close

Вход

Забыли?

вход по аккаунту

?

Черемушкин А.В. - Лекции по арифметическим алгоритмам в криптографии (2002).pdf

код для вставкиСкачать
T
V /
*
.
<*
-3
:5
-.?
8/
-
5
/5
7/
-
(
)
)
CH
0
0
F
F
8 +
¤
¥
¤¥
J
X
TWD H
G
T
>
>
* >
@+
;
0
/
$
R
!
9
5
9
+
+
$
/
)
#
"
¡¢
U .
'$
£
3 >
=-
-3
:5
8
.
,
T/
3
'
'
7
.
,/
7
3/
*
S 7
'
K
-7
/5
D
D
0
%
0
0K
K
<
-3
*
+
5
5
$
/
7+
:
8
:Q
)
)
D
D
"
8 2
/
$
G
C
PC
#
0
0
N
0
0
0
0
*
.
$
=/
;
0
$
B
5 I
/
?' $
.+
:
.
9
-$
G
C
CG
D
0
0
0
;
./
3?
C
C
GC
E
CH
G
EF
E
CD B
A
+
D
'9
3@ D
: D
.
&+
C
C
GC
B
$
/
$
5
&+
<
7
'
$ O
-9
M
$
3* K JF
L
0
0 8
&+
?' $
D
5 I
/
$
$
.+
;
3
<
,/
= 2
.
$
&+
<
C
0 E
L
K
0K
0
K
. CD
CH
D
60×88 1/16
*
+
+5
$
+
'3?
$
7/
9
$
*/
/
;/
-
&
3
.
=
>
5
'.*
$
+
/
;/
-
7/
-
/5
/
7
.
$
+
$
9 :5
.
8
.
,
=/
;/
'
7
(
<*+
'
0
*
/
7/
8$
%7
-.
$
*)
+5
,+
-3
&
'3
4+
6
"
*
/
0
&
%
-*
3 2
0 1
-.
$
*)
,+
'(
%&
$ #
!
"
!
‡
{—
}
{ ž
‡
{‹

‹
‘
{}
€ „

‘

€
Ÿœ
˜
‡
’
†œ
„

‰
‡
{‹
‹
‘
{
Ž
{
Ž
†~
€
‰
{}
€ „
‰ ˆ
Š
€
„
{
‰
€
†
€‹Œ
ƒ
„
‰ ˆ
Š
{
†€‡
…{

€
|ƒ‚
{
€
|{}~z
–
{
™ Ž
š
‡
€ ˆ
~
‡

‰
{
‘•

‹
†
{ ”
‰
‰
‡
‹
“‘„
{
Ž
‰’
Ž
‘
{
‘„

{
{
}
˜“ ˆ
˜‰ „
{
{‹
}
{

{‹
ƒ
Ž€~
‡
€‹
ƒ
‘
Ž
Œ
€

„
“œ
‰‘
€
•
}
‹
{
}
‹
‰›
‰
˜
’
ƒ‘
~{
p
p
o
n
l
l
p
o
xn
t
l
m
j
y
r
tr
l
wx
o
q
p
no
lr
j
lu
t
hv
h
r q
s
l
lm
l
jk
h g
i
Z
ef
cd
ab
`^
^ ]
_
\
Z
[
Y
;
;
;
-
@
>
?
>?
:
<=>
:9
87
6
-
5
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
5
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
A
£
(
E
Rl
$
"
%&
,f
¤
¥
¤¥
(
(
(
(
™
¡¢
"
f
,f
k
2
5
n
j
n
™
(
(
E
CD
¤
¥
¤¥
B
A
(
(
(
(
(
(
(
(
(
(
(
(
*
5
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
x
u
(
$
$
A
(
(
E
"
h
%
%
"
%&
¤
,f
h
%
%
h
¤
5
u
" ,
,f
(
(
(
(
(
(
(
(
(
(
j
%
$
#
%dc
"
4
d
"
%&
f,
^
A
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
5
$
4
E
E
%
$ ¤
,
(
(
z
¤
,
(
5
(
(
(
(
(
(
(
(
e
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
% $
( C
h
C
h
" ¤
,
h
c d
(
(
" 2¤
,
"
(
(
(
(
(
(n + 1)
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
"
f
Rl
s
¤f
,
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
E
&"
%E
,
u
s
¤
¤
,
0
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
7
"
`
,
¤
,
r
4
2
y J
X
GD
E
2
2
(
(
(
(
(
(
(
(
(
(
(
(
$
%
$
#
dc
"
c
bD
%
E 4
2
$ u
"
¤
,
m
^
(
(
(
5
/
+
+
$
,
,
5
u
(
$
d
"
"
k
E'
j
$
$
E
"
"`
d
b
E%
%E
,
2
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
*
5
/5
/
+
'
:
+
/
8$
&
*
/
V
$
+
'$
7
<
:
.
3
%&
8
<
4
3
8M
4+
7
0 +
3
.+
K
.
'
5
$
+9
/
/
</
'
'
3
3
,= +
<*
'3
78
.
,+
<*
@
,
,
v
$ s
>
%
%
4
E m
"
)
K
T
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
&
+
5
/
2,
,
_
(
'
$
,
,
r
_
T
38
$
*
$
$
E
"
5
x
$ s
k' %
"
(
(
(
(
(
(
(
(
(
(
(
(
(
(
%
%
$
#
'
`
"`
2
.
$
;*/
+
/
+
+
(
)
(
(
(
(
(
(
(
(
"
,f
,
d
f
n
"`
%
'
$
$ s
E
E
*
+
/
$
/
/
+
5
5
T+
7*/
:
.
$
8/
7
'3
+
,+
7
7
-
.
+
5
* I
=/
3
-
*
<*
3
8
3
&
3
3
/
<
/
$
5
?
78
.
.+
'
3
5
+
,+
<*
*+
/
+
/5
)
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
>
>
/
3 >
.)
'
:
8
.
3
85
3
&
(
'3
<
+
/
7)
'
?5
>
0
$
$
9
=$
&
,
-3=
+5
'
M
V
$
&
3 I
3
4
%&
/
7/
%9
7
7/
'.
%,
.
?
,8
'
+
'$
9
'$
,+
*
=
`
r
E
b
%$
¤
B
"
¤
,
,
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
¥2
3
,
,
,
$
¤
E "
5
v
"
D
¥
5
4
3 ¥
3
21
0/
.
w
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
d
"
$
"
'
(
(
™
(
¤
,
,
u
^
*
+
-
,¥
¤
¥
¤¥
¡¢
£
6
6
p
X
V
Ut
S
T
Z
X
q
=
6
O
Y
$
&
"
'
"
%&
#
( )
*
!
"
(
(
(
$
%
$
#
dc
$
"
E% h
'
D
e
f
d m
s
,¥
^
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
d
"
'd#
d
E
#
"
h'
,
f
4
r
^
(
(
(
(
(
(
(
(
(
(
(
(
(
(
$
$
'
"`
'
c
¤
m
h
d
'
E
d
e¢
^
6
U
T
Z
V
X
p
X
@
q
U o
6
O
%
0 -
'$
+5
*
$
5
+
$
4+
.
.
,
3
',
-$
.+
.
3
7
'3
%
/
;/
-
&
'3
4+
0 '
K
$
+
$
. -3
3
.
=
.
=
3
(
(
(
(
(
(
(
(
(
(
(
(
(
(
+
5
*$
/5
/
-3
'3
-.*
8
%.
.
3
.
/
/
+
N
$
'5
3
;/
'
'
7
.
%,
;
;/
-
5
/5
/5
7/
-
3
.
'
5
j
b
C
E'
E
"
,
¤
n
R$ l
m
^
0K
T
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
/
)
)
I
5
$
+9
/
/
</
'
'
3
@$
)
>
* I
=/
'
3
,*+
-$
3
%V
,+
7
$
9
2
0 1
:
/5
E% #
$
&
E
k
E% $
4
,
d# B
^
(
(
(
(
(
(
(
(
(
(
(
`
j
%
i
2^
,
!
"
b
E%
C
h
E'
b
%
$
'$
.
T=
$
$
3 I
9
.
,
3
',
-$
0 -
0
0
K
$
5
.+
.
3
(
(
(
(
(
(
(
(
(
(
(
T
$
'
"
'd#
b
%
'
b
"
E
a
%
*
N
$
$
$
/
$
/
+
+5
7
'3
%
*
+
/
;/
-
&
'3
4+
`
,
_
^
. -3
3
.
=
.
7
3
-3
'3
-.*
8/
3
,
%.
.
0K
0
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
T
+
5
*$
/5
3
.
'5
3
/
;/
'
'
7
.
%,
;
/
;/
-
5
/5
/
5
+5
/
9
7/
-
*
<*
'
3
?
$
I
^f
%h
¤
,
g
'
"
%&
b
"
E
a
%
"
O
_
(
$
¤
$
$`
%
$
#
%d
c
#
e
!
"
b
"
E
a
%
0
_
^
*
<*
%
K -
/
5
+5
/
'$
I
(
(
(
(
(
(
(
(
(
(
(
(
$
$
$
"
E
a
%
E C
`
E '
"`
'
,
_
^
/
*
/5
$
4+
.
.
,
3
',
-$
3
.
'
5
$
+9
/
+
</
'
.
:V
<
=-
/5
=$
0 '
K
/
5
<*/
7
<
3
3
)
>
*
$
5
+
5
+
+
$
T
3
=-
-
&
3
5
/
/
+5
,/
+
T =/
'
%&
:
8
.
,+
,+
<*
.+
.
3
7
'3
%
/
Q
S
\
V
[
T
Z
X
S
TX
VW
TUV
S
@
]
Y
Q P
R
6
O
K
5
;/
-
)
>
K
*
$
$
5
$
/
$
/
+
N
T+
&
'3
4+
. -3
3
.
=
.
7
3
-3
'3
-.*
8
-3
'3
4+
./
3
,
%.
.
3
.
0K
0
+
+
*
5
/5
/
+
/
+
5
*$
/5
/
T'
3
/
;/
'
'
7
.
%,
;
;/
-
A
V 7/
-
-.
*
<*
'
3
7
(
'.
+
'9
@
N
L
ML
I
KJ
I
G F
H
J
H
0
7
J
X
GD
E
2
2
(
j
k
E
#
d
E
™
(
(
(
(
z
j
&
E
C
E j
k
C
C
u
B
# u
a
"
%d
"
d
E% E
E% $
A
(
(
(
(
z
j
$
"
'
i
r
m
i
_
h
C
'
C
'
%
C&
E
h
&
%
'
A
A
" A
$
j
$
"
Ÿ
¥
¤¥
2
¥
5
r
m
$
E
k
E
"
by

"
b
E%
( b
*
$
"
z
$
j
E
"
$
&
b
E%
"'
&
E
E' "
$
C
h
&
m
Ÿ &
"
'
d
h
"
z
$
'd
%
$
#
r
s
"
d
%E
$
h
&
"C '
"
$
"' "
&
E
(
™
™
™
&
E
b
"'
h
E
E
a
2
,
,f
,¥
4
$
"
h
k
E% j
E
&
b
E%
"
h
%
&
D`
b
E%
h
%
k l
m
$
( )
"
&
#
%&
`
`
E
E
'
m
$
$
"
k
E
k
E
#% '
Cy
"
"
E
a
%
E k
'
$
k
"
`
m
d
h
j$
E'
c
Cy
'
"
$
C
D
C
#%
E
y
"
%
™ h
z
D
'
EC
&
E
'
$
C
"
C
( j
'
&
#
E
c
"
C$
C
'
h`
Cy
'
"
$
'" "
™ $
%
'
u
j
%
™ k
"
"
#
'
"
&
h
b
E%
#
E
`
`
E'
"
dc
b
E%
E
m
(
j
$
b
"
h
c
$
$
$
k%
"
'
"
%
"
'd
k
E
a
%
"
"
u
m
z
$
b
"
E
"
"
%#
"
C$
`
d
E
E
h
&
"
k
E
a
z
%
%
$
#
"
&
E
dj
k
$
C$
E
c
D
h
D
'd
"
£
'
(
$
#
hj
# &
"
5
z
`
`
E
a
%
%
$
#
"`
b
E%
%"
$
'd#
E
E
'
$
,
4
(
(
(
(
(
(
(
(
(
(
4
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
%
E
(
m
"b
j
%$
"
'
d
"
b
"%
C
d
b
E%
#
E
'
%$
"j
h
d
%
E
%
m
j
j
$
d
"
$
$
,
,
e
e
B
"
h
a
m
b
'
k
C
(
(
$
'd
E
'k
%
$
¤
,
q
$
m
(
(
#
"
d B
f
,
(
(
p
<
<
d
h
>
>
S
X
V
e
#
S
X
S
X
/
z
$
j
j
$
a
'
"
' $
&
`
E
"b
%
"
Ÿ
r
¡
m
$
E
k
E
"
( b
*
by

(
(
(
(
(
(
(
(
(
(
(
(
(
(
d
"
$
'$
"
e
5
d B
,
m
/
^
"
E
"
E
j
'
k
$
¥
¥
¤¥
$ i
&
"
C
"
"
"
E
'
( &
&
S
TX
T
S
T
?
7
Z Y
S
t
\XV
6
$
E
#
'"
k
'D
"
% d
E
a
%
&
E
C
'
$
E
™ #
*
(
(
z
,f
5
4
4
,
B
(
(
(
(
(
(
(
h
%
%
j
2
e
u
"
h
"
(p − 1)
(
(
(
(
(
(
(
(
(
(
(
(
(
(
"
D
&
E
#
"
h'
h
¤
e
" ,f
N
L
K
I
N
L
(
(
(
(
(
(
(
(
(
(
(
*
E
$
"
%
c
"
%&
e¥
2
,f
A
( )
%
%
k
h
dc
h
c
™ E`
'dc
m
" m
%
$
#b
"
E
C
™
$`
$
#
$
`
!
"
by
$
"
E
a
%
h
k
E% $
#
$
$
"
E
# '
h'
TU
p
Z
*
U
()
V
$
d
E% '
"
$
h
%
$
#
"
"
"
#
C
h
™ b#
q
]
'
f (n) = O(g(n))
™
›
‘
&
<%
‰
‰
•
=
‰
Œ ”
~
‰
“
‹
S
~
g(n)
a>1 b>0
n
+ b · g(n) + d · n,
f (n) 6 f
a
˜
‹
€‡
“
{
}
$
g
$
†
Ž
‘
:9%
‡–
‹
k%
E
'd
E
E
'
E
$`
d
E
a
'
$
"
E
a
%
( d
%
$
&
"
E
k
E
#
h
"
™ #
k
E
E C
E k
E
C
#%
'
&
%
"
"
E
%
k l
Ž{
z
h
j
‹
b
"'
b
%
$
'
"
™
j
j
b
$
b
"'
b
%
$
C
;
< % 9:%
& &
"
f (n) > n
kf (n) 6 f (kn) k > 1
(
™
™
%
$
(
$
$
j
$
+
'
"`
'
E
a
'd
'
%
k
$
E% #
%d
"
( k
k
&
h
m
m
E
%
E
#
E
Cy
h% "
' $
'
E
C
h
"
j
'
k
$ B
™
k
"
a
E
m
$
$
"
E
a
%
E C
"
™ b#
"
&
%
h
C
h
z
z
C
'
h
"
h%
y
m
$
$
$
&
E
"
E
"
E
h
by
$
"
E
#
"
C
E b
"%
k
h
( (
™ "
f (n)
Ž
(
"
E' $
E
`
h
C
E ™
™
$
'h
'
'
"
%&
$
"
E
a
%
E b
"
C
#%
C
h m
d h&
"
E
"
E
d
b
E%
"
$
a
%
d
"
( d
*
E
$
$
( )
#
hj
"
E
a
%
E k
k
E
c
'
k
E
#
"
%
k
$
"
C
#%
m
"
™ "
"
%&
d
'
E
`
%
( )
z
$
"
E
a
%
`
$`
E E
c
$
'
kb
"%
k'
k
"
C
%&
h m
m
&
h
a
"
`
$
"
E
#
hj
'
"
$
$
$
$
#
hj
"
E
a
%
E E
$
a
%
k
C
$
$
'h
'
"
E' E
k
"
C
#%
E n
( )
z
'
c
b
%
b"
"
C
#%
y
j
"
%&
d
E
"
j
$`
$
"
E
a
%
C
`
u
E %
k
h
"
' $
C&
h
"
( d
"
%
k
'
h
c
h
d
E
E
h
™ C"
#
hj
Cy
E
"
E
c
D
™ '
"
$
$
%&
c
'
'
"
a
E
b
"
$
™
$
d
E
E
h
kb
"'
b
%
$
j
$
"
a
dc
"
k
E
D
%
k
"
E
™ h
z
j
$
a
E
'
E
#
"
C
b
%
$ u
`
(
™
z
$
$
$
y
C
#
hj
Cy
E
E
h
&
D
"
%&
b
"
E
a
%
k
b
E%
E
k
j
`
bD
j
E
#
hj
h
E
#
hj
`
m
E
'
k
$
"
%# y
j
d
"
™
z
$
"
E
E
`
`
#
hj
E
E
h
k
E
D
"
%&
&
"
E
E "
$
E
d
E'
d# m
#
hj
b
E%
%"
$
'd#
$
by
"
E
a
%
h u
$
`
(
$
`
`
E C
"
E
k
$
"
'
E "
%&
b
"
E
a
%
$
(
j
y
%
$
#
&
"
E
Cy
k
h
c
'$
E
$
C
%E
h
"
$
$
"
E
a
%
E d
E
"
j
$
' $
#
$
E
d
h
"
"
( )
z
hj
C&
h
w
™ C
"
y
$
k
E
h' C
h
d
h
"
"
k
E
d!
# m
E
#
hj
dc
b
E%
%"
u
z
"
$
%
E
`
&
8
$
$
$
'd#
"
E
a
%
E TX
VW
TUV
Q
u
Y
Q P
R
d
"
™ %
$
'
"
$
#
# '
$
a
E
b
"
C
"
'd
$
h
&
'
#
k
E% $
#
$
$
"
E
a
%
( "
$
C
"
%&
%
h m
`
k
h
dc
E
E
h
$`
E
E
j
"
E'
$
$
$
dc
E
h
c
$
'
"
$
a
E
'
"
#
'
a
CE
hy
( '
"
a
E
&
E
E'
B
$
E C
E %
"
a
E
E
"
E
"
E
'
k
%#
"
b
D
%
"
k
h'
z
$
m
%
z
$
$
$
$`
k
E% $
#
$
$
"
E'
E
c
C&
h
%
k
h
"
E
a
%
E ™ $
&
"
Ej
dc
E
E
'h
E
c
'
%
k
h
" m
d
k
'
E
( d
$
$
b
%
k
$
$
"
E
"
%&
by
"
E
a
%
h
"
™ C
z
z
$
b
%
'
$
b
"
E
a
%
$
Cy
b
E%
"
a
"
D
™ C
™
u
" m
`
j
k
'
E
%#
b
j
"
"
a
"
%&
dc
E
E
h
c
E
dc
E
m
z
E
m
$
c
E
#
"
"
h
E k'
" m
b ¢
#
E
a
E
E
E
™ (
u
(
$
"
%&
™
z
" m
d
k
'
k
$
"
m
'd
d# m
E
"
%&
"
E
a
%
$
$
y
%
'd
E
"
"j
"
h
k
"
%
'k
k
E'
$
E
`
`
(
$
E '
"
(
B
#
dc
E
E
h
dc
E
h
'
c
E
h
Cy
E
k%
E
'd
™ C
C
h
m
$
$
C
C&
h
h
c
" A
"
E
a
%
E 'h
E
"
%k
'
E
&
z
$
Cy
E
E'
E
"
h
Cy
E
$
"
%
k'
"
h
#
hj
b
E%
"
`
`
m
%
$
#
$
j
™
E
"
'
dj
C
E
!
& %
E'
E
$
%
z
%
$
'd#
k
E
D
"
%&
S
X
V
Ut
S
TX
VW
TUV
X
V
™
™
$
A
$
&h
%
$
#
E
a
%
%
E
a
CE
"
$
$
"
E% *
%E
h
log N
˜
‡
d>0
’
˜
‰
Ž{
€‡
Ž“
{ ˆ
h m
C
™ "
f (n)
>
k
"
$
$
f (n) 6 cf
‡

‘
‡
‹
{
Œ
›
>

{
'
"
E
k
h
bE
"
d
‡{
€
Œ

‰

}
‰
$
$
"
k%
E
'd
n
Ž{
‡
‹
Ž€
‘
‰
$
y
E' E
k
"
f (n) = O(g(n))
€

(
b
$
j
f (n) ≈ g(n)
c>0
f (n) 6 cg(n)
f (n) ≺ g(n) g(n) ≺ f (n)
f (n) ≺ g(n)
a b c
?
h m
g(n)
f (n) =
{
‡
j
= O(g(n))
n
f (n)
N
&
k
E
%
E
'd
"C "
"
m
d!m
$
z
$
h`
c
#
!
"
O(log N )
%
!
"
#
$
$
$
k
$
"
%
'k
"
$
C
C
C&
h
k
E% $
#
d
$
"
k
E'
E
$
&
E
h
"
j
™
%
$
#
h'
dc
'
z"
( '
"
b
"%
C
h'
'd
dc
E
E
h
h'
'
B
N
n
+ bg(n) + dn,
a
™
$
j
b
%
"
k
$
Cy
"
b
%
$
'
E
E
'
k
E% '
"
$
h
C&
h
'h
E
J
J
F
N
J
L
N
L
L
N
N
N
M
I
ML
z
$
y
m
$
y
# '
'h
k
"
'
d
" m
k
"
%
'k
"
$
h
d
E
E
h
c
"
by
'
™
(
z
`
$
$
'dc
k
E
a
Cy
h% B
m
E m
C
h
h
c
h
d
E
E l
/
7
1/
6
4
5 0
345
2
1/ 0
.-,+
/
j
'h
%
$
z
E
j
Cy
h% b$
$
'
"
$
"C '
"
"' $ ¤
y
"
E
E% l
$ B
%
C
%
'$
™ "
™
h
'
"
+
€
‰
€ ˆ

Ž€
‡
Ž{~
‰
“ ˆ
ˆ
‰
‰
Œ ”
~
{
ƒ‡
‰
™
™
‰
‰
Ž€
&
<%
&
%
€
{
“
{
}
€

}
‘
S
•
}
‰
™ ‹
†
˜Ž‰
{
“
‹
~
‡
’
˜
Ž{
V
™
M (n) D(n) S(n)
c
k
dc
E
#
"%
E' C
%
'$
(
(
b$
%
"
j
€‡
Ž“
E
$
#
&
kj
h
( %
z
z
E
%
$
#
&
kj
h
"
h'
z
%
E
*
$
k
E b
"
E
a
%
$
m
*
$
j
'
k
E
h' '
b
"
E
a
%
$
%
™ $
# E
kj
h
z
*
$
$
$
$ u
"
C
c'
h
k
a
CE
b
z
$
"
E
a
%
$
E
*
b
"C
$
"
k
E% h
b
"
E
a
%
™ %
$
#
E
&
kj
h
E
dc
kj
h
n
2n
"
%
y
1/N
k'
"
%
k
1
AB = ((A + B)2 − A2 − B 2 )
2
M (n) 6 3S(n) + 4n
h
h
$
"C $
k
h% b$
$
"
k%
E
'd
h
l
M (n) ≺ S(n)
k
(
S(n) 6 3R(n) + 2n
$
'
"
™ "
E '
$
{ ˆ
$
#
S(n)
R(n)
#
$
$
N2 =
E' S(n) ≺ R(n)
&
'
%
"
h
a
( '
kj
h
c
D
h%
$
%
E'
d
"
m
m
j
j
%
$
#j
k
E
E
C
#%
"
k
%
$
'
E
dc
E
# '
h
k
`
z
™ b
h
k
b
E%
'
k
y
$
$
j
j
"
E
b
h
™ '
E
dc
E
# '
™
m
C
%
$
#C
E
E
h
d
E
"
j
h
$
"
b
E%
"'
h% $
'h
'
C
E
E
$
j
N
EC
™ %
$
E
(
$
h' t+1
#
E l
™ '
h
k
ˆ
‰
Ž‰’
{
“
‹
~
€‡
˜
Ž{
€‡
Ž“
{ ˆ
~
™
‰
›
‘
‡

‘
‡
‹
{
Œ
›
>

{
{‡
€
Œ

‰

}
‰
“
‹
S
q
=
h u
k
"
a
E
( %
z
$
&
E
"
E
"
E
h
by
$
"
m
C
E
E
h
&
E
"
k
E
h
a
c
E
"
h'
'
k
E
j
h' '
$
™
"
$
"
y
E
#
"
"
h
'
C$
%
$
#
m
$
$
k
$
E% ™ h
k
E
a
CE
"
E
a
%
"
™ #
a
%
h
#
E
`
_
"
™ #
C
#%
hy
z
C
c'
h
k
E% h
E
$
$
'
"
E' E
k
"
%k
E
'd
%
$
#
dc
$
$
k
E
a
CE
"
E
a
%
E C
u
`
E %
k
Ch
kj
h
"
(
n
dc
C
( E
#
&
%
~
$
Ri
k
C
#%
%
k
h
b
%
"
M (n)
D(n)
n
n
b
E
E A
"
(
+
Ž‰
€‡
†€
‰
‘
{
{
˜‰
•
$ £
%&
"
$
C
y
E "
h
%
C&
k
E% h
m
%
"
k
E
a
CE
d
"
M
O(log N log M )
E%
'"
#
j
$
h' '
n
"`
$
E
a<c "
™ ‡
‰
n
C
#%
z
"
n
h`
h
E
$
+
C
#%
b$
%
a > c,
a = c,
E
™
m
%
"
"
™ #
(c/a)
1
− 1 c · d · n ct
f (n) = d · n ·
6
· t·
= O(ct ) = O(nloga c ),
c/a − 1
a
a c/a − 1
a
j
"
%$
!
$ £
hy
"
"
j
l
a < c.
'
C
c'
h
m
!
%
$
%
$
a>0 c>0 d>0
f (n) = c · f ( na ) + d · n
%
bD
%
j
"
&
(
"
1
f (n) + b · g(n) + d · n.
a
E
#
E
E
$
#
k
$
(
%
Œ ”
~

}
b+d
· g(n) = O(g(n)).
f (n) 6
1 − 1/a
"
*
N
$
E
"
'
h
a
u
!
" !
"
"
#
f (1) = d
E
a
&h
O(log N )
%
™
'd#
k
S
X
p
Z
*
W
UV q
a = c,
$
E
a
$
"
n = at
t−1 i
t i
X
X
c
c
f (n) = d · n ·
+ d · ct = d · n ·
,
a
a
i=0
i=0


 O(n),
f (n) = O(n log n),


O(nloga c ),
$
"
%
d
"
a > c,
E k
E
E
a
%
C$
%&
d
b
E%
D
$
d·n
f (n) 6
= O(n),
1 − c/a
f (n) = d · n · t = d · n · log n,
a
'
k
b
E "
y
™ d
E
n = at
E%
w
E
'h
f (n)
n>1
E
"
%
#
f (n) 6
™
(
$
#
%
%
$
#C
c'
h
k
E% h
k
E
a
CE
k l
U
(
W
V
q
q
(
c
"
k
E
%
E
'd
`
n
n
a·f
6f a·
= f (n),
a
a
N
n 6 f (n) 6 O(n2 ).
1/N
R(n)
M (n) ≈ D(n) ≈ S(n) ≈ R(n).
1
−N
1
1
−
N
N +1
™
$
$
j
"
kb
"
Ej
%
d
$
"
CE
"
%
k
"
a
E
&
E
`
&
(
z
l
$
$
$
$
"
E
"
E
$
h
by
"
$
E
#
"
"
E
a
%
E '
$
$
"
d
"
#
'
"`
'
C$
%
'$
s
'
"
b$
%
"
j
&
<%
/
5
4/
1
2
1/
6
4
5
5
4/
1
2
1/
-+
/
6
-
0
0
r
'
z
'
h
E%
z
™ b
a=
k−1
X
i=0
%
$
'h
'
(
ai 2i = (. . . (ak−1 2 + ak−2 )2 + . . . + a1 )2 + a0 .
z
a
%
C$
#
k
h
C
E y
`
¥5
M (n) = O(n log n ×
$
d
&
%
%E
$
'
$
k
"
'E
d
'
E
b
h
"
$
j
"
™ #
(
%&
k
$
"
%
k'
k
k
(
"
r→∞
j
C
E "
™ h'
E% #
&
E
E
#
E
k
E% $
'd#
k
E
`
E%
$
%
$
#
k
E
$
j
E`
d
E
E'
`
`
"
%&
d
'
E
C$
d
a
z
E
h
E
™
™
C
CE
#
hj
E
h' dc
&
%
$
#%
$
m
'
E% #
y
&
E
C
c'
h
E
j
#
"'
k
E% $
'd#
$
m
(
%
B
m
™
z
j
&
'
E
E% #
&
E
k
E
#
E
b
"'
"
"
E
a
#
E
"
%&
"
"
"
™ #
"
z
j
'
h
kb
%
j
™
™
™
C
#%
%
C
h
"
(
¤
h&
C
"
k
h
&
%
k
$
j
"
'
'
C
h
"
k
%
`
b
%
'
%
$
#j
d
h
a
`
`
"
'
™ b
z
$
"
b
E%
"'
h% $
j
$
%
$
#
kj
h
#
E
D
"
C
'
h
b
"%
h
™
d
j
"
™ #
"
k
E
#
E
&
b
E%
#
E
'd
C
m
"
& %
$
$
E '
%
h' k
E
a
CE
"
%&
&
E
E
h
"
E
a
%
$
$
$
$
E
E
"
'd#
E
%
k
Ch
"
( '
™
a
%
'
"
%#
"
`
`
u
%
$
z
k
E
a
CE
b"
"
%
E
'd
E
Ca
E%
$
#
z
E
E
%
$
#
dc
kj
h
z
j
C
c'
h
k
E
h' j
k
E% $
'd#
%
k
s
™ h
™ "
m
E
dc
kj
h
™
$
$
"
k
"
h
c
b
E%
'"
$
$
"`
bh
"
b
E%
"'
h% $
k
E
E l
%
C
$
"
"
b
E%
"'
h% $
E% $
'd#
'
k
$
"
%# y
`
(
¢
z
j
E
j
&
E
"
k
E
#
E
k
E% $
'd#
%
k
h
E
by
"
h
"
d
E
E
"b
E '
%$
"j
h
%
k l
m
£
&h s
z
j
"
k
$
C
b
%
'$
(
(
$
'
$
E
h
"
E
a
%
C$
E E
"
%k
'
E
%
&
¤
m
%
(
"
#
'
C
h c
"
E
%# y
k
E
E
#
C
"
c
d
C
h d
b
E%
$
B
%
j
dc
a
E
'
k
E% '
$
$
"
#
d
"
$
"
%
k
h
dc
&
%
'
h
E
c
b
j
$
#
E
$
b
"C
u
$ u
&
D
&
Cy
h% E
'
"
'
E
C$
(
$
%
k
Ch
dc
m
"
( )
k
E
v
m
j
#
E
d
E
E
a
%
h
k
b
"
"
C
$
h
h
c
E
"
%&
'
c
( %
™
kj
h
c
D
h%
'
m
D
m
z
*
'
h
z
j
n
Cy
b
E%
C
h
j
m
E
u
™
& &
4
,
%
"
a
CE
$
#
V (x) = xB1 + B0
n
m
¤
E
logr+1 2 → 0
n
E E j
b
C
$
m
$
$
m
E
$
b
E%
'
E
d
"
™ E
j
$
'
E
dc
$
"
B
$
k
E'
x
%
m
h' $
%
$
#
"
%
kC
bE
"
E
j
M (n) ≺ f (n) = O(nlog2 3 )
"
k
E% h' a
( (
(
E
h
"
x=2k
U (x) = xA1 + A0
E
&
"
d m
$
C
E
c
"
%
*
&
m
E
'
"
%#
E
E
Ca
k'
C
h
E
E
'
k
"
$
C
#%
'
&
™
™
`
$
"
E
E% $
C
#%
n
+ cn,
2
$
d
#% y
E
E
$
$
"
C
"
j
B
C
h m
j
"C b
%
#
hj
D
j
a
'd#
&
u
n/2
'd#
%
k l
b
E )
\
d
"
™ C
¢
™ #'
"
E
E
h
= 1,585 . . .
k
"
'$
TX
!
"
c
E x
"
"
'd
b
E j
b
%
f (n) = 3f
"
%
k'
k
E
*
(
*
V
8
$
"
M (n) = O(n1+logr+1 2 )
"
$
a
h
(
r
j
h' '
E
"
™ #
"C h% $
× log log n)
$
# b
q
`
`
n
+ 2M (n) + 2n.
2
E%
$
E E
'h
#
'
"
(
"
E
dc
E
E
"
#
2
1
1
(1 − δ) −
(1 − δ)2 =
(1 − δ 2 ).
N
N
N
"
E
b
$
E' j
i
C
C
#%
"
'd
( '
E
x(i + 1) = 2x(i) − N x(i)2 .
C
CE
(
C
%
'$
(
'
"
,
$ £
hy
"
d
x(0), x(1), . . .
"
E
z
$
"
E
"
™ E
¢
E $
E' ™
d
%
C
%
$
"
k
1/N
a
%
h
"
C
#%
$
"
E
a
%
E% '
c
"
c
"
i
h
N
1
2
k
$
$
#
E
a
$
'
(
b
E
#
j
j
δ<
"
j
$
"
E m
Cy
m
"
= A B1
%# y
%
`
m
E
E
d
%
m
C
"
$
"
E
"
E% '
'
R(n) ≺ M (n)
M (n)≺S(n)≺R(n)≺M (n)
j
d m
"
%&
E
E'
$
C
#%
™ #
A
B
b
C
&
'
b
™
a
l
E
x(0)
"
$
& g
R
&
%
"
$
E
"
"
$
$ v
$ B
log n
¤
4
,
$
™ E
k
R(n) ≺ D(n)
D(n) ≺ M (n) + R(n) ≺ R(n)
R(n) ≺ D(n)
Cy
(
R(n) 6 R
k
™
"
%&
`
bD
E
O(n2 )
'
m
d
'
E
£
x(i + 1) = 2x(i) − N x(i)2 =
E
£
k
E
C
h
b
E
£
™ C
E E
a
(1 − δ)
!
d m
!
C
#
C$
k
k
E
1
N
c
(
dc
&
%
$
x(i) =
(
" m
'
E
. . . , x(i), . . .
R(n) ≺ M (n)
A = 2 k A1 + A 0 ,
A
n = 2k)
B = 2 k B1 + B 0 .
AB = (2k A1 + A0 )(2k B1 + B0 ) = 22k A1 B1 + 2k (A0 B1 + A1 B0 ) + A0 B0 =
= (22k + 2k )A1 B1 + 2k (A0 B1 + A1 B0 − A0 B0 − A1 B1 ) + (2k + 1)A0 B0 =
= (22k + 2k )A1 B1 + 2k (A0 − A1 )(B1 − B0 ) + (2k + 1)A0 B0 .
c > 0,
log2 3 =
Na
/
5
4/
1
2
1/
6
4
5
,,
5
4/
1
2
1/
-+
/
6
-
,
0
0
(
(
&
¤
z
b
%
m
C
k
$
"
%k
E
'd
z
%
C
$
"
k
'
"% '
C
h
™ #`
"
™ "
&
%
hj
j
'd
%
E
E
E
"
$
$
"
k
E% `
9
/
"
%&
'
¢
%
™
z
$
k
"
k%
E
'd
E
'
dc
"
'
d
"
%&
"
m
*
j
%
$
#
$
%E
h
™
%h
g
'
"
%&
&
O(M (log N ) log N ) = O(M (n)n)
B
(
#%
C
E
m
™
E% %
h
$
h
`
c
h
d
#
`
z
$
h
"
E
a
%
C$
E Cy
"
D
C
(
#
(
z
j
C
#%
"
b
%"
C
%
%"
h
c
'h
E
"
%k
'
™ E
d
y
$
`
B
m
z
b
E%
"'
h
"
C
"
C
h m
k
y
k
'
"% '
$
#
b
"
$
h% C
%
$
$
k
$
"
™ %
s
C
#%
#j
d
"
E
"
™ #
"
(
E% '
$
j
$
E
"
"
b
"
E
k
C
h m
™ E
E
™
(
%
$
"
u
$
j
$
( '
"
"
E
#
E
dc
E
$
%y
"
k
E
bD
E
C
by
%
"
%&
C
k
`
z
m
A
'
C
"
C
h
E
y
u
?
€ ˆ
™ —
Ž{
‡
‹
Ž€
‘
€

Ž{
‰
“ ˆ
Ž€
‘
}
™
™
z
h
"
%&
'
&
D
%
$
b#
"
bD
E
C
™ ™ E
E
a
(
™
™
(
j
`
%h
g
'
"
%&
h
dc
E
%#
'
"
$
a
E
k
Ri
"
$
$
#
#
E m
n
%
$
b#
"
b
E%
"'
h% $
"
( %
k
%"
h
$
&
&
bD
%
E
k
E
h
a
c
E
#
hj
%
k
h`
b
E%
"
k
"
%
k'
k
m
m
(
™
`
k l
%
%h
g
'
"
%&
'
%k
E
'd
E% h
%
$
#
E £
X
V
Ut
S
t
$
$
q
8
E
%h
g
'
"
%&
"
E
a
%
E p
£
( E% h ,
b
h
™
$
E
"
"
k
E
C
#%
z
%
'd
h
c
m
(
(
(
z
b
"C
"
$ u
"
$
&
'
%
C
E
k
E
C
#%
h
"
$
"
$
m
£
z
$
h
E
%
E
'd
b
E%
"'
h% $
'
k
"
%# y
j
%h
(
#
%
$
#b
%
%"
h`
m
j
¢
bD
%
`
]
m
m
"
$
"
E
a
%
C$
E Cy
E
#
"
"
Eb
"
#
j
E
C
h
S
(
U
*
X
V
Ut
S
p
p
Z
P
8 "
#
"
%&
"
%&
"
™ #
E
#
h
j
™
j
$
"
$
C
%E
m
(
(
"
'h
$
$
$
"
E
a
%
E k
Cy
$ £
"
$
h% k
$
"
C
#%
%
h
$ £
hy
"
"
h'
'
E
y
E
a
CE
+
'
"
C
c'
h`
y
E
%
E
'd
C
™
j
$
$
%h
g
'
™
%
C
#%
"
™
k
#
j
E
hy
m
™ E
y
%
$
#
E
%
$
#
%
C&
k
E% h
b
"
E
a
%
E
h' '
A
B 0<B <A
O(log A(log A − log B + 1))
ri i = −1, 0, 1, . . . , k
b
$
j
"
O(n)
h
b
"
&
D
E
"
'd#
™ (
'
%
C
ri > ri−1
2
™
$
"
%&
h
a
rk−i = dk−i+2 rk−i+1 + rk−i+2 > rk−i+1 + rk−i+2 > fi + fi−1 = fi+1 .
E
k
E
h
a
E
a
%
$
Eb
&
E
E
b
E%
E
'
"
b$
‹
‰
 &h
$
$
(
E
E
h B
h
k
Cy
E
E'
™ h
E k
"
(
u
S
'
g
E
a
%
$
c
E
(
Cy
h% $
k
'
"
k + 1 6 1 + blog2 Nc
E
"
"
dc
$
"
b
E%
"'
$
E% $
"
ri −ri−1
#
"
$
"
%&
'h
"
%
E £
h
(
%
l
k
E% O(n0 (ni−1 − ni + 1)) =
i=0
"
E
a
$
%&
&
h% k
%"
{
“
"
j
j
k
X
= O(n0 (n−1 − nk + k + 1)) =
k
X
$
"
`
C
$
k
$
C
_
A
h
%
k
"
"
j
d
h
a
dh
h
h
k
k
™
C
h
E
E
ri
$`
$
"
E
"
$
a
%
™ #
™ '
&h
a
%
h
C
(
#
E
= O n0
O(ni (ni−1 − ni + 1)) 6
i=0
E
$
E %
k
E
&
E
h
&
'
(
E
'
E
C
kj
b
%
E
'h
#
s
A>B>0
rk−1 =dk+1 rk
$
&
™ %"
E
E
C
#%
‰‹
ƒ
E
d
b
E%
"
ri−1
2
E
h
= O(M (n) log n)
$
"
™
h
E j
y
-
{
€—
„
“‘
‰‹
ƒ
{
{—

a
%
k
|ri | <
C
™
$
n = log N
h m
m
D
O(n)
ni
&
m
h
?
{
{
€—
“œ
{ „
‰
‘

˜‰
“œ
‘
€ ˆ
~
‡
‘
{
{—„
“’
$
"
$
l
&h i=0
(
ˆ
˜“ z
{
›
‘

(
= &
˜“ ˆ
‘
‰
“
Ž
Œ
†€
%
k'
™
%
"
E
k
X
E
k
'
‰‡ ˆ
Š
1 + blogR N c
i=1, . . . , k+2
"
{
›
Ž{‹
€

}
€
e
,
%
k
x2 = x + 1 N >0
™

™
S
fk+1 = fk + fk−1 > Rk−2 + Rk−3 = Rk−3 (R + 1) = Rk−3 R2 = Rk−1 ,
z
a
%
E C
h
E
k
E
a
"
™ #
™
‰‡

{
“—
–
√
5
E
C$
k
$
k
$
"
C
#%
%
h
a
‰
R= 1+2
k=2
&
%
h
&
E b
"
C
#%
C
h
C
l
'
"
“
€
V
&
"
f0 , f1 , . . .
%
O(M (n)(k + 1)) = O(M (n) log n) 6 O(n2 log n).
m
"
%
'$
(
b$
%
"
Ž‘
‰
E
h
a
f0 = 0 f1 = 1 fk = fk−1 + fk−2 k > 2
k >1
fk >Rk−2
n
™
%
k l
‰‹
ƒ
˜“
€
i=1, . . . , k
rk+1 = 0
m
E
a
d
™
(
E
j
l
fi 6rk+1−i
&
bD
%
j
"`
"
E
E' A > r−1 > fk+2 > Rk
k + 1 6 1 + blogR N c `
™ C
'
€
“
"
€ ˆ
ri−2 =di ri−1 +ri
E
(
u
B 0<B<A6N
k
E
h
$
"
‰‡
“
€ ˆ
(A, B)
h' D
z
a
c
E
%
k
h
$
%h
"
E% %
h
i+1
%
g
'
"
h
$
u
A
#
dc
kj
h
E
n
$
#
R
%&
¢
i=1
z
$
"
E
. . . , fk , . . . ,
B
O(M (log N ) log a) = O(M (n)k).
C
c'
h
%
k
"
A=r−1 B =r0
(A, B) = rk
k+
A
N
(ni−1 − ni + 1) =
= O(n0 n−1 ) = O(log A · log B) = O(n2 ).
R = 1,618 . . .< 2
O(n2 )
O(M (log N ) log log N ) =
j
$
$
"
j
"
™ b#
"
"
%
$
E
#
C
"
E
a
C
$
$
E C
"
"
"
b
E%
"'
h% $
' $
"
E
a
b
E "
Cy
E
E
'
h
E
™ b
™
z
h' '
b
B
s
/
5
4/
1
2
1/
6
4
5
,
4
1
1/
-+
/
6
-
,
0
%
'
"
E
06A<N
b
j
b
"
j
b
"%
C
0<R<N
2−n AB mod N
s
z
™
k
E
y
E
C
#%
E% ™
ai B i = 0, . . . , n − 1
$
k
$
"
%
'k
"
$
C
dc
"
j
$
y
k
E
a
'd
E% $
'd#
k
"
h'
'
"
$
E' C
%
'$
"
™ #
;
;
R=R+B
R=R+N
$
d
"
'd#
b
"
a
CE
k
"C ™ "
%
m
(
"
$
$ v
B
'
&
(
(
b
"C
$ u
Cy
h% '$
" "
z
*
"
#
E
d
E
E
a
%
h
™ '
"
%&
c
"j
E
$
k
E
h
e
42
,
$
a
%
™ $
k
E "
c
u
( &
(
(
N
j
#
h
a
E
"
#
;
¥
$
2i ai
`
£
h
j
b
"
E
k
E% h
k
E
a
CE
"
kb
$
"j
"
E
C
™ '
`
m
™
z
$
$
B
j
"
%&
%
E
"
`
E m
E
c
k
C
#%
c
&
E
™
™
"
(
$
'
E
E
E
bh
"
E
a
%
™ C$
;
`
;
z
E% h
E
h
%
$
#
dc
E
z
E
b
h
"
%
E
z
( kj
h
u
%
"
'd#
k
E
h
a
c
E
z
$
z
kj
h
&
'
"
"' "
Cy
q
=
k l
W
V
™ $
E
a
E
'd
h
™ E'
CE
E
%
$
#
&
y
"
'd#
C
c'
h
E
z
E
kj
h
j
h' n
E
(
E
y
$
'"
(
"
# E
™
'
$
y
$
"
b
E%
"'
h% $
d
b
E%
& "
'
$
'
h
k
"
%
k
$
'd#
$
"
"
$
"
by
"
b
E%
"'
h% $
(
$
'
E
c
b
"
"
E
a
%
™ C$
z
C$
h
k
E
"
™ #
"
k
$
"
%#
"
E
%h
`
u
O(n)
h
B
Ch
"
k
;
*
E
%&
™
+
'
g
(
$
C
'
"
E' y
k
'
"% '
E
%
$
#
%
%"
h
(
™
%
(
$
E
a
%
$
E
h
kb
"'
"
"
a
E
"
$
E
"
'd#
E
h
kb
" m
h
E
"
a
z
C
h
'd#
m
$
#
d
b
E%
C
£
C
"
%&
&
E
d# m
"
"
bE
"
h
c
™ E
#
&
%
E
A
A+B −N
(
h
&
%
n
b
"
%
'
%
"
'
d
$
C
"
C
h m
; ; ; ;
i=0
n−1
P
E
%
$
#
"
E
E
™ E'
&
$
#
%&
&
;
A=
k
$
¤
j
#
E
R
h
c
m
AB mod N
"
'
A
C
#%
(
E
C
D
™
dc
"
2n
E
k
$
E
%
+
k
E
™
z
j
y
bD
%
E
$
C$
h
k
E`
%
k
'
%h
'
`
g
"
%&
d
E
E
m
m
C
™
z
j
"
%
'
"
E
d
E
&
"
'd
"
a
`
A+B
"
k
j
n
h
C
$
B
c
E
E% k
E
E
Ž{
‡
‹
Ž€
‘
‹
€‡
™
a
h
i<n
"
$
#
hb
˜
˜
“
{
}
Ž
>
ai = 1
R
R = R/2
"
%&
h
"
k%
E
i=0
n−1
X
%
$
A=
&h
'
E
E
R>N
Cy
C
" _
`
u
™
'
C
"
&
k
E
#
E
0 6 A, B < N
$
k
E
E% '
'd
a
z
E
u
™
€›
Ž
‹
‰
 Cy
h% C$
%
i=0
#
&
E
E
h% m
CE
j
#
E
y
( C
h
E
E
xi A + y i B = r i .
k
E
h
£
E
$
c
'
%
k
h
d
Ej
'
h
(
i = −1, 0
C
E
™
a
%
h
d
'
E
"C
h
E
b
C$
"
E' $
'
"
S
R
#%
j
$
xi A + yi B = (xi−2 − di yi−1 )A + (yi−2 − di yi−1 )B =
= (xi−2 A + yi−2 B) − di (xi−1 A + yi−1 B) = ri . #
d
$
"
k
$
"
%#
"
"
%&
kj
b
%
g
b$
%
"
j
l
di = bri−2 /ri−1 c
ri = ri−2 − di ri−1
xi = xi−2 − di xi−1
yi = yi−2 − di yi−1
i=i+1
d
E
z
"
$
m
&
E
E
bh
™
%
$
r−1 = A r0 = B
x−1 = 1 y−1 = 0 x0 = 0 y0 = 1
i=0
ri > 0
E
E
"
E
E
™ #
%
E
%h
$
"
E
a
%
$
xi
" m
&h
g
'
"
%
k
(
E
'h
#
'
"
E' $
yi
'
™
O(M (log N ) log N ) = O(M (n)n)
A B
%
$
#
ZN
y
%
$
"
$
h
™ "
c
bD
E
'
i
x
k
!
!
(
%
%
'k
%&
"
™ #b
rk = (A, B)
'
"
'd#
"
$
"
$
$
&
E
"
C
#%
B
Ax + By = (A, B)
h
n = dlog2 N e
b
%
d
"
!
#
$
%
™ b
d# m
'h
i
E
j
"
&
$
i −1 < i 6 k
(
%
b
%E
a
$
"
E
a
h
i
"C
%"
k'
$
*
h
E
$`
yk
$ u
"
h
"
#
%
$
xk
(
n = log N
a
"
C
h
d
E
ri
A
A−B+N
O(M (n))
R=R−N
2i ai = (. . . (2an−1 + an−2 )2 + . . . a1 )2 + a0
AB = a0 B + 2(a1 B + . . . 2(an−2 B + 2an−1 B) . . .).
z
$
S
X
p
Z
*
W
UV
$
%
'
"
E
'
%
$
#
E
a
%
$
D
b
]
=
u
$ v
"
"
S
(
U
*
X
V
Ut
S
p
T
S
88
/
5
4/
1
2
1/
6
4
5
,
1
5
4
5
1/
-+
/
6
-
,
0
0
`
™
$
`¢
m
z
$
k
$
"C "
"
&
'
k
E
%
E
'd
%
k
h
"
™ b#
"
'h
&
m
z
b
%
z
&h ™ ™
(
m
%
$
#
( d
"
'd#
Cy
'
$
_
™
"
'd#
™ "
%
&
%
$
#
d
"
E
%
$
#
k%
k'
"
$
a
h
"
'
z
$
'd#
k
"
C
$
y
$
h
"
%
$
y
k
E% h
k
"
k%
E
'd
"
'
"
z
¢
j
'd
d
"
b
"%
C
%
$
#
d
E
h
c
$
™ #
"
E
"
j
' $
%
$
g
z
$
$
$
%
k
"
k
$
E
"
#
%
$
#
%d
c
k
E% $
'd#
u
!
!
"
"
(
$
$
$
$
by
"
E
a
%
a
"
k
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
U
s
=
=
'
"
'd#
b
%
'
E% h
™ "
(
'dc
`
" m
™
j
b
"
%
j
E
'd
E
a
'
"
'd#
b
%
'
E m
m
™ "
a
%
(
C
'
"
E' $
(
E
b
"j
k'
a
&
E
"
'
"
$
#
'
m
$
%
$
#
k
E
j
h' k
"
k
h
c
E
b
E%
"
™ "
%
$
g
™
%h
g
'
"
%&
&
E
E
D
$
by
™
%
#
&
E
E
hj
k l
S
P
8
=
(
(
&
E
"
"
E
$
$
$
'
"
E' k
"
k%
E
'd
d
"
"
m
¢
z
'
h% $
"
'
j
`
"
'
h
%
k
hb
"C
$ u
E`
E% $
'd#
$
$
b
" m
C
'Ÿ
"
%$
'
( y
k
'
"% '
C
h
%
$
#
z
`
(
`
`
z
$
k
E% $
'd#
b
"
C
h
"
D
C
#%
C
E
%
k
h
C

E
j
c
b"
"
E
%
$
a
C
E C
$
E
%#
'
k
"
'
%
E
$
#
E
k
E
h' j
(
dc
E
# '
"
k
$
w
`
"
j
™ "`
™ b
h
c
™ E
%
$
h
E
%#
'
k
$
"
'
E m
™
'
E
'
" m
z
$
h
c
b
"
E
a
%
C$
"
™
j
$
$
E
dc
E
j
# '
h
$
k
E% bh
"
E
a
%
( '
z
&
" m
'
b
%"
j
$
'd#
a
E
&
_
$
$
y
j
%
$
#
™ "'
E
dc
E
# '
h
by
k
"
'
d
$
z
dc
E
# '
h
k
$
by
j
&
$
"
E
a
%
$
"
k%
E
'd
a
"
"
%&
E
#
E
E
by
k
E
C
#%
b
"
E
c
E
kb
(
m
"
b
%
'
d
E
(
"
k%
E
%
$
#
`
%
b
"
%
$
E
"
'd#
'
&
'
h
h
$`
$
by
k
E
$
"
%
k
$
'd#
E
%
$
#`
E% z
"
'
d
$
j
`
%
$
#
"
%&
d
E
E
h
(
%
,
(
™
$
$
%
$
#
'
%
%
$
g
E
C
%
$
#
z
'd
E
Ca
7
4
1
2
3
/
E
#
5
4/
1
2
1/
-+
/
6
4
5
k
E% $
'd#
k l
q
:
-
,
m
C
b
%
$ u
u
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
(
&
E
'
'd
&
#
"' "
'h
#
g
u
b
"
%
E
'd
k
$
%
E
C
#%
'$
k
`
$
'
b
"
h'
j
C
c'
E
&
`
$
(u1 , u2 , . . . , uk )
mi i=1, . . . , k
'h
"
"C "
"
'
"
b
$
j
$
"
(
$
$
`
s
k = 2t
"
`
(
dc
E
# '
h
h
'$
'
m
%
k'
`
E% d
'
%
j
'
E
%#
"
E
'
h
"
:
'd
O(kM (b))
O(k 2 M (b))
E
a
%
$
k
(
E
a
c
bD
%
k
h
c
$
'd#
b
b
$
E% Cy
h
u
b
m
(
E
'
E
k
E
h' j
"
d
'
E
$
"
E
a
E' $
#
kb
E k
j
z
E
$
%
'
C
#%
$
'h
"
"
dc
m
E
a
k
O(M (n)n)
m
$`
h
"
"
™
"
E
j
"
'
C
b
%
$
u1 = ut−1,1
dc
E
j
"
"
$
`
#`
$
'
C
%
™
'
'
%
$
"
Ej
E
C
'd
E
E
b
s
z
E% $
'd#
d
b
$
C
#
ZM ∼
= Z m1 + Z m2 + . . . + Z mk .
k
dc
E
# '
h
'
C
$
u
06u<M
ui =u mod mi i=1, . . . , k
#%
"
"
E%
"
&h
%
j
"
m
%
k
h
M
# "
$
"
'
j
$
"
$
h
%
j
E% x mod N
'
$
™
"j
c
C
#%
™
h
a
'
"
$
"' "
a
M
−M/2 < N < M/2
ZM
"
™
Zmi i = 1, . . . , k
`
"
m
%
%
A 06A<N
x y
(A, N ) > 1
A
b
'"
E
"
$
E`
%#
"
'
j
$
#
¢
2−n AB mod N
h
$
"
E
bD
E
™
b
$
$
$
#
A B1
'$
™
&
m
(u1 , u2 , . . . , uk )
u mod m
%
E
h B
m
#
E
(
E
"
#
j
E
E
kb
"'
$
06N <M
h
$
%
$
#
$
u
dc
"
M =m1 m2 . . . mk
c
b
%
'
E
a
E
™
"
j
A/B =
c
`
m
k
"C '
"
$
"' "
O(n2 )
E% %
%
j
%
h
xA + yN = (A, N )
(A, N ) = 1
d
E
"
b
"
$
$
#
$
#
k
u
%
E
'd#
d
E
h
E% u (mod m)
'd
'
$
c
$
M
™
"
b
"
h'
O(M (n)n)
( %
$
j
b
%"
C
O(n2 )
mod N
O(n2 )
22n mod N
(
#
$
2
2n
mi
m1 m2 , m3 m4 , . . . , mk−1 mk ,
m1 m2 m3 m4 , . . . , mk−3 mk−2 mk−1 mk ,
m1 m2 . . . mk/4 , . . . , m3k/4+1 . . . mk ,
m1 m2 . . . mk/2 , mk/2+1 . . . mk .
u11 = u mod (m1 m2 . . . mk/2 ), u12 = u mod (mk/2+1 . . . mk/2 ),
u21 = u11 mod (m1 m2 . . . mk/4 ), . . . , u24 = u12 mod (m3k/4+1 . . . mk/2 ),
ut−1,1 = ut−2,1 mod (m1 m2 ), ut−1,2 = ut−2,1 mod (m3 m4 ), . . .
. . . , ut−1,k/2 = ut−2,k/4 mod (mk−1 mk ),
mod m1 , u2 = ut−1,1 mod m2 , . . . , uk = ut−1,k/2 mod mk .
2t−1 M (b) + 2t−2 M (2b) + . . . + 2M (2t−1 b) = O(tM (kb))
2M (2t−1 b) + 22 M (2t−2 b) + . . . + 2t−1 M (b) = O(tM (kb))
O(M (kb) log k)
0
0
u = q1 + q2 m1 + q3 m1 m2 + . . . + qk m1 . . . mk−1 ,
z
a
h
j
k
E
#
E
d
E
%#
z
$
c
k
'
$
E
c
™
k
'
'"
$
D
"
'
kj
h
z
d
"
C
#
h
c
%E
$
#
%
k
h
"
™ #
'"
c
D
%
k
b
D
h%
"
$
"
m
™
(
&
$
y
C
%
a
c
k
"
k%
E
'd
E
m
£
$
$
"
%
'
dc
E
E
$
j
$
#
%dc
™ %
z
b
%
'
`
m
d
b
E%
'
j
h
'E
E% #
&
E
b
%
'
k
E% $
'd#
!
"
!
"
(
= O((k 2 M (b) + kTXEA (b) + M (kb))) =
"
#
'
'
E% d
#
&
E
c
$
*
h
$
"
E
k
E% $
'E
&
E
C
a
h
b
%
z
c
$
$
E% $
'd#
C
c
"
k
E
by
"
%
E
k
E
'
E
$
&
E
h
`
E% '
h
%d
C
E
h
$
c
C
#%
'$
k
'
a
`
" B
( &
D`
d
b
E%
"
E
m
™
z
j
$
%
h
E
h
&
'
b
"
%
$
E
'd
"
h m
C
h
E
k
"
E
E`
E% $
'd#
™
(
$
$
h
c
"
E
'
E
$
E
h
b
'"
h
$
"
%
k
E
D
&
g
m
™
™
z
k
E
C
#%
h
%
h
"
c
"
'dc
%
k
h
"j
E
'
E
$
`
m
$
C
c'
h
'dc
%
k
h
%
#
E
+ $
b
E%
"'
h% $
'E
k
"
%
k'
"
$
C
$
`
u ≡ ui (mod mi ),
( )
%
$
#
'd#
j
E
'
™
k
E% $
$
d
$
"
k
E
D
k
E% '
E
"
$
'$
c
&
$
`
m
w
z
j
$
$
"
™ #
"
E'
'd
"
( E
C
h
%
k
$
"
'
dj
c
k
C
#%
m
j$
$
'd
'
h
$
"`
'
c
Cy
h% z
E
'
C
%
k
E
E
™ h`
dc
E
# '
O(k 2 M (b) + kTXEA (b))
%d
C
E'
$
E
E% %# y
#
&
j
$
$
#
z
D
m
"
"
'd
™
™
"
%
k'
$
$
"
'"
E
E
h' %d
C
E
h
c
$
%
k
h
`
`
™
$
a
k
"
%
C
"
k
E% $
'd#
b
"
C
h
"
k
"
`
(
$
k
E
E
a
C
'
"
#
%
$
$
$
'
b
"
%
E
'd
k
"
&
%
h
C
h
E
by
k
"
h'
“’
†~{
{
}
{
ƒ
‘

{

{
ˆ
ˆ
z
€
“
~
{ ”
{
}
$
$
#
k
E
h
a
c
E
"
%&
&
E
E
h
"
E
"
'
%$
"b
"j
l
†
˜
‹
‰‡ ˆ
Š
{
›
‘

‰
(
&
%
;
?
†
‰
€
Ž

‘
‹
>
€
‡
‰‹
‹
€
‰
€
€

‘
{—
–
ˆ
;
;
;
™
‰
>
‡
{‹

}
™
™
;
c = 1 u = u1 mod m1
i=1
k−1
†
C
%
$
&
m
$
#
E
"
h
c
m
m
{

‰
‘Ž
{
+
"
%&
%
$
#
h&

c
"
$
"
"
&
E
"
k
%
(
$
`
k
"
k
"
$
E
k
E
%
E
'd
%
k l
‘
{}
}
“‘
‰‹
ƒ
€ ˆ
—
œ
‡
‹ ~
S
V
#
z
$
y
$
Cy
h% k
E
%
E
'd
$
$
'
k
"
%
k
$
'd#
q1 , q2 , . . . , qk
$
"
u
E% j
$
Eb
k
$
"C `
i, j = 1, . . . , k. k
(
R
E% $
#
&
%#
"
%
™ b
$
"
E
a
%
"
%
C
™
€‡
Ž
~
‡
€‹
di = c−1
mod mi ,
i
b
%
E
j
by
$
R
'd#
E
bE
`
"
bD
m
E
E
h
%
&
'
"
u
'
C
#%
"'
z
h

™ $
j
E
#
E
= O(k 2 M (b) + kTXEA (b))
'$
E
C
E
a
b$
%
"
j
ci di ui mod M.
"
%d
C
`
E
$
c
"
kb
b
™
j
k
E
%+
$
#
l
‹~
ci = m1 . . . mi−1 mi+1 . . . mk = M/mi ,
™ #
j
$
"
j
#
E
k
E% j 6= i,
%
E
E
"'
b
%
`
TXEA (b)
Zmi log mi =b
$
#
k
&h %
b
%
'$
s
'
(O((k − 1)M (b)) + TXEA (b)) + M (kb) =
E
O(M (kb) log k + kTXEA (b))
u
E% j
C
h
#
&h
$
ci di ≡ 0 (mod mj )
$
E
y
%h
™
'd#
m
dc
E
E
i = 1, . . . , k,
"
`
C
#%
(
"
E
%
&
E
m
%
k l
M
a
(
C$
g
'
"
"
dc
E
# ci di ≡ 1 (mod mi ),
'd#
%
E d
h
a
k
C
dh
h
%&
k
E
u
k
h
k
$
"
C
#%
k
E
`
&
'
h
i=1
k
X
%
™
C
Ÿ'
"
E
#
&
%
h
a
u ≡ ui (mod mi ),
mi
%
$
%$
'
`
E
E
u=
C
k
C
#%
"
B
i=1
M = m 1 m2 . . . m k
(u1, u2, . . . , uk )
™
(
E
k
X
C& h
_
%
k
i = 1, . . . , k
"C '
"
$
C
k=2
u
c = c · mi
d = c−1 mod mi+1
q = d(ui+1 − u) mod mi+1
u = u + qc
u
i = 1, . . . , k,
/
5
4/
1
2
1/
6
4
5
,
/
/
-+
-
,
0
f (x) = (x − b)
Ž{
‡
‹
n−1
X
i=0
pn−i−1 x
i
E% #
&
E
k
f (x)
+ f (b).
"
$
bi =
n−1
X
j=0
ai ω ij ,
™
C
0 6 i 6 n − 1.
a = (a0 , a1 , . . . , an−1 ) ai ∈ R
F (a) = b = (b0 , b1 , . . . , bn−1 )
™
€
z
b
%
"
™
>
‰
•
‰ ˆ
Š
€
‰
E
n
œ
~
€

‰
`
"
E
%
&h s
!
z
b
%
b
E%
'
j
j
%d
'
b$
'"
b
%
$
%
!
*
pn−i−1 bxi
‰
(
E
$
h
b
%
%
k
h
$ u
i=0
‘
Ž
€}
‡
†‹
€
m
{
€

{
Œ
d
"
†
i=0
‘„
$
pn−i−1 bxi

{
€
k
"
!
b
"C
*
C
`
h m
d
c
E '
n−1
X

}
€
{

(
E
n−1
X
'
E
"
!
Ej
v
V
U
Z
V
t
V
]
−
"
C
"
*
`
E C
"
%&
d
E
"
j
' $
SZ
'
' %
n
'k
*
!
h
−
€‡
$ u
?
s
$
E% '
"
h
Cy
E% " m
"
b
pn−i xi
Ž
>

‰
†‰‡
‰

}
$
b
"C
$
h% E
E'
£
D
c
TU
(
$
"
E
X
n

k
+
'
k
"
z
%
`
$
E
E
#
&
E
k
E
p
Z pn−i−1 xi+1
"
‰‹Œ ˆ
Š
"
$
'
$
dj
E
y
$
"`
'
k
"
k%
E
'd
%
b
%
$
(
E
(
#
"'
j
#
E
"
$
$ v
i=0
n−1
X
' b
(
z
#
&
E
j
#
E
k
E% ( $
a
%
$
Cy
#
!
"
b
"
%#
"
d!m
"
( )
z
E% #
$`
&
E
i=0
™
j
$
b
"
E
a
%
$
Cy
'
" m
Cy
Cy
b
"%
C
b
"
E a
"
a
E
"
%
"
g
$
$
'
b
"
E
a
%
k'
`
" m
E
"
j
' $
%
$
E
( )
z
C
E
%
™ &
E
#
j
E% $
'd#
pn−i−1 x
i
'
$
%"
j=0
ω 6= 1
ωn = 1
n−1
P ij
ω =0 16i<n
"
&h
"
$
'
E
™ E
E
d
$
'd#
b
E%
"'
b
%
i=1
"
"' h
,
™
$
R
a
j
b
%
i=0
n
X
(
; ;
¤
'
E
dc
E
'h
#
$
"
C
h m
=
"
(
# '
™
h% i=1
f
%
$
%
E
a
'
"
"
%&
b
%
$
#
$
p0 , p1 , . . . , pn
n
X
h
™
(
h
%
'd
$
#
'
$
"
E
a
%
$
'
E% #
&
h
E
$
&
j
l
Ri
'
"
b$
%
"
%
"
h
E
y
5
,
3
2
1
4/
- 7+
'
dc
E E
k%
E
'd
1
2
(
E% #
1/
$`
/
6
4
5
&
E
-
4/
z
b
_
d m
#!
b
%
`
c
#
$
"
E
a
%
™
$
!
"
'
"
#
n−1
X
$
#
$
#%+
b
"
&h ™ C
#%
'$
E
h% k
$
"
%# y
=
™
E E
a
™ %
$
$
$ u
%
C
j
E
i=1
n
X
m
%
$
#
C
c'
hj
C
$
k
(
=
™
#j
&
bD
%
E
$
#
"
E
b
"
$
#
A
f (x) = ((an x + an−1 )x + . . . + a1 )x + a0
(
$
j
j
#
%dc
E
a
%
!
"
E
f (x) = an xn + an−1 xn−1 + . . . + a1 x + a0
™ g
j
E '
'
E
dc
E
# (
=
'$
E
a
%
$
z
E
b
%
"
bE
"
C
#%
"
%
k
$
"
C
#%
m
E
#
j
E
b
$
OB ( )
=
'"
06i6n−1
"
d
E
%#
'
j
k
'
j
&
bD
m
m
%
Cy
'
"
OA ( )
"
™ ™
R
m
™
"
k
Cy
™
'
%
k
$
"
'
R
E% #
&
E
"
E
$
h% E
%
h
$
l = (n + 2)m
pi
OB (n2 m2 )
E
a
"
'
*
E s
#
j
p0 = a n ,
pi = pi−1 b + an−i ,
™
"
$
dj
r
v
(
E
"
$
j
#
E
#
OA (n)
R
OB (nml)
"
(x − b)
(
$
y
E
#
'"
k
"
%
k'
C
A
j
b
(
"
%&
m
'
pn
R
(x − b)
™
E
E% h
"
k
x=b
Ž€
‘
Ž{
‰
"
"
$
k
$
f (b) = pn
p0 , p1 , . . . , pn−1
“ ˆ
Ž€
‘
y
&
%
i = 1, . . . , k
}
E
#
i = 1, . . . , n
h&
S
V
k'
k
m
R
R
+ f (b) =
+ f (b) =
+ f (b) =
(pn−i − pn−i−1 b)xi − pn−1 b + f (b) =
ai xi − pn−1 b + (pn−1 b + a0 ) =
ai xi = f (x).
ω
0
E% #
&
(
%
`
x − ωi 0 6 i 6 n − 1
$
R
'k
%
C
$
z
'
"
z
b
%
h
"
"
h%
m
z
$
E% #
&
d
E
E
C
#%
'
a
E
z
j
C
%
b
C
E'
n
m
z
a
%
$
'$
E% #
&
E
E
h' ™ $
™ E
s
( )
E% #
&
z
$
$
E
C
"
E
d
E
C
h
b
E
#
k
"
m
z
j
$
h
b
C
k
E'
&
n
m
(
(
$
z
$
d m
$
"
"
%&
b
"
E
a
%
( ™ "
h
E
"
%&
&
'
k
$
E
%
E
'd
m
(
$
b
%
`
c
#
!
"
"
( "
' d
'E
%
'
"
E
`
$
w
bE
"
a
CE
"j
z
'
%
'
"
d
"
E
`
E% #
&
E
'
"
E
z
`
"
' k
E% $
'd#
%
k
h
"
™ #
"
j
"
"
'd
d
%
j
' b
%"
h
h
E
"
"
"
™
j
$
j
'
"
E' "
"
'd
'
"
b$
%
"
l
z
"' "
$
b
j
n
m
E% #
$
&
E
'
"
"' "
'$
b
'"
"
$
(
E
k
&
"
™
™
( (
d
E
"
m
%
&
$
j
"C h% &
%
?
‰
Ž€
‘
‘

˜‰
€
“
ˆ
€ ˆ
‡{
{
Œ
‡
‘
‡
{‹
‘
{—
z
j
j
'
b
C
k
E'
d
E
"
$
h E
"
k
™ #
"
(xn/2 − c)
bE C
n
E
"
E
E
%
c
b
$
z
#
"
c
"
'
C
E'
C
'
E
"
k
n
s
m
m
œ
‡
‹ ~
S
™
%
'h
d
E% #
&
E
E
hj
'
'
h
"
$
"
%
( h
"
xn/4 −ω jn/4
"
™ E
E £
h
j
%
k
h
E
k
E
%
™
%
"
'
ai+ n2 xi + r(x).
k
E'
k
j
&
n
n
n
+ 4 + . . . + 2k k = kn
2
4
2
"
E
i
z
E
"
"
' %
$
E% ™
"
' d
"
E
h
h&
d
E% #
&
d
'
E
™
dc
E
E
C
#%
C
'c
hj
d
h
a
"j
`
$
j
$
z
E
E
%
#
E
k
E% h
C
"
C
Ÿ'
"
%$
'
%
k
h

E
c
"
k
`
`
3
2
1
4/
- 7+
"
%
5
4/
1
2
1/
k
/
6
4
5
-
h
€
œ
~
€
‰
Ž
‘
{
‘„

{
€

}
€
{

€‡

‰‹Œ ˆ
Š
€
{

‡
‘„
f (x)
™ '
"
E'
b
%
b
%
C
™ #
m
"
b
"%
C
#%
%
Eb
n+2
b
$
C
(
"j
`
R
O(n log n)
%
n
'
m
™
'
E
n
$
c
a
%
c
b
C
k
m
'd
"C $
z
$
'
"
'd#
™
c
#
'"
`
$
h
"
™ #
f (x)
+$ `
n
"
d m
$
C
E'
j
j
m
"
E
m
X
'
%
k'
"
%&
k
#
"
%
B
j
%
b
k
n
2 −1
C
$`
k
b
C
n
m
E
z
"%
C
j
E
#
E
&
E% E% &
#
E
#
&
E
k
™ "
"
i=0
n−1
X
%
E% $
j
h
&
%
!
"
d
E
%
"
%&
`
− c)
b
%"
k
$
E'
8
"
z
%&
&
E
"
$
Cy
%#
m
j
y
#
E
E% $
ωi 0 6 i 6 n − 1
%
c
'$
E
#
#
"'
%
E
'd#
E
?
&
'd
n
$
'
j
j
E
%
'd#
"C i=0
X
k
kb
C
'd#
E
a
h' E
"
k
E'
d
"
d m
$
b
" Cy
"
k
m
f (x) =
$
$
k
j
"
E
'd
%
by
…“
‘`
&
$
m
"
$
"
%
#
"
n
2 −1
C
E'
m
E% #
&
E
k
"
d
'
dj
m
h
&
j
k
'
d
"
* E
E
"
E
xn/2 − ω n/2
#
C
E'
'
™ E
™ E
™
&
%
™ E
E
"
'
E
E
h
n/2
c'
'
"
$
C
m
E
by
&
™
d
"
$
"
E
#
k
™ "
™
C
C
f (x) = (x
$
h
E
&
E
"
j
#
"
$
b
E
j
E% #
#
'"
&
%
&
%
E
k
E% &
k
k
E
™ #
"
s
r(x) =
"
m
$
k
'
E
E
`
"
'
E
E
E
k l
$
( b
C
h
0 6 i 6 n − 1.
"
n
%
%
k
h
"
™ #
by
E
#
O(n log n)
E
$
m
j
#
E
E
E
a
C
$
'd#
"
%&
h' u
&
h
$
xn/2 − 1
'd
k
"C E $
R
"
"
$
h
E
j
E
#
E
E
h
a
E% ( €
œ
~
$
" "
k
E% $
'd#
n
j
#
E
'
"
c∈R
"
"
z
( %
)
u
#
&
E
˜‰
Ž
‘
{
‘„

{
€

}
{
{—

‡
‹ „
>
f (x)
E
k
"
a
E
xn − 1 = xn/2 − 1 xn/2 − ω n/2 .
z
E
k
E% $
C
h
c
E% E
#
x = ωi
x−ω i
&
E
j
`
E
¤
2
"
™
#
&
E
j
†
?
F (a)
E'
b
%
d
$
"
(
d
E% f (x)
x − ωi 0 6 i 6 n − 1
xn − 1
dc
E
%E
k
(
(
k
E
"
™ #
E
f (x)
E
'
E% #
&
h
"
¢
q
i=0
h
"
'
"
"
$
C
$
E
E
"
$
"
(
%
F −1 (F (a)) = a F (F −1 (b)) = b
$
"
' $
E
'
k%
E
j
h' "
u
$
†{
k
h
(
c
j=0
C
#%
j
'
'
`
(
"
h
Cy
E
bi ω −ij ,
E
E
$
c
d
k
E% c
E
a
h
"
"
E
"
$
d
"
F −1 (b)
a
h
$
™
= −1
a
™
%
k
h
™ n−1
X
c
E% h
"
'
k
E'
1
n
$
n/2
"
™ #
"
ci =
j
m
"
‰‡

{
—
"
#
R
l
ω
™ E
xn/2 − 1 = xn/4 − 1 xn/4 − ω n/2 ,
xn/2 − ω n/2 = xn/4 − ω n/4 xn/4 − ω 3n/4 .
"
"
%
'
$
a i xi
™
s
u
$
06i6n−1
"
n = 2k
%a
h
c
h
f (x) =
n−1
P
E
x − ωi
f (x)
"
$
"
F −1 (b) = c
a i xi
(ai + cai+ n2 )xi .
i=0
R
0
q
 ‰
S
n−1
X
j=0
M = ω n/2 + 1 0 6= ω ∈ R
j=1
k−1
Y
ω ij ≡ 0 (mod M ).
(
C
h
E
y
u
C
#%
u
16i<n
z
k=1
Ž{
‡
‹
Ž€
‘
‹
€
–
‰Š
 ˆ
•
‰
€
‹
€
“œ•
{
Œ
{
“
…€
{
{— „
“’
˜“ ˆ
†
Ž

‰
‡
‘
†‡
†~
{
Œ
$
( d
%
'
h
k
Cy
"
"
m
?
†
†
‰
€
€}
‡
‹
>
•
‰
‰ ˆ
Š
€
‰

€

{
Œ
Ž
>

™
†
‡
†€
€
“
‘
‘
“œ•
{
Œ
{
‡
€
“
>
‰
‡
‘„
{
†€
†
†
˜
‹
€‡
‰

}
… †‰
ω
k
k
˜
€‡
S
‰

}
{
™ ‡
‰
‰
“
‹
S
V
=
‡
†€
€
“
M = ω n/2 + 1
n
(1 + a2 ).
j
j=0
a2i .
(1 + a2 ),
j
j
Ej
h
(
#
j
b
"'
%
'
E
j
"
b
E
#
"
%
k
'
"
w
%
$
#
C
&
$
b
"
"
E
%
E
'd
"C "
E
&
m
(
$ £
hy
"
n
'k
%
k
h
&
¢
™
"
E
%
( d
w
™ E
ω=2q 6=1
z
"
B
w
$
"b
"
E
%
( d
"C
'
%$
"j
h
k
&
"
™ ™ E
%
m
"
™ "
$
#
E
a
b"
"
'd
E
a
dc
"
%
k
™ h
%
$
#
m
(
E
"
#
E
"
%
$
#
d
™ "
$
j
$
d
E
%#
b
"
m
m
'd
E
a
$ u
b
%
( d
z
"
'd#
Cy
'
"
$
"' $
"
'
%
'
"
E
dc
Ej
E
C
j
™
j
'
"
'd#
b
%
'
b
"
h'
E
a
k
E% $
'd#
k%
k'
"
$
a
h
"
™ "
%
$
#
d
"
E
d
E
#
E
&
'
E% #
&
E
d
"
E
"
#
™
%
$
g
E
&h
(
&
%
™ "
E
"
#
h& s
j=k−1−s
h
$
j
"
"
E
%
&
'
E
n
c
™ E
ω ≡1 (mod M )
%
E
'
n=2k M =ω n/2 +1=2qn/2 +1
ω n/2 =−1+M ≡−1 (mod M )
s
E
%
t
$
# '
h
k
w
%
"
b"
"
"
C
$
#
k−1
E
j
"C b
%
B
(
$
$
C
j
1 + ω i2 = 1 + ω 2
h
¤
$
&h
n
m
b#
$
'
"
#
h m
t
E
k
%
™
E
j
b
C
E'
$
E "
'
i = 2s t
j
E
"
j
$
' $
%
%
$
#
%dc
b
%
'
™ (
b
C
E'
"
g
n
m
d!m
$
™
j
y
`
u
b
"
k
E
'
E
"
%
k
'
h
c
h
E
h
h' (
$`
%
$
#
by
E "
"
E
j
b
E%
"%
a
b
C
k
E'
&
%
$
#
n
m
d m
™ #
"
™
"
d!m
$
$
$
"
™ #
"
k
"
h
E
c
'
"
#
%
d m
!
`
j
(
$
"
'
E
%
Cy
t
16i<n
( d
n
$
#
"
d!m
$
M
"
(
$
E% '
"
h
n
†
j
n = 2k
€
(1 + (a2 )2 ) =
™ "
E
˜
“
{
}
Ž
>
‰
‘
‡
˜Ž“
˜
ZM
ZM
†€
i=0
X
‰
i=0
n
2 −1
Ž
a = (1 + a)
i
k−1
›€
C
(
'
"
b$
%
i=0
k−1
Y
#%
'
E
E
%
g
"
j
l
‰
‡
ω = 2q 6= 1
‹
j=0
k−2
Y
ai =
n−1
X
y
$
n−1
X
C
h
E
E
(
E
'h
#
'
"
¢
n = 2k
ω
˜“ ˆ
i=0
M
™
a2i =
b
X
™
(
n
2 −1
"j
a
%
h
u
†€
2
m
$
E' n = 2k
hb
%$
'
"
"
#
a
M
2
j
1 + ω i2 ≡ 0 (mod M ).
= 1 + (ω n/2 )t ≡ 1 + (−1)t ≡ 0 (mod M ),
l
_
2
j
j
$
"j
E
#
"
"
h ,
%
E
%$
&
'
"
b$
%
"
"
%&
"C ™ b
(
z
$
h% &
3
2
1
4/
- 7+
5
4/
r
1/
™ $
/
6
4
5
1
"
&h
'
E
-
(
$
y
% h
k
"
k%
E
'd
0
[d1 , d2 , . . . , dn ] = d1 , . . . , dk +
Pn
Qn
Pn =an Pn−1 +Pn−2 Qn =an Qn−1 +Qn−2
Qn = an Qn−1 + Qn−2 > Qn−1 + Qn−2 > 2Qn−2 > 2
n−2
2
†

>
‡
€


z
"
C
#%
‰
{
›
{
}
†‰
˜
k
ˆ
ˆ
$
$
C
'
"
E' C
E
#
"
"C '
"
$
"' "
$
by
"
%
k
™
$`
E
D
E
$
"
d
Ej
'
k
m
$
h
"
d
E
"
C&
h _
'
m
h`
'
E
d
E
%
k
"
h
$
E' kb
"
k%
$
E
'd
E
%a
h
$
C
'
"
E' y
(
(
%
k
h
%
E
'h
#
E
$
g
z
C
h
E
y
E
a
%
h
™ "
E
%
E
'd
$
EC
h
"
b
"
b
E%
'"
h% ¢
(
z
"
s
$ v
&h ™
&h
"
z
$
$
#
"
b
E%
$
"
"'
&
'
%
h% C
$
E
k
E
(
"b
C
h
E
h'
'
%$
"j
`
l
C
"
u
y
Cy
C
#%
b
"
$
™
(
l
&
%
'
$
" m
C
h
k l
%
'
"
b$
%
"
j
E
h
a
(
P0 = 1 Q 0 = 0
n=1
'
C
#%
h
%
b
E%
"
E
"
$
$
"
k
E% h
E
%
E
'd
b
E%
"'
Pn−1
,
Qn−1
~€
Œ
$
y
1
Xn−1
·
0
Yn−1
"
'
dj
E
"
#
E
a
'd
Xn−1
Yn−1
‡
d
d
E
n = 1, 2, . . .
`
m
™
m
$
&
"
b
"
#
1
Xn−1
=
Yn−1
0
’
(
j
"`
"
z
(
by
&
"
k
'
"% $
"
(
n
˜
h
c
k
h
c
h
&
x
h`
E
%
Cy
'
b
"
[a2 , . . . , an ] =
€›
Ž
‹
™
.
.
'
.
%
`
j
#
E
m
'
C
h
$
1
Pn
=
Qn
0
Ž{
€‡
‰

}
>
‡
‹{

Pn
Qn
Ž“
(−1)k
Qk Qk−1
a
= 1
1
{ ˆ
(−1)n
Qn Qn−1
}
'k
"
'
{
'
™
(
(
'
'
E
d
1
a
... n
0
1
~
†

‰
%
Pn−1
Qn−1
‰
™
$
Eb
"'
C
%
%&
E
E
h'
k
1
a
... n
0
1
‰
k=1
n
P
™
Qn
h% "
d
E
&`
E
$
y
"
"
'
b
dj
E
$
#
"
"
n−1
‰
=
$
"`
'
(
"
$
E
(
" m
%
Pn
Qn
‘Ž
$
'
z
hj
$
%
`
% $
™ $
m
$
%
% $
'
h m
1
‡
$
[a1 , a2 , . . . , an ] =
Ej
h
s
z
m
d m
!
dc
h
dc
j
C
#%
k
m
a2
1
{‹
d
m
$
"
"
™ #b
"
'h
1
a2
0
1
™
%
$
#
%
k
%"
h
&
&
D
m
™
z
$
h% $
'
k
"
%# y
j
˜
“
{
}
Ž
>
Ž
‘
‡
‹
Ž€
‘
ƒ
˜
˜
‹
‡
’
“
{
}
Ž
>
‘
{—
€
™ Œ
ƒ‘
“
~
{
Ž‡
{
“œŒ
{
‡
‰
{
Ž‡
†‹
†
˜
’
‹
m
‡
€
b
%
E
k
E
h
a
c
E
%
k
h
%h
'
g
"
%&
"
¢
>
‰

‘
†‡
z
E
™ #
ˆ
!
!
!
Pn
,
Qn

= a1 +

l
m
a
E
&
E

"
$
B
#
( †‰
„
(
(
"
#C
h
%
E
'
d
E
k
s
k
h
c
%
h
d
'
E
d
%
k l
1
“œ
Pn Qn−1 − Pn−1 Qn = (−1)n n = 1, 2, . . .
Pn
Pn−1
Qn−1
‰
'
E
$
$
E
'
˜
{
 ˆ
`
m
"j
(
E
E
$
"
j
1
€
,
'd
%
w
[a1 , a2 , . . . , an ] =
™
}
‡Ž
‘
−
†
“‘
‰‹
¤
(
$
h
c
"
'
™
%
`
E
k
E
`
#
a1
1
{ ˆ
€
Pn
Qn
“
Pn
Qn
˜‰
‹|{
(
#
h' (
$
$
"`
'
(
D
E
"
$
¢
€
{
f
$
D`
E
" m
j
d
dk+1
™
1
.
[dk+1 , . . . , dn ]
(
1
[d1 , d2 , . . . , dn ] = d1 +
;
[d2 , . . . , dn ]
1
;
[d1 , d2 , . . . , dn ] = d1 , d2 , . . . , dn−2 , dn−1 +
dn
d1 , d2 , . . . , dn
(
dc
b
E%
C
"
E
dc m
%y
$
"
d
"
... +

(
m
"
E
#
"
h
d3 +
(
k = 1, . . . , n − 1
2
&
%y
£
$
d2 +
{‡
%
k l
n
1
'
"
"
#
[d1 , d2 , . . . , dk+1 ]
A = r−1 , B = r0 , r1 , r2 , . . . , rk
rk+1 = 0
ri−2 = di ri−1 + ri
i = 1, . . . , k
(A, B) = rk
d1 , d2 , . . . , dk+1
{
$
E' A
= d1 +
B
B A>B
‹
rk−1 = dk+1 rk
A
I
N
N
N
L
L
L
ML
I
Ž
‘
‡
‹
Ž€
‘
“
€
‰‹
ƒ
›
>

“œ
‘
~
‡
‘

‰
‡
{‹

“œ
€
‡Ž
‘
a1 , a2 , . . . , an , . . .
n = 1, 2, . . .
n = 2, 3, . . .
Xn−2
.
Yn−2
Pn
1
Yn−1
a1 Xn−1 + Yn−1
= a1 +
= [a1 , a2 , . . . , an ] = a1 +
=
,
Qn
[a2 , . . . , an ]
Xn−1
Xn−1
Xn−2
.
Yn−2
n = 1, 2, . . .
n = 1, 2, . . .
n = 1, 2, . . .
n=2, 3, . . .
n = 2, 3, . . .
(
hC
"
$
€
…{ ˆ
“
{‹
}–
{ „
“’
˜“ z
'
"
"' $
"
b
E%
E
E S
V
&
%
/
7
1/ 0
-+
‹
–
>
“
€
{
ƒ
‘

{

ˆ
(
Ej
h
s
( ™
z
&
$
"
E
E
"
E
C
%
'$
m
$
$
'
"
E' kb
"
k%
E
'd
E
(
E
&h c
k
$
"
b
E%
"'
h% $
dc
E
E
s
(
b
"C
$ u
dc
*
ak 6= bk
"
z
$
j
$
k
E% '
"
h
dc
E
%#
'
h
k
"
"
™ #
u
(
j
$
k
E% '
"
$
h
&
b"
"
E
#
E
E
h
b
%
"b
"j
$
$
h
c
E
C
"
( %
$
#
d
b
E%
E
k
"
%
k'
k
d
E
"
#
u
m
™
z
m
%
E
%d
b$
h
k
'
E
d
E
k
E
#
E
m
k m
%y
"
z
j
`
$
#
d
E
E
h
b$
"
h
'
$
"
C
h m
m
h
'
E
d
E
E
#
E
"
`
( %
k
%"
h
&
&
bD
%
E
E
h
$
a
c
E
k
"
#
E
j
m
m
m
h
z
'
d
E
k
E "
$
$
$
D
'd
d
Ej
E
C
%h
'
`
g
C
"
%&
(
%
'
"
$
b$
%
"
j
g
l
%$
E
&
$
™ "
%
$
#
b
E%
E
?
>
†‰

>
‡
‹
ƒ‘
†‰
>
“
{
€}

†‰
>
“
€
•
‹–
€ „
{
 ˆ
›
Ž

>

€

€}

›
>
ƒ
€
{
€Œ ˆ
… Ž‰
Ž
‹
‡
’
‘
˜Ž“
˜
$
k
&
Cy
ˆ
‡ ˆ
‹
€

}
{
ƒ
‘

{

{
“‘
‰‹
ƒ
€
>

“œ
‘
{
‰
‘•
S
V
j
h
#
E
'
%
h' E
'h
#
$
z
™ $
"
%
( $
#
d
b
E%
E
k
¢
m
$`
m
d
%
E
E
%d
h`
'
E
d
$
"
E`
E
#
E
E
#
E
k'
%
™ k
™
d
E
"
#
%
h
j
E
'
"
$
E' `
$ m
#
E
E
#
E
%
h
(
$
E' $
™
E
%
E
'd
z
$
`
E
kb
"
k%
$
E
'd
d
E
%a
h
"
"
'h
EC
h
"
%
E
h
™ b#
E
$ m
$ B
#
E
C
#%
'
"
¢
$
c
'
%
'
"
E' $
m
(
Ej
™
E
$
$
"
E
E
k
"
#
E
j
$
$
%
+
k
C
#%
'
C
m
k
E (
z
$
$
h
'
"
E' E
dc
C
"j
E
h
k
"
k%
E
'd
m
j
$
$
j
&
%
"
'
d m
C
%
"
"
'
E
E
"
E
™ &
"
"
"
' $
'
"
#
™ #
( †‰

>
‡
‹
ƒ‘
†‰
>
“
{
h
†‰
>
“
{
}
B
d
a
j
™
'
"
E' $
E
%
$ (
k
"
'
$
y
dj
`
$
'
"
E' E
k'
d
"
#
`
E C
E
™
z
C
%
1
an+1
{
ƒ
€
•
‹–
€‹Œ „
#
'
"
%
E
#
%a
h
%
a
%
h
¢
E
m
$
"
h
E
k
"
y
an < an + α1n < an +
{
{
€ „
{
‰‹
ƒ
€
–
›
Ž
>



€
€

“‘
…
“œ
Ž‰‡
‡–
‹
€ ˆ
> >
€}

›
>
™
&
%
E
k
$
#
&
b
E%
α = [a1 , a2 , . . . , an ] = [b1 , b2 , . . . , bm ]
 ˆ
{
˜ŒŽ
†
€
‰
€
ƒ
‘


ƒ
€
€
>
ak + ε = b k + δ
{‡

{

h'
%#
( u
h
k
h
c
h
α
™
€‹Œ „
“œ
‘
{
‰
"
'
%
z
"
b
"%
C
j
( )
$
"
b
&
€}

h
$
b
"
b
E%
"
`
™
$
b
E%
"'
h% ™ k
"
k%
E
'd
h
a
"
%
k
_
™
z
$
$
E
"
E
&
"
k
"
%
k'
k
C
"
%
*&
m
(
(
z
%
j
'
h% $
"
b
%"
C
'
C
#%
h
"
$
#
%
k
h
$
$
"
"
™
™
C
#%
"
%
$
™
(
'
"
E' $
™
(
k
k
'
"
u
z
f (x) =
{ „
{
‘
†‰
€ ˆ
‘•

h
Ca
$
$
06δ<1
Ž‰
Ž
™
d
E
h
&
%
$
`
m
m
E%
'"
k%
E
f (x)
?

>
‡
α=
‹
"
™ #
C
#%
`
'
#
c
C$
%
h`
'
E
h% D
f (x)
ƒ‘
‹
q
06ε<1
˜
S
V
hy
E
'
h% $
$
k`
'D
C
#%
E% '$
"C '
k=1
‡
’
˜Ž“
‘
‡ ˆ
‹
€
z
#
E
`
$ m
C$
#
y
"
`
d
'd
&
%
u
"
%
$
'
#
E
j
$
+
"
#
$
Cy
E
h
Cy
%
'E
%
dh B
( %
$
#
b
E%
'"
"`
h
E
m
b
"C
( )
$ u
k
h
d
'
E
d
%E
$
#
m
z
b
%
"
$
$
'
"
E' kb
"
k%
E
'd
E
%a
h
a
%
"
*E
f (x)
†‰
>
“
{
€}

$ £
Pn+1
Pn
<α<
.
Qn+1
Qn
"
†
€
‰
€
ƒ
ˆ
E
%
%
k
h
'
$
$
$
C
h&
'
n
X
Pn
(−1)k
,
lim
= lim a1 +
n→∞ Qn
n→∞
Qk Qk−1
%d
y
Ž
‘

{

‹
€‡
‘
™
h
a
d
d m
C
E
#
d
$
n

C
+
‡
‹
Ž€
‘
€
Ž‘
}
{
‹
€

{
%
$
Ej
'
k
E
$ m
$
n
an (αn )
E Cy
b
ˆ
ˆ
E
#
E
d
C
™
α
E%

›Ž
~
‰
{

{
“
‰‹
ƒ
`
"
$
$ v
E
α = [a1 , a2 , . . . , an ]
α 6= [a1 , a2 , . . . , an ]
a1 , a2 , . . . , an , . . .
[a1 , a2 , . . . , an , . . .]
1
α1
}
Pn
f (an ) =
,
Qn
1
f an +
= α,
αn
Pn+1
1
f an +
=
.
an+1
Qn+1
'"
˜
‹
€‡
€
h E
E
h
k
E
"
α1
a1 , a2 , . . . , an , . . . ,
α = [a1 , a2 , . . . , an , αn ] n = 1, 2, . . .
{α} = 0
α = a1 +
†‰
‰
“
‰
˜
“
{
}
Ž
—
‘
‘

‰
α
$
"`
h
$
$ v
Pn
Pn+1
<α<
Qn
Qn+1
"
'
=
a1 , a2 , . . . , an , . . .
n+1
“
‹
$
"
b
E%
h
k
a1 = bαc
(
>
{
™ ‡
‰ „
S
n = 1, 2, . . .
™ #
"
E
'h
£
f (x) = [a1 , a2 , . . . , an−1 , x]
#
–
ˆ
ˆ
 ˆ
{
€
{
E
Pn
Qn
(
"
b$
˜
[a1 , a2 , . . . , an ] =
%
"
j
l
"
n
›
{
}
α = bαc + {α}
{α} 6= 0
α
xPn−1 + Pn−2
.
xQn−1 + Qn−2
P1
P3
P4
P2
<
<...6α 6...<
<
.
Q1
Q3
Q4
Q2
(ak + ε)Pk−1 + Pk−2
(bk + δ)Pk−1 + Pk−2
=
.
(ak + ε)Qk−1 + Qk−2
(bk + δ)Qk−1 + Qk−2
z
"
$ B
$
$
1
1
m
C
E %
k
h`
h
c
/
1/ 0
h
k
/
-+
-
c
h
'
"`
'
D
'd
dc
E
E
h' C
%
dc
b
E%
'"
$
"`
h
E% '
"
$
$
h
'
b
"
$
$ v
q
E
™ #
bD
%
m
m
`
™
$
z
j
`
a
" B
%
'
$`
b
"
h
'
'd
$
`
z
hj
k
E
'
E
$
%
z
j
E
$
#
hj
%
b
"
EC
E
j
a
™ z
$
'd
dc
E
#
"
h'
'
"`
'
$
E
'
E
'$
?
{

€‡
ƒ
„
†
†
†
‰
{
Ž‡
{
€‡
ƒ
Ž
>
>
ƒ
‰
‡
‘ ˆ
Ž
‘
Œ
€‡ ˆ
~
™ —
…{
}
‡
†€
€
“
Ž
>

‰
†‰‡
‰

–
( '
"
}
dc
'd#
€ ˆ
E
#
"
h'
'dc
%
C
E
™
h
k
$
j
#
j
m
"
C
h m
ϕ(Zp )
dc
`
Cy
'
'dc
%
( $
‘
$
E
'
"
(
b
%
d
C
&
'
E
"
%
`
™ E
E
'h
#
k
'$
m
£
z
#
dc
b
E%
'"
$
"`
"b
E
a
"
$
$
"
'
%$
"j
h
%
k l
m
™
z
&
k
$
"
%
k'
k
z
b
"%
C
ϕ : x 7→ x2
b
#
$
z
B
E
C
#j
ˆ
=
a
z
#
c
m
h
E
(
z
$
"
b
E%
"'
h% $
'dc
?
™
`
B
m
h
dc
'
†‰
‘
€‡
ƒ
Ž
>
†‰
>
ƒ
‰
‡
z
j
b
%
"
#
'
h '
%$
"b
j
(
m
"j
h
"
“
€
‰‹
ƒ
‰ ˆ
Š
€

,
˜
€‡

“‘
‰‹
ƒ
€‹
‰
Ž
‘
‡
{‹
‘
…
’
˜
‘ ˆ
Ž
‘
Œ
‹
‡
˜Ž“
˜
‘
Ž‰
{
“
{
}
{
Ž

{

(
Ej
h
s
%
( $
#
d
b
E%
E
$
$
( '
"
'd#
dc
E
#
"
h'
'
"`
'
D`
$
"
"
"
£
$
$
'
E
d
E
'h
'
%
$
#
k
E% '
"
h
"
E
#
j
E
E
hC
%
'$
$
%
$
#
"
'
`
(
$
'
"
'd#
b
%
d
"
E
%
b
"'
$
"
E
a
z
$
$
$
#
d
b
E%
'"
$
$
"
"
"
'
$
"`
'
$
"`
h
k
"
%
k'
k
d
E
"
#
d
%
E
E
%d
m
$
™
%
$
#
E
%
$
#
k
E% h
C
"
p
E%
(
hj
"
"
'd#
( d
m
#
™ "
{—
€
™ Œ
ƒ‘
‡
†€
€
‰
“
‹
¤
E
z
E% "
k
E
a
%
j
a
%
"
a
™
j
$
j
'
E
d
%y
C
h
"
'd#
d
E
#
"
h'
b
d m
"
E
`
E`
E
#
E
`
m
$ m
%y
E
#
E
"
™ #b
"
"
k
"
$
" £
$
b
%
"
k
"
%
k
h
D
"
™
$
E%
'"
$
$
%
$
#
&
%
'
"`
'
"
"C %
b
"
d m
“’
†~{
{
†}
{
ƒ
Ž
>
h% †
>
ƒ
‰
‡
ˆ
‘ ˆ
Ž
‘
€‡
Œ
"`
h
$
k
( E% j
&
b
E%
'
k
&
E% '
"
d
$
h
b
b
$
"
E
j
#
E
E £
h
h
E
#
&
%
E
k
$
"
'
i
dj
h
m
E
j
z
h`
'
E
d
E
'h
'
%
h
™ #
( "`
a
E
a
$
`
&
%
u
d
E
'h
“
~
†‹
“
{
‡
(
z
$ m
y
h
'
"
d
C
E
"
E
%# y
j
B
m
™ E
$
E
'
E
%
$
(
%
$
#
b$
"
h
'
$
E
%a
h
%
d
"
`
b
"C
$ u
<
%
$
#
%
$
#
¡
!
a
x2 ≡ a (mod p)
k
$
"
'
dj
E
!
$
"
E
"
#
( %
*
E
™ "
E
a
%
m
k
$
"
(
h
&
'
C
"
c
E
D
%
$
33
%
E
E
h
E
"
#
'
{
™
'
™
B
h
d
b
E%
$
#%
d
E
'
"`
8
C
$
#
(
™
$
$
$
$
j
j
"
d
"
*k
b
'$
d
"
'
"
#
k%
"
#
d
E
' $
%
h
kb
"%
k
h
"
C
`
`
`
h m
d
%
w
j
u
%
%
j
'
'
E
( )
k
b
c%
"
C
%
'$
`
m
h`
'
E
d
E
E
#
E
"
%
( $
#
d
b
E%
E
£
£
A
™
b
"
'
j
$
"% z
k
k
$
"
%
k'
m
h`
'
E
d
E`
E
#
E
E
'
'
%
$
$
"
E
"
h
$
`
$
4
,¥
5
u
'
'
b
E% h
( &
z
j
#
E
™ "
k
(
z
`
.
d
E
#
"
a
%
`
' ¢
E
'
b
%
"
E
h' %
m
d m
(
z
™
$
$
h
j
'
'
E
#
%
d m
k
E% &
E
%
E'
"
"
k
"
E
%
™ "
$
$
# b
E%
E
E
g
{
%
…
>

>
“
€
•
‹
"
E
k
%"
h
dc
"
$
( (
™ E
"
y
"% (
C
"
c
E
D
%
$
&
$
d
E
`
$`
' $
E
h
&
d
"
d
h
a
$
E
"
%
$
™ #
c
"
™ `
*
‘

‰
‹
€‡
"
™ #
"
˜
˜Ž“
†‰

>
‡
‹
ƒ‘
†‰
>
“
‰ „
†‰
˜
–
 ˆ
{
{
Ž


€

{
$
?
“
‰‹
ƒ
€
{

“œ
‘
€}

€}
'
"
l
{
‰
•
%
(
b$
%
"
j
j
E
h& E
m
h`
'
E
d
E
k
E "
$
$
$
D
'd
"
$
d
E
#
100
$
"' "
E
"' d
E
#
"
'
$
"b
%$
Ž‡
{
˜“
z
dc
'
z"
k
m
h
d
E
kb
$
$
p
a
#
E
a
%
b$
"
E
D
`
h'
S
#
k
"
%
k'
k
"j
l
b
"
(
m
'
E
d
E
"
k
™ #
"'
™
dc
E
"
#
'
$
h
97
E "
$
%"
"
™ #
(
WS
U
b
%
C
“œŒ
{
‡
z
%
$
h
E
a
%
θ
"
%&
E
$
'd#
"
E
y
*
V
q
$`
E
b
%
"
m
d
b
$
"
"
$
$
Zp
Ker ϕ = {−1, 1}
33
$
$
$
a
%
h
"
%
k
'dh
E
h
d
'
E
E%
E
'
dj
C
dc
%
E
%
h
8
k
k
#
"
$
#
E
E
E
d# m
h
d
E
#
"
h'
$
d
D
C
#%
"
&
™ %
h
p
"C $
$
™ dc
h
%
'
<
E
'
E
C
dc
E
"
h'
k
k
c
y
Z∗p = {1, θ, θ2 , . . . , θp−2 }
a = θj
j
"
%
&
'
z"
'
$
z
`
E
D
%
k'
E
$
"
u
dc
{1, 2, . . . , p − 1}
k'
"
%&
`
d ™
k
"
"
#
m
"
E% h
$
m
&
d
b
E%
™ %k
#
E
%
$
%
E
400
"`
k`
E
(
E
D
&
%
k'
k
%
k'
$
$
"
h
a
%
$
#
h
d
$
E
a mod p
E
h
k
&
"
E
$
%
k l
"
%
k'
(
™
k
E'
$
&
b
h
dc
'
E
(
E
'"
$
"`
'
"
$
a
d
E
#
(
$
4
D
D
$
b
h
k
#
h
d
j
&
"
E
( h
E
"
$
8
365 33
k
E
a
%
$
#
`
$
"
b
E%
"
%a
h
bE
'
k
$
Cy
(
™ "
k
E
a
E
k
"
™ #
E
z
"' "
$
j
™ E
"
' $
E
$
p−1
h
$
#
hj
h
E
a
™ b
"C '
"
$
"' "
C$
%
$
w
r
%d
y
E
p
a
c
E
%
`
h
E% d
'
E
"
m
h
k
h
C#
"
( "
E
£
%
Zp
k
h
$
`
E
%
c
h
'd
( )
"
"
"
$
k
k
'
d
"
'
"
#
h
a
%
#`
d
`
™
C
"
$
%
k
$
E
α
( '
h
a
"
d
E
k=1
"
z
"
hb
d
'
8
.
33
w
dj
E
E' $
n
X
(−1)k
a1 +
,
Qk Qk−1
%&
k
$
$
"
%#
"
b
%
"
h
E% ¡
E
"
*"
365
"
h&
`
j
™
%
7
,
29
"
8
365 33
(
(
m
365
$
`
(
E
h
( &
5
E
a
%
u
1
365 ,
4
E
`¢
`
"
Pn
lim
= lim
n→∞ Qn
n→∞
&
'd
d
'
d
E
E
h' 365,
(
$
E
' $
'
365 41
&
E
E
"
m
97
365 400
™ #
*
h
&
365,24220 . . .
[365, 4, 7, 1, 3, . . .]
α
Zp
2y ≡ j (mod p − 1)
1
1
/
,
1
1
-+
4
-
$
E
k
%"
h
$
"b
&
'
"
'
%$
"j
™
1
1
(st − s − t + 1) = (s − 1)(t − 1),
2
2
8
(
'
(
"
p
G = (G
G =
p
p−1
2
) G=8
2
X
7
j=0
f (j)ω
j
G2 =4(ω 2 −2ω 4 +ω 6 )=86= 0
(mod 2)
p−1
2
p
=
7
X
j=0
f (j)ω pj ,
8
2
G=
G=
G.
p
p
z
$`
™ b
E%
'
"
$
E' C
E
%
dc
E
"
#
E
k
h
d
%
'
"
C
E
C
%
'$
&
%
z
%
'd
t
"'
"
u
s
"
E
h% Gp
_
$
™
z
'd#
b
%
c
"
E
%
E
Cy
E
E
y
hj
C
E b
"'
"
$
`
E
$
a
E C
"
h
k
"
%
k'
k e
%
™ "
z
$
#
s
™
™
%
"
$
u
&h
y
$
(
'
u
(
%
`
`
w
&
%
™
n
"`
%
E
%$
&
k
h
(
(
j
b
E '$
"
&
' $
"
'
z
C
E "
$
$ v
$
E
'h
#
'
"
E' ™
"
y
E
%
d
'
E
"
b
"j
k'
h
™ E
E
k
h
(
`
`
e
™
?
{
™ ‡
‰
“
‹
,
=
(
'
$
$
$
"
E
%
k
"
a
h
&h
'
%
E
E
'h
C
"
$
$
E
'
E
'
%
h' d
%
"
C
E
C
%
$ B
%
m
&
%
$
u
j
'"
"
$
'
"
E' E
E
bh
$
$
a
E
™ "
%
l
d
"
E
%
s
"
'
(
%
"
k
$
b$
E
D
h
E
a
%
'
'
( m
$
$
"`
'
d
'
E
$
E
h' z
%y
'
"
a
%
{1, −1}
h
™ $
'
"
E' (
'
$
, x ≡ 1 (mod 2),
x ≡ 0 (mod 2).
(p2 −1) 8
™ ( ap b ) = ( pb )
j=0
7
X
E
(
$
f (st) = f (s)f (t)
G ∈ GF (p2 )
%#
2
x2 −1
8
'
G=
m
Ri
G 6= 0
(−1)
0,
(
%#
'
%
k
"
"
f (x) =
(
$
h
£
k
E
d
E
#
"
h'
(
"
`
"
b$
%
"
¤
Zp
$
Ck
'
bh
$ £
hy
"
"
™ #
`
$
™
"
'd#
'
%
C
(p2 − 1)
%
a
u
(
k
™ "
C
h
"
E
E
"
j
GF (p2 )
p ≡ 1 (mod 8)
"
"
ω 4 =−1
G 6= 0
GF (p2 )
+
'k
"
$
$
h% C
#%
"
%
k'
k
E
"
b
`
™
"
l
(
(
(
( 2p ) = (−1)
C
(
#
h u
$
€
˜‰
d
%
"
E
%
d
'
E
"
2
d
d
E
(
%
$
#
"
™ #C
"
b
E%
Z8
E
"
$`
(mod 2)
'
"
Ž

‘
‹
‹
‡
’
k
( ap ) = −1 C&
$
˜
˜
E
'h
$
$
"
'
$
"
E
#
A
$
p−1
≡ 0 (mod p − 1).
2
h _
j
E' "
k
$
y
a b
( ab
p ) = ( p )( p )
a = θj
(
(s − 1)(s + 1)
“
{
}
Ž
#
k
"
%
k'
&
%
E
a
h&
"
'd
t
Cy
s
>
?
(
'
E
%
(mod p)
a ≡ 0 (mod p)
'
k
$
$
h% ‰
“
k
"C 'k
(
( E
h% ≡ ±1 (mod p)
Zp
h
€
‰‹
ƒ
m
$
$
"`
'
'
h
Cy
(
™ "
"
*
( ap1 ) ≡ ( ap )
p−1
2
%
k l
E
'
E
?
$
h% w
j
$
™
›
p−1
2
(
¤
≡ 1 (mod p) ⇐⇒ j
( %
$
&
'
>
"
{
™ ‡
(
'
"
g
( ap ) ≡ a
%
(st)2 −1
8
E
&
™
‰
“
=
"`
f
p−1
2
#
E

D`
b
E%
‹
(
$
a1 ≡ a (mod p)
$
€‡
ƒ
€

› „
>
’“
˜“ z
S
h
%
k l
( 1p ) = 1 ( −1
p ) = (−1)
#
$
$ u
a
"
'
≡
#
t2 −1
8
st−1
2
"
&
%
(a, p) = 1
™ #b
™
≡
" "
&
%
t−1
2
"
b$
m
'd#
( ap ) = 1
"
$
&
%
(
'
p−1
2
"
%
+
'
(
2
a
ap−1 ≡ 1 (mod p)
θ
"
l
s2 −1
8
"
j
+
j
#`
$
'
$
a
'
&h
s ≡ 1 (mod 8)
s−1
2
2
h
E
k
E
'
E
$
$
( %
$
#
E
"
#
" "
a
"
&
"
"
#`
$
'
'

a ≡ 0 (mod p),

 0,
a
∃ x, x2 ≡ a (mod p), a mod p 6= 0,
= 1,

p

−1, 6 ∃ x, x2 ≡ a (mod p), a mod p 6= 0.
1 2 2
1
(s t − s2 − t2 + 1) = (s2 − 1)(t2 − 1),
8
8
p2 −1
8
ω
f (j)ω j .
G = ω − ω 3 − ω 5 + ω 7 = 2(ω − ω 3 ),
+
j
m
'
d
E
E
h' '
z
$
$
E
$
$
j
'
"
E' "
"
'd
E
'
E
b
"
Cy
h% k
"
%
k
h
™ "
™
`
4
,
5
¢
‘ ˆ

‘
€
“
Ž{
‰
( & e
™
†
1
1
/
1
1
-+
4
-
k=1
q−1 X
k
q
$
j=0
q−1
q−1
= (+1)
+ (−1)
= 0.
2
2
4)
a = pa1 1 pa2 2 . . . pakk
a1 a2
ak
p2
a
pk
p1
...
;
=
p
p
p
p
;
a
;
b
%
−1
p
%
E
%
"
a
E
&
%
&
m
j
E
#
z
™
E
$
'd#
"
z
"
C
#%
%
y
j
k
k
'
h
E
$
C
%#
h
E
a
%
'
'
$
"`
$
$
(
$
$
Ck
'
bh
"
"
™
hy
$ £
m
™ b
E%
"'
h% ™ $
C
E
%#
E
h
'
_
(
%
'
z
"
$`
GF (pm )
Gp
"
a
E
$
#
E
$
a
$
k
E% k
G
dc
h
a
'
C
kj
b
p−1 q−1
2
2
E
h' j
$
"
"
%
k
(
E
G ≡ (−1)
a mod p
%y
Ej
a
'd
#
h u
$
"
G 6= 0
'
y
p
E
%
'
p−1
2
&
E
h
q
E
'dh
+
$
p−1 q−1
2
2
™ "
"
'
i
™
d
5
,
E
"% 4
,
4
(
z
( &
'
"
d
`
ef
,
5
w
w
$
d
E
#
"
h'
'
dj
™ E
h
E
a
%
'
'
z
(
S
]
j
E
h
a
l
TS
T
S
TX
V
S
*
V
S
p
Z
X
S
*
8
<
(
$
b
"j
bh
%$
'
"
"
( '
"
E' C
m
m
™
E
k
k
$
E
a
'd
k'
'
E
™ b
s
m
C
#%
C
#%
(
h' j
j
#
%
$
d
E
z
h'
'
E
"
%
d m
E
$
h
%
( &
z
d m
!
'
#
( )
$
$
"`
'
b
=
%
`
a
m
pj
"
%&
ω
'
b
E%
$
"`
s
(
$`
G = (−1)
"
$
"
&
'
$
q
a
E
$
"
&
q−1 X
p
pj
q
ω
ja
a
%
k'
'
E
"
C&
h _
Ž{
‰
Ž€
“ ˆ
'
"b
%$
j
"b
%$
"j
h
%
$
"
E
j
'
j=0
q−1
X
"
a
"
E
"
z
"j
h
dc
E
%#
b
%$
‘
}
( )
a
%
E
'
u
E%
"
"
f (pj)ω pj = f (p)G.
E
( '
#
E
Gp =
h
%
d
E
j=0
$
G =
Cy
p
#
E
ω .
j
q
p−1
2
c
%
Ej
"
™ b
y
q−1
2
$
m
$
E' C
E
h
E
#
‹
‰
“
€
‰‹
ƒ
›

>
€‡
ƒ
€

$
"
h
E
&
B
E
( #
−1
q
&
%y
l
=
<
%
&
%
E
by
G = (−1)
h% $
z
$
"
%
E
›
>
‡
{‹

}
E
j
'
$
( $
C$
G2 6= 0
'
$
#
%
k
hb
by
"
E
D
$
`
C
"
$ u
p
#
&
s
C
u
'
› „
>
“’
E
j
&
E
#
j
%
G =
k
%
$
,
m
E
'
E
k
h
"
h
( '
(
"
b$
%
˜“ z
S
r
2
d
E
j
¤
"%
k
$
k=0
p
h%
$
k=1
& &
(
C
c
$
"
E
$
"`
'
$
p−1 q−1
p
q
2
2
= (−1)
.
q
p
f
$
$
%
k
"
q
$
C
#%
m
k
"
k%
E
$
&
V
(
G
C
$`
C
%
'd
a
h
ω
q
'
h
C
E
%#
'
™ "
b
"
'
E
Ž{
‡
‹
Ž€
p
™
E
`
"
™
h% "
j
l
(
$
$
C
i
E '
$
"`
'
C
kj
b
%
E
"
#
E
"
"
™ #
k'
d
"
C
#
™ E
C
#%
¢
f (x)
$
k=0
'
'
m
k=1
E
"
a
%
$
C
'
"
j=0
7
X
h
Ri
q−1 X
j
q
a
(
j=0
bE
"
j
E
$
$ v
&
%
k
"b
%$
‘
f (p)f (pj)ω pj = f (p)
™ h
$`
E
"
™ #
(
E
a
™ m=q−1
E
C
a
G=
h
E
'
"
'
k
a
_
Zp
$`
k
=0
™ "
h
%
#
E
pq−1 ≡ 1 (mod q)
E
"j
j=0
7
X
j
k
jk
X
X
q−1 X
q−1 X
q−1
q−1 j
k
jk
−1
−1
j(1−k)
ω
=
ω j(1−k) .
q
q
q
q
q
j=1
j=1
Gp =
C
E
E
s
G 6= 0
q−1 q−1 X
q−1
q−1
X
j
−k
−1 X X j
k
j
−k
=
ω
ω
ω j−k .
G=
q
q
q
q
q
j=0
j=0
( 0q )
'
'
E £
h
GF (pm )
"
E
G=
'
b
s
E
a
'd
p
0, a 6= 0,
q, a = 0,
X
q−1 X
q−1
q−1
−1
k
1
j(1−k)
ω
=
q = (−1) 2 q.
q j=0
q
q
k=1
q
G (mod p).
p
p X
X
q−1 q−1 j
j
ωj =
ω pj ,
q
q
j=0
j=0
X
q−1 pj
p
p
pj
ω =
G.
=
q j=0 q
q
( ap )
p
1
1
/
1
1
-+
4
-
(
2
( n1 ) = 1,
( n2 ) = (−1)
( −1
n ) = (−1)
n2 −1
8
t
( n2 )
™
b
%
;
;
( −1
n )
a
n
t
a = 2 a1
z
C
h% j
&
%y
m
$
'
"
E' &h $
$
y
$
C
#%
m
%
'
'
"`
'
E% s
z
$
j
$
j
$
b#
"'
"
m
m
"
h
c
E
"
kb
'"
z
$
b
%
C
"
E
"
j
E
`
m
a
%
b
"
&
$
$
$
E
%
E
'd
&
"
™ #
"
j
'
k
'$
d
E
C
h
E
k
"
%
k'
k
m
V
U
j
%
'
k
$
y
j
$
$
%
"
a
E
d
"
E
k
E
a
%
Cy
h% "
%
$
#
$
E% $
'd#
h
"
D
'd
d
E
E
a
%
*
V
`
:<
i
"
™ #
a
%
h
( %y
C
E
d
'
E
'
“
€
‰‹
ƒ
›

>
€‡
ƒ
€

‰
› „
>
“’
˜“ z
(
(
‘
}
‹
z
'
Ž{
‡
‹
Ž€
‘
Ž{
‰
“ ˆ
™
S
V
h
c
E
%
$
j
k
$
'
'
™ Ž€
"
™ #b
"
"
$
#
E
#
"
u
"
'
"
l
"
$
(
b$
%
"
j
$ l
$
m
$
E' "
#
C
#%
'
E
"
™ (m, n) = 1
E
%
k
h
'
%
j
$
"
y
$
c
'
i
by
"
%
h' qi
k
'
j
a b
k s Y
Y
pj j i
%
$
k
( ap )
"
a
k
m
n−1 m−1
2
2
#
k
$
m
&
i=1 j=1
E
h' E% E
$
$
"
$
k
h
E
¢
m n
q−1
n
2
.
m
j
$
= (−1)
h
d
E
pj −1 q −1
i
2
2
h
j
'
=
"
%
k
%
&
%
'
'
;
a
'h
E
™ E
pj −1
q −1
bi i 2
2
%
a
%
'
C
dj
h
n
m
k
a mod n
&
%
%
$
"
z
d
,
'
%
E
“
Ž{
‰
$
"
E
E
™ E
h
$
d m
"
%
m−1
2
$
'dh
(
= (−1)
*$
"
j
†
j
a
%
E
a
%
'
m
m
(
"
h
m = q1b1 q2b2 . . . qsbs ,
C
%
‹
pj
&
$
C
E
#
"
%
m
Cy
h% $
a b
s k Y
Y
qi j i
'
'
(−1)aj
™ "
m
'$
= (−1)
'd#
b
E%
&
$
"`
"
™ #b
"
h'
$
#
&
%
&
%y
%
k
h
&h s
"
E $
#
™ "
%
a
k'
$
%y
p
qi
pj
$
(
"
E
%$
&
_
(
j=1 i=1
E
"
'
d
Ej
i=1 j=1
k
s Y
Y
E
&
j
$
"
m
m
n
"
$
j
#
b
E
E
Ej
k
"
$
" £
™
#
j
E
b
E%
"j
k
ak
a1 a2
a
a
a
a
...
.
=
n
p1
p3
pk
"
E
E
"
¢
$
E
'
'
'
"
"
$
$
a
#
h
(
"%
k
l
h
$
E' ( m
)
c
=
E
(
#
E
@
z
™ '
"
k
E
"
#
=
"
n=p
a
%
"
$
'd#
&
s
`
2
2
=
= (−1)(−1) = 1,
3
5
%
$
%&
%
$
E' $
"
%
k
E
b
$ u
™ $
#
&
™
<
(
%y
C
h
"
'd#
$
%
"C
m
n
%
E
"
#
%
"
'd#
d
E
$
C
#%
h
"
a
dc
E
n
™
$
a
(a1 , 2) = 1
#
n−1
2
%
u
&
$
$
d
E
#
"
h'
k
"
%
'k
‰ „
{
( anb ) = ( nb )
m
™
2
y
a
b
E%
$
#
"
h'
k
"
%
k'
k
E
E
h B
a
'
$
kb
"
$
™ E
E
'h
#
k
%
n
&
E
"
h
$
= (−1)2 (−1)3 = −1.
"
$
"
'
"`
$
E m
$
™
%
$
%
−2
5
'
$
'
$
C
%
'
C
"
u
#
=
b
E%
"
#
( '
"
(
%y
#
"
k
E
C
&
C
c'
h
"
C
E
53
5
k
$
"
"% '
C
h
E
"
™ #
'"
$
≡
( na )
?
#
$
k
"
"
( h
E
a
%
'
"
™ #
'
%# y
Œ
,
5
m
&
$
( )
"
E
j
'
E
j
&
E
#
"
h'
E b
D
%
l
a
$
E "
m
m
;
$
"
E
j
'
E
j
d
E
#
"
h'
k
E
(
`
$
k
E
E
a
C
'
"
%
k
"
$
a
E
$
&
E
"
#
E
&
h
a
%
k
h
j
E
#
E
d
E
"
#
E
(
(
(
z
&
j
#
'
b
E%
"
k
"
$
b$
"
%
E
'd
k
$
"
&
%
h
c
d
%
¤
4
;
%
k
$
'd#
™ E
"
#
E
%
$
2
&
i
(
$
$
$
'
by
k
"
h'
'
$
"`
'
c
"
'
%$
"b
"j
l
&
%
&
%
( p2 )
E
%
{
( an1 )
'
( na )( nb )
( na ) = 1
$
=
$
"`
#
"
#
n = pa1 1 pa2 2 . . . pakk
= (−1)
26·2
%
,
,
a1 ≡ a (mod n)
& & &
j
(a, n) = 1
5
53
¤
™ ‡
‰
“
‹
2
15
2 ?
=
2
(
(
2
53
{
¤
( ab
n)
a
=
$
=
(
E
h
n
f
f
15
20
53
pi
‰
“
‹
C
h
=
(
™ ‡
(
E a1
h&
j
126
53
ai
(
(
'
$
p1 = 2
n = pa1 1 pa2 2 . . . pakk .
.
pj
.
qi
.
1
1
/
7
1
1
-+
4
-
4
,
E
C
"b
'
%$
"j
%
j
"
™ #
op (n!) =
tp (n) X
j=1
n
.
pj
"
#
h
$
Ž
›€
‹
˜“ ˆ
{
ƒ‡
u
C
#%
D
C
™
$
C$
`
C
E z
C
%
$
#`
'
E
z
"
$
&
E
k%
'
h% $
$
E
(
j
'
"
$
E' E
l
$ B
&
E
'h
#
C
%
'
"
b$
%
"
z
$
b
%
%
'
dj
'd
&h
'
%
$
#
dc
$
"
E% B
m
"!
!
"!!
!
!
!
!
˜
˜
Ž{
‡
‹
Ž€
‘
€

‹
€‡
“
{
Ž
}
>
€›
Ž
‹
 ‰
S
`
( '
D
d m
C
E Cy
'
dj
E
y
z
"b
$
m
C
E b
'"
E E
C
h
'
"
E' E
dc
E
E
h
'
%$
"j
h
%
k l
™ ,
m
(
(
j
k
$
'
'
&
™ h
c
E
%
$
™
˜
€›
Ž
‹
˜“ ˆ
‰
‡
’Ž
~
‡
€‹
~
S
V
ˆ
˜
Ž
‘
‡
‹
Ž€
‘
€

‹
‡
’
“
{
}
Ž
>
™
>
{
ƒ‡
€
‰
‘Œ
‡
‰
€


˜{
‡
{‹
}
Ž€
c2
C
E
™
€
{
‘Œ
2m−1 < x < 2m
%#
k
E
‡
(
E
'
hy
#%
E
"% ™ #%
"
"
j
"
h
E
d
"
#
g
$
$
h
>
c1
x>2
x
x
c1
< π(x) < c2
.
ln x
ln x
'
j
c>0
Cy
tp (n) = blogp nc
#
E
%
$ £
z
%
a
™
(
'
B
p6x
X
B
m
€
‰
q
"
dc
"
$
%
h
%dc
?
€
ƒ
‘

€‡
Ž
~
‡
€‹
~
( &
¥
e
B
,2
%
(
$
#
"
h
E
a
( & e
e¥
,
B
y
22n >
B
Ž{
%
k
h
$
by
h
by
$
"
E
#
"`
`
`
θ(x) =
"
‡
‹
Ž€
‘
€

S
™
E
'
(
E
E
"
j
$
E
$
x>2
h' '
"
˜
‹
€‡
j
m
m
E %
k
Ch
%
C
h' $
(
"
E
< c1 < 1 c 2 > 1
(
(
j
b$
%
"
˜
“
%
%
x = 2m
l
{
}
Ž
>
™
"
E
x
x
< π(x) < 1,106
.
ln x
ln x
"
%
#
$
j
$
bD
%
%
'
532 −1
53
= (−1) 8 (−1)26·7
=
15
2
8
=−
= −(−1)28 = −1.
=−
15
15
_
dt
x
∼
ln t ln x
E
z
"
%
"
E
h
E
a
%
C
E C
'
( )
2
n
;
a1
C
&
E
$
% `
h
E
Cy
h% %
C
104 < x < 106
#%
l
x
ln x
%
(
C
E k
%$
C
#%
m
k
"
C
k
x
d m
j
' $
j
E
#
E
d
E
C
E "
"
E
π(x)
h
π(x)
k
E
E
C$
$ u
'
#
j
'
"
%
$
$ v
¢
C
E "
z
$
$
#
D
n−1 a1 −1
2
2
"
™ #
by
"
£
"
"
a
%
E
5
1<p6x
"
™ #
j
E
h
m
x
ln x
d
%
k
2
Zx
%
E
C
#%
(
%
$
™
( &
,
4
"
= (−1)
E
%
%
j
dc
$
h
x
ln x
B
0,921
15
53
$
™ #%
k
"
&
,
"
"
E
c
"`
E
a
'
%
™ C
'
m
%
d m
%
d!m
D
$
a1
n
E
a
%
A
$
*
%
C
'
E
%
D`
$
#
2
53
( &
E
π(x) ∼
h
4
e
(
u
E
( &
E
#
"
(
x
ln x−1,08366
m
E
`
b
E%
$
"
h
=
j
j
,
B
h B
_
# s
E
&
$
(
p
(
E
#
"
30
53
%
E
#
"
%
m
E
&
$
"
=
#
"
"
h
1
( & 4
$
136
53
'
b
%
"
'
d
E E
C
k
$
y
Cy
%
k'
Cy
Cy
™ kC
z
$
h% a
"
D
`
q
>
l
u
$
j
"
E
'
E
d m
"
( '
(
(
j
b
"%
C
"
E
j
d
E
#
"
h'
k
E
&
( an1 )
0<
ln p,
θ(x) < (4 ln 2)x.
p<2n
Y
2n
>
p
n
n<p
2n ln 2 > θ(2n) − θ(n).
θ(2m ) 6 2 ln 2(1 + 2 + . . . + 2m−1 ) < (2 ln 2)2m ,
θ(x) 6 θ(2m ) < (2 ln 2)2m = (4 ln 2)2m−1 < (4 ln 2)x. θ(x) > cx
x>2
tp (n) = max{k > 0 : pk 6 n},
op (n) = max{k > 0 : pk | n}.
1
1
/
- ,+
1
-
,
'
$
"
E' i
Ej
(
E
k
k
E
a
C
#%
¤
d
%
by
(
Ej
h
8
E k
E
'h
#
j
E'
b
%
$
'
$
0 6 b2xc −
hy
$ £
θ(x)
x
>c
.
ln x
ln x
π(x) >
‘
‡
…
‰›
“œ
{„
{
ƒ
{
?
‡
‘
‡
{‹ ˆ
€›
Ž
‹
‰

}
{
ƒ‡
Ž
‘
‡
‹
Ž€
‘
€

˜
‹
‡
’
“
™ z
d
"
'
%
C
C
#%
'
"
$
E' E '
%
z
pn >
E '
%
1
1
n ln pn > n ln n = c3 n ln n. c2
c2
(
"
E
}
Ž
?
‘
‹
‘

Ž
‰
c5 ln n < pn+1 − pn < c6 ln n. ›
>

{
‡{
€
Œ

‰

}
‘
{—
‡
{
“
‰‹
Ž€
ƒ
€
{
€
‡
‹{

>
…
€
ˆ
n
“ ˆ
}
‘
‡
~
œ
‹
›
‘
‡

‘
‡
‹
{
√
2θ(x) √
x
x
+ x < 8 ln 2
+ x < c2
ln x
ln x
ln x
c2 > 1
$
"
E
`
"
E
π(x) 6
Œ
*
TX
(
U
‹ C
#%
d
%
"
C
#
™ $
b
E%
"'
h% q
pn
0 < c 5 < c6
Ž€
,
_
√
p> x
√
√
√
√
x(π(x) − π( x)) > ln x(π(x) − x).
™
(
s
1
2
n ln pn < n ln n = c4 n ln n.
c1
c1
pn > n
E
k
k
E
a
ln p > ln
h' "
¢
p<x
X
θ(x) >
C
$
c
bD
%
E
#
"
$
"
h
"
C
#%
Ri
pn <
(
k
k
E
c
E
B
( d
m
n
1
ln pn < ln pn + ln c1 − ln ln pn ,
2
c1 > 0. ™ E
"
'
$
"
b
%
j
"
k
(
(
x−1
> c1 x,
2
l
θ(x) > θ(2n) > cn > c
2n < x 6 2n + 1
¢
"
E
"
$
E
k
"
E
c>0
√
2n ln 2n > cn,
*
&h
θ(2n) > n ln 2 −
!
& E
k
k
E
c
B
pn
pn
< n < c2
.
ln pn
ln pn
ln pn + ln c1 − ln ln pn < ln n,
'
$
"
E' p> 2n
p<2n
X
ln 2n
ln p 6
1 ln p 6 θ(2n).
ln p
√
E
"
√
p> 2n
"
'd
"
hy
$ £
Σ2 =
'h
c1
p6 2n
p<2n
X
x = pn
(
'
"
b$
%
"
j
X ln 2n
√
ln p 6 2n ln 2n,
ln p
√
Σ1 6
m
c3 n ln n < pn < c4 n ln n.
blogp 2nc ln p = Σ1 + Σ2,
l
p<2n
p<2n
u
X
tp (2n) ln p =
"
X
n ln 2 <
"
b
E%
'"
h% ˜
{
}
Ž
>
_
™
>
‡

‘
‡
‹
{
€Œ
‰
Œ
…
˜
‹
–
‡ ˆ
~
‘

‘
{—
{
“
‰‹
ƒ
€
{
‡
{‹

}
ˆ
( %
$
#
&
"
$
€
œ
‡
z&
d
E
~
*
TX
(
U
n
pn n
0 < c 3 < c4
‹ %#
n
'
E k
"
y
Y op 2n
Y
2n
n+1n+2
2n
n
...
=
=
2 <
p
6
ptp (2n) .
n
1
2
n
p<2n
p<2n
$
z
C
#%
d
"
D
'd
`
E
Ej
hj
'k
"
$
h% $
'
"
$
#
B
(
"
"
E' E
E
h% $
− 2bxc 6 1
6 tp (2n).
2n
n
−2 j
j
p
p
B
j=1
j=1
ln p 6 π(x) ln x
p6x
>
X
X
θ(x) =
$
j=1
tp (2n) =
¢
tpX
(2n) tp (n)
X n
(2n)!
2n
2n
=
−2
=
= op
n
(n!)2
pj
pj
s
- ,+
1
/
1
1
c
$
op
'
C
"
u
p < 2n
E
*
%
$
g
‘
‘
}
(
$
E'
y
E
C
"
Zn
¢
u
z
%y
%
k l
b
%
"'
h% ™ $
m
b
&
™
‰’
$
%
$
#
dc
$
"
'
h
(
(
$
E'
E
%
k
%h
$
#
dc
`
(
k
"
™ c
u
d
bD
E
E
h' C
#%
™ E'
y
E
$
¢
™
+

>
‡
€
“
Ž
‘
Ž‰
Œ
˜Ž‰
{
“
‹
~€
‰
*
’ ˆ
~€
“
(
>
‡
{‹

{
$
$
"
'
h
'
E
$
$
"
&h
%
$
{} ˆ
Ž
€
‹
}
k
"
%
k
†}
$
#
&
E
E
#
E
$ m
C
E
™
$
"C '
"
$
C
"
#
"
‰’
Ž
‘
{

{‹
z
™
™
%
,
g
&
%
(
S
T
V
'
"
%
$
2
(
kŸ
E'

"
$
$
k
%
$
#
"
#
k
"
'
&
"
E
'
E
k
"
k%
E
'
n
z
j
"
b"
$
$
$
"' 
"
™ "
E
%
E
'd
E
E
'
E
%
z
E
a
;
Ÿ
'
E
"
$
$
*
E
j
$
$
y
™ E
d
$
$
d
b
E%
k
"
'
d
" m
™ &
"
%
f
$
'
%
C
d
E
%
"
c
h%
$
y
$
'#
"
™ %
z
a
E
kŸ
E'
m
$
¤
k
$
,
%
;&
k
E
'
E
b$
$
"' 
"
™ "
k
"
k%
"
E
'd
%
E
E
%
E
'd
'
& & & &
™ E
"
j
' $
E
"' "
™ "
E
%
E
'd
E
'
E
$
d
'd
'
E
"
$
y
b
$
E
#
k
"
k%
"
'
$
E
Cy
Cy
$
)
]
U
h% m
w
X
'd
B
dc
%$
'
%
C
&
E
™ C
(
5
¥5
q
$
*
%
k
h
k
"
j
$
Cy
b
%
k
'
$
™
'
%
C
%h
$
$
s
k
h
E
E
$
#
&
E
E
hj
d
"
"
( %
g
'
"
%&
by
; ;
Ÿ
'
E
"
$
$
$
$
"
#
k
'
$
k
"
'E
'
m
m
%
k
h
k
E m
C
h
E
E "
D
$
%
'
"
E
%
j
$
#
E
C
#%
`
m
'd
,
z
j
$
$
‡
E C
C
"
+
{‡
& >
E
$
d
E
"
( )
"
Cy
h% b$
"
a
%
h
E
a
C
$
y
$
"
E
$
"
k
"
%
k'
k
%
h
‹
C
h m
$
$
#
#
(
%
E
'
"
E
E
k
E
`
'D
$
"
hj
'
%
$
#
dc
"
'
"
$
a
E
b
" "
"
%
k
'
h
"
d
E
E l
™ E%
{1, 2, . . . , n − 1}
(a, n) = 1
5
4
,
€
Ž

‘
‹
€‡
Ž{
˜
€‡
$
$
"
'
h
dc
b
E%
E
‹
(
b
%$
( &
,

™ "
"
D
'd
`
u
u
™
d
E
E
"
'
C
b
%
$
$
C
%
$
#
&
E
h
%
k
d m
!
h
™ "
%
'
"
E
'

Ž€
…{

}
‡
€‹
‡–

>
‡
{‹

‡
˜{
'
E
"
$
$
( *
m
" m
n
h%
_
g
{
{— „
“’
˜“ z
l
B
a
(a, n)
n
(a, n) = (2, 341)
431=11·31
`
v
$
S
(
B
n
'
"
z
E
;
€
{
‡
‹{

}
Cy
(
%
$
$
$
k
"
c
E
%
E
'd
E ,
E
'
E
%
"
™ #
"C h% d
"`
"j
$
$
#
k
'D
$
"
i
&
%
(
z
E
"
'
E
E
E
h
a
'
C
"
'
d
'd
%
$
m
£
f
$
'
#
$
g
C
#%
E
E
h'
bD
"
f
E
E
%
k'
$
"
%
$
%
h
"
d
E
"
%
( ™
$
$
#
'
m
&
%
(
$
$
$
j
$
%
$
#
k
c
'D
"
d
E
"
%
$
#
'
'
d
'd
%
$
#
¤
¤
i
m
(
%
$
#
&
E
E
hj
&
"
E
c
k
h
c
'$
™ E%
$
#
dc
$
"
z
,
&
%
an−1 ≡ 1 (mod n).
(
%
(
'h
V
"
{1, 2, . . . , n − 1}
™
(
&
E
E
#
E
`
#
E
h
a
'
&
%
n
Ž“
{ ˆ
~
‘
‘
(2, n)
€‡
˜
Ž{
€‡
Ž“
{ ˆ
$ m
$
a
2
3
5
7
}
‰
“
†~
k
aa−1 ≡ −1 (mod n).
€‹
™ "
"
d
E
%#
"
%
−1
€~
™
k
?
a
=(2 ) ≡1 (mod n)
a
€
"
C
"
$ B
&
10 34
‘Œ
‡
a>1
a
(2, 2n−1)
&
C
u
C
#%
'
E
`
1
‰
b
%
a | (n − 1)!
"
%
(
"
b$
a
{
(
d
h
a
%
"
j
n=2
‡
(
"
1<a<n
E
%
a6=1,−1
™ "
−1
(
Y
Ej
d
™
#
a 6= a
m
(n − 1)! ≡ (−1)
'
E
™ "
$
"
m
(n − 1)! ≡ −1 (mod n)
"
™
*
l
%
n
h
$
"
`
m
−1
s
E
k
a
(
$
"
%
d
E
"
"
%
n=p>2
k'
k
$
n = ab
(n − 1)!
(n − 1)! 6≡ −1 (mod n)
™ n
√
b Nc
N
$
y
j
$
c
'
k
E "
$
h
"
Cy
h% "
E
E'
E
"
`
h u
Ž
$
$
S
%
"
™ #
$
"
h
a
n
'
C
"
"
k%
€
‰
z
%
'd
™ "
$
"
+
'
%
C
k
"
k
E
o
Y
T
VX
S
XV
€

Ž
‘
‹
{
‡
†€‹
€‡
†€
‰
›€
‹
‰

}
a ∈ {2, 3, . . . , n − 1}
n
2340 =
a = 2, 3, 5, 7
n
341 = 11 · 31
91 = 7 · 13
217 = 7 · 31
25 = 5 · 5
!
S
p
V
X
UV
S
*
VT
V
S
TX
8
]
z
$
j
C
"`
bD
%
C
'h
'
a
E
'
E
d
"
"
'
%
k
h
&
( )
"
k
E
b
$
J
L
"
h
N
IG
N
L
L
N
N
m
c'
%$
"b
"j
'
h
E m
C
h
`
d m
!
"
'
™ E
z
&h E
"
`
d
E
E l
4
1
1/
-.,,+
`
r
(
(
"
'
u
g (p−1)p
m−2
a
%
™ "
C
h
E
b
`
(
$
E
j
h' kb
"
"
E
k
h
g0
s
h
s
%
≡ 1 (mod pm−1 )
g (p−1)p
m−3
(
(
%y
u
m
6≡ 1 (mod pm−1 ).
E
g
u
™
"
E
`
„
"
y
k
h
E
&
%
k
E
$
'h
'
'
"
h
"
E
%
C
b
%
$ u
%y
C
h
"
E
™ "`
"
E
"
E
%
%
$
%y
C
h
z
j
'
"
"
%
E
%
E
h
"
™ #
a
u
™
m
…
k
a
}

y
%y
C
h
(
k
h
™
z
$
%
k
$
"
h
E
'
C
"
%
k
"
%
k'
k
b
%
`
j
( j
k
h
%"
h
k
h
m
&
k
$
"
%
k'
E
b
%
j
b
%
'
Z pm
%a
h
(
h
k
>
~ ˆ
—
{
'd
$
$
™ "
'
"
E' k
"
k%
E
z
"
m
y
™ &
"
( '
k
h
c
E
j
h' r
;
{
k
d
k
"
$
(
$
k
h
'
"`
'
$
d# m
d
"
E
E
E C
"
#
j
™
"
'
'
"
E
™ "
z
%
C
c'
h
$
%
k
h
™
$
"
E
"
# B
$
E' k
E
h' j
h
Ž
…{ ˆ
€
‹
}
{
™ ‡
“
‰‹
ƒ
‰‡
“
€ ˆ
™
€
ƒ‘
“
~
{
Ž‡
{
“œŒ
{
‡
‰
†‹
†
{
‡Ž
‰’
Ž
‘
{

{‹
{
}
€
{
‡
{‹

?
‘
{—
€
{
Ž

‘
‡
{‹
‹
€
{

€‡
ƒ
€

œ
‡
‹ ~
(
W
ˆ
(
$
$
%
$
#
dc
$
"
'
h
'
$
"`
'
h' %
"
E
%
&
%y
k l
u
m
c
bD
E
%
$
#
dc
™ #
(
$
"
&
'
$
$
"C '
"
$
C
$
™ #
"
z
$
'
E
%
$
#
dc
$
"
'
h
$
$
?
‰’
Ž
‘
{

{‹
{
†}
>
‡
{‹

{} ˆ
Ž
€
‹
}
(
™
™
j
l
Ri
'
"
b$
%
"
˜
˜
†
‘
“œ•
{
‘Œ
}
}

~
—
Ž‘

‰
‡
‘
‰
Œ“
‰}
‡
“œ
~
?
˜
‰
•
‹
€‡
˜Ž“
™ {
€‹Œ
ƒ
‰
“
™ ( % ¢
b
E%
"
E
"
%
$
#
dc
$
"
'
h
k
'
a
„
€‡ ˆ
Œ
h
E
" B
%y
C
h
k
h
&
%
h
$
j
|Z∗pm | = ϕ(Zpm ) = pm−1 (p − 1).
pk
k
h
$
‡{
}
‰
Ž
‘
‡
†€
€
“
{ ˆ
Œ
˜
{
}
{} ˆ
Ž
€
X
& *
"
' $
{
ƒ‡
{
{—
Œ‘
‡
{
{— „
“’
‰
“‘
‰‹
ƒ
{
{—
‡
{‹

{
“
‰‹
ƒ
–
(
™
™
,
e¥
,
{
{—„
’“
‰
{
{—
‡
{‹

}
{
{—

€‡
ƒ
€

{
{— „
“’
˜“ z
$
C$
S
{
{—

€‡
ƒ
€

{
&
%
{—„
’“
˜“ ˆ
k
E
E
a
C
'
"
$
#
'
b
$
"j
h
k
"
&
%
h
p
k
h
"
g
m>2
m=2
ordm−1 (g) =
( &
™ "
%y
(
k
h
k
"
˜
›
€‡
ordk (a) | ordk+1 (a)
E
%
C
%
$
C
h
j
h' ~
†
˜‰
Ž
‘
{

{‹
;
{
}
€
{
‹
}
y
Z pm
™ "
E
'
"
%
Z pm
p−1
g0
g = (p + 1)g0
p(p − 1)
p2
g0
p−1
p2
g
p + 1,
p
p 2
(p + 1)p = 1 + pp +
p + . . . ≡ 1 (mod p2 ),
2
p
™ #
a
z
'
h
$
‰’
‘„

‰
‡
{‹

{} ˆ
Ž
€
‰
ordk ( )
"
%
h
k
h
$
{
†
˜‰
Ž
‘
‹
&
a
"
E
E
h
d
$
>
}
}

~
—–
{
Ž
16k<m
a 7→ a mod pk
Z pk
k=1
Zp
g0
™ #
y
p−1
p2
p(p − 1)
m
ordm (g) = pm−1 (p − 1)
m−1
z
%
C
$
k
Ž
‘
{

;
Ž{
}
m
25 000 000 000
#
%
k
{‹
{
†}
>
‡
{‹

{} ˆ
Ž
€
‹
}

‰
‡
{

‰
“
€‹
%
m>1
h& = pm−2 (p − 1)
Ž
…{ ˆ
dc
"
"
"
%
k'
h
%
$
?
˜
‹
€‡
˜Ž“
˜
‡
€‹
‘
‰
Œ“
{‹
{
}
€
{
u
m
$
$
$
E'
y
E
%
$
#
dc
"
'
h
T
SZ
*
TX
*
V
k
S
U
S
S
¢
(
Cy
&
E
E
$ m
#
E
k
$
U
$
"
h% k
$
"C "
"
E
h
a
'
C
"
Cy
™ $
$
j
h% kb
'"
b
%
'$
E
a
™
j
2
E
k'
E
j
€
‹
}
$
y
%
™ %
k
k
$
"
™ #
(
E
'
z
'
"
a
k
"
™ h
%
E
E
"C h% 'h
{
€

&
ˆ
a2p −1
a2 −1
z
;
ord2 (g) = p(p − 1)
z
$
&h '
£
#
C
™ $
n
$
Ÿ
'
E
dj
E
E
$
#
(
"
#
™ ‡
a
'
$
"
; ;
%
"
$
(
d
$
"
™
'
"
b$
%

{
†
'
‰}
‡
“œ
‘
{—
n−1
n
"
Ÿ
E
"
D
'd
–
d
'
`
`
E
"
$
'#
"
†
%
b ∈ Z∗n
"
$
"
`
"
j
' $
“‘
c
k
E
™
%&
‰
“
€‹
‡
{‹

}
(a2 − 1, p) = 1
h& $
n
*
r
(
‘
†Œ
E'
$
"
'
h
$
E
E'
&
“‘
‰‹
ƒ
{
Fn ={a ∈ Zn : an−1 ≡ 1 (mod n)}
Z∗n
™ "
&
E
E
$
ž
$
"
$
y
k
$
E
l
%
a
%

E

"

E
$
"
%
k'
$
"
%
k'
(n − 1)/2
"' '
‘
†‰
$
c
'
"
$
$`
$
j
~
a
a Zn
%
$
“‘
‰‹
ƒ
$
k
"
i
%&
~
a
"
"
&
%
k
"
"
C
j
&
%
$
$
#
%
$
¢
™ "
'
E
"
$
"
=
]
]
z
s
( '
E
$
$
"
a
m
2n − 1
h
#
k
&h
™
k
E
h
E
1
∗
2 |Zn |
"
$
$
"
%
E
E
d m
ˆ
ab
−1
$
1/2
"
$
$
+
™
C
#%
™ "
{—

ab
#
'
"
"
k%
E
a
k'
C
E
a
%
"
k
"
n
21853
%
k
E
$
"
%
$
$`
d m
£
d
E
a
k
bD
E
j
'd
$
Œ
$
( %
%
$
#
'
`
"`
'
$
r
(
$
%
#
E
C
$
#j
'
"
"
c
"
k
E "
$
%
k l
"
j
$
E
'
E
k
C
"
(
™
™ b
E%
'"
l
$
"`
− 1 = 22tn − 1 = (2n − 1)(2(2t−1)n + . . . + 1) ≡ 0 (mod n).
$
b
k
"
"
dc
"
'
d
"
"
"
d
E
Ca
E
"
$
$`
$
'
$
"`
'
d
E
C
h
bE
E
#
k
"
%
k'
k
C
"
b
"
"
%#
C
k l
%
"
"
$
"
&
E
E
h
(
"
E
¢
u
m
t
$
'
E
,
$
|Fn | 6
"
%
k'
k
"
#
}
1 091 987 405
( Ÿ
E
"
E
m
'
}~
p
' $
'
$
$
"
†‰
‡
> %&
{‹

{
a
E
c C
$
s
c
n
(a, n) = 1
j
n
$
"b
C
"
E
$
n
n
$
%
%
$
*
$
n
n
"
$
by
*
#
"
n
E
$
"
#
#
a>2

%
$
E
"
k
}
n
−2
"' *
#
E
2
"
"
h
&h
22
2n − 2 = 2(2n−1 − 1) = 2tn
ordk (a) = min{t > 1 : at ≡ 1 (mod pk )}.
-
4
1
1/
-.,,+
1
4/
1
2
™
'
%
C
$
E
%
E
a
$
(
™
b
™
'h
%y
C
h
™
™
z
$
h
a
'
C
"
C
'
$
"`
'
m
&
%
&h ( $
"
s
$ u
b
b"
"C
( h
E
a
%
'
'$
$
"`
'
C$
%
'$
(
%
'
"
$
g
z
$
#
E
'
E
E
E
h
™ "
$
"
¤
&
%
a
≡
(mod n).
n
`
E
%
"
m
d B
b
$
`
"
u
p1
(
n = p1p2 . . . pk pi 6= pj
`
&
%
b$
%
"
l
n
%
r
E
m
E
%
E
j
†
–
ž
–
ž
; ?
“‘
†Œ
‘

‘

‘
{—
€
{
Ž

‘
‡
‹{
‹
€
{

€‡
ƒ
€
m
˜
˜
€
‰
€
Ž

‘
‹
‹
€‡
“
{
}
Ž
>
{
{— „
“’
˜“ ˆ
ˆ
™
& &
€
{
‡
{‹

}
€
{

€‡
ƒ
€

% %
?
;
€
{
‡
{‹

}
™
‘
{—
Œ€
ƒ‘
“
~
†‹
{
Ž‡
{
“œŒ
{
‡
‰
{
ˆ
‰
{

{
ˆ
˜
˜
‘
“œ•
{
Œ
‘
}
}

~
—
‘Ž

‰
‡
‘
‰
“Œ
‰}
‡
“œ
~
+
>

…
Ž
&
…
{
‡
€
“
Ž
‘
Ž‰
Œ
˜Ž‰
“
‹
~€
‰
’ ˆ
~€
“
‹
{
{—

€‡
ƒ
€
{
{— „
’“
˜“ z
S
V
"
'd#
b
%
'
"
E
%
( '
n
n
"
%
™ E
'
%
$
'd
€
{
Ž‡
Ž‰
“
{
‹
“‘
†Œ
‘

a
n−1
2
'd#
$
$
#
k
"
%
k'
C
E
%
E
E
'h
?
{~
€
“
{
†
{
“
‰‹
ƒ
‹
a ∈ Z∗n
d
E
b
"
k
C
n−1
#
¤
a
"
h'
E
%a
'd
%
$ u
{
‘
Ž
}
>
‰‹
ƒ
“
˜
&
†
,
&
'
E
"
z
S
T
T
S
X
*
UV
V
TX
$
$
$
'
"
$
C
C
"
Cy
Cy
h% k
E
E
a
C
'
"
#
'
"
a
:
l
(
h
Ej
(
$
"
"C h% ™ #
(
$ £
hy
"
( d
%#
E
j
by
$
%
%
$
#
%
$
#
d
$
"
"
"
D
'd
E
E
h' '
$
"
%
C
E
`
r
$
j
z
"
( a
E
'
k
"
%
k'
"
$
h
E
%
%
$
#
'
"
`
`
u
r
m
k
b
E%
"
'
h
™ "
d
"
$
"
'
#
hj
™ #`
E
a
%
$
%
m
™
(
™
d
E
"
C&
$`
j
j
"
j
$
k
"
%
'k
%k
$
#
#
hj
C
b
%
$ u
$
#
"
m
( %
s
j
$
$
"
%
"
a
E
d
"
E
%
$
#
k
E
z
( (
™
a
%
k
E
h
a
c
E
`
"C "
"`
Ej
E
h
E
%$
&
%
™ $
%
$
#
%
$
#
E
r
m
&
"
'
z
$
E
hj
%
k
"
%
k'
™ k
(
™
™
™
u
™
™
™
™
™
™
™
™
™
™
™
#
#
`
¥
,¥
r
C
h
"
'
$
Cy
$
%
$
$
y
h% b
%
"
k
"
%
k'
k
%
%
$
¥
¥
¥
#
&
25 000 000 000
16
561 1105 1729 2465 2821 6601 8911 10585 15841 29341 41041
46657 52633 62745 63973 75361
(
c
k
h
c
'$
E
%
%
$
`
r
l
2163
h
E
n
k`
$
y
'
k
b
h
"C
{
–
€›
Ž
‹
{
œ
‡
‹ ~
¤
n
%
z
k
E
%
(
™ ‡
“‘
ž
‰

€‡
˜Ž“
˜
€
(
€ ˆ
(
e¥
,
%
h _
$ "
"
$
$
y
h
E
#
"
"
h
k
"
%
'k
k
%
%
k
$
"
s
`
r
'
%
C
"
™ "
(
y
$
#
'
w
™
'
$
g
&
%
™ b
E%
'"
h% _
(
"
#
(
™ #`
"
"
s
(
c
¢
(
™ "
™
%
™
$
$
j
"C h% 'k
%
C
&h h
a
$
$
"
E
%
k
"
h
E
b
"
h
m
u
`
i=1, . . . , k
ai
ord1 (ai ) = pi − 1
ain−1 ≡ 1 (mod n)
(pi − 1) | (n − 1)
k=2 n=pq p<q
n−1=p(q−1+1)−1≡p−1 (mod q−1)
(q − 1) | (n − 1)
0<p−1<q−1 ( ™
(k, p) = 1,
'k
"
™
$
#
™
†Œ
‘

‘
{
“
™
‡

,
4
,
–
™
$
C$
ordm (g) = pm−1 (p − 1)
k
u
%
$
‰‹
ƒ
}
‘
{
—
‡Ž
{
€‹Œ
ƒ
S
pm−2 (p − 1) = ordm−1 (g) 6= ordm (g),
k
"
™ #
b
™ "
b
ˆ
™
™
‰
“
‰
‰
“
‰
Œ
•
≡ 1 + kpm−1 6≡ 1 (mod pm ).
E
%
$
c
'
d m
"
E
%a
y
k>3
t
n=p m t>2 (m, 2)=1
ord2 (a) = p(p − 1)
n
a
an−1 ≡ 1 (mod n)
p(p − 1) | (n − 1)
—{
€
™ Œ
`
r
™
™
˜
E
p 2 2(m−2)
hp ≡ (1 + kpm−2 )p ≡ 1 + pkpm−2 +
k p
+... ≡
2
k
h
s
s
$ u
&
%
™
™ %
%
™
“
h 6≡ 1 (mod pm−1 ).
E
&h &h "C
™ ‡
S
Zn
(
'h
C
"
j
™
(
$
k
E
'
E
d
E
E
h
&h s
c
"
$
"
"`
$
`
"
m
4
7
1
1/
-.,,+
1
4/
2
1
a
%
$
d
"
$
"
%
k l
an−1 ≡ (api −1 )mi ≡ 1 (mod pi )
an−1 ≡ 1 (mod n)
(
E
'
(
™
(
™
‰
n
E
$
ƒ‘
“
~
‹
{
i
E
E'
'
%
'
†
‰
“
€‹
& &
V
2
hp = (1 + kpm−1 )p ≡ 1 (mod pm )
%
E
h
hy
$
E
$
;
‡
Ž
n
$ £
C
"
b$
‰
“
€‹
m
‹
E'
h ≡ (1 + kpm−2 ) (mod pm−1 ),
'd
"
E
%
j
{
“œŒ
{
€
€‡
˜“
m−3
™
n = p1 p2 . . . pk pi 6= pj
n − 1 = (pi − 1)mi
i
c
(
d
%
E
"
“
€‹
&
V
n
'
y
$
"
'd
'
% %
‰‹
ƒ
m>1 p
%
(
'
$
l
(pi − 1) | (n − 1)
n = p1 p2 . . . pk pi 6= pj
$ u
$
%
C
'
h
$
%
‡
‰
p2 | n p > 1
n
n = p 1 p2 . . . pk pi =
6 pj
"C
b
"
E
#
"
"
"
E
k
$
%
"
hp ≡ 1 (mod pm−1 )
"
(
#
'
an−1 ≡ 1 (mod p2 )
p|n
$
&
%
k
2pm
™ #
C
#%
(pi − 1) | (n − 1)
"
l
m
%
"
"
2 4 pm
k
E'
m
'd
a
E
$
&
%y
i
ordm (g) | pm−1 (p − 1)
h=g (p−1)p
n−1 2 a 2
= a 2
≡
= 1 (mod n).
n

"' "
"
h
*
%
$
#
*
%
$
#
(
%
$
$
$
bD
1/2
%
k
$
'd#
a (mod n)
a ≡ ±1 (mod n)
(
;
;
%
z
E
$
"
E
"
k
'
™
(
%
m
at ≡ 1 (mod n)
(
k
#
%
g
™ b
$
k
"
%
'k
%
–
{
™ ‡

…{
}
n
"
"
j
n
an−1 ≡ 1 (mod n)
$
“‘
Ž
‘

€
‡
‰
‰
™
˜
˜
‰
“
€‹
{
ƒ‡
‘
˜
‘

{} ˆ
Ž
€
‹
}
Ž{
{
…Ž
~
‡
€‹
‹
{~
‘
™ ‡

‘
†
‰
‘
(
"
b
"%
C
j
'
E
"b
%$
"j
hj
{‡
€
u
m
h' h
„
‰}
—
‘

€
“–
€
‹
€‡
…{
˜
˜Ž“
=
{„
{

Ž€
‰
“
‹
S
‘Œ
‡
_
j
`
j
E
C
#%
' $
%E
d m
!
"
b
"%
C
d
E
E l
$
$
$
c
'
%
k
h
d
"
'
h
'd
%
d
'
E
$
"
`
d m
$
™
%
%
$
#
& %
E
"
™ #
C
#%
d
"
D
`
`
r
(
‰’
Ž
‘
{

{‹
{
}
†‰
>
‡
{‹

{} ˆ
Ž
€
‹
}
†‰
Ž
™ ‡
˜
“‘
‰‹
ƒ
{
{—

{
>
{‡
›
„
ˆ
{
E
E
$
h B
™
%
C
%
'$
C
#%
h
y
k
'
"% '
C
h
%
&
$
y
E
'
E
™ E
€
¤
&
>
‡
{‹

‰’
Ž
‘
{

{‹
{
k
"
'
$
y
dj
#
'
"
( b
;
˜
>
}
}

~
—–
{
}
}

~ ˆ
—
{
}
‹
€‡
˜Ž“
˜
Fn = {a ∈ Zn : an−1 ≡ 1 (mod n)}
{} ˆ
Ž
€
‹
}
Ž{
{

€
“–
‹
†}
˜
€‡
˜Ž“
˜

‰
“
€‹
%&
(
u
d m
!
"
E
%a
™
C
h
"
¤
&
%
(
$
$
C
'd
E
%$
&
™ $
"
"
B
m
z
y
$
'
E
kb
"
k%
$
$
E
'd
E
%a
h
"
E
%
&
E
E
h
%
k
h
'
%
C
u
†
'
Ž{
‡
€‹
{

&
%
†
‰
˜‰
Ž
‘
{

{‹
{
}
€
{
‡
{‹

{} ˆ
Ž
€
‹
}
Ž{
{

€
“–
;
‰
“
€‹
$
$
'
"
m
E' kb
"
k%
E
'd
E
%a
h
"
E
%
&
"
{
™ ‡
†
˜‰
Ž
‘
{

{‹
{
}
€
{
‡
{‹

{} ˆ
Ž
€
‹
}
Ž{
{

€
“–
&
%
a, b ∈ Z∗n
$

‰
Ž
‘
{

‹{
‘
‡

‘
V
`
5
5
x
B
v
(
"
bE
$
j
'd
>
"
E
;
‰’
Ž
‘
{

{‹
{
}
€
{
‡
{‹

{} ˆ
Ž
€
‹
}
(
(
™
{
{
{
‡
‰’
Ž
‘
{

{‹
{
}
€
{
‡
{‹

{} ˆ
Ž
€
‹
}
Ž{
{

€
“–
?
‘
{—
€
{
Ž

‘
‡
{‹
‹
€
(
y
E
h
a
'
C
"
&
#
E
{
%
E
k
E
h
a
'
C
"
&
ˆ
™
&
E
'h
#
&

€‡
ƒ
€

œ
‡
q
‹ ~
W
(
‰
“
X
& *
%
(
(
(
(
(
(
(
(
(
(
(
(
(
€‹
a ∈ Z∗n
"
E
"
#
( *
E
S
U
U
'
S
€›
Ž
‹
1 < a < C log2 n
$
"`
E
$
$
E
'
E
k
"
k%
E
‡
‹
{
Œ
€‡
$
( &
4
,
5
h
%
d m
E
$ −1
d
a
S
TX
˜“ ˆ
†
>
‡
‹
d
E
"
E
"
k
'
'
$
E
"
Cy
`
'
%
$
$
(
(
( &
h% %
a
%
h
x
B
4
,
'
{

%
k l
a
;
`
t
Ÿ
'
Cy
s−1
at , a2t , . . . , a2
−1 (mod n)
'
'
"
E
j
™
E
"
#
{
( €
‡
‹
`
™
Ej
ab
E
"
%
C
$
`
d
"
E
*
E
+
%
$
$
E
"
ab
$
$
n
*
%h
b
@
%
j
n

a
"' 'd
c
$
$ u
n−1=2s t t
a>2
h% d
'
E
%
'
™ "
"C
'
"
E
$
#
d
"
(
'
d
n−1
2
$
k
`
k'
$
$
"
™ C
d
;
'
$
"
_
|En | 6
h
'
g
%
E'
$
"
h
E
c
E
h
$
m
"
$
%
$
%
'
"
E
%
a
$
#
$
E
E
#
j
%
"
;
Ÿ
'
E
$
$
"
C
%h
a
"
`
"
u
*
'
g
$
#
`
'
%
€
“–
Z∗n :
c
"
E
"
#
%

"' "
E
$
%
v
a
™ "
$
%&
C
#%
+
d
"
¢
;
Ÿ
'
E
"
$
$
¤
;&
k
"
™ "
k
%&
C
#%
m
'd
k
h
E
En = a ∈
k
"
k%
E
by
$
$
*
E
'
E
b$
$
"
by
$
&
t
'd
m
&
"
d
%
"' 
"
™ "
E
%
"
$
k%
%
E
'd
E
E
'd
,
C >0
n
,
t
$
'd
,
E
$
a
"
"
E
"
j
' $
E
E
'd
E
E
%
k
'
%
h
"
n
;
z
"' "
™ "
E
%
E
n
E
E
%
k
"`
"`
%
'
$
$
E
E
"
"
™ $
%
`
O(log3 n)
'
&
(
"
'd
E
'
E
k
'
¤
{1, 2, . . . , n − 1}
(a, n) = 1
n
z
"b
$
$
j$
Cy
h% "
"
'd
c C
"
E
"
k
'
E '
%$
"j
l
(
"
h
c
'$
E
%
$
#
&
™
$
"
E
%
k
"
h
E
c
"
$
"
"
`
m
"
"
k
$
E
'
"
`
$ u
$
%
'k
%
C
y
k
'
"% '
C
h
z
j
$
'
E
$
$
"
'
"
bE
"
E
"
k
'
m
k
1/2k
$
¤
*
'
'
$
$
E
CE
"
"
E
#
&
%
E
&
E
'
E
$
$
(
n
™ "
"
$
y
E
by
"
( j
$
%
$
& & & &
"
l
a
a
a
a
b
a
...
=
=
= −1.
=
n
p1
p2
pk
p1
p1
& & &
f
;
Ÿ
E
"
C
D
m
%#
'
&
E
E
hb
%
$
(
a ∈ Z∗n
E
E
j
' $
+
"
h%
"
$
k
$
"
'
b
"
n
c C
C
"
$
'
h
%
E
"
$
"
E
a
_
$
a
$
™ E
E %
f
n
by
E

"
'
$
b
%
"
$
j
"
E
'
™
"
≡( na )≡−1 (mod p2 )
a ≡ 1 (mod p2 )
"
E
&
&h
'
"
"
"
$
$
"`
d
2
a
"
k
'
"
"
'
E
E
h
E
E l
'
"

a ≡ b (mod p1 ),



 a ≡ 1 (mod p ),
2




a ≡ 1 (mod pk ).
$
$
"
™
n
n
n−1
2
Ÿ
'
E
"
j
d
a
$
$
n
n
n
$
E'
b
%
$
a
n
a
a
1
n
a
≡
(mod n)
n
a
1 ∗
|Z |. 2 n
{1, 2, . . . , n − 1}
(a, n) = 1
-
4
1
1/
-.,,+
1
4/
1
2
h
$
™
d
"
“‘
Ž
‘

€
‡
‰
‰
‰
‘
†
˜
˜
‹
€‡
˜Ž“
n

“
‘
‰
j
( %
%
"
b
"%
C
'
%
™
$
™
$
$
z
'
™
$
E
C
b
%
$ u
™
"
& $
4
,
B
&
b
%
"
kb
'"
$
™
*
%
"
u
m
%
'h
'
"
(
(
™
*
"
f4
4
,
;&
D
a l
R
$
"
™ "
™
™
$
$
k
E'
E
$
"
'
h
b
E%
*
$
k
E'
$
;
"
E
™ "
™
™
™
$
"
'
h
b
E%
*
%
;
$
$
"
™ "
™
™
k
E'
™
a
h
%
™ m
_
E
;
"
$
$
%
e¥
$
$
"
'
h
b
E%
%
$
™
$
$
$
"
'
h
b
E%
n < 25 000 000 000
n = 3 215 031 751
n
n < 2 152 302 898 747
2 3 5 7 11
n
n < 3 474 749 660 383
2 3 5 7 11 13
n
n < 341 550 071 728 321
2 3
5 7 11 13 17
n
™
™
$
$
$
$
k
E'
E
"
'
h
b
E%
$
™ "
k
E'
E
$
"
h
™
™
$
k
E'
™
*
™ "
%
$
$
"
$
%
;
$
"
z
$
%
%+
$
$
'
b
E%
$
j
$
$
y
b
"
'
k
c
%
k
'
™ '
"
"
dc
$
"
E
h
k
%d
E
b
"
C
#%
#
dc
"
c
b
n < 1 373 653
n < 25 326 001
2 3 5
n
2 3 5
7
E
*
E% C
"
$
"
`
j
$
$
E
a
™ j
E
#
E
c
b
%
E
%
k
h
d
"
"
k
k
E
h
™ `
m
m
E £
h
(
$
$
$
$
E'
y
E
%
$
#
dc
"
'
h
b
E%
&
E
E
#
E
$ m
"
%
$
$
#
&
h
a
%
k
%
™ h
%
$
#
c
"
k
"
z
C
'
"
$
C
a > 1
b
$
"
p
X
€
‰‹
ƒ
‘
€
%$
"b
"j
%
$
C"
"
E
$
"
+
'h
5
`
$
$
"
"
k
"
%
k'
"
$
h
%
$
#
c
2
¤
m
(
$
E'
y
E
d
$
"
(
Ri
%
%
E
$
#C
#
™ `
r
f
¤
%
f
&
%
+
Cy
h
z
%
‹
™
‰’
Ž
‘
{

{‹
{
†}
>
‡
{‹

{} ˆ
Ž
€
‹
}
{

“œ
‰
(
"
%
k'
"
$
$
z
$
$
™ E
E' "
$
$
"' $
"
™ $
%
y
%
k
"
%
k'
k
%
$
#
d
"
'
h
b
#
%
k
™ h
"
%
k
E%
'd
%
$
$
$
$
#
'
bD
E
¢
+
'
%
C
$
$
E
'h
#
"
$
$
"
&
E
E
bh
"
E
%
'k
$
k
%
$
#
E
E
h
dc
"
%
%
$
$
$
z
'
"
$
™ $
d
"
'
h
b
E%
k
"
™
%
%
$
#
k
h
%
$
#
k
™ h
™ E
"
k
%
A
h
z
k'
$
"
™ ™
$
$
a
%
k
#
!
"
( j
b
&
$
(
"
h
c
'$
E
%
$
#
z
j
'
"
E
$
a
"
"
E
"
' $
E
'" "
™ "
%
&
"
h
d
%
$
5
™
z
E £
™
D
C
#%
C
™ EC
'h
%
"
'
E
E
%
m
$
&
'
E
$
$
"
'
"
Eb
"
E
"
$
E
C
E
E
h
d
y
%
$
C
"
bD
E
™ E
(
$
$
"
'
h
;
Ÿ
'
E
$
$
"
k
*
E'
j
"' 
"
'
$
"
&
E
E
h
k
E
'
"
™ "
$
#
c
"j
E
h
E
%
$
& &
k
'"
k
;
$
™ h
j
$
%
$
#
%
k
h
"
™ #%
h
"
f
u
%
k
$
#
dc
"
%
k
k
$
"
%
'k
n
E%
TXV
€›
Ž
a
"
k
E'
j
E
V\
‹
{‡
‰}
‘
—
™
C
#%
(
k
"
Cy
h% $
y
"
$
"
'
h
(
2000436751 = 487 · 1531 · 2683
'
`
$
˜

hj
m
h' €
„
{ „
{
‘
E
%# y
B
$
x
'$
k
™ "
c
a
'
$
"
E ™ E
a
k
j
3/4
652969351 = 271 · 811 · 2971
h
'
d
E
˜“ ˆ
a
S
*
‰’
Ž
‘
{

{‹
{
†}
j
z
"
"
d m
j
E
h
k
n
E
S
€
{
‡
{‹

}

Ž€
=
dc
m
*
k' `
3
a
\
VT
S
?
>
‰
“
‹
E
h
y
%
%
$
"
%
k'
$
2
"
`
]
{
‡
{‹

S
V
_
k
$
#
"
h
$
$
$
$
"
"
a ∈ Z∗n
%
j
%&
TX
X
™ ‡
{} ˆ
Ž
€
‹
}
{

“œ
‰
‹
z
™
E
C
#%
$
k
"
$
E%
`
"
&
b
E%
u
a
d
b
E%
p
$
E'
$
&
™ $
'
$
561 = 3 · 11 · 17
561−1=16·35
¤
¥
¤¥
)
U
S
?
%
E'
E
"
"
m
"
$
%
"`
$
`
k
"
0.7507
V
U
V
n
k
1/4k
( &
"C
$
%E
"
%
$
#
1 < a < 2 log2 n
'&
h' u
'
$
$
y
E
h
"
k
' $
j
$
$
C
"
0.7513
'
k`
z
$
"
'
k
"
%h
$
'
E% '
k
b
E
k
C
"
k
'
mod 561
263
166
67
1
1
'D
%
$
m
$
"
E
"
k
'
"
$
#
"
"
O(sn)
'
'
n
$
h
"
"`
k
'
C
"
™ #%
h' ™ "
™
r
∃ r, 0 6 r < s, a2 t ≡ −1 (mod n).
"
E
$
a
%
%y
( %
C
c
−1
%
$
d
E
E
h
%
j
5
&h ™ s
¢
a
a
#
%
h
™
"C '
24
,
"
C
#
E%
k%
E
n
%
$`
$
&h $
$
#
dc
h
( &
'
h m
™ '
C
#%
%
2
h
`
k
"
"
#
™ %
™ "
"
"
$
"
%
%
&
E
"
k
E
mod 17
8
13
−1
1
1
$
%
k'
j
£
D
$
$
C
E
%
'
h
$
'
E
−1
E
"
n
™ k
"
%
h
E
'd
&
™
a l
R
%
k'
k
%
k
$
'd#
2
h
z
v
'
&
,
4
"
"
E
'
d
E
$
"
E
"
k
'
d
`
1
1/
E
E
%h
`
1
4/
1
2
-.,,+
-
a
%
h
e¥
4
,
E m
( &
(
E
™ c
"
(mod n)
(
k
h
(
E
E
h' (
u
−1
#
!
"
E
w
`
b
E%
$
mod 11
−1
1
1
1
1
C
%
h
b
cn0.133
E (
( & ,
r
mod 3
−1
1
1
1
1
%
D
−1
C
E%
'
%
'$
$
#
2
(235 )2
(235 )4
(235 )8
(235 )16
e
4
,
B
k
h
"
E
`
"
E
35
%#
c
'$
$
$
$
E
at ≡ 1 (mod n)
C
'
$
#
−1
(
'
&
D
d
E
n
%
d
%
$
"
%
E
(−1, −1, −1)
n
−1
s−1
k
O(n1/10.89 )
(
d
E
a
O(n1/7 )
"
%&
(2, 2, 2)
(at )2 , (at )4 , . . . (at )2
a
n
2047 = 23 · 89
121 = 11 · 11
781 = 11 · 71
25 = 5 · 5
a
(
¤
,
"
z
"
{
‡
{‹

}
–
€
“
Ž
‘

€
‡
‰
‰
>
‡

‘
‡
‹
{
€Œ
a1
a2
[a1 (log n)6 ,
‰
˜
‘
€Œ
{
•
˜

‰

Ž
‘
™
™
“
€
‰‹
ƒ
›
>
‡
‹{

}
E
œ
‡
‹ ~
S
?
Ž‰’
{
“
‹
~
‰›
’
Ž{
˜
€‡
Ž“
{ ˆ
™ ~
™
‰‹
ƒ
“‘
‰‹
ƒ
“œ
€
‰‡
“
–
€ ˆ
‰
“œ
{ „
‰
‘

˜“ ˆ
{
ƒ‡
€
{
“
n π1 (x)
P (p − 1) > x2/3
‰
‘Œ
‡
€
{

“œ
‘
~
‡
‘

‰
‘
‡

‡
‹
{
Œ
‹
‘
˜
–
ˆ
‡ ˆ
~
‘

‘
{—
“ ˆ
‰
Ž€
‘
}
‹
€›
Ž
‹
j
#
E
Ÿ
%dc

`
&
%
™
j
"b
( '
%$
"j
z
(
%"
$
z
¤
b
'
E
k
$
$
"
'
k
z
%
hj
`
j
" %
#
¤
&
%
f
m
h' d
"
$
$
#
™ ™
"`
#
$
$
y
+$
E
d
&
k
"
m
m
E
k
E%
%
j
E
#
k
h
"j
E
#
E
Ÿ k
h
c
h
(
z
j
j
E
'
C
"
j
b
"%
C
d
b
E%
E
"
hC
n
g
E k
$
C
b
%
$ B
(
$
b
"
E
a
%
$
¤
&
%
Cy
b
E%
%E
"
dc
"
j
d
h
a
™ '
&
D
%
$
# b
E%
E
`
D
'h
%
kC
h
&
z
"
%
b
" m
"
C
h m
"
%&
C
"
™ '
&
$ £
C
b
"
%
E
'd
h
E
%
'
"
'
"
™ #b
"'
h% $
"
h m
hy
"
$
$
&
%
j
$
c
'
k
E
#
E
b
%
E
$
b
"
%
D
E
'd
E
#
"
"
h
%
&
'
k
%
&
E
E
'
C
"
( '
"
E
h' &
k
$
$
y
,
%
( '
&
u
E
'
E
k
"
'
$
$
"
k
E
'
E
"
'
"
%&
z
j
D
'
%
k
h
"
a
%
#
E
™ #
(
"
%&
C
j
%
E
z
u
_
$
$
'd#
k
$
"C "
'
"
E' &
"
'
E
$
E' "
h
$
E
`
u
m
(
C
"
"
( d
E
E
"
E
™ b
E%
"'
$
(
™
E
&h s
™
z
$
&
D
Cy
h% $
C
"
dc
"
h
"
™ #
z
$
%
C
E
'
E
'
E
$
$
$ u
"
b
"C
™
%"
h
j
$
$
"
E
'
(
™
u
*
kb
"'
#
E
$
j
"
a
%
"
'h
"
k
E
$
d
™ #`
"
"
%
$
b#
%
%"
$
$
(
%
C
E
h`
E
d
"
E
'
(
'
™ "
$
"
$
y
Ca
E
E
k
"
'
dj
z
j
b
%
"
E
#
E
™ "
16 log2 n + 1>8 log n
r=n
E
'
%
€‡
†€
‰
{
Ž
>

“œ
€
(
$
c
'
%
k
h ¤
O((log n)6 )
$
#
dc
"
$
ƒ‡
r −1
E
y
™
€
{
$
$
n0
%$
_
'
%
‰‡
{
&
u
p
&
&
%
N
(
$
y
‘Œ
€›
Ž
‹
n > n0
C
c
$
‡
{
“
“
{
}
;
Ÿ
'
E
"

(
"
%&
$
h' x=4 log n+
d
b
E%
k
?
r
#
˜“ ˆ
‡
’Ž
π1 (x) > c
'
"% ‰‹
ƒ
{
ƒ‡
™
'h
c>0
$
£
q | or (n)
E €
{
™
~
‡
€‹
r<n
'
‡
{‹
€
‰
r=2
[a1 (log n)6 , a2 (log n)6 ]
C
‰
√
q > 4 r log n
h
'

}
~
(
B
E
a
(
E' (
j
'
"
b$
%
"
u
l
z
C
#%
'
E
C
b
E
`
d
b
E%
"
a
%
s
%
™ C
$
" u
z
*
"
E
z
'd
'
√
r−1
> q > 4 r log n
2
√
r − 8 r log n − 1 > 0
x2 −(8 log n)x−1=0
r>64 log2 n
n
%
™
(
"
‘Œ
%
P (n)
p p6x
$
˜
‹
‡
€
{
S
V
"
%
$
%
+
h
√
2 r log n=O((log n)4 )
#
b$
%
–
€‡ ˆ
‘

“œ
n0
"

‘
~
‡
‘

# ,
$
$
'
"
E' Ej
™ b
E%
'"
$
"`
l
,
&
%
j
c
k
E
#
E
(
%
$
#
&
$
"
E
E
"
a
%
'd
`
`
n
b
"
“œ
€
a2 (log n)6 ]
j
‰‡
“
€ ˆ
(
n > n0
%
;
b
r−1
l
%
`
;
Ÿ
'
E
$
$
"

&
&
% ;
¤
a
"'
6≡ 1 (mod r)
%"
h
$
"
`
m
(
(x − a)n ≡ (xn − a) (mod xr − 1, mod n),
dj
r−1
q
a
n−q
n
bD
%
f
ab b > 1
n,
E
r←r+1
£
(
n
&
l
(n, r) 6= 1
xq
n
q
xi
&
E
$
"
% %
¢
r
b
(
"
(x − a)n ≡ (xn − a) (mod n).
'
*
q
√
q > 4 r log n
%"
$
(
h% $
0<i<n (−1)i ni an−i
E
&
$
$
%dc
"
™ #
"
j
'
'$
k
,
¤
E
'
"
%&
&
%
S
Z
S
x
™
€
‰
€
Ž

‘
‹
{
€
“
{
Ž
}
>
‘
{—
Œ€
ƒ‘
“
~
{
Ž‡
{
“œŒ
{
‡
‰
{
†‹
†
‡Ž
ˆ
$
?
†
‘
{—
>
‡
{‹

}
{

‰
‘Ž

‰
ˆ
(
(
;
Ÿ
'
E
$
$
"

Ÿ
(
,
( d
"
2
,
A
9
-
(
(
( (
9
( ( (
%
,
%
&
+
(
$
/
,f
.
( ™
™
b
"
"
"
E
'
,
&
√
2 r log n
(x − a)n 6≡ (xn − a) (mod xr − 1, mod n)
$
"

€
{
‡
{‹

}
$
"
"
Cy
h% E
E'
E
"
%&
$
‰‹
ƒ
œ
‡
‹ ~
“‘
S
V
n
C
%
;
%
(
'
dj
n
h m
;
'd#
5
%"
n−2
(
a
E
q
qt
Ÿ
e
C
'
h
((x − a) − (x − a))
n
"
;
(
r
$
4
n>1
n
(
r
,¥
E
&h
k

(
c
$
a
&
,
,
2

k
n
n = q t (q, t) = 1
r=n
%
(
E
n
a
a
r
x
.
log x
P (r − 1) > (a2 (log n)6 )2/3 > r2/3
1
4/
1
2
4
1
1/
-.,,+
-
&h
'
$
‘
ˆ

‡
‘
n
z
h
(
E z
"
u
r
‰
C
s
z
&
E
d m
$
"
h'
b$
E
"
"
%&
a
&
D
( '
&
E
%#
'
k
$
"
'
E %
&
`
(
z
"
%y
C
h
b
"
h'
u
™
$
b
"
E
a
%
$
"
z
O(pol(log log n))
r
†
(
"
'$
"
%
√
2 r log n = O((log n)4 )
{
Ž‡
€
(
O∼ ((log n)12 )
#
hj
E% #
h'
¤
$
$
%
E
k
$
"C "
%
%"
h
`
m
m
j
h
"
' &
D
k
E
%
E
'd
%
k
h
%
$
#
5
z
'd
%
'
'
,
u
&
%
(
E
%#
'
b
"
E E
a
"
`
D
k
$
"
k%
E
O((log n)4 log log n)=O ∼ ((log n)4)
O((log n)6 )
*
j
k
E
h' '
&
b
E%
'"
h% $
$
z
"
%&
E'
b
%
j
$
&
D
&
k
E
x
E
%
E
'd
b
"
$
"
E
a
%
$
"
&
c
E x
k
E
a
CE
_
™
%
$
™
™
™
%
$
$
%
™ E
E
*
k
E
'
E
C
E
D
j
j
$
#
$
E
# '
'h
'
E
k
E% `
(
"
%&
b
&
D
"
$
$
z
'd
&
b
E%
"'
h% E
k
(
%
$
#
"
dc
$
$
c
'
%
k
h
E
#
™ E
%
$`
E "
$
"
z
k
E
™ ™ E
E
a
E
k
k
E
h
a
c
E
%
k l
p 6 blog2 nc
Ÿ{
‡
{‹

y
"
%
k'
&
E
'
k
"
'
E
a
c
'
m
"
xk−1 = 1
'
&
'
k%
k
e
"
C
_
$
#
x
xp = n
}
$
"
$
"
$
k
"
E
'd
O∼ ((log n)9 )
k%
E
¤
%
k
$
x
#
A
b
E%
"'
h% $
C
"
b
"
%
E
'd
E
a
%
$
#
%
$
™
'h
"
(
™ "
z
j
k
E
#% '
"
d
dc
C
'
C
"
u
b 6 blog2 nc
*
E
E' '
"
%&
&
`
&
)
%
a
E
h' j
k
E
(
k+1 p
€
‡
“œ
'd
$
'
%
E% $
'd#
$
E
'd
b
'
C
i=0
k
X
{
‡
{‹
'
"
CE
%
&
%
$
"
E
b
%
"
x=

E' %
(
a
%
r
~€
&
"
#`
$
'
B
h
"
'
"
ab b > 1
?
n

"
%&
k
&
E
'
(
(
(2 ) 6 n < (2

ˆ
n
%
'
"
k p
}
€‡
‘
bh C
'
"
h
E% $
h'
'
™
$
$
$
&
"j
"
"
'd
"
%&
&
D
&
'
b
"
b
E%
%E
™ #
"
z
$
"
E
k
E
#
E
c
'
"
™ #
C
#%
u
j
h
E
#
E
(
E %
k
(
z
$
b
'"
b
%
j
$
"
"
%
k
h
C
h
'
"
b$
%
"
j
l
™
$
'
"
—
E' E
m
c
"
E
"
E
cd
"
k
"
%k
‰‡

{
“—
S
V
?
†
€
“
ƒ
{
{—

>

{
‡{
€
–
œ
‡
{‹

{
“
‹
’
~
€‹Œ
ƒ
‰
{‡
}
†‡
†‘
‰
Œ
$
$
y
E
'd
‹
E
'
D

€ ˆ
d m
pol (x)
†
'
"
k
j
"
( '
&
c
bD
%
x
{—
"
™ #b
$
b
E'
m
%
E
m
E' E
#
d
%
"
C
#
C$
"
O∼ (f (n))
‰‡

&
'
$
"
6
{
“—
8
k
E
%
(
E
#
"
"
m
$
k
"
k%
E
'd
n
€
™ Œ
E
a
%
$
$
"
h
™ #
"
d
&
u
× pol (log log n))
ƒ‘
“
~
†‹
"
a
E
C$
E
j
h' b
E
'd
xk = 1
{
S
l
Π
d# B
z
c3 (log n)
< N,
log log n
Ž‡
r−1
q
V
'd
E
`
'
k
™
d
$`
− 1)
r−1 r−1
6 2/3 < r1/3 < x1/3 ,
q
r
C$
™ E
E
"
C&
%"
log a1 > 0 log a2 < log log n
n
p
{
(
$
"
%
`
h _
%
&h h
d
"
$
ca2 (log n)6
c2 a1 (log n)6
>
−
>
log(a2 (log n)6 ) log(a1 (log n)6 )
ca2 (log n)6
c2 a1 (log n)6
>
−
>
7 log log n
6 log log n
(log n)6
(log n)6 ca2
c2 a 1
>
−
,
= c3
log log n 7
6
log log n
“œŒ
6≡ 1 (mod r).
Ej
y
$
$
r
'
%
C
k
"
$
(
%"
h
dc
s
a
E
h&
$
(
'
$
"
E
"
™ #
E
N > π1 (a2 (log n)6 ) − π(a1 (log n)6 ) >
{
`
`
#
$
"
$
"
u
x
x
< π(x) < c2
.
c1
ln x
ln x
‡
or (n)
%"
h
E
&
b
E%
b$
m
&
%
&h
n
h
y
k
'
E
%
k
"'
'
%
E
2/3
E
"
"% '
C
h
h
™ "
"
$
C
$
"
Π = (n − 1)(n2 − 1) · . . . · (nx
™
#
™
> 4 r log n
j
b
√
E
"
(
%
$
#
E
%a
hC
x2/3 log n <
™
nr−1 ≡1 (mod r)
r−1
q
(
%
"
x = a2 (log n)6
d m
$
$
"
#
™ b
E%
'"
%
%"
k
$
y
w
h
*
$
"
q = P (r − 1) > r
2/3
Ej
n
E
Π
%a
h
$
"`
l
b
%
%
k
x2/3 log n
™
%
$
C#
m
(
a2
%"
h
a1
h
or (n) | (r − 1)
d
E
'd
q | or (n)
s
_
c3 > 0
(
$
"`
C&
h
n0
q
0 < c1 < 1 < c 2
O((log n)12 ×
O(f (n)pol (log log n))
xi 2 i ,
(2k + 2k−1 )p 6 n
√
O( r pol(log log n)) = O ∼ ((log n)3 )
O(r(log n)2 pol(log log n)) = O ∼ ((log n)5 ),
1
4/
1
2
4
1
1/
-.,,+
-
'
"
Xp
k
hy
$ £
pk ≡ 1 (mod r)
d|k
(
(
*
™
"C
m
(
C
b
|G| > |S| =
$ u
%
E
d−1
Ig(x) = {m : g(x)m ≡ g(xm ) (mod xr − 1, mod p)}.
d
E
%#
"
j
™
'
j
E
d
E
y
Fp
(
"
%&
&
D
E
d
2
h
'
"
™ #C
"
"
$
#
'
"
"
™
™
"
%&
%
&
'
&
z
#
'd
C
%
'$
C
"
u
m
%
$
#
%
%"
%
$
√r
r > q > 4 r log n > l
n
%
C
"
™ #
"
d
"
E
%
%
'
"
'
$
%
$
d m
!
d m
(
d m
g
1 6 a, a0 6 l
$
Cy
'
"
"' "
d
E
k
$
%
$
z
E
j
y
%
d
E
%#
"
hj
d
E% #
$
&
E
"
'
"
™ #
a
u
z
b
"C
$ u
dc
"
C
f
&
%
$
'd
c
'
%
k
h
%
'
"
'
&
%
z
*
j
y
%&
" m
d
"
b
"%
C
E
a
%
$
#
b
%
%"
h
$
"
k
"
h
`
`
(
%
k
™ h
%
$
h
C
#%
"
'
C
b
%
$
™
%"
h
E
%a
¢
£
b
"
%
™
#
'
"
"
™ #
z
$
%"
h
dc
"
'
"
$
u
%"
h
$
"
"
`
E
%
E

k
$
"
%
'h
E% #
&
E
dc
'
h
"
$
$ v
s
k'
&
"
k
"
(
b
k
h
r
(
%
$
#`
%
"
h
y
a
b
%
(
(
(
"C
¤
$
$
"
E
h
E
"
C
`
h m
%
'
™
(
dc
"
$ u
z
™ '
"
j
E
%
k
$
"
™ $
'
"
$
a
E
h
C
&
'
$
™
d
"
E
%
"
™ #
a
u
b
C
C
&
™
(x − a) 1 6 a 6 l
G
h
Cy
%#
%
'
$
b
%
b"
"
d m
!
"
a
'
h& ™ `
C
#%
"
$
$ v
(
™ "
(
j
$
"
b
%"
C
k
"
#
E
j
%
k
%
k
d
"
E
$
%
'
"
#
E
"
%&
2
$ B
&
D
C
%
z
$
g
$
$
# "
$
E
h
E
"
`
h m
C
E
%
'
'
%
&
%
(
$
y
k
E
'
E
C
k
E
D
k
"
%
k'
*
$
Ÿ
"
b
"C
$
$ u
"
b
"%
C
j
"
h
"
%&
"
™ #
a
%
h
( '
E
"
$
u
"
E
%
&
h
a
%
k
h
%
k
E
'
E
$
E
%
E
'd
j
$
$
(
$
Ÿ
"
C
"
™ %
™
"
C
h m
j

"
b
"%
C
(
*
j
E
a
'
E
Ÿ
'
E
$
"
$
&
%
&
%
$
c
'
%
k
h
¤
B
$
E
'd
h&
'
a
"
E
'
E
$
%
'
"
*

"
b
"%
C
b
%
"
kb
"
#
E
j
"
a
"
%&
E
Fp (x)/(h(x))
$
#`
E% #
&
"
%
d
™ "
( %
k
(
ua 6 d − 1.
"
$
¢
" m
d
"
s
&
X
$
u
E
"
'
(
"
b
"%
C
&
%
'
E
$
E
'
E
™ $
¤
%
h
k6d
√
l = 2 r log n
Fp (x)/(h(x)) = GF (pd )
√
|G| > n2 r
G
S
d
C
"
b
™ d m
"
#
j
j
&h $
%
h
E
Ca
k
"
b
E%
"'
h% $
™ "
(x − a)ua ,
j
m
E
C
%
$
"
h
c
'$
E%
bD
E
%
(
E% #
&
`
'
$
$
"
™
E
'
Y
C
'"
_
%
p<l
&
(
E
b
h% E
z
16a6l
"
(
'
E
d
h'
E
16a6l
E
z
'
"`
'
*
w
#
'
E
'
$
E "
c
d−1
Fp (x)/(h(x))
S
'
%
k
d
"
E
%
(
$
"
E
E
'
E
b$
"
E
j
E
'
E
$
"C
%

g(x)
%
"
E
'
$
y
%
'
"
E
a
"
d
(
j
%
'
"
$
b$
%
"
g
l
$
™ "
™ "
d
E
"
C&
$`
h _
%
'
'
™ "
"
&
%
r | pd − 1
b
l
√
l+d−1
(l + d − 1)(l + d − 2) . . . d
d
=
> 2 l = n2 r ,
>
l
l!
l
√
d = or (p) > q > 4 r log n = 2l
g(x)
G
%
%
$ z
E
C
$
E' &
%
$
"
d
g(x)p ≡ g xp
"
E
#j
b
%$
p<r
r
Cy
C
h
"
'
D
'
$
c
'
%
k
&
%
a≡a (mod p)
j
™
dc
&
%
$
"b
%$
m
'
"
#
j
E
0
`
$ u
( '
"j
E
d
E'
$
#
%
h
f
$ u
#
−X =0
b
"C
deg h(x)=k
%
k=d
™
"
h
"
D
"
h
E
'
E
√
1 6 a 6 2 r log n
k>1
f
$
b
a
u
b
%
$
j
'
&h hj
d
$
(x − a)n ≡ (xn − a) (mod h(x), mod p),
k
(
E
E
b
m
%
d m
™ C
#%
$
( %
k
$
s
&
E
(x − a)n ≡ (xn − a) (mod xr − 1, mod p).
"
d
E% j
#
'$
"
™ #b
"j
(
Fp = GF (p)
h(x) 6= x − 1
E
'
E
%a
h
E
#
&
h(x)
E
g
&
&
'
Ca
$
E
#
E
'
$
q >4 r log n q | or (n)
pi 1 6 i 6 k
(or (p1 ), . . . , or (pk ))
q | or (p)
n
√
1 6 a 6 2 r log n
√
(
%
$
$
"
'h
b
%
"
kb
b
%$
$
" £
Ÿ
E
n
C
(
*
E
b
'
"
&
"
k%
E
n=p
k
E
k
$
"b
%$
E
"
%
$
#C
b
%
'd
"
r =n
n
$
'
h(x)
r r
E E
C
#%
E
$
n
k
y
%"
"j
$
™ "
"
%&
"
n
"
%
'k
k
d
"
*$
"
$
$
p
E
k
E% #
&
™
bh
"
#
k
Cy
'D
( d
"
E
or (n)
"
h
m
b
d = or (p)
k
h
E
C
'd
"C
$ u
$
" £
"
E
r −1
%
'
$
c
E
(
,
"
Fp (x)/(h(x))
"
%
_
C
$ u
a
h(x) | (x − 1)
(n, r) = 1
(
j
r
%$
&
&
r
#
"
(
r
n
E
%
"
r
n
Fp (x)/(h(x))
− X = 0,
r | (pk − 1)
k
h
"
#
n
r
n
d
xp − x ≡ 0 (mod h(x), mod p)
≡ g(x) (mod h(x), mod p).
d
Xp −
l+1
1
4/
1
2
4
7
1
1/
-.,,+
-
`
j
d
b
`
,
&
%
™
‡
‰
m
ˆ
™
˜
˜
€
∃ a ∈ Z∗n , (an−1 ≡ 1 (mod n)) ∧ ∀ q | (n − 1), a
n−1
q
{
Ž‡
>
‡
{‹

}
‹
( %
$
z
$
'
E
"
b
"
d m
d
"
$
"
"
'
`
n
™
z
k
y Ej
E
h
'd
'
"
k
E
"
j
' $
D
]
S
(
y
$
%
$
#
dc
"
j
C
h
k
E "
$
c
"
%&
'
"
k
E
™
$
$
$
d!
# m
E
d
"
™ %
$
#
d
"
"
'k
%
C
d
E
#
"
"
h
"
$
$ v
(
E "
$
%
$
#
$
"
$
$
"' 
"
E
C
#%
%
( %
$
#
Cy
h% k
$
"
g
$
Ÿ
$
"
™ "
*
$
h
"
"
k
$
"
k
E
z
$
Ÿ
m
'd
"
™ "
*
"
h
E
E
™ $
c
g
$
"
b
E%
"'
E
"' 
"
"
"
%
$
`
h% $
"
(
"' "
d
b
E%
"
h
'
C
"
$ £
hy
"
(
"
%
j
$
#
"j
%
™ $
# $
"
"
E
k
$
"C "
dc
"
h
$
`
`
m
$ B
`
'd
™
$
$
'h
&
b
E%
%$
$
#b
"
b
E%
"'
h% $
k
"
E
k
"
m
"
™
"
(
(
f
$ B
(
6≡ 1 (mod n)
+
'
"
C
#%
E
E
h'
c
k
%
$
$
$
#
dc
$
"
k
E "
$
%
k
h
m
£
s
C
%
E
(
%
'
h
k
&
C$
"
h
E
'
C
dh
h
C
%
b
j

Ÿy
E
E

™ "
™
Ÿ
$
"
(
*
$
$
$
k
$
"
k
E
'
"`
'
"
Ÿ
"
"b
'
"
%$
"j
h
D
( d
w
'

"
d
"' "
b
"'
h
C
"
&
E
C
"
( d
u
*
E
z
$
$
$
%
C
dc
$
E
#
"
"
h
E
E
E
d
E'
E
d
"
"
d
E
E
™ h
E
"
j
#
E
kŸ
`
(
$
"
'
n
†
†
˜
#
"
a
&
C
"
Cy
%
"
X
q
n
Ž‰
{
€‡
&
"
'
$
c
k
"
'
C
n
“
˜Ž“
"
˜
d
"
{
“
‰‹
n
‹
~
‹
€‡
$
"
'
%
C
'
Cy
_
z
a
%
(
"
u
$ u
n
ƒ
€
"b
%$
"j
E
#
5
h% dj
"
E
™ "
"C
™ "
C
#%
™
C
h
"
$
™ #
"
&
"b
"
E
$
&
%
E
h
C&
b
%
$
&
E
E
hj
D
'd
"
™ E
*
E

"
d
"' "
%
'
h
™
z
*
$
"
k
'
%
Ÿy
$
d
"
$
"
'k
%
C
j
E
d
 m
E
j
c
E
%
'
b
%
h
j
$
%
Ÿ
"
E
d
"
™ %
h
&
m
$
z
$
y
d
$
C
dh
h
'
"
"
"
%#
"
$
"
k
"
%
'k
k
b
E%
'"
$
"`
h
( )
'
"
B
(
™
%
$
#
d
'
k
"
"
h
a
'
C
"
E
'
™ C
"
$
"
%E
$
#
'
d m
$
$
b"
"
"
$
$ v
(
a
dc
"
E
E
™ #b
'd
%
h' $
%
'
s
$ u
h& b
"C
™
"
%
"
a
$
l
™ #
(
!
"
"
!
!
™
%
'
"
E
%
j
k
h
#
#
j
E
m
£
y
$
$
#C
"
"
b
"'
dj
h
( %
g(xm1 )m2 ≡ g(xm1 m2 ) (mod xr − 1, mod p).
“
{

“œ
&
e
,
$
(
(
(
C
h
"
™
z
*
*
$
$
$
v
x
j
%
k
'
%
%
E m
E
"
k' %
'
"
"
D
'd
dc
E
_
™
z
E
"
$
$
m
h
E
d
"
%&
d
E
E'
j
h
E
d
'
E
"
z
$
j
%
b
"'
b
%
$
E
C
h
c
k
C
#%
c
&
E
'
"
¢
m
m
™
(
d
E
"
C&
$`
h _
"
%&
&
b
E%
E
j
c
k
h
E
#
E
%
&
E
E
hC
™ #
Cy
D
C
#%
E Cy
™ C
z
%
"
™ #
$
b
"
C
h
"
$
j
$
dc
#
E
#
"
c
'
"
O(log nlog log log n )
{
}
Ž
>
‘
‘
~
‡
‘
h
"
%
k
™
k
b
E%
"
™ C
#%
"
n
{—
€Œ
ƒ‘
(
%
$
"
( &
'
™
"
"
%
k'
$
™ %
%&
`
&h ™ C
#%
™
$
n
“
~
†‹
y ™ h
%
h
j
b
d
™ $
"
h
$
#
d
"
D
'd
d
E
'$
b
%
"
™
"
"
E' n
{
S
E'
b
n
Ž‡
E
$`
$
"
E
Ej
$
#
" m
"
'
E
"
h' (
E
a
j
ni1 −i2 =pj2 −j1
k>1
{
r=n
%
`
"
E
'
#
k
"
c
'
m 1 ≡ m2
%
m
'd
hj
b
"
h
s
s
g(x)m1 g(x)kr = g(x)m2 = g(xm2 ) = g(xm1 +kr ) = g(xm1 ) = g(x)m1 .
V
b
%
u
E
"
™ #
$
"
#
"
#
og
g(x)
Fp (x)/(h(x))
og = |G|
m1 , m2 ∈ Ig(x)
m1 ≡ m2 (mod r)
m1 ≡ m2 (mod og )
m2 = m1 + kr k > 0
Fp (x)/(h(x))
“œŒ
E
#
"
C
"
h
™ $
$
$
™
"
$
C
E
g(xm1 )m2 ≡ g(xm1 m2 ) (mod xm1 r − 1, mod p),
{
z
$
"
h
%
k
"
E
'd
b
%
"
E
"
%&
b
E%
B
g(x)m1 m2 ≡ (g(x)m1 )m2 ≡ g(xm1 )m2 (mod xr − 1, mod p).
(
z
$
"' "
"
%h
`
Ej
'
k
w
&
E
E
bh
"
#
E ⊆ Ig(x)
n i 1 p j 1 ni 2 p j 2
E%
d
%
E
d
"
(
E ,
#
$
%
"
( d
E
j
$
#
E
#
E $
"
"
b
%E
og | kr
%E
`
h
b
E
n
$
$
"
%
"
a
m
k
$
"
$
√
og >n2 r
n = pk
E
d
#
dc
$
"
C
j
#
c
bD
%
E
"
%
$
$
E
#
"
"
#
"
"
%
E
=1
E
"
c
b
# $
`
h
%
k
r
kr
' $
E% %
k
h
"
h
b
"
ni1 −i2 ≡ pj2 −j1 (mod og ).
√
r
'
b
"
`
h
E
"
#
g(x)
j
#
™
E
"
%
"
E = {ni pj : 0 6 i, j 6 b rc}
√
|E|=(1+b rc)2 >r
E
(i1 , j1 ) 6= (i2 , j2 ) ni1 pj1 ≡ ni2 pj2 (mod r)
ni1 pj1 ≡ ni2 pj2 (mod og )
√
d
$`
E
"
C
$
h m
#
j
#
E
%&
n|i1 −i2 | p|j2 −j1 | <n
E
"
C&
"
c
D
n
h _
%
%"
h
"
#
g(x) 6= 0
(
b
"C
$ u
™
™
"
"
`
¤f
r
v
`
&
&
%
%
4
¤
E $
E
d
E
E
D
C
#%
C
%
C
Ri
'
"
$
a
E
"
™ #
a
u
™
™
(
z
E
E
%
h
d
E
E
a
%
`
`
h
"
%&
d
E
E'
E
"
h
k
E
a
CE
b
E%
"
$
E
"
C
"
E
j
u
A
Ig(x)
™
(
$
c
'
(mod og )
m1 , m2 ∈ Ig(x)
1
4/
1
2
/
1/
1/
- ,+
-
F23
6≡ 1 (mod p)
k
h
"
™ #
"
an−1 ≡ 1 (mod p)
m
a
(
z
%y
&
s
n
a(n−1)/q 6≡
p
“œ
€
‰‡
™
{
ƒ‡
€
{
‘Œ
™
€
{
‡
{‹

}
(
"
( %
k
&
'
%
$
$
c
"
'
E
'
"
a
%
k
h
"
™ #b
'"
z
$
C
&
'
$
"`
'
E
C
#j
"b
'
%$
$
"j
™ h
"
$
$
j
%
$
$
#
C
&
c
C&
h
E
(
(
z
z
h
a
E
g
&
%
E
E
"
j
y
&
%
(
j
&
E
%
$
C#
"
$
"
b
"
k
'
y
h
™ "'
h
"
c
%
k
%
k
E "
$
%
k
h
#
`
`
"`
'
E
"
%
Ca
%
y $
(
$
$
z
C
'
"
E' b
E%
'
"
™ #
™
j
"
b
h
s
'
%
C
C
$
"
j
Fk 6≡ 0
`
_
a
`
l
&
l
$
"`
(
&
"
d
"
E
%
k
C$
"
h
#
E
™ E
(
E
j
j
d
E
#
"
h'
$
$
"
"
™ #
C
#%
$
C$
"
E
`
%
k
h
%
C
b
"C
'
(
(
"
™ #
%"
h
E
™ E
"
™ #
"
k
'
b
d m
!
"
E
%a
h
$
"
h
E
y
$
u
$ u
j
#
E
k
E% $
'd#
%
k
h
%
C
%
C
`
w
(
™
"
(
'
%
C
b
"
$
'
E
#
"
"
$
( h
(
E
'h
#
™ #
"
™ "
b
E%
'"
(
y "
$
#
'
"
™ #
u
a
'
"
'd#
dc
E
#
"
h'
`
E
C
kj
b
%
$
i
™
%
$
b
#
"j
k'
E
a
%
$
#' ;
¤
%
k
$
#
%
$
$
d
"
'
%
C
b
"
'
z
%"
h
d
$
"
d
E
$
E' "
E
h
E
#
"
l
s
'
"
(
b$
%
"
j
$
"
h
™ "
k
"
%
k'
&
%
+
Ž‰
{
“
‹
~
›Ž
~
‰›
–
ˆ
’ ˆ
~€
“
‹
‰
€
{ „
“’
‘

œ
‰‡
(
…
,
‚
_
€

{
€
‡–
{

 ˆ
‘
Ž
€
Ž‰
{
“
‹
‘
{


†{
†€
a
h
%
S
Z
S
&
%
&
%
$
"
(
Ej
h
(
"
™ #
"C "
E
&
'
%
C
$
s
( *
#
,
&
%
b
E%
"'
h% _
"
E
%
™ "
(
$
%
'
%
C
k
$
$
"
k%
E
'd
™
z
™
˜
˜
€
Ž‰
{
“
‹
~
‹
€‡
“
{
Ž
}
>
‘
{—
€Œ
ƒ‘
“
~
{
Ž‡
{
“œŒ
{
‡
‰
†‹
†
{
Ž‡
†‰
>
‡
‹{

}
™ ˆ
(
™
E
“‘
‰‹
S
V
}
e
,
5
5
u
˜
‰

˜
‹
‡
˜Ž“
’
k>1
C
“
€ ˆ
q
a
%
‡
k
#
"
n
E
E'
E
$
j
E
™
d
$
"
C
h m
™ b
E%
"'
h% %
a
3(Fk −1)/2 6≡ 1 (mod Fn )
h
–
€ ˆ
n = qk R + 1 > 1
$
€
—
#
h
(
`
"
'
™ '
s
Fk 6≡ 1 (mod 3)
Fk ≡ 2 ≡ −1 (mod 3)
{
{
“
Cy
E
E'
d
C
&
`
E'
j
$
"
E
b#
%
‡
{‹
™
"
$
$
$
E
y y E
%
"
"
™
C
#%
'$
d
%
b
s
Fk
3
€
h% E
"C
k
"
C
h
m
d
n−1

}–
•
k
h
k
E
E l
j
'
E
$
E
j
$
"
E
'
(
"
?
ˆ
'dc
c
"
E
#
"
C
#%
s
(
%
≡
%"
†
$
Ej
( $
"
m
`
d
C
`
%
k l
$
C#
"
'
"
E
(
%
f
†€
,
g
&
%
&
%
k
Fk = 2 2 + 1
E
€‡
Ž
~
>
‡
€‹
‘
Œ{
h
%
$
*
'"
"
#
%
$
"
b
'"
%
%
=
d m
!
#
%
Z∗n
{

{
{‡
€
Œ
‹~
‰
“
œ
S
XV
"
%
%
z
%
b
m
(
%
dj
h
"
%
k
'
j
Fk
3
h`
$
"

‰

‹
‡
t
U
%
E &
$
#
%
d
E
E'
E
$
"
a
E
$
$
™
"
%&
`
j
m
d
$
"
E
E
k
h
"
™ #
™ ‡
?
‹ ~
&
E
&"
%
"%
C
%
c
E
kb
"'
b
%
'$
%
d
E
E'
j
a
%
y ≡ (−1)(Fk −1)/2
*
b
"C
$ u
$
$
#
d
m
E
`
E
j
h
a
}
†
(
E
%E
$
h
"
$
(n − 1)
"
€
“
€
R
(a(n−1)/q −1, n)=1
p = qk r + 1
p
'
&"
%E
V
#
%
+
"
c
E
%
k
h
™
E
j
"
b
h
"'
b
%
$
E
"
' $
s
$
#
2
™ #
"
'd
(
‰‡
u
S
(
™ "
n
d
ˆ
“
€ ˆ
u
%
"
"
$
E
+
h
j
#
E
dc
E
a
3
Fk
C
‰
€‹
™ '
E' h
$
'
'
k
j
a
E
'
"
d
E
$
c
'
m
#%
Ž‰
˜
q
V
( &
,
4
,
q
n
"
b$
€‡
†€
€
S
B
d
™ %
$
#
c
`
$
"
E
"
k
'
3(Fk −1)/2 ≡
%
"
’
&
%
j
%
$
#
E
$
Cy
"
Fk −1
q=2
"
'k
‰
V
n−1
hy
$ £
j
˜Ž“
"
(
f
"
&
E
h
%
k
h
&
C
#%
m
&
"
(
™
`
E
"
'
$
&
E
%
¢
m
$
z
"
b
"
$
%
'
™ "
$
"
g
l
u
b
%$
m
h
E
%
$
&
"
E
j
h' '$
( d
#
&
%
'
"
¥
m
(
j
b$
%
"
,¥
¥
' 2
%E
h
`
d!m
$
%
k
bh
"
$
"C
"
d
$
"
C
`
h m
d
"
E
™ (
%
d
'
E
"
2525223
"
$
an−1 ≡1 (mod n)
n
“‘
(
n
E
d m
!
k
"
c
,
%
%
'd
(mod 3)
%
l
u
'
%
$
j
Z∗n
C
j
+ 1 = 4294967297 = 641 · 6700417.
€
z
%
C
C
(
"
' $
E
E
%
E
,
;&
"
Fk
(
F12
˜
n=5

%
$
#
kj
b
%
$
™ b
"' "
'd
'
%
$
'
ord(b1 . . . bs ) = q1k1 . . . qsks = n − 1. ‰‹
ƒ
b
%
Fk = 22 + 1 k = 1, 2, . . .
'
"
"'
b
E%
"
" "
$
$
"
E
%
™ "
™
C
%
&
&h m | (n−1)
ϕ(n)=n−1
h
z
&
"
%
™
E
h
E
a
`
$
"
$
&
"
n−1
z
™
¢
d
k
%
$
"
b
"
d m
'h
%
"
"
"
h
"
d
E
#
&
%
*
n
(
$
$
#
'
"
a
$
y
$
#
k
"
'
C
"
$
%y
%
A
,
E
Zn
$
#
"
b
"
#
dj
‘
h% $
a = b 1 . . . bs
%
E
E%
'"
™
&
'h
†
E

€
u
¤
%
$
ord(a)=m
$
j
a
%
$
"`
%
$
#
"
†‰
E
C
Z∗n
"
#
j
'
%
E
a
%
(
&h ™ C
#%
™ #
"
a ∈ Z∗n
#
™ %
E
CD
h
"
h
%
'
dj
$
$
“‘
‰‹
a1 , . . . , as ∈
"
%
u
'd
n
"
m=n−1
™ #
h' ™ $
n = 0, 1, 2, 3, 4
"
'
f5
,
w
( d
"
$
a
2 +1
m = 2k
m
( )
u
`
( & ¤
'
%
%
j
"'
bi
d
"
$
'#
c i
5
qiki
$
E'
( &
e
e
F5 = 2
2
5
k
y
,
*
h
∃ a ∈ Zn , ord(a) = n − 1
n−1
∀ q | (n − 1), ∃ a ∈ Z∗n , (an−1 ≡ 1 (mod n)) ∧ a q 6≡ 1 (mod n)
(1) ⇔ (2) (1) ⇒ (3)
(3) ⇒ (2)
n − 1 = q1k1 . . . qsks
i
ai
ord(ai ) | (n − 1)
ord(ai )
ki
n−1
q
|
ord(a
)
bi
i
i
qi
ord(bi ) =
"
%
k'
k
E
a
B
n
F23
"
n
a
n
3(Fk −1)/2 ≡ −1 (mod Fk ).
3
(mod Fn ).
r
p
1
4/
1
2
,
/
1/
1/
- ,+
-
$
y
$
'
(
"
n
(
(
‡
™
{
ƒ‡
€
{
‘Œ
™
€
{
‡
{‹

}
…
€‡
ƒ
R
™ "
%
mk
1
n = pm
1 . . . pk
q | (pi − 1)
n ≡ 1 (mod q)
Q = qt + 1 >
1
™ ?
€
{
(
$
%
$
#
d
"
"
z
b
"
e
e
d m
"
a
a
™ "
( &
4
,
d
E
E
™ h
E
&"
%E
`
u
"
m
$
(
(
E
(
z
'
h% _
%
E
j
'
z
b
%
d
C
&`
'
E
$
%
"
"
™ #
b
#
u
"%
C
$
"
E
%#
"
$
C$
d
C
"
%
$
#
c
h
$
$
q | (pi − 1)
j
j
"
€ ˆ
™ —
'
'
™ #
%
"
b
%
q
'
™
™ #
‡
{‹
€
{
“

}
"b
%$
Rl
"
"%
C
pi
bE
"
m
b
€
•
€‡
Ž
"j
¢
%"
C
#%
(
+
'k
%
C
u
(
%"
h
E
C
"
"% '
C
h
%y
C
h
"
E
%
k
h
z
"
™ #
C
#%
™ #
"
"C '
(
"
`
z
C
"
$
"
"
'd
c
"
$
"
d
"`
$
`
"
C
%
'$
d
"
™ #
"
E
`
m
(
(
z
E
#
j
&
%
E
$
b
"C
'
"
l
$ u
b$
%
"
j
'k
%
C
$
j
&h s
"
%
"C '
"
$
$
"
™ #
‘
Ž‰
ˆ
%
k
h
"
"
™ #
™
$
j
"
'd
d
"
'k
%
C
h& s
(
‡
‰
?
z
$
%
hb
"
'd
a
E
h&
'
"
"
™ #
%
(
*
†
“
‰‡
=
€ ˆ
m
?
†
{

{
‡{
€
Œ

‰

}
˜
–
™
{
ƒ‡
€
{
‘Œ
‡
€
{
“
€
•
€‡
Ž
~
“‘
‰‹
an−1 ≡ 1 (mod n)
p
n
ƒ
“œ
€
‰‡
€ ˆ
“
{
‡
‹{

}
‹
–
€‡ ˆ
‘

{
‡
€‹
‹~
‰
“
‹
€
“
€
™
*
d
b
E%
'
"
E
'
E
$
$
€ ˆ
—
œ
‡
‹ ~
S
`
$ u
"
b
"C
'
"
b$
%
"
j
‰
™
’
˜
€‹
€
˜Ž“
˜
€

€
{
‡
{‹

}
?
(
€
{
‡
{‹

}
{
“
‰‹
ƒ
{
™ ‡
E
a
™
{
ƒ‡
€
{
Œ‘
‡
€
{
“
€
•
€‡
Ž
~
‡
€‹
‹~
“‘
‰‹
ƒ
˜“
€
‰‡
“
€ ˆ
{
{—
‡
{‹

j
"
b
"%
C
Cy
h% b$
"
C
#%
E
`
™ "
'
%
C
%
$
$
%
m
m
a(n−1)/q 6≡ 1 (mod n)
z
R
&h
i
d m
™
$
"
{
q
a
™
E
~
h
%
(
j
(
hy
i
i
an−1 ≡ 1 (mod pm
a(n−1)/q 6≡ 1 (mod pm
i )
i )
mi
t
a
pi
t | (n − 1)
t
(n − 1)/q
qk | t
k
C
E%
"'
"
™ ‡
‡
€‹
œ
‡
‹ k
h
%
j
h
%
$
"
"
$
%
b
$
"
k
h
Ca
E
E
%a
mk
1
n = pm
1 . . . pk
"
h% _
*
b
"C
$ u
‹~
~
( = &
C
%
$ £
™
$ v
C
%
$
#
(
$
b#
%
%"
h`
q
$
"
"C '
"
$
C
$
‰
“
‹
E'
j
"
"
d
"
"
n
(
%
%"
a
s
"
b
%
b
™ k
'
z
d
y h
"
C
%#
™ #
™
l
™
V
(
y ?
™
‰
“
‹
=
€ ˆ
—
$
j
$
'
"
E' b
"
E
E
&"
%E
u
'"
%
"
#
"
… {„
’“
˜“ ˆ
œ
‡
‹ ~
S
C
#%
E
$
`
,
V
X
S
V
8
q
$
$
"
E k
"
%
k'
k
k
"
™ C
"`
Cy
h% C
#%
m
m
$
#
%
%"
h
c
'
%
k
Ch
"
Cy
E
E
h
k
k
E
`
u
™
%
$
d
z
(
(
Ej
h
s
(
(
$ B
d
"`
%
C
%
C
h% n
_
$
(
$
'
"
$
y
E' E
%
E
'd
b
E%
'
E
z
™ "
E%
b
"'
%"
h
E
+
'k
%
C
"
k
'
"% '
C
h
≡ (−1)(n−1)/2
&
(
#
E
'
E
n ≡ pi Q (mod q)
Q ≡ 1 (mod q)
0
n
pi = qs + 1 > 2q + 1
b
™ #
?
%
$
k
"
$ B
'
$
"
E' "`
C
%
`
$ B
%
(
%y
C
h
E
#
(
s
(
'
"
Rl
S
h
™ t | pimi −1 (pi − 1)
™
&h b$
%
"
j
'
E
$
'
%
"
™ #
n = qk R + 1 > 1
%
"
(
"
d
'
E
h
r
$
#
d
(
Ej
C
#%
‰
V
n=qR+1>1
R < 4(q + 1)
≡ 1 (mod n) a(n−1)/q =
6 1 (mod n)
n
n
‰
h' _
dc
$
"
}
{
3
k
2 R+1
d m
!
"
$ £
hy
"
n = pi Q
"
™ E
a
(
%
l
pi − 1 = q k r #
&
%
E
#
E%
"
z
$
"
E
#
"
b#
%$
™ $
b
E%
"'
h% "
y
"
R
a(n−1)/q ≡
6 1 (mod n)
p = qk r + 1
'
h
j
"
k
'
$
C
h
%
"
™ #
( #
`
i
h&
E
£
c
h
$
j
"% '
C
h
b
"
#
k
E
E'
"
'
dj
'
"
k
h
b"
$
—
(a(n−1)/q − 1, n) = 1
%
$
A
™
m
"
$
"
#
™
(
C
s
E
( E
"
€
#
™
3(n−1)/2 ≡
'
( #
3(n−1)/2 ≡ −1 (mod n).
"
™ #
&h {

z
%$
'
h
h' ™ C
$
"
( *
%
"
k
E
E l
i
Z∗pmi
( d
'
$
pi ≡ 1 (mod q)
t
> 2q + 1
Q
#
s
…
‡
€‹
=
D`
b
E%
™ "
$
b#
"'
"
E
€
R < 2 k 3 < 2k + 1
u
™
ƒ‘
“
a(n−1)/2 6≡ 1 (mod n),
"
E
#
‹~
‰
“
‹
( d
h
b
"
h
y
p2 > (F + 1)2 > R(F + 1) > RF + 1 > n.
~
†‹
?
€ ˆ
"`
E
E
c
'
E
%
"
n−1
E
&
u
$
c
a
"
5
h
k
C
#%
™ #
h
a
'
a
"
™
€
™ —
œ
‡
e
e
,
‹ ~
$
$
y
#
u
(n − 1)/q
m | (p − 1)
a=3 q=2
3(n−1)/2 6= 1 (mod n)
s
{
Ž‡
€ ˆ
Ž‰
{
“
‹
~
‹
€‡
“
{
(
"
R < 2k
$
—
˜
˜
}
Ž
>
{
{—

{
™
%
dc
E
"
#
q
h
{
™
&
{‡
˜“ ˆ
Œ
u
R>
n = FR + 1 > 1
0<R<F
q
F
an−1 ≡ 1 (mod n) (a(n−1)/q − 1, n) = 1
n
n
p
n
√
p6 n
q
F
an−1 ≡ 1 (mod p) a(n−1)/q 6≡ 1 (mod p)
E
&"
“œŒ
{
‡
‰
{
œ
‡
‹ ~
5
n = 2k R + 1
%E
u
†
Ž‡
€
{
‡
‹{

}
e
e
,
?
S
V
n = 2k R + 1
d
(
™
{
“
‰‹
ƒ
j
¢
p
a(n−1)/q 6≡ 1 (mod n)
k
n = 2 R + 1 6≡ 1 (mod 3)
ˆ
"
€
{
‡
{‹

}
m
%
€
Ž‰
‘
{—
™
%
$
m | (n − 1)
C
C"
%
$ B
{
“
?
n
'
‹
~
‹
R
"
˜
u
%
C
√ n−1
n
n
F
™ "
(
S
V
a
b$
%
‰‡
“
€ ˆ
€
$
n
€‡
ˆ
c
F>
˜
“
{
}
Ž
>
€‡
Ž
~
F 6p−1
'
l

{
‡
√
%
"
j
‘
‰
p6
C
b
"
'
{—
n
'
$
3
%
C
Œ
qk | m
p − 1 = qk r
2
≡ −1 (mod Fn ). 3
an−1 ≡
n = pi Q > (1 + 2q)2 = q · 4(q + 1) + 1 > qR + 1.
1
4/
1
2
/
1/
1/
- ,+
-
p
n
z
h
(d, (p − 1)/d) = 1 ™
z
z
%
C
`
E '
w
™
™
}
†€
‘
Ž
{
‡
€
“
€Œ
{
•
E
#
&
?
˜
‘

‹
‰‡
“
€ ˆ
›
>

{
{‡
Œ
{ ˆ
Œ
˜
{
ˆ
Ž
‘
‰
Ž€
‘
}
‹
‘
{—
‘
ˆ
™
"
E
%
E
k
“ ˆ
ϕ(d)
(p − 1),
d
{—
€Œ
ƒ‘
“
~
{
Ž‡
{
“œŒ
{
‡
‰
{
Ž‡
†‹
†
˜
‹
€‡
“
{
}
Ž
>
Ž{
‡
‹
Ž€
‘
%
b
`
h
Ca
$
™
$
j
"
"
'd
d
"
'k
%
C
&h %
œ
‡
8
‹ ~
S
$
b#
%
%"
h`
"
?
‰
€
{
‡
{‹

}
†
€

€
ƒ
‰
ƒ
‘

{ „

{
“
‰‹
ƒ
T
&
C
ϕ(k) = ϕ(d)
#%
$
$
"`
'
C
i
˜
†
€
ƒ
‰

}
z
n
$ v
d
$
k | (p−1)/d
X
$
kj
b
%
'
"
d
(
(
s
(
ˆ
™
‡
ƒ‡
z
$ u
*
b
"C
$ u
b
%
'
"
E
'
E
"
$
*$
b
"C
'
"
b$
%
"
j
%
k
C
`
E ( *
w
‰
€
{

€‡
ƒ
‰
“
‰
{
™ ‡
™
™
{
{—
‡
{
†€

( "
h'
€
{
‡
‹{

}
? ?
†
†
{
“
€
•
{

{
{‡
€
Œ

‰

}
Ž‰
€‡
†€
‰
“‘
™
$
C
d
%
E
"
h m
E
E
"
"
'd#
d
E
#
"
h'
kb
"%
'k
k
"
C
h m
(
$
E
%
$
#
%
C
h
"
E
%
$
%
C
h
dc
"
c
b
E% `
g
–
™
‘
“
{
c
b
%
E
%
k
h
h
E
a
%
'
$
'$
%
$
'd#
a
E
"
h'
d
E
…{
‡
‹
‡
{‹
€
{
~
“
€
•
€‡
Ž
~
‡
€‹
‹~
‰
“
‹

>
“
{
œ
‡
‹ ~
€
ˆ
}
Ž
>
?
S
}–
>
‘
{Œ
“‘
‰‹
ƒ
˜“
€
‰‡
“
€ ˆ
{
{—
‡
{‹

}
{
{— „
“’
˜“ ˆ
{
=
™
™
…
(
k
E
&"
%E
u
d
z
$
$
%
k
"
%
k'
k
E
%
$
#
E
E
hj
"
#
kb
"
h m
C
"
#
"
(
(
$
Ej
h
%
C
E
%
"
h'
d
%
E
k
"
%
k'
™
z
"
$
$
"
C
#%
d
E
"
#
d
b
E%
$
$
k
"
%
'k
k
%
k
Cy
h% _
%
(
%
k'
k
y
$
E
&"
%E
u
d
"
'
%
C
'
E b
%$
C
h
C
h
%
$
#
b
"
#
$
z
h% $
$
$
$
C
'
"
(
(
C
™ &
$
_
E' E
"
k
'
"
u
`
"% '
C
#
$
E
C
#%
c C
b
"
E
"
k
'
b
"
™
r
™
z
E
h
h
$
$
"
`
k
E
E'
j
u
h& C
#%
E
E
&"
%E
u
d
"
E% C
%
$
$
$
j
"
a
%
'
E
&
d
E
C
%#
c
%
$
#
dc
™ %
(
$
"
j
C
g
`
B
m
™
(
z
`
Ri
h
E
&
"
%&
d
"
4
m
d!m
$
%
'
%
C
C
( &
24
,
B
%
C
#%
'"
b
%
"
'"
c%
$
$
$
#
%dc
'
k
E
D
$
"
™ k
E
'
E
C
&
E
"
h'
E
k
k
"
b
™
(
B
"
"
™ E%
'"
(
™
$
"
C
#%
E
E
'h
(
z
"
™ "
y
$ £
(
#
E
m1 m2 < F
n > F3
m1 + m 2 > F
F > m1 m2 > m1 (F − m2 ) > F − 1
m1 = F − 1 m 2 = 1
n = F3 + 1
m1 + m 2 < F
m1 m2 = x m 1 + m 2 = y
m 1 m2
m2 − ym + x = 0
S
S
(
VX
=
q
'
'
&h s
(
(
z
j
'd
E
E
E
E
%
`
,
¥
¤¥
,¥
fv
s
d m
!
_
£
&
E
$
y
$
¥
¥¤
,
"
h
E
"
"
"
$
( & ¤
%
k
"
™ #
"
( k
"
h
c
m
%
n = 2RF + 1 = (m1 F + 1)(m2 F + 1)
'"
ϕ(k)ϕ(d) = ϕ(d)
b
(
b$
%
"
j
l
(
"
$
E
E
"
%a
"`
%
C
%
h
y y
d | (p − 1)
%
k | (p−1)/d
X
"
| (p−1)
ϕ(d∗ ) =
$
'
"
#
'
E B
™
$
y
$
$
%
$
#
E "
'd
b
E
#
E
k
"
m
'd
(
(
(
z
$
`
f
m
(
b
"C
4
,¥
v
$ u
%
%"
h
dc
$
"
C
c'
h
%
b
_
'
%
y
$
#
dc
$
"
&
"
%&
'
£
$
E
'
"
$
s
w
%
a
"
"
E
h
Cy
'
E
"
h
E
"
E
E' "
$
#
"
'
$
%
$
#
%
™ C
"
u
'
E
b
"
"
a
E
E
$
"
™ "
*
$
n
™
™ #
T>
'"
C
#%
2
E
k | (p−1)/d
X
%
X
E
>
p
d | d∗
E
"
a
%
h
$ B
"
™ #
C
#%
"
x ∈ Z∗p
'd
T=
'
√
F> 3 n
ϕ(x)
(
,
$
>
"C
p > (2F + 1) > (2R + 1)(2F + 1) > 2RF + 1 = n.
"
?
†
†
€
™
(
%y
C
h
™
‰
™
€
{
2
E' ‰
g
`
‰‹
ƒ
˜Ž‰
y 2 − 4x
{
™ †‡
{
r
#
E
%
$
k
“œ
€
m
#
&
"
$
“
C $
a l
R
(
E
h
a
'
C
"
p<n
R<F
$
=
(
'
r
d
'
™
‰‡
“
€ ˆ
Œ
a
%
C
u
p>F +1
“
‹
Ž‰’
{
“
‹
~
‡
’
Ž{
˜
&
'
"
'
E
$
l
‰
Œ
=
n
‡
?
2R=xF +y
‘ ˆ
Ž
Ž{
C
F
‘
Œ
†
r
"b
%$
k
h
`
`
“
‹
q
F
an−1 ≡ 1 (mod n)
(a(n−1)/q − 1, n) = 1
p
n
p = mF + 1
√
F> n
F
R<F
n
p
n
an−1 ≡ 1 (mod p) a(n−1)/q 6≡ 1 (mod p)
n
†
>
“
{
}
‹
€‡
Ž“
(
(
d
E
√
3
&
˜
‡
{ ˆ
~
™ "
g
"j
E
#
"
#
F>
(
h
a
%
k
h ,
€‡
˜Ž“
‹
Ž€
‘
Ej
%
$
√
p=mF +1> n
'
$
%

˜€
‰
h
%
h
p
"
‰
™
n F R a
x>0 06y<F
E
%$
_
“’
( k
(
%
k l
y
j
n = 2F R + 1 > 1
E' E
k
&
œ
‡
q
‹ ~
#
Cy
√
F> n
$
(
™
S
'
F
"
k%
E
‰
“‘
‰‹
ƒ
‰
h% _
2
~
{
Ž

‘
€

†
( &
¤
4
"
&h n−1
'
€
4
,
s
a
'd
"
b$
%
?
2
y − 4x
{
“
€ ˆ
€

u
√
p6 n
p > 2F + 1
%
"
{
“
‰‹
'
"
F | (p − 1)
$
j
‡
{‹

}
}
F
#
%
l
ƒ
‰
a
k
n
%"
h
R
n6F 3
m 1 > m2 .
2R = m1 m2 F + m1 + m2 .
(d, (p − 1)/d) = 1.
ϕ(kd) >
p−1
,
d
1
4/
1
2
/
1/
1/
- ,+
-
$
"
&
$
$`
%
™
"
&
z
&h z
$
$
a
%
C
d
E
Ej
'
k
™
d
"
z
"
E
a
g
C
h
"
&
"
w
(
z
"b
$
$
%
,
$ ¤
%
by
d
"
"
'
%$
"j
l
( f
%
k
%
z
%
$
$
#
a
"
*
$
$
$
¤
v
u
%
%
E m
"
"
by
d
"
"
'
( (
w
E
d
"`
Ej
h&
E
&
k
k
E
c
'
k
E
E
hj
( *
z
b
E
#
k
$
"
'
dj
™
$
k
h
c
'$
%
$
#
d
"
E
k
E% h
d
,
u
m
w
E
™ E
(
"
y
$
%
'
%
C
%
k
'
"% '
C
h
"
$
"
'"
k
"
k%
E
'd
&
D
E`
d
k
E
d
"
( ™
™
$ s
$
"
"
d m
"
™ #
™
(
$
"
%
$
#
k
"
%
k
$
$
&
E
C
#%
%
k
h
%
$
#
d
`
(
z
$
E "
$
Ca
k
i
x
$
$
$
&
#
!
"
'
%
$
#
"
&
m
C$
"
"
%&
&
(
(
j
E
a
%
h
"
k
h
'd
'
%
f
x
$
%
$
#
E
C
#%
`
m
d B
&
%
t ∈ (2m−2 /F, 2m−1 /F − sm)
`
z
™
C
#%
$
"
( '
C
$
%
b
"
a
%
a
E
&h
z
%
"
$
j
(
'
' $
™
E
"
' $
™ $
d
"
"
'k
%
C
$
&
E
#
"
"
$
h
k
E
"
h
E' k
&
¤
,
$
"
k%
E
'd
"
'
%
d
( "
`
`
$
"
%&
d
'
E
C$
Cy
h% %$
a
%
'$
™
%
z
$
j
by
%
$
#
%
j
"
%
by
$
C$
E
"
&
"
k
"
(
&
¤
x
_
z
'
"
E
j
(
$
'
"
h
%
$
$
#
E' Ej
$
by
E
E
h
a
kj
h
d
# E
&
"
`
"
'd
'
m
E k
E% h
dc
E
$
™ "
s
%
™ "
(
&
$
,
g
x
%
$
$ u
b
`
(
Cy
h% '$
" "C
$
$
"
$
"
E
C
#%
"
E
"
E
d
b
E%
'"
%$
"`
$
$
h
( d
*
#
dc
E
h
k
j
"
'
'
"
%&
*
%
$
#
%
z
`
z
dc
$
"
j
C
h
j
$
d
"
$
"
"
"
E
"
"
D
C
kj
b
%
$
™ %
$
#
dc
'
E
$
$
"
'
€
ƒ‘
“
~{
( %
†
}
‰›
“œ
{ „
{
€›
‘
{
ƒ
‡
‘
‡
{‹ ˆ
‹
}
‰~
‡
{‹
‰


‡
&
E
"
%&
d
E
%
E
*
v
E m
>
€
˜{
†

{
€
‡
›
˜Ž‰
{
“
‹
~
}
*
TX
(
U
Ž€

‰
€Œ
{
•–
€

‰

Ž€
‡
€‹
ƒ
‘
Ž
Œ
… Ž€
u
‰~
ƒ
‰
“
a
%
h
m
$
#
™ $
"
u
c
%&
™ k
C
#%
$
"
j
m
(
%
%
$
Ch
"
D
$
#
dc
"
$
h
C
dc
'
%
k
h
d
"
$
"
B s
F
'
$
h
k
"
k%
E
'd
'
(
k
h
c
h
$
"
%&
'd#
$
c
bD
%
m
(
&h
1/3
m
%
"b
%$
"
%&
`
k
%
( %
'$
™
h
a
E
E B
&
k
E
B >0
E
`
d
$
"
"j
d
E
E
hb
h
"
d!m
$
b
"
"
`
%
C
dh
(
( &
,
4
4
,
h
E
'
1/2
"
'
$
h
d
C
"
k
m
`
r
'
"
$
™
"
%
$
$
y
m
d
E
2εm < F < 2cεm
ε
w
"
C
( C
h Cy
(
r
(
"
%
$
#
#`
$
"
E
'
E
( '
"
$
$
E' E
Ca
E
"
C
C
h %
'
j
"
&
™ E
z
%
m
E
k
%"
h
"
C
%
k
k
E
$
E
f
u
'
z
j
j
C
b
"'
b
%
$
C
%
%
'
"
w
C
#%
$
'
E
c
'
$
$
`
j
`
k
j
"
E
"
' $
"
j
%
$
#
c
'
%
k
™ h
$
$
&
$
k
h
"
"
b
E%
™ #C
n
"
E
$
E
C
$
h k'
%
k
%
$
d B
™
$
E' E
#
`
E
#
k
"
"j
n−1
k
"
Cy
$
E "'
j
#
k
"
%
k'
k
k
E
d
E
`
m
h
E
m<B
m
%&
'
"
#
$
d
E
u
k
$
"
E
h
E
u
E
C
#%
$
s, c > 0
k
"
#
E
C
#%
"
'h
E
b
%
%
$
$
A
E
E
z
#
"
™
(
&
b
'd
E
"
h
c
b
E
%
"
$
%
'
¤
%
$
#
s s
X
1
ϕ(F ) X
1
1−
>1−
=
,
F
q
q
j
j=1
j=1 j
k%
k
™
'd
b
"
C
"
C
h m
%
$
#
d
E%
"
%
$
E
(
%
,
q1 , . . . , qs
F = q1k1 . . . qsks
x y R=R(x, y)<F
(2F, R)=1
a
&
E
'
$
$
#
"
%
$
"
™
%
k
"
$
#
"
'
™
d
'
E
"
r
X
1
1−
.
q
j=1 j
'
"
'
d m
C
m
'k
"
$
h% $
q1 , . . .
E
%
j
$
`
(
b$
j
$
n
an−1 ≡ 1 (mod n)
C
bh
&
E
C
#%
$
j
E
#
%
$
c
™ "
'
E
"
d=F
z
$
j
" "
%
%
'
E'
b
%
"
%&
$
n
"
™ #
d
( #
k
"
b
%
$
k1 , . . . , ks
"
$
"
$
E% " m
d
"
%
'k
E
n
%
'
h
$
j
b
"%
C
"
( k
(
a
E
$ m
E
'
n = 2F R + 1
'k
%
a
%
'
E
$
a
%
C
$
h
F = q1 s = 1
'd
(
$
$
c
'
k
"
k%
E
(
$
"
l
s
'
"
b$
%
"
j
(
z
C
$
u
'
E
™ "
z
™
$
"
#
!
"
'
%
d
E
'
E
Ÿ
#
"

%$
$
#
dc
$
#
$
"
%&
$
j
&
E
E
E
a
%
C
$
j
z "
h
c
$
"
'
E
%
?
'
k
"
C
h
"
k
E "
j
$
%
k
h
E
c
£
a
%
h
E
E% h
$
%
E
$
an−1 ≡
(2R, F ) = 1
d
E
#
"
F = q1k1 . . . qsks
„
‘
“‘
‰‹
ƒ
~
‡{
‡
{‹

}
œ
‡Ž
‘
>
‘
{ ˆ
Œ
€‡ ˆ
~
‘Ž

™
˜
‘
{

{‹
€
{


–
‘
Документ
Категория
Без категории
Просмотров
12
Размер файла
772 Кб
Теги
лекция, криптография, 2002, арифметических, алгоритм, pdf, черемушки
1/--страниц
Пожаловаться на содержимое документа