I was reading about this in a cryptography book last night. I have a hunch about this, but I can't quite put my finger on it. I think this is a similar situation to an affine cipher, where the multiplication factor has to be relatively prime with the size of the alphabet in order for the function to be surjective. Obviously for practical purposes, it would have to be $p^n$ where $p$ is the arity of the number system and $n$ is the bit width of a memory unit. But is there also a theoretical basis for requiring that a Galois field be of size $p^n?$
Asked
Active
Viewed 681 times
5
-
3Every finite field is of the form $GF(p^n),$ so the only meaningful question is: Do you require a finite field for your problem? – gammatester May 27 '18 at 15:26
-
1See Order of finite fields is $p^n$ and Are all finite fields isomorphic to $\mathbb{F}_p$? for details. – Alex Vong May 27 '18 at 21:38
1 Answers
7
Fix a finite field $k$ of $q$ elements, with additive identity $0_k$ and multiplicative identity $1_k$.
For any integer $n$, let $[n]$ be the $n$-fold sum of $1_k$. Clearly $[a + b] = [a] + [b]$ and $[a\cdot b] = [a] \cdot [b]$. Since $k$ is finite, for any $n$, in the sequence $[a]$, $[a + 1]$, $[a + 2]$, etc., there must be a repeat; let $p$ be the smallest integer so that $[a] = [a + p] = [a] + [p]$. Then $[p] = 0_k$, and in the sequence $[1], [2], [3], \ldots, [p]$, the element $[p]$ is the first zero element.
$p$ is called the characteristic of the field. Suppose $p$ were composite, with factors $1 < a \leq b < p$ so that $p = a\cdot b$. Then $0_k = [p] = [a\cdot b] = [a] \cdot [b]$, but $[a]$ and $[b]$ are nonzero because $[p]$ was the first zero element in the sequence $[1], [2], [3], \ldots, [p]$. This is impossible in a field, so $p$ must be prime.
The set $\{[0],[1],[2],\ldots,[p-1]\}$ forms a subfield $k_p$ of $k$, since it is by construction closed under addition and multiplication. Thus the extension field $k$ forms a vector space over the subfield $k_p$. Being finite, this vector space is necessarily finite-dimensional, of dimension $n$, and thus has exactly $p^n$ elements. Hence $q = p^n$ for some $n$.
Squeamish Ossifrage
- 48,392
- 3
- 116
- 223
-
1I don't understand that proof. How is $[p]$ nonzero if it's equal to $0_k$? How are the elements $[1],[2],[3]...$ equal to zero? – Zen Hacker May 27 '18 at 16:26
-
1I don't understand that proof. How is $[p]$ nonzero if it's equal to $0_k$? How are the elements $[1],[2],[3]...$ equal to zero? – Zen Hacker May 27 '18 at 16:26
-
1
-
-
What about composite fields where a = b and p = a ⋅ b, such as GF(2^8) mapped to GF(16^2) = GF((2^4)^2), where a = b = 16? (For this to work, map(x) + map(y) = map(x + y) and map(x) ⋅ map(y) = map(x ⋅ y) ). I assume that for both fields, the characteristic is still 2. – rcgldr May 27 '18 at 20:00
-
@rcgldr The characteristic is still 2, and the order of the field is still a prime power even if you can also write it as a composite power like $16^2$. The composite power is itself necessarily a prime power. – Squeamish Ossifrage May 27 '18 at 20:40
-
This proof is confusing me, specifically the part where $0_k = [p] = [a\cdot b] = [a] \cdot [b]$ and thus $[a]$ or $[b]$ must be $0$. $[p]$ in this case is not equal to 0 it is equivalent to $0_k$. If I have a field $Z/_{15}Z$ for example then the first non-zero element is $[p]=15 \equiv 0_k$ and that element can have non-zero factors, no? – PentaKon Dec 29 '22 at 11:06