DOCSLIB.ORG

Cullen Numbers with the Lehmer Property 131

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Cullen Numbers with the Lehmer Property 131 PROCEEDINGS OF THE AMERICAN MATHEMATICAL SOCIETY Volume 140, Number 1, January 2012, Pages 129–134 S 0002-9939(2011)10899-2 Article electronically published on May 20, 2011 CULLEN NUMBERS WITH THE LEHMER PROPERTY JOSEMAR´ ´IA GRAU RIBAS AND FLORIAN LUCA (Communicated by Matthew A. Papanikolas) Abstract. Here, we show that there is no positive integer n such that the n nth Cullen number Cn = n2 + 1 has the property that it is composite but φ(Cn) | Cn − 1. 1. Introduction n A Cullen number is a number of the form Cn = n2 +1 forsome n ≥ 1. They attracted the attention of researchers since it seems that it is hard to find primes of this form. Indeed, Hooley [8] showed that for most n the number Cn is composite. For more about testing Cn for primality, see [3] and [6]. For an integer a>1, a pseudoprime to base a is a composite positive integer m such that am ≡ a (mod m). Pseudoprime Cullen numbers have also been studied. For example, in [12], it is shown that for most n, Cn is not a base a pseudoprime. Some computer searches up to several millions did not turn up any pseudoprime Cn to any base. Thus, it would seem that Cullen numbers which are pseudoprimes are very scarce. A Carmichael number is a positive integer m which is a base a pseudoprime for any a. A composite integer m is called a Lehmer number if φ(m) | m − 1, where φ(m) is the Euler function of m. Lehmer numbers are Carmichael numbers, hence, pseudoprimes in every base. No Lehmer number is known, although it is known that there are no Lehmer numbers in certain sequences, such as the Fibonacci sequence (see [9]), or the sequence of repunits in base g for any g ∈ [2, 1000] (see [4]). For other results on Lehmer numbers, see [1], [2], [11], [13], [14]. Our result here is that there is no Cullen number with the Lehmer property. Hence, if φ(Cn) | Cn − 1, then Cn is prime. Theorem 1. Let Cn be the nth Cullen number. If φ(Cn) | Cn − 1,thenCn is prime. 2. Proof of Theorem 1 Assume that n ≥ 30, that φ(Cn) | Cn − 1, but that Cn is not prime. Then Cn is square-free. Write k Cn = pi. i=1 Received by the editors October 14, 2010 and, in revised form, November 11, 2010. 2010 Mathematics Subject Classification. Primary 11A05; Secondary 11N25, 11A07. c 2011 American Mathematical Society 129 Licensed to University de Oviedo. Prepared on Thu Nov 15 06:32:23 EST 2012 for download from IP 156.35.62.18/156.35.192.4. License or copyright restrictions may apply to redistribution; see http://www.ams.org/journal-terms-of-use 130 JOSEMAR´ ´IA GRAU RIBAS AND FLORIAN LUCA So, k n (pi − 1) | n2 . i=1 α n2 Write n =2 n1,wheren1 is odd. Then Cn = n12 +1,wheren2 := α + n.Letp np be any prime factor of Cn.Sincep − 1 | Cn − 1, it follows that p = mp2 +1for some odd divisor mp of n and some np with log n n ≤ n = n + α ≤ n + . p 2 log 2 Letusfirstshowthatinfactnp ≤ n. Assume that np >n. Then, n (1) Cn = n2 +1=pλ, n+1 for some positive integer λ,wherep ≥ 2 +1.Observethatλ>1 because Cn is not prime. Now C n2n +1 λ = n ≤ <n. p 2n+1 +1 Reducing equation (1) modulo 2n,wegetthat2n | λ − 1, so 2n ≤ λ − 1 <n,which is false for any n>1. Hence, np ≤ n. np Next we look at mp.Ifmp =1,thenp =2 + 1 is a Fermat prime. Hence, γp γp np =2 for some nonnegative integer γ. Since 2 = np ≤ n,wegetthatγp < (log n)/(log 2). Hence, the prime p can take at most 1+(log n)/(log 2) values. Next, observe that since (2) mp | n, p|Cn it follows that the number of prime factors p of Cn such that mp > 1is≤ (log n)/(log 3). Hence, we have arrived at the bound log n log n (3) k<1+ + < 1+2.4logn. log 2 log 3 We next bound np.PutN := n/ log n, and consider pairs (a, b) of integers in {0, 1,...,N}.Thereare(N +1)2 >n/log n such pairs. For each such pair, 3/2 1/2 consider the expression L(a, b):=an + bnp ∈ [0, 2n /(log n) ]. Thus, there exist two pairs (a, b) =( a1,b1) such that 2n3/2/(log n)1/2 |(a − a )n +(b − b )n | = |L(a, b) − L(a ,b )|≤ < 3(n log n)1/2. 1 1 p 1 1 n/ log n − 1 Put u := a − a1,v:= b − b1.Then(u, v) =(0 , 0) and 1/2 |un + vnp| < 3(n log n) . We may also assume that u and v are coprime, for if not, we replace the pair (u, v) by the pair (u1,v1), where d := gcd(u, v),u1 := u/d, v1 := v/d,andthe 1/2 1/2 properties that max{|u1|, |v1|} ≤ (n/ log n) and |u1n + v1np| < 3(n log n) are still fulfilled. Finally, up to replacing the pair (u, v) by the pair (−u, −v), we may assume that u ≥ 0. Licensed to University de Oviedo. Prepared on Thu Nov 15 06:32:23 EST 2012 for download from IP 156.35.62.18/156.35.192.4. License or copyright restrictions may apply to redistribution; see http://www.ams.org/journal-terms-of-use CULLEN NUMBERS WITH THE LEHMER PROPERTY 131 n np Now consider the congruences n2 ≡−1(modp)andmp2 ≡−1(modp). Observe that 2,n,mp are all three coprime to p. Raise the first congruence to u and the second to v and multiply them to get u v nu+npv ≡ − u+v n mp2 ( 1) (mod p). Hence, p divides the numerator of the rational number u v nu+npv − − u+v (4) A := n mp2 ( 1) . α Let us show that A = 0. Assume that A = 0. Recall that n =2n1.Thus, expression (4) is u v (n+α)u+npv − − u+v A = n1 mp2 ( 1) =0. u v ≥ Then n1 mp =1,(n + α)u + vnp =0,andu + v is even. Since u 0, it follows that v ≤ 0. Put w := −v,sow ≥ 0. There exists an odd positive integer ρ such that w u n1 = ρ and mp = ρ .Sinceu and v are coprime and u + v is even, it follows that u and v are both odd. Hence, w is also odd. Also, since mp divides n1, it follows that u ≤ w.Wenowget α w (2 ρ + α)u − wnp =0, so u w = α w . np 2 ρ + α α u α u The left-hand side is ≥ u/n = u/(2 ρ ), because np ≤ n =2 ρ . Hence, we get that u ≤ u w u ≤ w ≤ w α u = α w leading to u w α w . 2 ρ np 2 ρ + α ρ ρ +(α/2 ) ρ For ρ ≥ 3, the function s → s/ρs is decreasing for s ≥ 0, so the above inequality together with the fact that u ≤ w implies that u = w (sobothare1becausethey are coprime), and that all the intermediary inequalities are also equalities. This means that u = w =1,α =0andn = np, but all this is possible only when Cn = p, which is not allowed. If ρ =1,wethengetthatn1 = 1, so every prime factor p of Cn is a Fermat prime. Hence, we get k γp γp n2 2 i ∈ 2 i Cn =2 +1= (2 +1)= 2 i I , i=1 I⊆{1,...,k} and k ≥ 2, but this is impossible by the unicity of the binary expansion of Cn. Thus, it is not possible for the expression A shown at (4) to be zero. The size of the numerator of A is at most | | | | 1/2 1/2 1+ nu+npv u v ≤ 1+3(n log n) 2(n/ log n) 2 n mp 2 n 1/2 1/2 1/2 < 21+3(n log n) +(2/ log 2)(n log n) < 26(n log n) . In the above chain of inequalities, we used the fact that 3 + 2/ log 2 < 5.9, together with the fact that (n log n)1/2 > 10 for n ≥ 30. Thus, for n ≥ 30, we have that the inequality 1/2 (5) p<26(n log n) holds for all prime factors p of Cn. Licensed to University de Oviedo. Prepared on Thu Nov 15 06:32:23 EST 2012 for download from IP 156.35.62.18/156.35.192.4. License or copyright restrictions may apply to redistribution; see http://www.ams.org/journal-terms-of-use 132 JOSEMAR´ ´IA GRAU RIBAS AND FLORIAN LUCA Thus, we get the inequality k k n 6(n log n)1/2 6k(n log n)1/2 2 <Cn = pi < 2 =2 , i=1 i=1 leading to n1/2 (6) k> . 6(log n)1/2 Comparing estimates (3) and (6), we get n1/2 < 1+2.4logn, 6(log n)1/2 implying that n<6 × 105. It remains to lower this bound. We first lower it to n<93000. Indeed, first 5 2γ note that since n<6 × 10 , it follows that if p = Fγ =2 + 1 is a Fermat prime dividing Cn,thenγ ≤ 18. The only such Fermat primes are for γ ∈{0, 1, 2, 3, 4}. Furthermore, (log n)/(log 3) ≤ log(6 × 105)/(log 3) = 12.1104 ...
Load more

Recommended publications
  • On Cullen Numbers Which Are Both Riesel and Sierpiński Numbers
    View metadata, citation and similar papers at core.ac.uk brought to you by CORE provided by Elsevier - Publisher Connector Journal of Number Theory 132 (2012) 2836–2841 Contents lists available at SciVerse ScienceDirect Journal of Number Theory www.elsevier.com/locate/jnt On Cullen numbers which are both Riesel and Sierpinski´ numbers ∗ Pedro Berrizbeitia a, J.G. Fernandes a, ,MarcosJ.Gonzáleza,FlorianLucab, V. Janitzio Mejía Huguet c a Departamento de Matemáticas, Universidad Simón Bolívar, Caracas 1080-A, Venezuela b Instituto de Matemáticas, Universidad Nacional Autónoma de México, C.P. 58089, Morelia, Michoacán, Mexico c Departamento de Ciencias Básicas, Universidad Autónoma Metropolitana-Azcapotzalco, Av. San Pablo #180, Col. Reynosa Tamaulipas, Azcapotzalco, 02200, México DF, Mexico article info abstract Article history: We describe an algorithm to determine whether or not a given Received 27 January 2012 system of congruences is satisfied by Cullen numbers. We use Revised 21 May 2012 this algorithm to prove that there are infinitely many Cullen Accepted 21 May 2012 numbers which are both Riesel and Sierpinski.´ (Such numbers Available online 3 August 2012 should be discarded if you are searching prime numbers with Communicated by David Goss Proth’s theorem.) Keywords: © 2012 Elsevier Inc. All rights reserved. Cullen numbers Covering congruences Sierpinski´ numbers Riesel numbers 1. Introduction n The numbers Cn = n2 + 1 where introduced, in 1905, by the Reverend J. Cullen [1] as a particular n n case of the Proth family k2 + 1, where k = n. The analogous numbers Wn = n2 − 1 where intro- duced as far as we know, in 1917, by Cunningham and Woodall [3].
    [Show full text]
  • The Pseudoprimes to 25 • 109
    MATHEMATICS OF COMPUTATION, VOLUME 35, NUMBER 151 JULY 1980, PAGES 1003-1026 The Pseudoprimes to 25 • 109 By Carl Pomerance, J. L. Selfridge and Samuel S. Wagstaff, Jr. Abstract. The odd composite n < 25 • 10 such that 2n_1 = 1 (mod n) have been determined and their distribution tabulated. We investigate the properties of three special types of pseudoprimes: Euler pseudoprimes, strong pseudoprimes, and Car- michael numbers. The theoretical upper bound and the heuristic lower bound due to Erdös for the counting function of the Carmichael numbers are both sharpened. Several new quick tests for primality are proposed, including some which combine pseudoprimes with Lucas sequences. 1. Introduction. According to Fermat's "Little Theorem", if p is prime and (a, p) = 1, then ap~1 = 1 (mod p). This theorem provides a "test" for primality which is very often correct: Given a large odd integer p, choose some a satisfying 1 <a <p - 1 and compute ap~1 (mod p). If ap~1 pi (mod p), then p is certainly composite. If ap~l = 1 (mod p), then p is probably prime. Odd composite numbers n for which (1) a"_1 = l (mod«) are called pseudoprimes to base a (psp(a)). (For simplicity, a can be any positive in- teger in this definition. We could let a be negative with little additional work. In the last 15 years, some authors have used pseudoprime (base a) to mean any number n > 1 satisfying (1), whether composite or prime.) It is well known that for each base a, there are infinitely many pseudoprimes to base a.
    [Show full text]
  • Composite Numbers That Give Valid RSA Key Pairs for Any Coprime P
    information Article Composite Numbers That Give Valid RSA Key Pairs for Any Coprime p Barry Fagin ID Department of Computer Science, US Air Force Academy, Colorado Springs, CO 80840, USA; [email protected]; Tel.: +1-719-339-4514 Received: 13 August 2018; Accepted: 25 August 2018; Published: 28 August 2018 Abstract: RSA key pairs are normally generated from two large primes p and q. We consider what happens if they are generated from two integers s and r, where r is prime, but unbeknownst to the user, s is not. Under most circumstances, the correctness of encryption and decryption depends on the choice of the public and private exponents e and d. In some cases, specific (s, r) pairs can be found for which encryption and decryption will be correct for any (e, d) exponent pair. Certain s exist, however, for which encryption and decryption are correct for any odd prime r - s. We give necessary and sufficient conditions for s with this property. Keywords: cryptography; abstract algebra; RSA; computer science education; cryptography education MSC: [2010] 11Axx 11T71 1. Notation and Background Consider the RSA public-key cryptosystem and its operations of encryption and decryption [1]. Let (p, q) be primes, n = p ∗ q, f(n) = (p − 1)(q − 1) denote Euler’s totient function and (e, d) the ∗ Z encryption/decryption exponent pair chosen such that ed ≡ 1. Let n = Un be the group of units f(n) Z mod n, and let a 2 Un. Encryption and decryption operations are given by: (ae)d ≡ (aed) ≡ (a1) ≡ a mod n We consider the case of RSA encryption and decryption where at least one of (p, q) is a composite number s.
    [Show full text]
  • The Distribution of Pseudoprimes
    The Distribution of Pseudoprimes Matt Green September, 2002 The RSA crypto-system relies on the availability of very large prime num- bers. Tests for finding these large primes can be categorized as deterministic and probabilistic. Deterministic tests, such as the Sieve of Erastothenes, of- fer a 100 percent assurance that the number tested and passed as prime is actually prime. Despite their refusal to err, deterministic tests are generally not used to find large primes because they are very slow (with the exception of a recently discovered polynomial time algorithm). Probabilistic tests offer a much quicker way to find large primes with only a negligibal amount of error. I have studied a simple, and comparatively to other probabilistic tests, error prone test based on Fermat’s little theorem. Fermat’s little theorem states that if b is a natural number and n a prime then bn−1 ≡ 1 (mod n). To test a number n for primality we pick any natural number less than n and greater than 1 and first see if it is relatively prime to n. If it is, then we use this number as a base b and see if Fermat’s little theorem holds for n and b. If the theorem doesn’t hold, then we know that n is not prime. If the theorem does hold then we can accept n as prime right now, leaving a large chance that we have made an error, or we can test again with a different base. Chances improve that n is prime with every base that passes but for really big numbers it is cumbersome to test all possible bases.
    [Show full text]
  • Cullen Numbers with the Lehmer Property
    PROCEEDINGS OF THE AMERICAN MATHEMATICAL SOCIETY Volume 00, Number 0, Pages 000–000 S 0002-9939(XX)0000-0 CULLEN NUMBERS WITH THE LEHMER PROPERTY JOSE´ MAR´IA GRAU RIBAS AND FLORIAN LUCA Abstract. Here, we show that there is no positive integer n such that n the nth Cullen number Cn = n2 + 1 has the property that it is com- posite but φ(Cn) | Cn − 1. 1. Introduction n A Cullen number is a number of the form Cn = n2 + 1 for some n ≥ 1. They attracted attention of researchers since it seems that it is hard to find primes of this form. Indeed, Hooley [8] showed that for most n the number Cn is composite. For more about testing Cn for primality, see [3] and [6]. For an integer a > 1, a pseudoprime to base a is a compositive positive integer m such that am ≡ a (mod m). Pseudoprime Cullen numbers have also been studied. For example, in [12] it is shown that for most n, Cn is not a base a-pseudoprime. Some computer searchers up to several millions did not turn up any pseudo-prime Cn to any base. Thus, it would seem that Cullen numbers which are pseudoprimes are very scarce. A Carmichael number is a positive integer m which is a base a pseudoprime for any a. A composite integer m is called a Lehmer number if φ(m) | m − 1, where φ(m) is the Euler function of m. Lehmer numbers are Carmichael numbers; hence, pseudoprimes in every base. No Lehmer number is known, although it is known that there are no Lehmer numbers in certain sequences, such as the Fibonacci sequence (see [9]), or the sequence of repunits in base g for any g ∈ [2, 1000] (see [4]).
    [Show full text]
  • Fibonacci S-Cullen and S-Woodall Numbers
    1 2 Journal of Integer Sequences, Vol. 18 (2015), 3 Article 15.1.4 47 6 23 11 Fibonacci s-Cullen and s-Woodall Numbers Diego Marques Departamento de Matem´atica Universidade de Bras´ılia Bras´ılia, Brazil [email protected] Ana Paula Chaves Instituto de Matem´atica e Estat´ıstica Universidade Federal de Goi´as Goi´as, Brazil [email protected] Abstract m The m-th Cullen number Cm is a number of the form m2 + 1 and the m-th m Woodall number Wm has the form m2 1. In 2003, Luca and St˘anic˘aproved that − the largest Fibonacci number in the Cullen sequence is F4 = 3 and that F1 = F2 = 1 are the largest Fibonacci numbers in the Woodall sequence. Very recently, the second m author proved that, for any given s> 1, the equation Fn = ms 1 has only finitely many solutions, and they are effectively computable. In this note,± we shall provide the explicit form of the possible solutions. 1 Introduction m A Cullen number is a number of the form m2 +1 (denoted by Cm), where m is a nonnegative integer. This sequence was introduced in 1905 by Father J. Cullen [2] and it was mentioned in the well-known book of Guy [5, Section B20]. These numbers gained great interest in 1976, when Hooley [7] showed that almost all Cullen numbers are composite. However, despite being very scarce, it is still conjectured that there are infinitely many Cullen primes. 1 In a similar way, a Woodall number (also called Cullen number of the second kind) is m a positive integer of the form m2 1 (denoted by Wm).
    [Show full text]
  • Elementary Proof That an Infinite Number of Cullen Primes Exist
    Elementary Proof that an Infinite Number of Cullen Primes Exist Stephen Marshall 21 February 2017 Abstract This paper presents a complete proof of the Cullen Primes are infinite, even though only 16 of them have been found as of 21 Feb 2017. We use a proof found in Reference 1, that if p > 1 and d > 0 are integers, that p and p+ d are both primes if and only if for integer m: m = (p-1)!( + ) + + We use this proof for d = to prove the infinitude of Cullen prime numbers. The author would like to give many thanks to the authors of 1001 Problems in Classical Number Theory, Jean-Marie De Koninck and Armel Mercier, 2004, Exercise Number 161 (see Reference 1). The proof provided in Exercise 6 is the key to making this paper on the Cullen Prime Conjecture possible. Introduction James Cullen, (19 April 1867 – 7 December 1933) was born at Drogheda, County Louth, Ireland. At first he was educated privately, then he studied pure and applied mathematics at the Trinity College, Dublin for a while, he went to 1 Mungret College, Limerick, before deciding to become a Jesuit, studying in England in Mansera House, and St. Mary's, and was ordained as a priest on 31 July 1901. In 1905, he taught mathematics at Mount St. Mary's College in Derbyshire and published his finding of what is now known as Cullen numbers in number theory. In number theory of prime numbers, a Cullen number is a natural number of the form n Cn = n2 + 1 Cullen numbers were first studied by James Cullen in 1905.
    [Show full text]
  • Collection of Problems on Smarandache Notions", by Charles Ashbacher
    Y ---~ y (p + 1,5(p + 1)) p p + 1 = Ex-b:u.s "1:T::n.i."'I7ex-lI!d.~ Pre._ •Va.:U. ~996 Collect;io:n. of Problern..s O:n. Srn..a.ra:n.dache N"o"i;io:n.s Charles Ashbacher Decisio:n.rn..a.rk 200 2:n.d A:v-e. SE Cedar Rapids, IA. 52401 U"SA Erhu.s U":n.i"V"ersity Press Vall 1996 © Cha.rles Ashbacher & Erhu.s U":n.i"V"ersity Press The graph on the first cover belongs to: M. Popescu, P. Popescu, V. Seleacu, "About the behaviour of some new functions in the number theory" (to appear this year) . "Collection of Problems on Smarandache Notions", by Charles Ashbacher Copyright 1996 by Charles Ashbacher and Erhus University Press ISBN 1-879585-50-2 Standard Address Number 297-5092 Printed in the United States of America Preface The previous volume in this series, An Introduction to the Smarandache Function, also by Erhus Cniversity Press, dealt almost exclusively with some "basic" consequences of the Smarandache function. In this one, the universe of discourse has been expanded to include a great many other things A Smarandache notion is an element of an ill-defined set, sometimes being almost an accident oflabeling. However, that takes nothing away from the interest and excitement that can be generated by exploring the consequences of such a problem It is a well-known cliche among writers that the best novels are those where the author does not know what is going to happen until that point in the story is actually reached.
    [Show full text]
  • On Types of Elliptic Pseudoprimes
    journal of Groups, Complexity, Cryptology Volume 13, Issue 1, 2021, pp. 1:1–1:33 Submitted Jan. 07, 2019 https://gcc.episciences.org/ Published Feb. 09, 2021 ON TYPES OF ELLIPTIC PSEUDOPRIMES LILJANA BABINKOSTOVA, A. HERNANDEZ-ESPIET,´ AND H. Y. KIM Boise State University e-mail address: [email protected] Rutgers University e-mail address: [email protected] University of Wisconsin-Madison e-mail address: [email protected] Abstract. We generalize Silverman's [31] notions of elliptic pseudoprimes and elliptic Carmichael numbers to analogues of Euler-Jacobi and strong pseudoprimes. We inspect the relationships among Euler elliptic Carmichael numbers, strong elliptic Carmichael numbers, products of anomalous primes and elliptic Korselt numbers of Type I, the former two of which we introduce and the latter two of which were introduced by Mazur [21] and Silverman [31] respectively. In particular, we expand upon the work of Babinkostova et al. [3] on the density of certain elliptic Korselt numbers of Type I which are products of anomalous primes, proving a conjecture stated in [3]. 1. Introduction The problem of efficiently distinguishing the prime numbers from the composite numbers has been a fundamental problem for a long time. One of the first primality tests in modern number theory came from Fermat Little Theorem: if p is a prime number and a is an integer not divisible by p, then ap−1 ≡ 1 (mod p). The original notion of a pseudoprime (sometimes called a Fermat pseudoprime) involves counterexamples to the converse of this theorem. A pseudoprime to the base a is a composite number N such aN−1 ≡ 1 mod N.
    [Show full text]
  • Arxiv:2010.10014V1 [Math.NT] 20 Oct 2020 As Suethat Assume Where Where Nqeydtrie.W Altesqec ( Sequence the Call We Determined
    CULLEN NUMBERS IN SUMS OF TERMS OF RECURRENCE SEQUENCE N.K. MEHER AND S. S. ROUT Abstract. Let (Un)n≥0 be a fixed linear recurrence sequence of integers with order at least two, and for any positive integer ℓ, let ℓ 2ℓ + 1 be a Cullen number. Recently in · [3], generalized Cullen numbers in terms of linear recurrence sequence (Un)n≥0 under certain weak assumptions has been studied. However, there is an error in their proof. In this paper, we generalize their work, as well as our result fixes their error. In particular, for a given polynomial Q(x) Z[x] we consider the Diophantine equation ℓ ∈ Un1 + + Unk = ℓ x + Q(x), and prove effective finiteness result. Furthermore, we demonstrate··· our method· by an example. 1. Introduction Let r be a positive integer. The linear recurrence sequence (Un)n≥0 of order r is defined as U = a U + + a U (1.1) n 1 n−1 ··· r n−r where a ,...,a Z with a = 0 and U ,...,U are integers not all zero. 1 r ∈ r 6 0 r−1 The characteristic polynomial of Un is defined by t f(x) := xr a xr−1 a = (x α )mi Z[X] (1.2) − 1 −···− r − i ∈ i=1 Y arXiv:2010.10014v1 [math.NT] 20 Oct 2020 where α1,...,αt are distinct algebraic numbers and m1,...,mt are positive integers. Then Un (see e.g. Theorem C1 in part C of [14]) has a nice representation of the form t U = f (n)αn for all n 0, (1.3) n i i ≥ i=1 X where f (x) is a polynomial of degree m 1 (i = 1,...,t) and this representation is i i − uniquely determined.
    [Show full text]
  • Independence of the Miller-Rabin and Lucas Probable Prime Tests
    Independence of the Miller-Rabin and Lucas Probable Prime Tests Alec Leng Mentor: David Corwin March 30, 2017 1 Abstract In the modern age, public-key cryptography has become a vital component for se- cure online communication. To implement these cryptosystems, rapid primality test- ing is necessary in order to generate keys. In particular, probabilistic tests are used for their speed, despite the potential for pseudoprimes. So, we examine the commonly used Miller-Rabin and Lucas tests, showing that numbers with many nonwitnesses are usually Carmichael or Lucas-Carmichael numbers in a specific form. We then use these categorizations, through a generalization of Korselt’s criterion, to prove that there are no numbers with many nonwitnesses for both tests, affirming the two tests’ relative independence. As Carmichael and Lucas-Carmichael numbers are in general more difficult for the two tests to deal with, we next search for numbers which are both Carmichael and Lucas-Carmichael numbers, experimentally finding none less than 1016. We thus conjecture that there are no such composites and, using multi- variate calculus with symmetric polynomials, begin developing techniques to prove this. 2 1 Introduction In the current information age, cryptographic systems to protect data have become a funda- mental necessity. With the quantity of data distributed over the internet, the importance of encryption for protecting individual privacy has greatly risen. Indeed, according to [EMC16], cryptography is allows for authentication and protection in online commerce, even when working with vital financial information (e.g. in online banking and shopping). Now that more and more transactions are done through the internet, rather than in person, the importance of secure encryption schemes is only growing.
    [Show full text]
  • Idempotent Integers: the Complete Class of Numbers N = ¯P¯Q That Work
    Idempotent Integers: The complete class of numbers n =p ¯q¯ that work correctly in RSA A Mathematical Curiosity Barry Fagin Senior Associate Dean of the Faculty Professor of Computer Science United States Air Force Academy 2021 Conference on Geometry, Algebraic Number Theory and Applications Barry Fagin (A Mathematical Curiosity) Take two positive numbers p¯; q¯. Compute n =p ¯q¯. Pick e; d such that ed ≡ 1. (¯p−1)(¯q−1) What are the conditions on p¯; q¯ such that s.t. 1 ed ? 8a 2 Zn; 8e; d ed ≡ ; a ≡ a (¯p−1)(¯q−1) n In other words, what are the conditions on p¯; q¯ such that RSA works correctly? Note: not asking about security. Barry Fagin (A Mathematical Curiosity) 70's: p¯; q¯ prime meets the conditions. If suciently large, system is believed to be secure due to computational intractability of factoring. 90's: Some Carmichael numbers C also can be factored into p¯; q¯ that meet the required conditions. This work (since 2018) gives necessary and sucient conditions, shows examples. Barry Fagin (A Mathematical Curiosity) Cut to the chase Answer is: p¯; q¯ square free, gcd(p¯; q¯) = 1 such that (¯p − 1)(¯q − 1) ≡ 0 λ(n) where λ denotes the Carmichael lambda function. Barry Fagin (A Mathematical Curiosity) From n's point of view Equivalently, a square-free n can be factored into n =p ¯q¯ such that (¯p − 1)(¯q − 1) ≡ 0 λ(n) In that case, we say that n has an idempotent factorization, and that n is an idempotent integer. Barry Fagin (A Mathematical Curiosity) The rst 8 square-free n with m ≥ 3 factors that admit idempotent factorizations are shown below: n p or p¯ q¯ 30 5 6 42 7 6 66 11 6 78 13 6 102 17 6 105 7 15 114 19 6 130 13 10 Table: Values of n that admit idempotent factorizations Barry Fagin (A Mathematical Curiosity) Idempotent factorizations where one of p¯; q¯ is prime and one is composite are semi-composite.
    [Show full text]