• No results found

On the Number of Periodic

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "On the Number of Periodic "

Copied!
28
0
0

Loading.... (view fulltext now)

Download now ( 28 Page )

Full text

(1)

Degree project

On the Number of Periodic

Points of Quadratic Dynamical Systems Modulo a Prime

Author: Jakob Streipel Supervisor: Marcus Nilsson Examiner: Per Anders Svensson Date: 2015-08-24

Course Code: 2MA11E Subject: Mathematics Level: Bachelor

(2)

On the Number of Periodic Points of Quadratic Dynamical Systems Modulo a Prime

Jakob Streipel August 24, 2015

(3)

Abstract

We investigate the number of periodic points of certain discrete quadratic maps modulo prime numbers. We do so by first exploring previously known results for two particular quadratic maps, after which we explain why the methods used in these two cases are hard to adapt to a more general case.

We then perform experiments and find striking patterns in the behaviour of these general cases which suggest that, apart from the two special cases, the number of periodic points of all quadratic maps of this type behave the same.

Finally we formulate a conjecture to this effect.

(4)

Contents

1 Introduction 2

1.1 Preliminaries . . . . 3

2 The periodic points of f0(x) = x2 6

3 The periodic points of f−2(x) = x2− 2 9

4 The periodic points of fc(x) = x2+ c 16

4.1 The asymptotic behaviour of STc(N ) . . . . 16

5 Discussion 21

Bibliography 23

(5)

1 Introduction

In this thesis we will be investigating certain dynamical systems, by which we mean the behaviour of the elements of a set when we repeatedly apply a fixed mapping on these elements. In order to do so successfully we will first have to define the notions of iteration and periodic point.

By iteration of some map f , defined on some set S, we mean the repeated application of this map f . We define f0 to be the identity mapping and, for nonnegative integers r, fr+1= f ◦ fr. This frwe call the r-fold composition of f . We call x ∈ S a periodic point (of f ) if there exists some positive integer n such that fn(x) = x. Further, the smallest such n is the period of x.

The dynamical systems we are interested in are the ones we get when iter- ating quadratic maps on the form

fc(x) = x2+ c,

over finite fields Fp of p elements, p being prime, meaning that we use addition and multiplication modulo p.

In particular we will be studying the number of periodic points of these dynamical systems for fixed c and p, as well as the asymptotic behaviour of the sum of the number of periodic points for fixed c and primes p less than some N > 2. In doing so we will let Tc(p) denote the total number of periodic points of fc over S = Fp. We will also define STc(N ) be defined as

STc(N ) = X

p≤N

Tc(p),

the sum of Tc(p) for all primes p less than of equal to some N > 2.

This is a problem studied in great detail for c = 0 and c = −2, which turn out to be very similar, however very little is known regarding the number of periodic points for other values of c.

Quadratic maps are of great interest both in number theory and in cryptogra- phy. They are used in primality tests such as Lucas–Lehmer and Miller–Rabin, integer factorisation methods like Pollard’s ρ method [Po75], and pseudorandom number generation [BBS86, Section 4].

Beyond that they are of interest simply because not a great deal is known regarding them, apart from f0and f−2.

Our main contribution in this thesis is to formulate a conjecture regarding STc(N ), the sum of the number of periodic points for all fc(x) = x2+ c mod p for p ≤ N and fixed c 6= 0, −2, which based on empirical evidence appears to behave very nicely, as contrasted by the observed behaviour of individual Tc(p).

Should this conjecture prove to be true it would help to shed light on previ- ously observed behaviour of fc by Nilsson in [Ni13, Section 5]. Moreover, much like how the number of periodic points of f0 and f−2 are known to behave simi- larly, our conjecture suggests that the number of periodic points of all other fc, c 6= 0, −2, behave similar to each other!

This thesis is organised into two major parts. In Sections 2 and 3 we study and reconstruct, in great detail, previously known results regarding the number

(6)

of periodic points of f0(x) = x2mod p and f−2(x) = x2− 2 mod p, respectively, as well as the methods used to arrive at these results, due to Vasiga and Shallit in [VS04].

In Section 4 we go on to consider the number of periodic points of fc(x) = x2+ c mod p for other values of c. Here we discuss what little is known as well as the difficulty in applying the known methods to this problem. Finally we coalesce experimental findings of our own into the conjecture regarding the sum of the number of periodic points of these maps.

We also below provide some basic definitions, theorems, and notation that will be used in the discussion to follow.

1.1 Preliminaries

We will first spell out the few definitions mentioned in the previous section.

Definition 1.1. Let S be a finite set and let f : S → S be a map on this set.

(i ) Let fr define the r-fold composition of f , i.e. fr = f ◦ f ◦ . . . ◦ f

| {z }

r amount of f ’s

for nonnegative integers r. We define f0to be the identity mapping. The act of this repeated application of f is the iteration of f .

(ii ) We call x a periodic point (of f ) if there exists some positive integer n such that fn(x) = x. Further, the smallest such n is the period of x.

Definition 1.2. Let p be a prime and let S = Fp, the field of p elements with respect to addition and multiplication modulo p, and let fc: x 7→ x2+ c, for a constant c ∈ Fp.

(i ) Let Tc(p) denote the total number of periodic points of fc. (ii ) Let STc(N ) be defined as STc(N ) =P

p≤NTc(p), the sum of Tc(p) for all primes p less than or equal to N > 2.

We will later require the notions of tail and cycle, which we define in terms of a directed graph.

Definition 1.3. Let S be a finite set and let f : S → S be a map on this set.

(i ) Let Gf = (V , E ) denote the directed graph with its vertices V being the elements of S and its directed edgesE being (x, f(x)) for every x ∈ S.

(ii ) For a given x ∈ S we denote by the orbit of x the directed path in Gf starting at x. Further, we let the tail of x be the list of elements x, f (x), f2(x), . . ., before we encounter a periodic point, and the orbit of this periodic point we call the cycle of x.

We will also make some of the discussion slightly more concise by using the following notation:

Definition 1.4. Let a(n) and b(n) be some maps. We let a(n) ∼ b(n) denote that limn→∞a(n)/b(n) = 1. We say that a(n) and b(n) are asymptotically equal as n becomes large.

(7)

Out of deference to the reader we will also define and state below some number theoretic and group theoretic concepts and theorems we will require. For proofs of the theorems, consult any book on elementary number theory or abstract algebra.

Definition 1.5 (Primitive root). Let n be a positive integer and γ be an integer.

We call γ a primitive root (modulo n) if, for every integer a such that gcd(a, n) = 1, there exists an integer k such that γk ≡ a (mod n)

Definition 1.6 (Euler’s totient function). Let n be a positive integer. We write ϕ(n) to denote the number of elements in {1, 2, 3, . . . , n − 2, n − 1, n} that are relatively prime to n.

Theorem 1.7 (Fermat’s little theorem). Let p be a prime number and a an integer. Then ap≡ a (mod p).

Theorem 1.8 (Euler’s theorem). Let n and a be relatively prime positive inte- gers, then aϕ(n)≡ 1 (mod n).

Definition 1.9. Let G be a cyclic group and let g be an element in G. Then we let ordG(g) denote the order of the element g in G, i.e. the order of the subgroup generated by g.

Theorem 1.10 (Lagrange’s theorem). Let G be a finite group of order n. Then the order of every subgroup H ≤ G must divide n.

Theorem 1.11. Let G be a cyclic group of order n generated by a. Then the order of ak is n/ gcd(n, k), for all integers k.

In addition to the above we also define the following function which will prove useful to the ideas discussed in this thesis.

Definition 1.12. Let n be an integer. We write τ (n) to denote the greatest integer t such that 2t| n.

The Riemann hypothesis, as well as its extended namesake referred to on occa- sion in this thesis, concerns the distribution of prime numbers. More information on this can be found in, for example, [Ap98, Section 13.9], although the details aren’t important to this text.

Since the meaning of Tc(p) is important to the entirety of this thesis we demonstrate it below using an example.

Example 1.13. We study the number of periodic points of fc(x) = x2+ c over the field F19 for a few different parameters c. In particular we look at c = 0, c = −2, and c = 1 to demonstrate partly how the first two are seemingly more well behaved and partly how T0(p) and T−2(p) are larger than T1(p).

In Figure 1.1 below we show the directed graphs Gf0, Gf−2, and Gf1. Notice how the former two consist of a few nicely behaved cycles and fixed points, whereas the graph of f1 is made up primarily of a large, complicated looking tree.

Moreover, note how T0(19) = 10 and T−2(19) = 7 (both of which we will learn to compute explicitly later), whereas T1(19) = 2, comparatively small.

(8)

0 1

2 3

4

5

6

7 8

9

10

11 12

13 15 16 14

17

18

(a) f0(x) = x2mod 19

0

1 2

3 4 5

6

7 8

9 10

11

12 13

14 15

16

17

18

(b) f−2(x) = x2− 2 mod 19 0

1

2

3

4

5 7 6

8 9

10

11

12 13

14

15

16

17

18

(c) f1(x) = x2+ 1 mod 19

Figure 1.1: The directed graphs for f0, f−2 and f1, for p = 19. Periodic points are marked grey.

(9)

2 The periodic points of f0(x) = x2

The simple system of repeatedly squaring is well-studied and well-known. It is a mapping of interest ever since Blum et al. introduced the BBS pseudorandom number generator [BBS86, Section 4], which uses this mapping modulo the product of two primes numbers.

Following this, in [Ro96] Rogers gives a formula to decompose the graph Gf0

into its cyclic components and the trees attached to these cycles, after which Hern´andez et al. in [He94] study and completely characterise the orbits of f0.

Of particular interest to us is the results of [VS04, Section 2], wherein Vasiga and Shallit, amongst other things, derive an explicit formula for T0(p), the number of periodic points of f0(x) = x2 over Fp, the finite field of p elements, where p is a prime number.

Using this formula for T0(p) they then also study the asymptotic behaviour of ST0(N ), the sum of T0(p) for primes p less than or equal to some N .

In what follows we recapitulate their results, with minor modifications. In particular, when defining T0(p), Vasiga and Shallit concern themselves only with whether x ∈ Fpare periodic, however in the interest of consistency we will consider all x ∈ Fp, since we will later study the periodic points of quadratic maps where x = 0 doesn’t behave as predictably as it does for f0(x) = x2.

In the discussion that follows we will require the following lemma.

Lemma 2.1. For any odd integer ρ, there exists some positive integer n such that ρ | 2n− 1.

Proof. Since ρ is odd, 2 and ρ are relatively prime, whence we have by Euler’s theorem that 2ϕ(ρ)≡ 1 (mod ρ), where ϕ(ρ) is the Euler totient function of ρ.

The congruence is equivalent to ρ | 2ϕ(ρ)− 1, whence we take n = ϕ(ρ).

The following theorem gives an explicit expression for T0(p).

Theorem 2.2. Let p be an odd prime and let p − 1 = 2τ· ρ, where ρ is odd.

Then T0(p) = ρ + 1.

Proof. There are two cases to consider: either x ∈ Fp or x = 0. The latter case is a periodic point since f0(0) = 02= 0.

To study the former case, first let γ be a primitive root modulo p. We then have that x = γi for some integer 0 ≤ i < p − 1, since x and p are relatively prime. Therefore x is a periodic point if and only if there exists some positive integer n such that f0ni) = (γi)2n= γi.

If we then multiply by the multiplicative inverse of x, which exists since x ∈ Fp, we get that (γi)2n−1= γi·(2n−1)= 1.

By Fermat’s little theorem this is true if and only if p − 1 | i · (2n− 1).

Recalling that p − 1 = 2τ· ρ, and by observing that 2n− 1 is odd, we must have that 2τ | i and ρ | i · (2n− 1). However by Lemma 2.1 there must always exist some n that satisfies the second condition, whence we are left with only 2τ | i.

Therefore, since 0 ≤ i < p − 1, it must be of the form i = j · 2τ for 0 ≤ j < ρ.

This means that x must be of the form x = γi = γj·2τ for 0 ≤ j < ρ, of which there are exactly ρ options.

(10)

Recalling the case for x = 0 above we therefore have ρ+1 periodic points.

Having found an expression for T0(p) we consider ST0(N ), the sum of all T0(p) for all primes p less than or equal to N , however to do this we first require the following lemma from analytic number theory.

Lemma 2.3. Let k and l be integers such that gcd(k, l) = 1. Then, assuming the Extended Riemann Hypothesis, we have

X

p≤x p≡k (mod l)

p = 1 ϕ(l)

 x2 2 log x



(1 + O(1/ log x)) + O(x3/2(log x + 2 log l).

Proof. See [VS04, Lemma 8].

The Extended Riemann Hypothesis is a technical assumption used in Lemma 2.3 to get a sufficiently good big-O term. See the reference above for more details.

Theorem 2.4. Assume the Extended Riemann Hypothesis. Then ST0(N ) ∼ N2/(6 log N ).

Proof. It follows from the definition of ST0(N ) and from Theorem 2.2 that ST0(N ) = X

p≤N

T0(p) = X

p≤N

 p − 1 2τ (p−1)+ 1



= X

p≤N

p − 1

2τ (p−1) +X

p≤N

1. (2.1)

The last sum is simply the number of prime numbers less than N , which by the Prime number theorem is approximately N/ log N for sufficiently large N (see for example [Ko01]). In other words,P

p≤N1 = O(N/ log N ).

We proceed to deal with the other sum, call it S. First we note that

S = X

p≤N

p − 1

2τ (p−1) = X

1≤i≤log2N

X

p≤N p≡2i+1 (mod 2i+1)

p − 1 2i ,

because any given prime p ≤ N will satisfy p ≡ 2i+ 1 (mod 2i+1) exactly once, specifically when i = τ (p − 1). It is sufficient to sum only over i between 1 and log2N since log2N is the largest possible value τ (p − 1) can attain for p ≤ N .

Next we recall Lemma 2.3 which then yields

S = X

1≤i≤log2N

1 2i

N2

ϕ(2i+1)2 log N(1 + O(1/ log N )) − X

p≤N p≡2i+1 (mod 2i+1)

1

,

where the inner sum is approximately equal to N/(ϕ(2i+1) log N ) = O(N/ log N ), (see, for example, [BS96, page 217]).

We have from elementary number theory that ϕ(2i+1) = 2i, whence we get

S = X

1≤i≤log2N

1 2i

 N2

2i2 log N(1 + O(1/ log N )) − O(N/ log N )



=

 N2

2 log N (1 + O(1/ log N )) − O(N/ log N )

 X

1≤i≤log2N

1 4i.

(11)

We note that the final remaining sum is nothing but a geometric sum, whence we have

X

1≤i≤log2N

1 4i = 1

4· 1 − 4− log2N 1 − 4−1 =1

4 ·1 − N−2 3/4 =1

3(1 + O(N−2)), which gives us

S =

 N2

2 log N (1 + O(1/ log N )) − O(N/ log N ) 1

3(1 + O(N−2))

=

 N2

6 log N (1 + O(1/ log N )) − O(N/ log N )



(1 + O(N−2)).

We observe that N2

6 log N (1 + O(1/ log N )) = N2 6 log N + O

 N

log N

2

, (2.2)

whence the O(N/ log N ) term above is contained in the other big-O term:

S = N2

6 log N(1 + O(1/ log N )) (1 + O(N−2))

= N2

6 log N(1 + O(1/ log N )) ,

since (1 + O(N−2)) approaches 1 much faster than (1 + O(1/ log N )) does.

By combining all of this in Equation (2.1) again we get

ST0(N ) = N2

6 log N (1 + O(1/ log N )) + O(N/ log N ).

By the same reasoning as before in Equation (2.2) the O(N/ log N ) term is contained within the other big-O terms, giving us

ST0(N ) = N2

6 log N (1 + O(1/ log N )) ∼ N2 6 log N.

Note that Lemma 2.3, and therefore also Theorem 2.4, can be proven without assuming the Extended Riemann Hypothesis (see [CS04], which in fact derives analogous results for maps f (x) = xe, for all integers e greater than 1), however the methods used therein are beyond us.

(12)

3 The periodic points of f−2(x) = x2 − 2

Another quadratic map studied with similar intimacy as f0(x) = x2 is that of f−2(x) = x2− 2. It is of number theoretic and cryptographic interest due to both the Lucas–Lehmer primality test, which uses it to test the primality of Mersenne numbers, and Pollard’s ρ algorithm for integer factorisation, which Pollard in [Po75, page 333] cautions should not be used with f−2.

A BBS-like pseudorandom number generator using this map instead of the original f0(x) = x2 has been studied by Dur´an D´ıaz and Peinado Dom´ınguez in [DP02].

Gilbert et al. in [Gi01, Section 5] obtain results regarding the dynamics of this map, and Vasiga and Shallit in [VS04, Section 3] provide a comprehensive algebraic framework for studying the system.

Using this framework Vasiga and Shallit demonstrate that f−2behaves sim- ilar to f0. Indeed, they find an expression for T−2(p) which is very similar to that of T0(p), and they also show that ST−2(N ) and ST0(N ) have identical asymptotic bounds.

Below we will construct this framework and derive both the expression for T−2(p) and the asymptotic behaviour for ST−2(N ).

The algebraic framework we use to study the dynamics of f−2(x) = x2− 2 is based on introducing, for a given a ∈ Fp, the polynomial

u(X) = X2− aX + 1.

This polynomial may or may not be reducible over Fp, depending on the choice of a, but it will always be reducible over Fp2. We thus let α and β be the roots of the polynomial in Fp2, which means that α + β = a and αβ = 1.

Using these two roots we have what turns out to be a very useful way of expressing the nth iterate of f−2 on a.

Proposition 3.1. Let a be an element in Fp and let α and β be the roots of u(X) = X2− aX + 1 over Fp2. Then f−2n (a) = α2n+ β2n.

Proof. We prove this using induction. When n = 0 we get f−20 (a) = a = α + β.

We then assume that f−2n (a) = α2n+ β2n holds for some n = k and show that it must then also be true for n = k + 1, by means of some algebraic manipulation:

f−2k+1= f−2k (a)2− 2

=

α2k+ β2k2

− 2

= α2k+1+ β2k+1+ 2α2kβ2k− 2

= α2k+1+ β2k+1+ 2(αβ)2k− 2

= α2k+1+ β2k+1.

We now have a means of expressing the nth iterate of the map f−2 as a sum of two reasonably simple powers, both with powers of two as their exponents,

(13)

similar to how we in Theorem 2.2 expressed the nth iterate of f0 as one such power.

This gives a convenient way of studying the length of tails of the elements in Fp.

Theorem 3.2. Let a be an element in Fp and let α and β be the roots of u(X) = X2− aX + 1 over Fp2. Then the length of the tail when iterating f−2 on a in Fp is the nonnegative integer t such that ordF

p2α = 2t· l, where l is odd.

Proof. First let c ≥ 1 be the length of the cycle in the orbit of a. We then have f−2t+c(a) = f−2t (a), where t ≥ 0 and c are as small as possible; this minimality is important. By Proposition 3.1 above we have that this is the same as

α2t+c+ β2t+c = α2t+ β2t

which, since αβ = 1 and therefore β = α−1, is equivalent to α2t+c+ α−2t+c = α2t+ α−2t. By multiplying by α2t+c we get

α2t+c+1+ 1 = α2tα2t+c+ α−2tα2t+c= α2t+c+2t+ α2t+c−2t. We then subtract the rightmost side:

α2t+c+1+ 1 − α2t+c+2t− α2t+c−2t = 0

⇐⇒ 

α2t+c2

+ 1 − α2t+c

α2t+ α−2t

= 0

⇐⇒ 

α2t+c− α2t 

α2t+c− α−2t

= 0.

This is true if either α2t+c= α2t or α2t+c= α−2t, which we can in turn write as α2t+c−2t = 1 or α2t+c+2t = 1.

By factoring the exponents we get

α2t(2c−1)= 1 or α2t(2c+1)= 1, which is finally in a form useful to us. We have ordF

p2α = 2e·l for a nonnegative e and an odd l, whence by Lagrange’s theorem we must have

2e· l | 2t(2c− 1) or 2e· l | 2t(2c+ 1).

Now, since neither 2c− 1 nor 2c+ 1 are divisible by 2, since c ≥ 1, the factor 2t must be the one divisible by 2e, whereby e ≤ t. Moreover, since we have equivalences all the way back to our assumption of the minimality of t, we must in fact have e = t, since otherwise there would exist a smaller t that also satisfied the inequality e ≤ t.

We therefore have the length of the tail when iterating f−2 on a is the nonnegative integer t such that ordF

p2α = 2t· l, where l is odd.

(14)

Note that, in particular, if an element a ∈ Fphas a tail length of 0 when iterating f−2on it, it is a periodic point. We may therefore use this to study the number of periodic points.

Lemma 3.3. Let p be an odd prime and let δ be a generator of Fp2. Further let θ = δp−1 and let γ = δp+1. Then θ generates the subgroup of (p + 1)th roots of unity of Fp2 and γ is a generator of Fp.

Proof. Since Fp2 is a cyclic group generated by δ, we have by Theorem 1.11 that the order of δk, k ∈ Z, is

p2− 1

gcd(p2− 1, k) = (p − 1)(p + 1) gcd((p − 1)(p + 1), k), since the order of Fp2 is p2− 1 = (p − 1)(p + 1).

Therefore the order of θ = δp−1 is (p − 1)(p + 1)

gcd((p − 1)(p + 1), p − 1) =(p − 1)(p + 1)

p − 1 = p + 1 and the order of γ = δp+1 is

(p − 1)(p + 1)

gcd((p − 1)(p + 1), p + 1)= (p − 1)(p + 1)

p + 1 = p − 1.

Using this and the previous theorem we can study the periodic points of f−2

using similar arguments to those used in Theorem 2.2, though a few more of them.

Theorem 3.4. Let p be an odd prime and let δ be a generator of Fp2. Further let θ = δp−1 and let γ = δp+1.

(i) If p ≡ 1 (mod 4), then the periodic points of f−2(x) = x2− 2 in Fp are exactly those given by

i+ γ−i

0 ≤ i ≤ (p − 1)/2 and τ (i) ≥ τ (p − 1)

j+ θ−j

1 ≤ j ≤ (p − 1)/2 and τ (j) ≥ τ (p + 1) .

(ii) If p ≡ 3 (mod 4), then the periodic points of f−2(x) = x2− 2 in Fp are exactly those given by

i+ γ−i

1 ≤ i ≤ (p − 3)/2 and τ (i) ≥ τ (p − 1)

j+ θ−j

0 ≤ j ≤ (p + 1)/2 and τ (j) ≥ τ (p + 1) .

Proof. We let p − 1 = 2τ· ρ, and p + 1 = 2τ0· ρ0, where both ρ and ρ0 are odd.

We have by Theorem 3.2 that the cycle length c and tail length t of an element a ∈ Fp must satisfy

α2t(2c−1)= 1 or α2t(2c+1)= 1,

where α is a root of u(X) = X2−aX +1 over Fp2, the other root being β = α−1. Also note that a = α+α−1. The element a being periodic, i.e. t = 0, is therefore equivalent to there existing some positive integer c such that

α2c−1= 1 or α2c+1= 1. (3.1)

(15)

We begin by presenting a thorough proof for the first case (i), meaning that p is assumed to be congruent to 1 modulo 4. Since the second case (ii) is very similar we will then only indicate the minor differences between the two.

There are now two different, though similar, scenarios to consider: either u(X) is reducible over Fp, or u(X) is irreducible over Fp.

If u(X) is reducible, meaning that α ∈ Fp—since αβ = 1, we must have α 6= 0—then there exists an integer 0 ≤ i < p − 1 such that α = γi, recalling from Lemma 3.3 that γ generates Fp.

We substitute this in Equation (3.1) and get the equivalent statement γi(2c−1)= 1 or γi(2c+1)= 1,

and since ordF

p2γ = p − 1 = 2τ· ρ, we have by Lagrange’s theorem that this is true if and only if

2τ· ρ | i(2c− 1) or 2τ· ρ | i(2c+ 1).

By an argument similar to that in the proof of Theorem 2.2 we must therefore have 2τ | i and at least one of ρ | i(2c− 1) or ρ | i(2c+ 1). We know from Lemma 2.1 that there must exist a c such that satisfies ρ | 2c− 1, leaving us with only 2τ | i. We must therefore have τ ≤ τ (i), so that i contains at least as many factors of 2 as 2τ.

Therefore the tail length of a is 0 if and only if a = γi−i, for 0 ≤ i < p−1, such that τ (i) ≥ τ .

Moreover, since γp−1 = 1, we have γi+ γ−i= γp−1−i+ γ−(p−1−i), meaning that with 0 ≤ i < p − 1 we’re getting two of every possible a, except for the middlemost member of the set, since 0 ≤ i < p − 1 contains an odd amount of integers i. To rectify this we halve the range of possible i. Therefore, the tail length of a is 0 if and only if a = γi+ γ−i, for 0 ≤ i ≤ (p − 1)/2, such that τ (i) ≥ τ .

Next we consider the case when u(X) is irreducible over Fp. Then by similar reasoning we must have α = θj for some 1 ≤ j < p + 1, j 6= (p + 1)/2; we exclude the latter since θp+1 = 1 implies that θ(p+1)/2 = −1, whence u(X) = X2+ 2X + 1 = (X + 1)(X + 1), which is reducible over Fp.

This gives us

θj(2c−1)= 1 or θj(2c+1)= 1, which by Lagrange’s theorem, since ordF

p2θ = p + 1 = 2τ0· ρ0, is equivalent to 2τ0 · ρ0| j(2c− 1) or 2τ0· ρ0| j(2c+ 1).

Thus by the now familiar argument we have that a has a tail length of 0 if and only if a = θj+ θ−j for 1 ≤ j < p + 1, j 6= (p + 1)/2, and τ (j) ≥ τ0.

However—again—since θp+1 = 1, we have θj+ θ−j = θp+1−j+ θ−(p+1−j), whence we halve the interval for j to avoid the duplicates: 1 ≤ j ≤ (p − 1)/2.

Note that we go up to and including j = (p−1)/2 in order to satisfy j 6= (p+1)/2 once and for all.

Finally, if we wish to later count these periodic points, it is desirable to show that all of a = γi+ γ−i, 0 ≤ i ≤ (p − 1)/2, and a = θj+ θ−j, 1 ≤ j ≤ (p − 1)/2, are distinct. We check these one case at a time:

(16)

First consider γi+ γ−i= γi0+ γ−i0 for 0 ≤ i, i0 ≤ (p − 1)/2. We have the following:

γi+ γ−i= γi0 + γ−i0

⇐⇒ (γi)2+ 1 = γii0+ γ−i0) Multiply by γi,

⇐⇒ (γi)2+ 1 − γii0+ γ−i0) = 0 Subtract the righthand side,

⇐⇒ (γi− γi0)(γi− γ−i0) = 0 Factor the lefthand side,

⇐⇒ (γi−i0− 1)(γi+i0− 1) = 0 Multiply by γi0γ−i0. Therefore γi−i0 = 1 or γi+i0 = 1. Thus, since ordF

p2γ = p − 1 we must have p − 1 | i − i0 or p − 1 | i + i0. Since 0 ≤ i, i0 ≤ (p − 1)/2 the only option for the first criterion is i − i0 = 0 ⇐⇒ i = i0. For p − 1 | i + i0we have 0 ≤ i + i0≤ p − 1, whence i + i0= 0 or i + i0= p − 1, which happens only if i = i0.

Similarly, for θj = θ−j = θj0 + θ−j0, with 1 ≤ j ≤ (p − 1)/2, we have (by identical algebra) that θj−j0 = 1 or θj+j0 = 1 . Now, because ordF

p2θ = p + 1, we get p + 1 | j − j0 or p + 1 | j + j0. The former implies that j = j0, whereas the latter is impossible since 2 ≤ j + j0≤ p − 1.

Lastly we consider γi + γ−i = θj = θ−j. Recalling that γ = δp+1 and θ = δp−1, we have

δi(p+1)+ δ−i(p+1)= δj(p−1)+ δ−j(p−1) which by the same algebra as before is equivalent to

i(p+1)−j(p−1)− 1)(δi(p+1)+j(p−1)− 1) = 0, whence δi(p+1)−j(p−1) = 1 or δi(p+1)+j(p−1) = 1. Due to ordF

p2δ = p2− 1 it follows that

p2− 1 | i(p + 1) − j(p − 1) or p2− 1 | i(p + 1) + j(p − 1).

Since p is taken to be odd, all of p2− 1, p + 1, and p − 1 are even, whence p2− 1

2

ip + 1

2 − j p − 1

2 or p2− 1 2

ip + 1

2 + jp − 1 2 , from which it follows that there must exist some integer k such that

jp − 1

2 = ip + 1

2 − kp2− 1

2 or jp − 1

2 = −ip + 1

2 + kp2− 1 2 . Now since p2− 1 = (p + 1)(p − 1), (p + 1)/2 divides both of the righthand sides, hence the lefthand sides must also be divisible by (p + 1)/2. However since gcd((p − 1)/2, (p + 1)/2) = 1, we must then have (p + 1)/2 | j, but this can’t be true because 1 ≤ j ≤ (p − 1)/2. We therefore have a contradiction and thus γi+ γ−i6= θj = θ−j.

This finalises the proof for (i). The second case, with p ≡ 3 (mod 4), is almost identical, apart from the slight differences in the ranges of i and j. This is a consequence of X2− 0X + 1 and X2+ 2X + 1 being irreducible over Fp

if p ≡ 3 (mod 4), whence their corresponding values for i need to be excluded from the set, whilst j gets no such restrictions, since the same two polynomials are treated by θ instead.

(17)

With this out of the way we are finally able to very easily count the number of periodic points.

Corollary 3.5. Let p be an odd prime. Further let p − 1 = 2τ· ρ, and p + 1 = 2τ0 · ρ0, where both ρ and ρ0 are odd. Then T−2(p) = (ρ + ρ0)/2.

Proof. Let δ be a generator of Fp2, let θ = δp−1, and let γ = δp+1.

We treat the two cases from Theorem 3.4 one at a time and show that they produce the same result.

If p ≡ 1 (mod 4), we have that a is a periodic point of f−2 exactly when either a = γi + γ−i, 0 ≤ i ≤ (p − 1)/2 and τ (i) ≥ τ , or a = θj + θ−j, 1 ≤ j ≤ (p − 1)/2 and τ (j) ≥ τ0.

The first alternative implies that 2τ | i which, since 0 ≤ i ≤ (p − 1)/2, gives us that i = k · 2τ, for 0 ≤ k ≤ ρ/2. There are (ρ + 1)/2 such integers k, since ρ is odd.

The second alternative gives 2τ0 | j. Since 1 ≤ j ≤ (p − 1)/2 this means that j = l · 2τ0, where 1 ≤ l ≤ (ρ0− 1)/2. There are (ρ0− 1)/2 integers l satisfying this due to ρ0− 1 being even.

Thus in all we have T−2(p) = ρ + 1

2 +ρ0− 1

2 = ρ + 1 + ρ0− 1

2 = ρ + ρ0 2 when p ≡ 1 (mod 4).

If p ≡ 3 (mod 4) we have from the previous theorem that a is a periodic point of f−2precisely when either a = γi+ γ−i, 1 ≤ i ≤ (p − 3)/2 and τ (i) ≥ τ , or a = θj+ θ−j, 0 ≤ j ≤ (p + 1)/2 and τ (j) ≥ τ0.

In the former case we get that 2τ | i, which implies that i = k · 2τ, 1 ≤ k ≤ (ρ − 1)/2, since 1 ≤ i ≤ (p − 3)/2. There are (ρ − 1)/2 integers k satisfying this since ρ − 1 is even.

Similarly in the latter case we have 2τ0 | j which, since 0 ≤ j ≤ (p + 1)/2, gives us j = l · 2τ0, where 0 ≤ l ≤ ρ0/2. Since ρ0 is odd there are (ρ + 1)/2 integers l that fulfil this.

Therefore we have T−2(p) = ρ − 1

2 +ρ0+ 1

2 = ρ − 1 + ρ0+ 1

2 = ρ + ρ0 2 for p ≡ 3 (mod 4) as well.

Now that we have an expression for T−2(p), we are ready to prove the analogue of Theorem 2.4. That is, we look at the asymptotic behaviour of ST−2(N ). The calculations are very similar, whence we won’t go into quite as much depth this time around.

Theorem 3.6. Assume the Extended Riemann Hypothesis. Then ST−2(N ) ∼ N2/(6 log N ).

Proof. We have

ST−2(N ) = X

p≤N

T−2(p) =1 2

X

p≤N

 p − 1

2τ (p−1)+ p + 1 2τ (p+1)

 .

(18)

From Theorem 2.4 we have that X

p≤N

p − 1

2τ (p−1) = N2

6 log N(1 + O(1/ log N )) . Similarly, we find that

X

p≤N

p + 1

2τ (p+1) = N2

6 log N(1 + O(1/ log N )) ,

since we get the same terms except for the signs of the N/(log N ) term, which we contain within the big-O expression.

Therefore we have ST−2(N ) = 1

2

 2 N2

6 log N (1 + O(1/ log N ))



= N2

6 log N (1 + O(1/ log N )) ∼ N2 6 log N.

Note that the asymptotic behaviour of ST−2(N ) is identical to that of ST0(N ).

(19)

4 The periodic points of fc(x) = x2 + c

Unfortunately, it is difficult to apply the above methods to the case of fc for c 6= 0, −2. Observe that for both the cases of T0(p) and T−2(p) the techniques boil down to expressing the nth iterate of the maps on some a ∈ Fpas the sum of terms of the form ηi2n, for some cleverly chosen ηi (a itself in the case of f0, the roots of a carefully designed polynomial in the case of f−2).

Ultimately, Vasiga and Shallit’s pivotal result was finding this polynomial that enables the expression of the nth iterate of f−2 as the sum of such powers.

To our knowledge, there is currently no other c for which an analogous method is known.

Since we don’t know of any such methods—nor indeed any other kind of approach to the problem—we are unable to find expressions for the periodic points of fc, whence we’re similarly unable to find explicit expressions for Tc(p).

Having said that, there are things we know about Tc(p). In [Pe01], Peinado et al. find several different upper bounds on the cycle lengths of x 7→ x2+ c over Fq, depending on the nature of the prime power q and the coefficient c.

At the same time, Peinado et al. also find, in the same paper [Pe01, Proposi- tions 3 and 4], conditions for when the mappings fchave cycles of lengths 1 and 2, depending on the coefficient c and whether or not certain expressions in c are quadratic residues or not. What’s more, there are infinitely many combinations of primes p and coefficients c such that these conditions hold, whence any lower bound on Tc(p) necessarily needs to be very small.

In [Ni13, Section 3], Nilsson studies the periodic points of all fc in Fp for fixed primes p. He shows there are exactly (p − 1)/2 diagonal lines in the so- called Periodic Point Diagram—a means of visualising which combinations of c and x are periodic—that contain no periodic points at all.

We demonstrate the unpredictable behaviour of Tc(p) for c 6= 0, −2 in Figure 4.1 by comparing plots of them with plots of T0(p) and T−2(p). It is plain to see that T0(p) and T−2are much more well behaved. Note also that the magnitudes of T0(p) and T−2(p) are far, far greater than that for the other c.

The plots of other Tc(p), c 6= 0, −2, look similar to that of T1(p) and T5(p).

4.1 The asymptotic behaviour of STc(N )

Despite this lack of knowledge and the difficulty in describing the behaviour of Tc(p) for c 6= 0, −2, there are interesting observations to be made. By being inspired by the previous investigations of the asymptotic behaviour of ST0(N ) and ST−2(N ), we compute Tc(p) for consecutive primes p and using these we compute STc(N ) for N up to and including the last of these primes.

We do so quite na¨ıvely by means of the following algorithm:

1. Create a list of all elements of Fp, 2. Apply fc on each element in the list, 3. Remove duplicates from the list,

References

Download now ( PDF - 28 Page - 3.56 MB )

Related documents

The Fourier Series of a Periodic Function

Lemma 1.14.. iii) If a sequence of continuous functions converge uniformly, then the limit is continuous (proof “Analysis II”).. proof of

Självskattade effekter av företagsstöden under pandemins första år

Stöden omfattar statliga lån och kreditgarantier; anstånd med skatter och avgifter; tillfälligt sänkta arbetsgivaravgifter under pandemins första fas; ökat statligt ansvar

“We are in the business of trust”

Byggstarten i maj 2020 av Lalandia och 440 nya fritidshus i Søndervig är således resultatet av 14 års ansträngningar från en lång rad lokala och nationella aktörer och ett

Planlægning af turismefaciliteter i kystområder i Danmark

Omvendt er projektet ikke blevet forsinket af klager mv., som det potentielt kunne have været, fordi det danske plan- og reguleringssystem er indrettet til at afværge

Studie om investeringsfrämjande i Finland

I Team Finlands nätverksliknande struktur betonas strävan till samarbete mellan den nationella och lokala nivån och sektorexpertis för att locka investeringar till Finland.. För

Sveriges implementering av Small Business Act for Europe

40 Så kallad gold- plating, att gå längre än vad EU-lagstiftningen egentligen kräver, förkommer i viss utsträckning enligt underökningen Regelindikator som genomförts

On the robustness of periodic solutions in relay feedback systems

It is shown analytically that certain stable periodic solutions in relay feedback systems are robust to relay perturbations.. Keywords: Limit cycles; Sliding Orbits;

Robustness of the Quadratic Antiparticle Filter forRobot Localization

We recently developed a new type of filter based on an auxiliary variable Gaussian distribution which we call the antiparticle filter AF as an alternative nonlinear estimation