Permutation polynomial

In mathematics, a permutation polynomial (for a given ring) is a polynomial that acts as a permutation of the elements of the ring, i.e. the map $x \mapsto g(x)$ is a bijection. In case the ring is a finite field, the Dickson polynomials, which are closely related to the Chebyshev polynomials, provide examples.

{{cite journal | title=The graph structure of Chebyshev permutation polynomials over ring $Z_{p^k}$ | year=2025 | first1=Chengqing | last1= Li | first2=Xiaoxiong | last2=Lu | doi=10.1109/TIT.2024.3522095 | volume=71 | journal=IEEE Transactions on Information Theory | pages=1419–1433}}

Over a finite field, every function, so in particular every permutation of the elements of that field, can be written as a polynomial function.

In the case of finite rings Z/nZ, such polynomials have also been studied and applied in the interleaver component of error detection and correction algorithms.{{cite journal | title=Permutation Polynomial Interleavers: An Algebraic-Geometric Perspective| year=2006 | first1=Oscar | last1= Takeshita | arxiv = cs/0601048 | doi=10.1109/TIT.2007.896870 | volume=53 | journal=IEEE Transactions on Information Theory | issue=6 | pages=2116–2132}}{{cite arXiv | title=A New Construction for LDPC Codes using Permutation Polynomials over Integer Rings| year=2005 | first1=Oscar | last1= Takeshita | eprint = cs/0506091 }}

Single variable permutation polynomials over finite fields

Let {{math|1=F_q = GF(q)}} be the finite field of characteristic {{mvar|p}}, that is, the field having {{mvar|q}} elements where {{math|1=q = p^e}} for some prime {{mvar|p}}. A polynomial {{mvar|f}} with coefficients in {{math|F_q}} (symbolically written as {{math|f ∈ F_q[x]}}) is a permutation polynomial of {{math|F_q}} if the function from {{math|F_q}} to itself defined by $c \mapsto f(c)$ is a permutation of {{math|F_q}}.{{harvnb|Mullen|Panario|2013|loc=p. 215}}

Due to the finiteness of {{math|F_q}}, this definition can be expressed in several equivalent ways:{{harvnb|Lidl|Niederreiter|1997|loc=p. 348}}

the function $c \mapsto f(c)$ is onto (surjective);
the function $c \mapsto f(c)$ is one-to-one (injective);
{{math|1=f(x) = a}} has a solution in {{math|F_q}} for each {{mvar|a}} in {{math|F_q}};
{{math|1=f(x) = a}} has a unique solution in {{math|F_q}} for each {{mvar|a}} in {{math|F_q}}.

A characterization of which polynomials are permutation polynomials is given by

(Hermite's Criterion){{harvnb|Lidl|Niederreiter|1997|loc= p. 349}}{{harvnb|Mullen|Panario|2013|loc=p. 216}} {{math|f ∈ F_q[x]}} is a permutation polynomial of {{math|F_q}} if and only if the following two conditions hold:

{{mvar|f}} has exactly one root in {{math|F_q}};
for each integer {{math|t}} with {{math|1 ≤ t ≤ q − 2}} and $t \not \equiv 0 \!\pmod p$ , the reduction of {{math|f(x)^t mod (x^q − x)}} has degree {{math|≤ q − 2}}.

If {{math|f(x)}} is a permutation polynomial defined over the finite field {{math|GF(q)}}, then so is {{math|1=g(x) = a f(x + b) + c}} for all {{math|a ≠ 0, b}} and {{mvar|c}} in {{math|GF(q)}}. The permutation polynomial {{math|g(x)}} is in normalized form if {{math|a, b}} and {{mvar|c}} are chosen so that {{math|g(x)}} is monic, {{math|1=g(0) = 0}} and (provided the characteristic {{mvar|p}} does not divide the degree {{mvar|n}} of the polynomial) the coefficient of {{math|1=xⁿ⁻¹}} is 0.

There are many open questions concerning permutation polynomials defined over finite fields.{{harvtxt|Lidl|Mullen|1988}}{{harvtxt|Lidl|Mullen|1993}}

=Small degree=

Hermite's criterion is computationally intensive and can be difficult to use in making theoretical conclusions. However, Dickson was able to use it to find all permutation polynomials of degree at most five over all finite fields. These results are:{{harvnb|Dickson|1958|loc = pg. 63}}

Normalized Permutation Polynomial of {{math\|F_q}} !{{mvar\|q}}
class="wikitable"
$x$	any $q$
$x^2$	$q \equiv 0\! \pmod 2$
$x^3$	$q \not \equiv 1 \! \pmod 3$
$x^3 - ax$ ( $a$ not a square)	$q \equiv 0 \! \pmod 3$
$x^4 \pm 3x$	$q = 7$
$x^4 + a_1 x^2 + a_2 x$ (if its only root in {{math\|F_q}} is 0)	$q \equiv 0 \! \pmod 2$
$x^5$	$q \not \equiv 1 \! \pmod 5$
$x^5 - ax$ ( $a$ not a fourth power)	$q \equiv 0 \! \pmod 5$
$x^5 + ax \,(a^2 = 2)$	$q = 9$
$x^5 \pm 2x^2$	$q = 7$
$x^5 + ax^3 \pm x^2 + 3a^2 x$ ( $a$ not a square)	$q = 7$
$x^5 + ax^3 + 5^{-1} a^2 x$ ( $a$ arbitrary)	$q \equiv \pm 2 \! \pmod 5$
$x^5 + ax^3 + 3a^2 x$ ( $a$ not a square)	$q = 13$
$x^5 - 2ax^3 + a^2x$ ( $a$ not a square)	$q \equiv 0 \! \pmod 5$

A list of all monic permutation polynomials of degree six in normalized form can be found in {{harvtxt|Shallue|Wanless|2013}}.{{harvnb|Mullen|Panario|2013|loc=p. 217}}

=Some classes of permutation polynomials=

Beyond the above examples, the following list, while not exhaustive, contains almost all of the known major classes of permutation polynomials over finite fields.{{harvnb|Lidl|Mullen|1988|loc=p. 244}}

{{math|xⁿ}} permutes {{math|GF(q)}} if and only if {{mvar|n}} and {{math|q − 1}} are coprime (notationally, {{math|1=(n, q − 1) = 1}}).{{harvnb|Lidl|Niederreiter|1997|loc=p. 351}}
If {{mvar|a}} is in {{math|GF(q)}} and {{math|n ≥ 1}} then the Dickson polynomial (of the first kind) {{math|D_n(x,a)}} is defined by $D_n(x,a)=\sum_{j=0}^{\lfloor n/2\rfloor}\frac{n}{n-j} \binom{n-j}{j} (-a)^j x^{n-2j}.$

These can also be obtained from the recursion

$D_n(x,a) = xD_{n-1}(x,a)-a D_{n-2}(x,a),$

with the initial conditions $D_0(x,a) = 2$ and $D_1(x,a) = x$ .

The first few Dickson polynomials are:

$D_2(x,a) = x^2 - 2a$
$D_3(x,a) = x^3 - 3ax$
$D_4(x,a) = x^4 - 4ax^2 + 2a^2$
$D_5(x,a) = x^5 - 5ax^3 + 5a^2 x.$

If {{math|a ≠ 0}} and {{math|n > 1}} then {{math|D_n(x, a)}} permutes GF(q) if and only if {{math|1=(n, q² − 1) = 1}}.{{harvnb|Lidl|Niederreiter|1997|loc=p. 356}} If {{math|1=a = 0}} then {{math|1=D_n(x, 0) = xⁿ}} and the previous result holds.

If {{math|GF(q^r)}} is an extension of {{math|GF(q)}} of degree {{mvar|r}}, then the linearized polynomial $L(x) = \sum_{s=0}^{r-1} \alpha_s x^{q^s},$ with {{math|α_s}} in {{math|GF(q^r)}}, is a linear operator on {{math|GF(q^r)}} over {{math|GF(q)}}. A linearized polynomial {{math|L(x)}} permutes {{math|GF(q^r)}} if and only if 0 is the only root of {{math|L(x)}} in {{math|GF(q^r)}}. This condition can be expressed algebraically as{{harvnb|Lidl|Niederreiter|1997|loc=p. 362}} $\det\left ( \alpha_{i-j}^{q^j} \right ) \neq 0 \quad (i, j= 0,1,\ldots,r-1).$

The linearized polynomials that are permutation polynomials over {{math|GF(q^r)}} form a group under the operation of composition modulo $x^{q^r} - x$ , which is known as the Betti-Mathieu group, isomorphic to the general linear group {{math|GL(r, F_q)}}.

If {{math|g(x)}} is in the polynomial ring {{math|F_q[x]}} and {{math|g(x^s)}} has no nonzero root in {{math|GF(q)}} when {{mvar|s}} divides {{math|q − 1}}, and {{math|r > 1}} is relatively prime (coprime) to {{math|q − 1}}, then {{math|x^r(g(x^s))^{(q - 1)/s}}} permutes {{math|GF(q)}}.
Only a few other specific classes of permutation polynomials over {{math|GF(q)}} have been characterized. Two of these, for example, are: $x^{(q + m - 1)/m} + ax$ where {{mvar|m}} divides {{math|q − 1}}, and $x^r \left(x^d - a\right)^{\left(p^n - 1\right)/d}$ where {{mvar|d}} divides {{math|pⁿ − 1}}.

=Exceptional polynomials=

An exceptional polynomial over {{math|GF(q)}} is a polynomial in {{math|F_q[x]}} which is a permutation polynomial on {{math|GF(q^m)}} for infinitely many {{mvar|m}}.{{harvnb|Mullen|Panario|2013|loc=p. 236}}

A permutation polynomial over {{math|GF(q)}} of degree at most {{math|q^1/4}} is exceptional over {{math|GF(q)}}.{{harvnb|Mullen|Panario|2013|loc=p. 238}}

Every permutation of {{math|GF(q)}} is induced by an exceptional polynomial.

If a polynomial with integer coefficients (i.e., in {{math|ℤ[x]}}) is a permutation polynomial over {{math|GF(p)}} for infinitely many primes {{mvar|p}}, then it is the composition of linear and Dickson polynomials.{{harvnb|Mullen|Panario|2013|loc=p. 239}} (See Schur's conjecture below).

Geometric examples

In finite geometry coordinate descriptions of certain point sets can provide examples of permutation polynomials of higher degree. In particular, the points forming an oval in a finite projective plane, {{math|PG(2,q)}} with {{math|q}} a power of 2, can be coordinatized in such a way that the relationship between the coordinates is given by an o-polynomial, which is a special type of permutation polynomial over the finite field {{math|GF(q)}}.

Computational complexity

The problem of testing whether a given polynomial over a finite field is a permutation polynomial can be solved in polynomial time.{{cite journal | year = 2005 | id = {{ECCC|2005|05|008}} | first = Neeraj | last = Kayal | title=Recognizing permutation functions in polynomial time | journal = Electronic Colloquium on Computational Complexity }} For earlier research on this problem, see: {{cite journal

| last1 = Ma | first1 = Keju

| last2 = von zur Gathen | first2 = Joachim | author2-link = Joachim von zur Gathen

| doi = 10.1007/BF01277957

| issue = 1

| journal = Computational Complexity

| mr = 1319494

| pages = 76–97

| title = The computational complexity of recognizing permutation functions

| volume = 5

| year = 1995}} {{cite journal

| last = Shparlinski | first = I. E.

| doi = 10.1007/BF01202000

| issue = 2

| journal = Computational Complexity

| mr = 1190826

| pages = 129–132

| title = A deterministic test for permutation polynomials

| volume = 2

| year = 1992}}

Permutation polynomials in several variables over finite fields

A polynomial $f \in \mathbb{F}_q[x_1,\ldots,x_n]$ is a permutation polynomial in {{mvar|n}} variables over $\mathbb{F}_q$ if the equation $f(x_1,\ldots,x_n) = \alpha$ has exactly $q^{n-1}$ solutions in $\mathbb{F}_q^n$ for each $\alpha \in \mathbb{F}_q$ .{{harvnb|Mullen|Panario|2013|loc=p. 230}}

Quadratic permutation polynomials (QPP) over finite rings

For the finite ring Z/nZ one can construct quadratic permutation polynomials. Actually it is possible if and only if n is divisible by p² for some prime number p. The construction is surprisingly simple, nevertheless it can produce permutations with certain good properties. That is why it has been used in the interleaver component of turbo codes in 3GPP Long Term Evolution mobile telecommunication standard (see 3GPP technical specification 36.212 [http://www.3gpp.org/ftp/Specs/html-info/36212.htm 3GPP TS 36.212] e.g. page 14 in version 8.8.0).

=Simple examples =

Consider $g(x) = 2x^2+x$ for the ring Z/4Z.

One sees: {{nowrap| $g(0) = 0$ ;}} {{nowrap| $g(1) = 3$ ;}} {{nowrap| $g(2) = 2$ ;}} {{nowrap| $g(3) = 1$ ,}}

so the polynomial defines the permutation

$\begin{pmatrix}
0 &1 & 2 & 3 \\
0 &3 & 2 & 1
\end{pmatrix} .$

Consider the same polynomial $g(x) = 2x^2+x$ for the other ring Z/8Z.

One sees: {{nowrap| $g(0) = 0$ ;}} {{nowrap| $g(1) = 3$ ;}} {{nowrap| $g(2) = 2$ ;}} {{nowrap| $g(3) = 5$ ;}} {{nowrap| $g(4) = 4$ ;}} {{nowrap| $g(5) = 7$ ;}} {{nowrap| $g(6) = 6$ ;}} {{nowrap| $g(7) = 1$ ,}} so the polynomial defines the permutation

$\begin{pmatrix}
0 &1 & 2 & 3 & 4 & 5 & 6 & 7 \\
0 &3 & 2 & 5 & 4 & 7 & 6 & 1
\end{pmatrix} .$

= Rings Z/''p<sup>k</sup>''Z =

Consider $g(x) = ax^2+bx+c$ for the ring Z/p^kZ.

Lemma: for k=1 (i.e. Z/pZ) such polynomial defines a permutation only in the case a=0 and b not equal to zero. So the polynomial is not quadratic, but linear.

Lemma: for k>1, p>2 (Z/p^kZ) such polynomial defines a permutation if and only if $a \equiv 0 \pmod p$ and $b \not \equiv 0 \pmod p$ .

= Rings Z/''n''Z =

Consider $n=p_1^{k_1}p_2^{k_2}...p_l^{k_l}$ , where p_t are prime numbers.

Lemma: any polynomial $g(x) = a_0+ \sum_{0 < i \leq M} a_i x^i$ defines a permutation for the ring Z/nZ if and only if all the polynomials $g_{p_t}(x) = a_{0,p_t}+ \sum_{0 < i \leq M} a_{i,p_t} x^i$ defines the permutations for all rings $Z/p_t^{k_t}Z$ , where $a_{j,p_t}$ are remainders of $a_{j}$ modulo $p_t^{k_t}$ .

As a corollary one can construct plenty quadratic permutation polynomials using the following simple construction.

Consider $n = p_1^{k_1} p_2^{k_2} \dots p_l^{k_l}$ , assume that k₁ >1.

Consider $ax^2+bx$ , such that $a= 0 \bmod p_1$ , but $a\ne 0 \bmod p_1^{k_1}$ ; assume that $a = 0 \bmod p_i^{k_i}$ , i > 1. And assume that $b\ne 0 \bmod p_i$ for all {{math|1=i = 1, ..., l}}.

(For example, one can take $a=p_1 p_2^{k_2}...p_l^{k_l}$ and $b=1$ ).

Then such polynomial defines a permutation.

To see this we observe that for all primes p_i, i > 1, the reduction of this quadratic polynomial modulo p_i is actually linear polynomial and hence is permutation by trivial reason. For the first prime number we should use the lemma discussed previously to see that it defines the permutation.

For example, consider {{math|Z/12Z}} and polynomial $6x^2+x$ .

It defines a permutation

$f defined over$ K is a permutation polynomial on R/P for infinitely many prime ideals P, then f is the composition of Dickson polynomials, degree-one polynomials, and polynomials of the form x^k. In fact, Schur did not make any conjecture in this direction. The notion that he did is due to Fried,{{cite journal | last=Fried | first=M. | title=On a conjecture of Schur | journal=Michigan Math. J. | year=1970 | pages=41–55 }} who gave a flawed proof of a false version of the result. Correct proofs have been given by Turnwald{{cite journal | last=Turnwald | first=G. | title=On Schur's conjecture | journal=J. Austral. Math. Soc. | year=1995 | volume=58 | issue=3 | pages=312–357 | doi=10.1017/S1446788700038349 }} and Müller.{{cite journal | last=Müller | first=P. | title=A Weil-bound free proof of Schur's conjecture | journal=Finite Fields and Their Applications | year=1997 | volume=3 | pages=25–32 | doi=10.1006/ffta.1996.0170 }}

Notes

References

{{cite book|last=Dickson|first=L. E.|title=Linear Groups with an Exposition of the Galois Field Theory|year=1958|orig-year=1901 | publisher=Dover|location=New York}}
{{cite journal|last1=Lidl|first1=Rudolf|last2=Mullen| first2=Gary L.|title=When Does a Polynomial over a Finite Field Permute the Elements of the Field?|journal=The American Mathematical Monthly|date=March 1988|volume=95|issue=3|pages=243–246| doi=10.2307/2323626|jstor=2323626 }}
{{cite journal|last1=Lidl|first1=Rudolf|last2=Mullen| first2=Gary L.|title=When Does a Polynomial over a Finite Field Permute the Elements of the Field?, II|journal=The American Mathematical Monthly|date=January 1993|volume=100|issue=1|pages=71–74| doi=10.2307/2324822|jstor=2324822 }}
{{cite book | zbl=0866.11069 | last1=Lidl | first1=Rudolf | last2=Niederreiter | first2=Harald | author2-link=Harald Niederreiter | title=Finite fields | edition=2nd | series=Encyclopedia of Mathematics and Its Applications | volume=20 | publisher=Cambridge University Press | year=1997 | isbn=0-521-39231-4 | url-access=registration | url=https://archive.org/details/finitefields0000lidl_a8r3}} Chapter 7.
{{cite book|first1=Gary L.|last1=Mullen|first2=Daniel|last2=Panario|title=Handbook of Finite Fields|year=2013|publisher=CRC Press|isbn=978-1-4398-7378-6}} Chapter 8.
{{cite journal|first1=C.J.|last1=Shallue|first2=I.M.|last2=Wanless|title=Permutation polynomials and orthomorphism polynomials of degree six|journal=Finite Fields and Their Applications|volume=20|date= March 2013|pages=84–92|doi=10.1016/j.ffa.2012.12.003| doi-access=free}}

Category:Polynomials

Category:Permutations