Ring Theory Speedrun

(Any %)

Ring theory extends from group theory, formalizing more algebraic structures over rings. Additionally, polynomial rings and their elements, polynomials, will be explored in this article.

Polynomials are not concretely defined in a single branch of mathematics, but rather they are defined within multiple contexts across multiple branches. One approach, however, is to define a polynomial not as an independent structure but as a subordinate structure, being an element of a polynomial ring. This is similar to how a vector is more commonly treated as an element of a vector space, rather than an independent structure.

The Rings

Ring

A ring is a set equipped with two binary operators, commonly referred to as addition and multiplication such that addition forms an abelian group with the set, multiplication forms a monoid with the set, and multiplication distributes over addition.

Note that while addition and multiplication are the most common, in latex blocks for abstraction purposes, we define addition to be the star operator and multiplication to be the diamond operator.

An abelian group is a set equipped with an operator that exhibits associativity and commutativity, contains an identity that when applied to any element does not change the element, and for every element, there exists an inverse such that an element applied with its inverse returns the identity.

\(\begin{gather} \forall a, b, c \in S : (a \star b) \star c = a \star (b \star c) \\ \forall a, b \in S : a \star b = b \star a \\ \forall a \in S, \exists e \in S : a \star e = e \star a = a \\ \forall a \in S, \exists a^{-1} \in S : a \star a^{-1} = a^{-1} \star a = e \end{gather}\)

A monoid is a set equipped with an operator that exhibits associativity and contains an identity element.

\(\begin{gather} \forall a, b, c \in S : (a \diamond b) \diamond c = a \diamond (b \diamond c) \\ \forall a \in S, \exists e \in S : a \diamond e = e \diamond a = a \end{gather}\)

Finally, multiplication (diamond) distributes over addition (star).

\(\forall a, b, c \in S : a \diamond (b \star c) = (a \diamond b) \star (a \diamond c)\)

def associative(a, b, c, op):
    return op(a, op(b, c)) == op(op(a, b), c)

def is_identity(a, e, op):
    return op(a, e) == op(e, a) and op(a, e) == a

def is_inverse(a, a_inv, e, op):
    return op(a, a_inv) == op(a_inv, a) and op(a, a_inv) == e

def commutative(a, b, op):
    return op(a, b) == op(b, a)

def distributive(a, b, c, op_add, op_mul):
    return op_mul(a, op_add(b, c)) == op_add(op_mul(a, b), op_mul(a, c))

Commutative Ring

A commutative ring is a ring where multiplication also commutes.

\(\forall a, b \in S : a \diamond b = b \diamond a\)

A nonzero commutative ring is a commutative ring where at least one element is not the zero element. That is to say the following.

\(S \neq \{ 0 \}\)

Division Ring

Division rings aka skewfields are rings where multiplication admits a multiplicative inverse for every element (excluding zero) and the multiplicative identity element is not zero. The multiplicative inverse corresponds to division, just as the additive inverse corresponds to subtraction.

\(\forall a \in S, \exists a^{-1} \in S : a \diamond a^{-1} = a^{-1} \diamond a = e\)

Field

A field is simply a commutative division ring. That is to say, addition and multiplication are associative, commutative, have identity elements, have inverse elements, and multiplication distributes over addition. One way to represent a field F is as follows.

\(F = (S, +, *, 0, 1)\)

The most common field is that of the real numbers with addition and multiplication as they are commonly understood. All real numbers associate and commute over addition and multiplication, additive identity is 0, multiplicative identity is 1, additive inverse returns zero by adding the positive and negative form of the same number, multiplicative inverse returns one by multiplying a number N and 1/N.

Field Extension

A field extension corresponds to the superset of a set which forms a field. That is to say, if a field's set A is a subset of another field's set B, then A is a subfield and B is a field extension.

\(\begin{gather} (A, \star_A, \diamond_A, 0_A, 1_A) \\ (B, \star_B, \diamond_B, 0_B, 1_B) \\ A \subseteq B \end{gather}\)

A common field extension is the Complex numbers, which extends the Real numbers with the imaginary numbers.

\(\mathbb{R} \subset \mathbb{C}\)

Galois Field

A Galois field aka finite field, is a field with a finite number of elements. Galois fields are commonly a set of positive integers modulo a prime number. Galois fields are valuable tools for cryptography, enabling asymmetric encryption, homomorphic encryption, and zk-SNARKS.

set_s = { 0, 1, 2, 3, 4 }

add = lambda x, y : x + y % 5
mul = lambda x, y : x * y % 5

Binary Fields

A binary field is a Galois field where the prime modulus is two. This enables efficient bitwise operations and efficient hardware implementations of finite field arithmetic. Interestingly, the addition (star) operation corresponds to the exclusive or (XOR) logic gate and the multiplication (diamond) operation corresponds to the and (AND) logic gate such that:

\(\begin{gather} B = \{ 0, 1 \} \\ F_2 = (B, \oplus, \land, 0, 1) \\ \\ \forall a, b, c \in B : (a \oplus b) \oplus c = a \oplus (b \oplus c) \\ \forall a \in B, \exists e \in B : a \oplus e = e \oplus a = a \\ \forall a \in B, \exists a^{-1} \in B : a \oplus a^{-1} = a^{-1} \oplus a = e \\ \forall a, b, \in B : a \oplus b = b \oplus a \\ \\ \forall a, b, c \in B : a \land (b \land c) = (a \land b) \land c \\ \forall a \in B, \exists e \in B : a \land e = e \land a = a \\ \forall a \in B, \exists a^{-1} \in B : a \land a^{-1} = a^{-1} \land a = e \\ \forall a, b, \in B : a \land b = b \land a \\ \\ \forall a, b, c \in B : a \land (b \oplus c) = (a \land b) \oplus (a \land c) \end{gather}\)

B = { 0, 1 }

logical_and = lambda x, y : x & y
logical_xor = lambda x, y : x ^ y

for a in B:
    for b in B:
        assert associative(a, b, a, logical_xor)
        assert commutative(a, b, logical_xor)
        assert is_identity(a, 0, logical_xor)
        assert is_inverse(a, a, 0, logical_xor)

        assert associative(a, b, a, logical_and)
        assert commutative(a, b, logical_and)
        assert is_identity(a, 1, logical_and)

        # there is never a multiplicative inverse of 0
        if not a == 0:
            assert is_inverse(a, 1, 1, logical_and)

Polynomial Ring

A polynomial ring, denoted R[X], is a commutative ring whose elements are polynomials with coefficients in R and variables aka indeterminants in X with a function that maps X into R[X].

\(f : X \rightarrow R[X]\)

Polynomials

A polynomial "p", being an element of a polynomial ring R[X], is representable as follows.

\(a_n \in R, x \in X : p \in R[X] = \sum^n_{n=0} a_n x^n\)

A more familiar and commonly used representation is as follows.

\((a_0 + a_1 x^1 + a_2 x^2 + \dots a_n x^n) \in R[X]\)

Univariate polynomials have a single variable in X while multivariate polynomials have multiple variables in X.

The degree of a polynomial is the highest variable exponentiation in the polynomial.

The leading coefficient (leadco) is the coefficient with the highest degree.

The constant term (const) is the term where the variable is exponentiated to the 0th power.

\(\begin{gather} degree(3x^2 + x + 4) = 2 \\ leadco(3x^2 + x + 4) = 3 \\ const(3x^2 + x + 4) = 4 \end{gather}\)

Note: The names of each function are not necessarily standard, they were chosen arbitrarily for intuition's sake.

Polynomial interpolation constructs an n-degree polynomial from n+1 points. Lagrange interpolation finds the polynomial that interpolates a given set of points.

Linear Polynomials

Linear polynomials do not require exponentiation and are representable as follows.

\(a, b \in R, x \in X : a + bx\)

Polynomial Algebra

As mentioned, polynomial rings form, well, a ring.

The addition of polynomials is performed by adding the coefficients of corresponding variables and exponents.

\(\begin{gather} (a_0x^0 + a_1x^1 + \dots + a_nx^n) = a \in R[X] \\ (b_0x^0 + b_1x^1 + \dots + b_nx^n) = b \in R[X] \\ ((a_0 + b_0)x^0 + (a_1 + b_1)x^1 + \dots (a_n + b_n)x^n) = c \in R[X] \\ \\ a + b = c \end{gather}\)

The multiplication of polynomials is performed by multiplying each polynomial term with one another. Simplification through coefficient addition of corresponding variables and exponents is also possible.

\(\begin{gather} (a_0x^0 + a_1x^1 + \dots + a_nx^n) = a \in R[X] \\ (b_0x^0 + b_1x^1 + \dots + b_nx^n) = b \in R[X] \\ ((a_0b_0)(x^0x^0) + (a_1b_1)(x^1x^1) + \dots + (a_nb_n)(x^nx^n) = c \in R[X] \\ \\ a + b = c \end{gather}\)

The ring formed with polynomials is as follows.

\(\begin{gather} \forall a, b, c \in R[X] : (a + b) + c = a + (b + c) \\ \forall a \in R[X], \exists e \in R[X] : a + e = e + a = a \\ \forall a \in R[X], \exists a^{-1} \in R[X] : a + a^{-1} = a^{-1} + a = e \\ \forall a, b, \in R[X] : a + b = b + a \\ \\ \forall a, b, c \in R[X] : a * (b * c) = (a * b) * c \\ \forall a \in R[X], \exists e \in R[X] : a * e = e * a = a \\ \forall a \in R[X], \exists a^{-1} \in R[X] : a * a^{-1} = a^{-1} * a = e \\ \forall a, b, \in R[X] : a * b = b * a \\ \\ \forall a, b, c \in R[X] : a * (b + c) = (a * b) + (a * c) \end{gather}\)

In addition to polynomial addition, subtraction, and multiplication, there exists scalar-polynomial multiplication, where a scalar in R may be multiplied by all coefficients in the polynomial.

\(\begin{gather} a, b \in R, x \in X : (a_0x^0 + a_1x^1 + \dots + a_nx^n) \times b = (ba_0x^0 + ba_1x^1 + \dots + ba_nx^n) \end{gather}\)

Morphisms

Ring Homomorphism

A ring homomorphism is a function between two rings that preserve addition, multiplication, and multiplicative identity.

\(f : A \rightarrow B\)

Ring Isomorphism

If the ring homomorphism is a bijection, that is to say if that elements of the function's domain (output) corresponds one to one with elements of the function's codomain (input), then there exists an isomorphism where elements can be mapped from A to B as well as B to A.

\(\begin{gather} f : A \rightarrow B \\ g : B \rightarrow A \\ f \circ g = h : A \leftrightarrow B \end{gather}\)

Ring Endomorphism

A ring endomorphism is a ring homomorphism from a ring to itself.

\(f : A \rightarrow A\)

Conclusion

Ring theory is, as all abstract nonsense is, fairly straight forward. However, the concepts defined in group theory and by extension, ring theory, are powerful tools for abstracting and "black boxing" functionality from elliptic curves to zkSNARK's. Polynomial rings enable arithmetic over polynomials for creating succinct proofs while Galois fields lay the foundations for elliptic curves and their abelian groups used in asymmetric cryptography. This should be a helpful resource as we explore deeper mathematical concepts in the future.

Until next time.