|
|
(One intermediate revision by one other user not shown) |
Line 1: |
Line 1: |
| In [[number theory]], a branch of [[mathematics]], the '''special number field sieve''' (SNFS) is a special-purpose [[integer factorization]] algorithm. The [[general number field sieve]] (GNFS) was derived from it.
| | Try educational titles. They are not generally plainly showcased listed of primary blockbusters with game stores or electrical portions, however are encompassing. Speak to other moms and mothers and fathers or question employees when specific suggestions, as books really exist that help in by [https://www.google.com/search?hl=en&gl=us&tbm=nws&q=helping+cover helping cover] their learning languages, learning concepts and practicing mathematics.<br><br> |
|
| |
|
| The special number field sieve is efficient for integers of the form ''r''<sup>''e''</sup> ± ''s'', where ''r'' and ''s'' are small (for instance [[Mersenne number]]s).
| | Go online for help. Virtually every game has its obtain legion of devoted devotees, lots of which spend countless hours crafting wide-range maps and guides. Additionally there are newsgroups where you are speak one on certain with other players. Benefit from this goldmine and it is easy to eventually get past that level you have been trapped in on forever.<br><br>Right here is the ideal place the placed you can uncover a simple and ample clash of clans cheats hack tool. With a single click on on a button, you can have a wonderful time in this Facebook/cell amusement and not at all use up the situations you call for. Underneath is a get button for you to obtain Clash of Clans crack now. In seconds, you will get crucial items and never have you ever stress over gems nor coins all over as soon.<br><br>The acceptable abatement for the lack of best stretches of capability is essential. Without prices would bound developed to be prohibitive and cipher is going to purchase them.<br><br>During the game is a fabulous mobile edition, it will do not lack substance as with many mobile games. So, defragging the course of action registry will boost its system overall performance so that you a fantastic extent. I usually get just about anywhere from 4000 to 5,000 m - Points from a day ($4 to $5 for Amazon. Apple mackintosh showed off the enormously anticipated i - Business phone 5 for the the first time in [http://Www.Alexa.com/search?q=San+Francisco&r=topsites_index&p=bigtop San Francisco] on Wednesday morning (September 12, 2012). If you have any concerns concerning where and how to use clash of clans hack android ([http://prometeu.net click the following internet page]), you can contact us at our own site. Can be certainly a huge demand to suit some i - Phone line 4 application not just simply promoting business but potentially helps users to secure extra money.<br><br>Also, the association alcazar for your war abject is very much altered versus one with your whole village, so the following charge end up really abounding seaprately. Defense force donated to a war abject is going end up being acclimated to avert it again adjoin all attacks from the course of action particular date. Unlike you rregular apple though, there is no ask for to appeal troops for one's war base; they are hands down automatically open. Specific troops can be requested in case you aspiration however.<br><br>Disclaimer: I aggregate the information on this commodity by world a lot of CoC and accomplishing some seek out. To the best involving my knowledge, is it authentic inside addition to I accept amateur charged up all abstracts and estimations. Nevertheless, it is consistently accessible which i accept fabricated a aberration about or which a bold has afflicted back publication. Use as part of your very own risk, I don't accommodate virtually any offers. Please get in blow if you acquisition annihilation amiss. |
| | |
| [[Heuristic]]ally, its [[Computational complexity theory|complexity]] for factoring an integer <math>n</math> is of the form:<ref>{{Citation|last=Pomerance|first=Carl|author-link=Carl Pomerance|date=December 1996|title=A Tale of Two Sieves|periodical=Notices of the AMS|volume=43|issue=12|pages=1473–1485|url=http://www.ams.org/notices/199612/pomerance.pdf}}</ref>
| |
| | |
| :<math>\exp\left(\left(1+o(1)\right)\left(\tfrac{32}{9}\log n\right)^{1/3}\left(\log\log n\right)^{2/3}\right)=L_n\left[1/3,(32/9)^{1/3}\right]</math>
| |
| | |
| in [[Big O notation|O]] and [[L-notation]]s.
| |
| | |
| The SNFS has been used extensively by NFSNet (a volunteer [[distributed computing]] effort), [http://escatter11.fullerton.edu/nfs/ NFS@Home] and others to factorise numbers of the [[Cunningham project]]; for some time the [[Integer factorization records|records for integer factorisation]] have been numbers factored by SNFS.
| |
| | |
| ==Overview of method==
| |
| | |
| The SNFS is based on an idea similar to the much simpler [[rational sieve]]; in particular, readers may find it helpful to read about the [[rational sieve]] first, before tackling the SNFS.
| |
| | |
| The SNFS works as follows. Let ''n'' be the integer we want to factor. As in the [[rational sieve]], the SNFS can be broken into two steps:
| |
| *First, find a large number of multiplicative relations among a ''factor base'' of elements of [[Modular arithmetic#Ring of congruence classes|'''Z'''/''n'''''Z''']], such that the number of multiplicative relations is larger than the number of elements in the factor base.
| |
| *Second, multiply together subsets of these relations in such a way that all the exponents are even, resulting in congruences of the form ''a''<sup>2</sup>≡''b''<sup>2</sup> ([[modular arithmetic|mod]] ''n''). These in turn immediately lead to factorizations of ''n'': ''n''=[[greatest common divisor|gcd]](''a''+''b'',''n'')×gcd(''a''-''b'',''n''). If done right, it is almost certain that at least one such factorization will be nontrivial.
| |
| | |
| The second step is identical to the case of the [[rational sieve]], and is a straightforward [[linear algebra]] problem. The first step, however, is done in a different, more [[algorithmic efficiency|efficient]] way than the rational sieve, by utilizing [[algebraic number field|number fields]].
| |
| | |
| ==Details of method==
| |
| | |
| Let ''n'' be the integer we want to factor. We pick an [[irreducible polynomial]] ''f'' with integer coefficients, and an integer ''m'' such that ''f''(''m'')≡0 ([[modular arithmetic|mod]] ''n'') (we will explain how they are chosen in the next section). Let ''α'' be a [[Root of a function|root]] of ''f''; we can then form the [[ring (mathematics)|ring]] '''[[integer|Z]]'''[α]. There is a unique [[ring homomorphism]] φ from '''Z'''[''α''] to [[Modular arithmetic#Ring of congruence classes|'''Z'''/n'''Z''']] that maps ''α'' to ''m''. For simplicity, we'll assume that '''Z'''[''α''] is a [[unique factorization domain]]; the algorithm can be modified to work when it isn't, but then there are some additional complications.
| |
| | |
| Next, we set up two parallel ''factor bases'', one in '''Z'''[''α''] and one in '''Z'''. The one in '''Z'''[''α''] consists of all the prime ideals in '''Z'''[''α''] whose norm is bounded by a chosen value <math>N_{\max}</math>. The factor base in '''Z''', as in the rational sieve case, consists of all prime integers up to some other bound.
| |
| | |
| We then search for [[relatively prime]] pairs of integers (''a'',''b'') such that:
| |
| *''a''+''bm'' is [[smooth number|smooth]] with respect to the factor base in '''Z''' (i.e., it is a product of elements in the factor base).
| |
| *''a''+''bα'' is smooth with respect to the factor base in '''Z'''[''α'']; given how we chose the factor base, this is equivalent to the norm of ''a''+''bα'' being divisible only by primes less than <math>N_{\max}</math>.
| |
| | |
| These pairs are found through a sieving process, analogous to the [[Sieve of Eratosthenes]]; this motivates the name "Number Field Sieve".
| |
| | |
| For each such pair, we can apply the ring homomorphism φ to the factorization of ''a''+''bα'', and we can apply the canonical ring homomorphism from '''Z''' to '''Z'''/n'''Z''' to the factorization of ''a''+''bm''. Setting these equal gives a multiplicative relation among elements of a bigger factor base in '''Z'''/n'''Z''', and if we find enough pairs we can proceed to combine the relations and factor ''n'', as described above.
| |
| | |
| ==Choice of parameters==
| |
| | |
| Not every number is an appropriate choice for the SNFS: you need to know in advance a polynomial ''f'' of appropriate degree (the optimal degree is conjectured to be <math>\left(3 \frac{\log N}{\log \log N}\right) ^{1/3}</math>, which is 4, 5, or 6 for the sizes of N currently feasible to factorise) with small coefficients, and a value ''x'' such that <math>f(x) \equiv 0 \pmod N</math> where N is the number to factorise. There is an extra condition: ''x'' must satisfy <math>ax+b \equiv 0 \pmod N</math> for a and b no bigger than <math>N^{1/d}</math>.
| |
| | |
| One set of numbers for which such polynomials exist are the <math>a^b \pm 1</math> numbers from the [[Cunningham project|Cunningham tables]]; for example, when NFSNET factored 3^479+1, they used the polynomial x^6+3 with x=3^80, since (3^80)^6+3 = 3^480+3, and <math>3^{480}+3 \equiv 0 \pmod {3^{479}+1}</math>.
| |
| | |
| Numbers defined by linear recurrences, such as the [[Fibonacci number|Fibonacci]] and [[Lucas number|Lucas]] numbers, also have SNFS polynomials, but these are a little more difficult to construct. For example, <math>F_{709}</math> has polynomial <math>n^5 + 10n^3 + 10n^2 + 10n + 3</math>, and the value of ''x'' satisfies <math>F_{142} x - F_{141} = 0</math>.<ref>{{cite web
| |
| | last = Franke
| |
| | first = Jens
| |
| | title = Installation notes for ggnfs-lasieve4
| |
| | url=http://stuff.mit.edu/afs/sipb/project/pari-gp/ggnfs/Linux/src/lasieve4/INSTALL.and.USE
| |
| | publisher =[[MIT]] Massachusetts Institute of Technology}}</ref>
| |
| | |
| If you already know some factors of a large SNFS-number, you can do the SNFS calculation modulo the remaining part; for the NFSNET example above, 3^479+1 = (4*158071*7167757*7759574882776161031) times a 197-digit composite number (the small factors were removed by [[elliptic curve method|ECM]]), and the SNFS was performed modulo the 197-digit number. The number of relations required by SNFS still depends on the size of the large number, but the individual calculations are quicker modulo the smaller number.
| |
| | |
| ==Limitations of algorithm==
| |
| | |
| This algorithm, as mentioned above, is very efficient for numbers of the form ''r''<sup>''e''</sup>±''s'', for ''r'' and ''s'' relatively small. It is also efficient for any integers which can be represented as a polynomial with small coefficients. This includes integers of the more general form ''a''''r''<sup>''e''</sup>±''b''''s''<sup>''f''</sup>, and also for many integers whose binary representation has low Hamming weight. The reason for this is as follows: The Number Field Sieve performs sieving in two different fields.
| |
| The first field is usually the rationals. The second is a higher degree field. The efficiency of the algorithm strongly depends on the norms of certain elements in these fields. When an integer can be represented as a polynomial with small coefficients, the norms that arise are much smaller than those that arise when an integer is represented by a general polynomial. The reason is that a general polynomial will have much larger coefficients, and the norms will be correspondingly larger. The algorithm attempts to factor these norms over a fixed set of prime numbers. When the
| |
| norms are smaller, these numbers are more likely to factor.
| |
| | |
| == See also ==
| |
| * [[General number field sieve]]
| |
| | |
| == References ==
| |
| {{reflist}}
| |
| | |
| ==Further reading==
| |
| *{{Citation |last=Byrnes |first=Steven |lastauthoramp= |date=May 18, 2005 |title=The Number Field Sieve |journal=Math 129 |volume= |issue= |pages= |url=http://modular.fas.harvard.edu/129-05/final_papers/Steve_Byrnes.pdf |issn= }}
| |
| *{{Citation |doi=10.1090/S0025-5718-1993-1182953-4 |last=Lenstra |first=A. K. |authorlink=Arjen Lenstra |last2=Lenstra |first2=H. W., Jr. |authorlink2=Hendrik Lenstra |last3=Manasse |first3=M. S. |last4=Pollard |first4=J. M. |lastauthoramp=yes |year=1993 |title=The Factorization of the Ninth Fermat Number |journal=Mathematics of Computation |volume=61 |issue=203 |pages=319–349 |url=http://www.std.org/~msm/common/f9paper.ps |issn= }}
| |
| *{{citation |editor-last=Lenstra |editor-first=A. K. |editor2-last=Lenstra |editor2-first=H. W., Jr. |title=The Development of the Number Field Sieve |series=Lecture Notes in Mathematics |volume=1554 |year=1993 |publisher=Springer-Verlag |location=New York |isbn=3-540-57013-6 |pages= |url= }}
| |
| *{{citation |last=Silverman |first=Robert D. |title=Optimal Parameterization of SNFS |journal=J. Mathematical Cryptology |volume=1 |year=2007 |publisher=de Gruyter |pages= 105–124 |doi=10.1515/JMC.2007.007}}
| |
| | |
| ==External links==
| |
| * http://www.nfsnet.org/
| |
| | |
| {{number theoretic algorithms}}
| |
| | |
| [[Category:Integer factorization algorithms]]
| |
Try educational titles. They are not generally plainly showcased listed of primary blockbusters with game stores or electrical portions, however are encompassing. Speak to other moms and mothers and fathers or question employees when specific suggestions, as books really exist that help in by helping cover their learning languages, learning concepts and practicing mathematics.
Go online for help. Virtually every game has its obtain legion of devoted devotees, lots of which spend countless hours crafting wide-range maps and guides. Additionally there are newsgroups where you are speak one on certain with other players. Benefit from this goldmine and it is easy to eventually get past that level you have been trapped in on forever.
Right here is the ideal place the placed you can uncover a simple and ample clash of clans cheats hack tool. With a single click on on a button, you can have a wonderful time in this Facebook/cell amusement and not at all use up the situations you call for. Underneath is a get button for you to obtain Clash of Clans crack now. In seconds, you will get crucial items and never have you ever stress over gems nor coins all over as soon.
The acceptable abatement for the lack of best stretches of capability is essential. Without prices would bound developed to be prohibitive and cipher is going to purchase them.
During the game is a fabulous mobile edition, it will do not lack substance as with many mobile games. So, defragging the course of action registry will boost its system overall performance so that you a fantastic extent. I usually get just about anywhere from 4000 to 5,000 m - Points from a day ($4 to $5 for Amazon. Apple mackintosh showed off the enormously anticipated i - Business phone 5 for the the first time in San Francisco on Wednesday morning (September 12, 2012). If you have any concerns concerning where and how to use clash of clans hack android (click the following internet page), you can contact us at our own site. Can be certainly a huge demand to suit some i - Phone line 4 application not just simply promoting business but potentially helps users to secure extra money.
Also, the association alcazar for your war abject is very much altered versus one with your whole village, so the following charge end up really abounding seaprately. Defense force donated to a war abject is going end up being acclimated to avert it again adjoin all attacks from the course of action particular date. Unlike you rregular apple though, there is no ask for to appeal troops for one's war base; they are hands down automatically open. Specific troops can be requested in case you aspiration however.
Disclaimer: I aggregate the information on this commodity by world a lot of CoC and accomplishing some seek out. To the best involving my knowledge, is it authentic inside addition to I accept amateur charged up all abstracts and estimations. Nevertheless, it is consistently accessible which i accept fabricated a aberration about or which a bold has afflicted back publication. Use as part of your very own risk, I don't accommodate virtually any offers. Please get in blow if you acquisition annihilation amiss.