 • 109 By Carl Pomerance, J. L. Selfridge and Samuel S. Wagstaff, Jr. Abstract. The odd composite n < 25 • 10 such that 2n_1 = 1 (mod n) have been determined and their distribution tabulated. We investigate the properties of three special types of pseudoprimes: Euler pseudoprimes, strong pseudoprimes, and Car- michael numbers. The theoretical upper bound and the heuristic lower bound due to Erdös for the counting function of the Carmichael numbers are both sharpened. Several new quick tests for primality are proposed, including some which combine pseudoprimes with Lucas sequences. 1. Introduction. According to Fermat's "Little Theorem", if p is prime and (a, p) = 1, then ap~1 = 1 (mod p). This theorem provides a "test" for primality which is very often correct: Given a large odd integer p, choose some a satisfying 1 <a <p - 1 and compute ap~1 (mod p). If ap~1 pi (mod p), then p is certainly composite. If ap~l = 1 (mod p), then p is probably prime. Odd composite numbers n for which (1) a"_1 = l (mod«) are called pseudoprimes to base a (psp(a)). (For simplicity, a can be any positive in- teger in this definition. We could let a be negative with little additional work. In the last 15 years, some authors have used pseudoprime (base a) to mean any number n > 1 satisfying (1), whether composite or prime.) It is well known that for each base a, there are infinitely many pseudoprimes to base a.
    [Show full text]
  • A Clasification of Known Root Prime-Generating
    Special properties of the first absolute Fermat pseudoprime, the number 561 Marius Coman Bucuresti, Romania email: [email protected] Abstract. Though is the first Carmichael number, the number 561 doesn’t have the same fame as the third absolute Fermat pseudoprime, the Hardy-Ramanujan number, 1729. I try here to repair this injustice showing few special properties of the number 561. I will just list (not in the order that I value them, because there is not such an order, I value them all equally as a result of my more or less inspired work, though they may or not “open a path”) the interesting properties that I found regarding the number 561, in relation with other Carmichael numbers, other Fermat pseudoprimes to base 2, with primes or other integers. 1. The number 2*(3 + 1)*(11 + 1)*(17 + 1) + 1, where 3, 11 and 17 are the prime factors of the number 561, is equal to 1729. On the other side, the number 2*lcm((7 + 1),(13 + 1),(19 + 1)) + 1, where 7, 13 and 19 are the prime factors of the number 1729, is equal to 561. We have so a function on the prime factors of 561 from which we obtain 1729 and a function on the prime factors of 1729 from which we obtain 561. Note: The formula N = 2*(d1 + 1)*...*(dn + 1) + 1, where d1, d2, ...,dn are the prime divisors of a Carmichael number, leads to interesting results (see the sequence A216646 in OEIS); the formula M = 2*lcm((d1 + 1),...,(dn + 1)) + 1 also leads to interesting results (see the sequence A216404 in OEIS).
    [Show full text]
  • Arxiv:1412.5226V1 [Math.NT] 16 Dec 2014 Hoe 11
    q-PSEUDOPRIMALITY: A NATURAL GENERALIZATION OF STRONG PSEUDOPRIMALITY JOHN H. CASTILLO, GILBERTO GARC´IA-PULGAR´IN, AND JUAN MIGUEL VELASQUEZ-SOTO´ Abstract. In this work we present a natural generalization of strong pseudoprime to base b, which we have called q-pseudoprime to base b. It allows us to present another way to define a Midy’s number to base b (overpseudoprime to base b). Besides, we count the bases b such that N is a q-probable prime base b and those ones such that N is a Midy’s number to base b. Furthemore, we prove that there is not a concept analogous to Carmichael numbers to q-probable prime to base b as with the concept of strong pseudoprimes to base b. 1. Introduction Recently, Grau et al. [7] gave a generalization of Pocklignton’s Theorem (also known as Proth’s Theorem) and Miller-Rabin primality test, it takes as reference some works of Berrizbeitia, [1, 2], where it is presented an extension to the concept of strong pseudoprime, called ω-primes. As Grau et al. said it is right, but its application is not too good because it is needed m-th primitive roots of unity, see [7, 12]. In [7], it is defined when an integer N is a p-strong probable prime base a, for p a prime divisor of N −1 and gcd(a, N) = 1. In a reading of that paper, we discovered that if a number N is a p-strong probable prime to base 2 for each p prime divisor of N − 1, it is actually a Midy’s number or a overpseu- doprime number to base 2.
    [Show full text]
  • Appendix a Tables of Fermat Numbers and Their Prime Factors
    Appendix A Tables of Fermat Numbers and Their Prime Factors The problem of distinguishing prime numbers from composite numbers and of resolving the latter into their prime factors is known to be one of the most important and useful in arithmetic. Carl Friedrich Gauss Disquisitiones arithmeticae, Sec. 329 Fermat Numbers Fo =3, FI =5, F2 =17, F3 =257, F4 =65537, F5 =4294967297, F6 =18446744073709551617, F7 =340282366920938463463374607431768211457, Fs =115792089237316195423570985008687907853 269984665640564039457584007913129639937, Fg =134078079299425970995740249982058461274 793658205923933777235614437217640300735 469768018742981669034276900318581864860 50853753882811946569946433649006084097, FlO =179769313486231590772930519078902473361 797697894230657273430081157732675805500 963132708477322407536021120113879871393 357658789768814416622492847430639474124 377767893424865485276302219601246094119 453082952085005768838150682342462881473 913110540827237163350510684586298239947 245938479716304835356329624224137217. The only known Fermat primes are Fo, ... , F4 • 208 17 lectures on Fermat numbers Completely Factored Composite Fermat Numbers m prime factor year discoverer 5 641 1732 Euler 5 6700417 1732 Euler 6 274177 1855 Clausen 6 67280421310721* 1855 Clausen 7 59649589127497217 1970 Morrison, Brillhart 7 5704689200685129054721 1970 Morrison, Brillhart 8 1238926361552897 1980 Brent, Pollard 8 p**62 1980 Brent, Pollard 9 2424833 1903 Western 9 P49 1990 Lenstra, Lenstra, Jr., Manasse, Pollard 9 p***99 1990 Lenstra, Lenstra, Jr., Manasse, Pollard
    [Show full text]
  • The Distribution of Pseudoprimes
    The Distribution of Pseudoprimes Matt Green September, 2002 The RSA crypto-system relies on the availability of very large prime num- bers. Tests for finding these large primes can be categorized as deterministic and probabilistic. Deterministic tests, such as the Sieve of Erastothenes, of- fer a 100 percent assurance that the number tested and passed as prime is actually prime. Despite their refusal to err, deterministic tests are generally not used to find large primes because they are very slow (with the exception of a recently discovered polynomial time algorithm). Probabilistic tests offer a much quicker way to find large primes with only a negligibal amount of error. I have studied a simple, and comparatively to other probabilistic tests, error prone test based on Fermat’s little theorem. Fermat’s little theorem states that if b is a natural number and n a prime then bn−1 ≡ 1 (mod n). To test a number n for primality we pick any natural number less than n and greater than 1 and first see if it is relatively prime to n. If it is, then we use this number as a base b and see if Fermat’s little theorem holds for n and b. If the theorem doesn’t hold, then we know that n is not prime. If the theorem does hold then we can accept n as prime right now, leaving a large chance that we have made an error, or we can test again with a different base. Chances improve that n is prime with every base that passes but for really big numbers it is cumbersome to test all possible bases.
    [Show full text]
  • Cullen Numbers with the Lehmer Property
    PROCEEDINGS OF THE AMERICAN MATHEMATICAL SOCIETY Volume 00, Number 0, Pages 000–000 S 0002-9939(XX)0000-0 CULLEN NUMBERS WITH THE LEHMER PROPERTY JOSE´ MAR´IA GRAU RIBAS AND FLORIAN LUCA Abstract. Here, we show that there is no positive integer n such that n the nth Cullen number Cn = n2 + 1 has the property that it is com- posite but φ(Cn) | Cn − 1. 1. Introduction n A Cullen number is a number of the form Cn = n2 + 1 for some n ≥ 1. They attracted attention of researchers since it seems that it is hard to find primes of this form. Indeed, Hooley [8] showed that for most n the number Cn is composite. For more about testing Cn for primality, see [3] and [6]. For an integer a > 1, a pseudoprime to base a is a compositive positive integer m such that am ≡ a (mod m). Pseudoprime Cullen numbers have also been studied. For example, in [12] it is shown that for most n, Cn is not a base a-pseudoprime. Some computer searchers up to several millions did not turn up any pseudo-prime Cn to any base. Thus, it would seem that Cullen numbers which are pseudoprimes are very scarce. A Carmichael number is a positive integer m which is a base a pseudoprime for any a. A composite integer m is called a Lehmer number if φ(m) | m − 1, where φ(m) is the Euler function of m. Lehmer numbers are Carmichael numbers; hence, pseudoprimes in every base. No Lehmer number is known, although it is known that there are no Lehmer numbers in certain sequences, such as the Fibonacci sequence (see [9]), or the sequence of repunits in base g for any g ∈ [2, 1000] (see [4]).
    [Show full text]
  • Generation of Pseudoprimes Section 1:Introduction
    Generation of Pseudoprimes Danielle Stewart Swenson College of Science and Engineering University of Minnesota [email protected] Section 1:Introduction: Number theory is a branch of mathematics that looks at the many properties of integers. The properties that are looked at in this paper are specifically related to pseudoprime numbers. Positive integers can be partitioned into three distinct sets. The unity, composites, and primes. It is much easier to prove that an integer is composite compared to proving primality. Fermat’s Little Theorem p If p is prime and a is any integer, then a − a is divisible by p. This theorem is commonly used to determine if an integer is composite. If a number does not pass this test, it is shown that the number must be composite. On the other hand, if a number passes this test, it does not prove this integer is prime (Anderson & Bell, 1997) . An example 5 would be to let p = 5 and let a = 2. Then 2 − 2 = 32 − 2 = 30 which is divisible by 5. Since p = 5 5 is prime, we can choose any a as a positive integer and a − a is divisible by 5. Now let p = 4 and 4 a = 2 . Then 2 − 2 = 14 which is not divisible by 4. Using this theorem, we can quickly see if a number fails, then it must be composite, but if it does not fail the test we cannot say that it is prime. This is where pseudoprimes come into play. If we know that a number n is composite but n n divides a − a for some positive integer a, we call n a pseudoprime.
    [Show full text]
  • On Types of Elliptic Pseudoprimes
    journal of Groups, Complexity, Cryptology Volume 13, Issue 1, 2021, pp. 1:1–1:33 Submitted Jan. 07, 2019 https://gcc.episciences.org/ Published Feb. 09, 2021 ON TYPES OF ELLIPTIC PSEUDOPRIMES LILJANA BABINKOSTOVA, A. HERNANDEZ-ESPIET,´ AND H. Y. KIM Boise State University e-mail address: [email protected] Rutgers University e-mail address: [email protected] University of Wisconsin-Madison e-mail address: [email protected] Abstract. We generalize Silverman's [31] notions of elliptic pseudoprimes and elliptic Carmichael numbers to analogues of Euler-Jacobi and strong pseudoprimes. We inspect the relationships among Euler elliptic Carmichael numbers, strong elliptic Carmichael numbers, products of anomalous primes and elliptic Korselt numbers of Type I, the former two of which we introduce and the latter two of which were introduced by Mazur [21] and Silverman [31] respectively. In particular, we expand upon the work of Babinkostova et al. [3] on the density of certain elliptic Korselt numbers of Type I which are products of anomalous primes, proving a conjecture stated in [3]. 1. Introduction The problem of efficiently distinguishing the prime numbers from the composite numbers has been a fundamental problem for a long time. One of the first primality tests in modern number theory came from Fermat Little Theorem: if p is a prime number and a is an integer not divisible by p, then ap−1 ≡ 1 (mod p). The original notion of a pseudoprime (sometimes called a Fermat pseudoprime) involves counterexamples to the converse of this theorem. A pseudoprime to the base a is a composite number N such aN−1 ≡ 1 mod N.
    [Show full text]
  • Arxiv:2010.10014V1 [Math.NT] 20 Oct 2020 As Suethat Assume Where Where Nqeydtrie.W Altesqec ( Sequence the Call We Determined
    CULLEN NUMBERS IN SUMS OF TERMS OF RECURRENCE SEQUENCE N.K. MEHER AND S. S. ROUT Abstract. Let (Un)n≥0 be a fixed linear recurrence sequence of integers with order at least two, and for any positive integer ℓ, let ℓ 2ℓ + 1 be a Cullen number. Recently in · [3], generalized Cullen numbers in terms of linear recurrence sequence (Un)n≥0 under certain weak assumptions has been studied. However, there is an error in their proof. In this paper, we generalize their work, as well as our result fixes their error. In particular, for a given polynomial Q(x) Z[x] we consider the Diophantine equation ℓ ∈ Un1 + + Unk = ℓ x + Q(x), and prove effective finiteness result. Furthermore, we demonstrate··· our method· by an example. 1. Introduction Let r be a positive integer. The linear recurrence sequence (Un)n≥0 of order r is defined as U = a U + + a U (1.1) n 1 n−1 ··· r n−r where a ,...,a Z with a = 0 and U ,...,U are integers not all zero. 1 r ∈ r 6 0 r−1 The characteristic polynomial of Un is defined by t f(x) := xr a xr−1 a = (x α )mi Z[X] (1.2) − 1 −···− r − i ∈ i=1 Y arXiv:2010.10014v1 [math.NT] 20 Oct 2020 where α1,...,αt are distinct algebraic numbers and m1,...,mt are positive integers. Then Un (see e.g. Theorem C1 in part C of [14]) has a nice representation of the form t U = f (n)αn for all n 0, (1.3) n i i ≥ i=1 X where f (x) is a polynomial of degree m 1 (i = 1,...,t) and this representation is i i − uniquely determined.
    [Show full text]
  • Some Thoughts on Pseudoprimes
    SOME THOUGHTS ON PSEUDOPRIMES CARL POMERANCE AND SAMUEL S. WAGSTAFF, JR. Abstract. We consider several problems about pseudoprimes. First, we look at the issue of their distribution in residue classes. There is a literature on this topic in the case that the residue class is coprime to the modulus. Here we provide some robust statistics in both these cases and the general case. In particular we tabulate all even pseudoprimes to 1016. Second, we prove a recent conjec- ture of Ordowski: the set of integers n which are a pseudoprime to some base which is a proper divisor of n has an asymptotic density. In memory of Aleksandar Ivi´c(1949{2020) 1. Introduction Fermat's \little" theorem is part of the basic landscape in elementary number theory. It asserts that if p is a prime, then ap ≡ a (mod p) for every prime p. One interest in this result is that for a given pair a; p, it is not hard computationally to check if the congruence holds. So, if the congruence fails, we have proved that the modulus p is not prime. A pseudoprime is a composite number n with 2n ≡ 2 (mod n), and more generally, a pseudoprime base a is a composite number n with an ≡ a (mod n). Pseudoprimes exist, in fact, there are composite numbers n which are pseudoprimes to every base a, the first 3 examples being 561, 1105, and 1729. These are the Carmichael numbers. Named after Carmichael [7] who published the first few examples in 1910, they were actually anticipated by quite a few years by Simerkaˇ [26].
    [Show full text]