Skip to main content

Frobenius pseudoprime









Frobenius pseudoprime


From Wikipedia, the free encyclopedia

Jump to navigation
Jump to search


In number theory, a Frobenius pseudoprime is a pseudoprime that passes a specific probable prime test described by Jon Grantham in a 1998 preprint and published in 2000.
[1][2]
It has been studied by other authors for the case of quadratic polynomials.
[3][4]




Contents






  • 1 Frobenius pseudoprimes w.r.t. quadratic polynomials


  • 2 Example


  • 3 Relations to other pseudoprimes


  • 4 Alternate formulations


  • 5 Strong Frobenius pseudoprimes


  • 6 Properties


  • 7 See also


  • 8 References


  • 9 External links





Frobenius pseudoprimes w.r.t. quadratic polynomials[edit]


Frobenius pseudoprimes are defined with respect to a fixed monic polynomial. The case of a degree-2 (quadratic) polynomial x2−Px+Q{displaystyle scriptstyle x^{2}-Px+Q}scriptstyle x^{2}-Px+Q, where D=P2−4Q{displaystyle scriptstyle D=P^{2}-4Q}scriptstyle D=P^{2}-4Q is not a square, is common and can be expressed in terms of Lucas sequences Un(P,Q){displaystyle U_{n}(P,Q)}U_{n}(P,Q) and Vn(P,Q){displaystyle V_{n}(P,Q)}V_{n}(P,Q), leading to fast implementations for testing pseudoprimality.


A composite number n is a Frobenius (P,Q){displaystyle (P,Q)}(P,Q) pseudoprime if and only if gcd(n,2QD)=1{displaystyle textstyle gcd(n,2QD)=1}textstyle gcd(n,2QD)=1,


(1)Un−k(P,Q)≡0(modn){displaystyle (1)qquad U_{n-k}(P,Q)equiv 0{pmod {n}}}(1)qquad U_{n-k}(P,Q)equiv 0{pmod {n}}

and


(2)Vn−k(P,Q)≡{2Q(modn)if k=−12(modn)if k=1,{displaystyle (2)qquad V_{n-k}(P,Q)equiv {begin{cases}2Q{pmod {n}}&{mbox{if }}k=-1\2{pmod {n}}&{mbox{if }}k=1{mbox{,}}end{cases}}}(2)qquad V_{n-k}(P,Q)equiv {begin{cases}2Q{pmod {n}}&{mbox{if }}k=-1\2{pmod {n}}&{mbox{if }}k=1{mbox{,}}end{cases}}

where k=(Dn){displaystyle scriptstyle k=left({tfrac {D}{n}}right)}scriptstyle k=left({tfrac {D}{n}}right) is the Jacobi symbol.


Both conditions hold for all primes, hence this constitutes a probable prime test.


Condition (1) is the same condition that defines a Lucas pseudoprime, hence every Frobenius (P,Q){displaystyle (P,Q)}(P,Q) pseudoprime is also a Lucas (P,Q){displaystyle (P,Q)}(P,Q) pseudoprime, but because of the additional condition (2), the converse is not true.



Example[edit]


Frobenius pseudoprimes with respect to the Fibonacci polynomial x2−x−1{displaystyle scriptstyle x^{2}-x-1}scriptstyle x^{2}-x-1 are determined in terms of the Fibonacci numbers Fn=Un(1,−1){displaystyle F_{n}=U_{n}(1,-1)}F_{n}=U_{n}(1,-1) and Lucas numbers Ln=Vn(1,−1){displaystyle L_{n}=V_{n}(1,-1)}L_{n}=V_{n}(1,-1). Such Frobenius pseudoprimes form the sequence:


4181, 5777, 6721, 10877, 13201, 15251, 34561, 51841, 64079, 64681, 67861, 68251, 75077, 90061, 96049, 97921, 100127, 113573, 118441, 146611, 161027, 162133, 163081, 186961, 197209, 219781, 231703, 252601, 254321, 257761, 268801, 272611, 283361, 302101, 303101, 330929, 399001, 430127, 433621, 438751, 489601, … (sequence A212424 in the OEIS).

While 323 is the first Lucas pseudoprime with respect to the Fibonacci polynomial x2−x−1{displaystyle scriptstyle x^{2}-x-1}scriptstyle x^{2}-x-1, the first Frobenius pseudoprime with respect to the same polynomial is 4181 (Grantham indicates it is 5777[2] but multiple authors have noted this is incorrect and is instead the first pseudoprime with (5n)=−1{displaystyle left({tfrac {5}{n}}right)=-1}left({tfrac {5}{n}}right)=-1 for this polynomial[3]).


Another case, Frobenius pseudoprimes with respect to the quadratic polynomial x2−3x−1{displaystyle scriptstyle x^{2}-3x-1}scriptstyle x^{2}-3x-1 can be determined using the Lucas (3,-1) sequence and are:


119, 649, 1189, 4187, 12871, 14041, 16109, 23479, 24769, 28421, 31631, 34997, 38503, 41441, 48577, 50545, 56279, 58081, 59081, 61447, 75077, 91187, 95761, 96139, 116821, 127937, 146329, 148943, 150281, 157693, 170039, 180517, 188501, 207761, 208349, 244649, 281017, 311579, 316409, 349441, 350173, 363091, 371399, 397927, 423721, 440833, 459191, 473801, 479119, 493697, ….

In this case, the first Frobenius pseudoprime with respect to the quadratic polynomial x2−3x−1{displaystyle scriptstyle x^{2}-3x-1}scriptstyle x^{2}-3x-1 is 119, which is also the first Lucas pseudoprime with respect to the same polynomial. Besides, (13119)=−1{displaystyle left({tfrac {13}{119}}right)=-1}left({tfrac {13}{119}}right)=-1.


The quadratic polynomial x2−3x−5{displaystyle scriptstyle x^{2}-3x-5}scriptstyle x^{2}-3x-5, with (P,Q)=(3,−5){displaystyle scriptstyle (P,Q)=(3,-5)}scriptstyle (P,Q)=(3,-5), has sparse pseudoprimes as compared to many other simple quadratics. Using the same process as above, we get the sequence:


13333, 44801, 486157, 1615681, 3125281, 4219129, 9006401, 12589081, 13404751, 15576571, 16719781, ….

Notice there are only 3 such pseudoprimes below 500000, while there are many Frobenius (1, −1) and (3, −1) pseudoprimes below 500000.


Every entry in this sequence is a Fermat pseudoprime to base 5 as well as a Lucas (3, −5) pseudoprime, but the converse is not true: 642001 is both a psp-5 and a Lucas (3,-5) pseudoprime, but is not a Frobenius (3, −5) pseudoprime. (note that Lucas pseudoprime for a (P, Q) pair need not to be a Fermat pseudoprime for base Q or base −Q, e.g. 14209 is a Lucas (1, −3) pseudoprime, but not a Fermat pseudoprime for base 3.


Using parameter selection ideas first laid out in Baillie and Wagstaff (1980)[5]
as part of the Baillie-PSW primality test and used by Grantham in his quadratic Frobenius test,[6]
one can create even better quadratic tests. For instance, for the parameters (P,2), where P is the first odd integer that satisfies (Dn)=−1{displaystyle scriptstyle left({tfrac {D}{n}}right)=-1}scriptstyle left({tfrac {D}{n}}right)=-1, there are no pseudoprimes below 264{displaystyle scriptstyle 2^{64}}scriptstyle 2^{64}.



Relations to other pseudoprimes[edit]


For quadratic polynomials x2−Px+Q{displaystyle scriptstyle x^{2}-Px+Q}scriptstyle x^{2}-Px+Q, every Frobenius (P,Q) pseudoprime is also a Lucas (P,Q) pseudoprime.
[2][3][7]
This immediately follows from condition (1) which defined a Lucas (P,Q) pseudoprime.
The converse is not true, making the Frobenius pseudoprimes a subset of the Lucas pseudoprimes for a given (P,Q). The condition on Vk{displaystyle scriptstyle V_{k}}scriptstyle V_{k} indicate it must also be a Dickson pseudoprime of the second kind.[7]


Every Frobenius pseudoprime to x3−rx2+sx−1{displaystyle x^{3}-rx^{2}+sx-1}x^{3}-rx^{2}+sx-1 is also a Perrin pseudoprime.[2]



Alternate formulations[edit]


An alternate formulation is given by Khashin.[8] Given a number n, not a perfect square, where c is the smallest odd prime with Jacobi symbol (cn)=−1{displaystyle left({tfrac {c}{n}}right)=-1}left({tfrac {c}{n}}right)=-1, n is either a prime or Frobenius pseudoprime if:



(1+c)n≡(1−c)(modn){displaystyle (1+{sqrt {c}})^{n}equiv (1-{sqrt {c}}){pmod {n}}}(1+{sqrt {c}})^{n}equiv (1-{sqrt {c}}){pmod {n}}.

Note the additional condition of choosing a parameter based on the Jacobi symbol finding a quadratic non-residue. This is similar to the method from Baillie and Wagstaff shown in the examples section.[5] This makes far stronger tests, and is one reason for the success of the Baillie-PSW primality test. Similar to the example, Khashin notes that no pseudoprime has been found for his test. He further shows that any that exist under 260 must have a factor less than 19 or have c > 128.



Strong Frobenius pseudoprimes[edit]


Strong Frobenius pseudoprimes are also defined.[2] Details on implementation for quadratic polynomials can be found in Crandall and Pomerance.[3]



Properties[edit]


The computational cost of the Frobenius pseudoprimality test with respect to quadratic polynomials is roughly three times the cost of a strong pseudoprimality test (e.g. a single round of the Miller-Rabin primality test), 1.5 times that of a Lucas pseudoprimality test, and slightly more than a Baillie-PSW primality test.


Note that the quadratic Frobenius test is stronger than the Lucas test. For example, 1763 is a Lucas pseudoprime to (P, Q) = (3, -1) since U1764(3,-1) ≡ 0 (mod 1763) (U(3,-1) is given in OEIS: A006190), and it also passes the Jacobi step since (131763)=−1{displaystyle left({tfrac {13}{1763}}right)=-1}left({tfrac {13}{1763}}right)=-1, but it fails the Frobenius test to x2 - 3x - 1. This property can be clearly seen when the algorithm is formulated as shown in Crandall and Pomerance Algorithm 3.6.9[3] or as shown by Loebenberger,[4] as the algorithm does a Lucas test followed by an additional check for the Frobenius condition.


While the quadratic Frobenius test does not have formal error bounds beyond that of the Lucas test, it can be used as the basis for methods with much smaller error bounds. Note that these have more steps, additional requirements, and non-negligible additional computation beyond what is described on this page. It is important to note that the error bounds for these methods do not apply to the standard or strong Frobenius tests with fixed values of (P,Q) described on this page.


Based on this idea of pseudoprimes, algorithms with strong worst-case error bounds can be built. The quadratic Frobenius test,[6] using a quadratic Frobenius test plus other conditions, has a bound of 17710{displaystyle {tfrac {1}{7710}}}{tfrac {1}{7710}}. Müller in 2001 proposed the MQFT test with bounds of essentially 1131040t{displaystyle {tfrac {1}{131040^{t}}}}{tfrac {1}{131040^{t}}}.
[9]
Damgård and Frandsen in 2003 proposed the EQFT with a bound of essentially 256331776t{displaystyle {tfrac {256}{{331776}^{t}}}}{tfrac {256}{{331776}^{t}}}.
[10]
Seysen in 2005 proposed the SQFT test with a bound of 14096t{displaystyle {tfrac {1}{{4096}^{t}}}}{tfrac {1}{{4096}^{t}}} and a SQFT3 test with a bound of 16336442t{displaystyle {tfrac {16}{336442^{t}}}}{tfrac {16}{336442^{t}}}.
[11]


Given the same computational effort, these offer better worst-case bounds than the commonly used Miller-Rabin primality test.



See also[edit]



  • Pseudoprime

  • Lucas pseudoprime

  • Ferdinand Georg Frobenius

  • Quadratic Frobenius test



References[edit]





  1. ^ Jon Grantham (1998). Frobenius pseudoprimes (Report). preprint..mw-parser-output cite.citation{font-style:inherit}.mw-parser-output q{quotes:"""""""'""'"}.mw-parser-output code.cs1-code{color:inherit;background:inherit;border:inherit;padding:inherit}.mw-parser-output .cs1-lock-free a{background:url("//upload.wikimedia.org/wikipedia/commons/thumb/6/65/Lock-green.svg/9px-Lock-green.svg.png")no-repeat;background-position:right .1em center}.mw-parser-output .cs1-lock-limited a,.mw-parser-output .cs1-lock-registration a{background:url("//upload.wikimedia.org/wikipedia/commons/thumb/d/d6/Lock-gray-alt-2.svg/9px-Lock-gray-alt-2.svg.png")no-repeat;background-position:right .1em center}.mw-parser-output .cs1-lock-subscription a{background:url("//upload.wikimedia.org/wikipedia/commons/thumb/a/aa/Lock-red-alt-2.svg/9px-Lock-red-alt-2.svg.png")no-repeat;background-position:right .1em center}.mw-parser-output .cs1-subscription,.mw-parser-output .cs1-registration{color:#555}.mw-parser-output .cs1-subscription span,.mw-parser-output .cs1-registration span{border-bottom:1px dotted;cursor:help}.mw-parser-output .cs1-hidden-error{display:none;font-size:100%}.mw-parser-output .cs1-visible-error{font-size:100%}.mw-parser-output .cs1-subscription,.mw-parser-output .cs1-registration,.mw-parser-output .cs1-format{font-size:95%}.mw-parser-output .cs1-kern-left,.mw-parser-output .cs1-kern-wl-left{padding-left:0.2em}.mw-parser-output .cs1-kern-right,.mw-parser-output .cs1-kern-wl-right{padding-right:0.2em}


  2. ^ abcde Jon Grantham (2001). "Frobenius pseudoprimes". Mathematics of Computation. 70 (234): 873–891. doi:10.1090/S0025-5718-00-01197-2.


  3. ^ abcde Richard Crandall; Carl Pomerance (2005). Prime numbers: A computational perspective (2nd ed.). Springer-Verlag. ISBN 0-387-25282-7.


  4. ^ ab Daniel Loebenberger (2008). "A Simple Derivation for the Frobenius Pseudoprime Test" (PDF). IACR Cryptology ePrint Archive. 2008.


  5. ^ ab Robert Baillie; Samuel S. Wagstaff, Jr. (October 1980). "Lucas Pseudoprimes" (PDF). Mathematics of Computation. 35 (152): 1391–1417. doi:10.1090/S0025-5718-1980-0583518-6. MR 0583518.


  6. ^ ab Jon Grantham (1998). "A Probable Prime Test With High Confidence". Journal of Number Theory. Academic Press. 72 (1): 32–47. doi:10.1006/jnth.1998.2247.


  7. ^ ab Andrzej Rotkiewicz (2003). "Lucas and Frobenius pseudoprimes" (PDF). Annales Mathematicae Silesianae. Wydawnictwo Uniwersytetu Śląskiego. 17: 17–39.


  8. ^ Khashin, Sergey (July 2013). "Counterexamples for Frobenius primality test". arXiv:1307.7920 [math.NT].


  9. ^ Siguna Müller (2001). "A Probable Prime Test with Very High Confidence for N Equiv 1 Mod 4". Proceedings of the 7th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology. ASIACRYPT. pp. 87–106. doi:10.1007/3-540-45682-1_6. ISBN 3-540-42987-5.


  10. ^ Ivan Bjerre Damgård; Gudmund Skovbjerg Frandsen (October 2006). "An Extended Quadratic Frobenius Primality Test with Average- and Worst-Case Error Estimate" (PDF). Journal of Cryptology. 19 (4): 489–520. doi:10.1007/s00145-006-0332-x.


  11. ^ Martin Seysen. A Simplified Quadratic Frobenius Primality Test, 2005.




External links[edit]



  • Weisstein, Eric W. "Frobenius Pseudoprime". MathWorld.

  • Weisstein, Eric W. "Strong Frobenius Pseudoprime". MathWorld.

  • Jacobsen, Dana Pseudoprime Statistics, Tables, and Data (data for Frobenius (1,-1) and (3,-5) pseudoprimes)











Retrieved from "https://en.wikipedia.org/w/index.php?title=Frobenius_pseudoprime&oldid=852811599"





Navigation menu

























(window.RLQ=window.RLQ||).push(function(){mw.config.set({"wgPageParseReport":{"limitreport":{"cputime":"0.424","walltime":"0.569","ppvisitednodes":{"value":1170,"limit":1000000},"ppgeneratednodes":{"value":0,"limit":1500000},"postexpandincludesize":{"value":98513,"limit":2097152},"templateargumentsize":{"value":441,"limit":2097152},"expansiondepth":{"value":7,"limit":40},"expensivefunctioncount":{"value":3,"limit":500},"unstrip-depth":{"value":1,"limit":20},"unstrip-size":{"value":33934,"limit":5000000},"entityaccesscount":{"value":3,"limit":400},"timingprofile":["100.00% 329.591 1 -total"," 73.39% 241.903 1 Template:Reflist"," 27.48% 90.557 1 Template:Cite_report"," 24.78% 81.678 6 Template:Cite_journal"," 21.23% 69.974 7 Template:Navbox"," 15.82% 52.152 1 Template:Classes_of_natural_numbers"," 5.90% 19.459 1 Template:Cite_arXiv"," 3.95% 13.013 2 Template:MathWorld"," 3.94% 12.985 1 Template:Icon"," 3.23% 10.652 2 Template:Cite_web"]},"scribunto":{"limitreport-timeusage":{"value":"0.192","limit":"10.000"},"limitreport-memusage":{"value":3780582,"limit":52428800}},"cachereport":{"origin":"mw1258","timestamp":"20181125225907","ttl":1900800,"transientcontent":false}}});mw.config.set({"wgBackendResponseTime":81,"wgHostname":"mw1254"});});
-

Popular posts from this blog

Florida Star v. B. J. F.

Image
Florida Star v. B. J. F. From Wikipedia, the free encyclopedia Jump to navigation Jump to search United States Supreme Court case Florida Star v. B. J. F. Supreme Court of the United States Argued March 21, 1989 Decided June 21, 1989 Full case name The Florida Star v. B. J. F. Citations 491 U.S. 524 ( more ) 109 S. Ct. 2603; 105 L. Ed. 2d 443; 1989 U.S. LEXIS 3120; 57 U.S.L.W. 4816; 16 Media L. Rep. 1801 Prior history The Florida Star v. B.J.F., 530 So.2d 286 (1988) Supreme Court of Florida; Florida Star v. B.J.F., 499 So.2d 883 (1986) Fla. Dist. Court of Appeals Holding Florida Stat. § 794.03 is unconstitutional to the extent it makes the truthful reporting of information that was a matter of public record unlawful, as it violates the First Amendment. Court membership Chief Justice William Rehnquist Associate Justices William J. Brennan Jr.  · Byron White Thurgood Marshall  · Harry Blac
Read more

Error while running script in elastic search , gateway timeout

Image
0 while running script in elastic search, I got 504 Gateway timeout error. { "query": { "bool": { "filter": { "script": { "script": " doc['creted_date'].date.getMonthOfYear() == 12 " } } } }, "aggs": { "test": { "date_histogram": { "field": "creted_date", "interval": "month", "format": "MMM" }, "aggs": { "cost": { "sum": { "field": "cost" } } }
Read more

Adding quotations to stringified JSON object values

Image
0 My stringified object data doesn't include quotation marks around object values, which errors when attempting JSON.parse() : '{ "affiliation": CORPORATE, "userId": 75c35d1c-5d12-4485-8fa8-b2f1551a3e6e }' I need the string to be: '{ "affiliation": "CORPORATE", "userId": "75c35d1c-5d12-4485-8fa8-b2f1551a3e6e" }' I'm using this regex to add quotes to the object keys: var newStr = str.replace(/(['"])?([a-z0-9A-Z_]+)(['"])?:/g, '"$2": '); For instance: '{ affiliation: CORPORATE }' to '{ "affiliation": CORPORATE }' There are only string values in my data, so I don't need to check value types. How can I alter my regex expression to add quotations to
Read more