Square roots of minus one in modular arithmetic

Date: Feb 13, 2007

Consider the ring $ \mathbbm{Z}/ n $ of integers modulo some number n. Does there exist a square root of -1 in $ \mathbbm{Z}/ n $? Equivalently, does there exist an integer x such that n divides x2 + 1?

Contents
    1. Modulo powers of 2
    2. Modulo primes
    3. Modulo prime powers
    4. The general case

For an example, note that 22 ≡ -1 modulo 5. On the other hand, there is no number which squares to -1 modulo 7.

Modulo powers of 2

First, observe that in the case n=2 we actually have 1 ≡ -1 so that a (in this case unique) square root of -1 trivially exists. Next, consider the case n = 2α. Note that x2 + 1 modulo 4 is either 1 or 2 depending on whether x is even or odd. In any case, x2 + 1 is not divisible by 4 which shows that there are no square roots of -1 in the case n = 2α when α > 1.

Modulo primes

The following is a standard theorem that answers our question for n an odd prime.

Theorem: Let p be an odd prime. The equation x2 = -1 has a solution in $ \mathbbm{Z}/ p $ if and only if p ≡ 1 modulo 4, in which case there are exactly two solutions.

Proof: First, we are going to show that -1 is the unique element of order 2 in $ (\mathbbm{Z}/ p)^{\times} $. Let x be such an element of order 2. Then p divides x2 - 1 and hence p divides either x-1 or x+1 which implies that x = 1 or x = -1. Being of order 2, x = -1. Alternatively, one could just note that x2 - 1 can have at most two roots in the field $ \mathbbm{Z}/ p $.

Therefore, an element x of $ \mathbbm{Z}/ p $ satisfies x2 = -1 if and only if it is of order 4 in $ (\mathbbm{Z}/ p)^{\times} $. Assume that we have such an element of order 4. This implies that 4 divides $ | (\mathbbm{Z}/ p)^{\times} | = p - 1 $. The claimed necessity of p ≡ 1 modulo 4 follows.

Now, suppose p ≡ 1 modulo 4. Consider the group

$$ G = (\mathbbm{Z}/ p)^{\times} /\{\pm 1\}. $$

Its order $ |G| = (p - 1) / 2 $ is even which implies that G contains at least one element g of order 2. Let x be in the preimage of g under the quotient map. The order of x can only be 2 or 4. If it were 2 then x = -1 which would imply the contradiction that g = 1. Consequently, x is of order 4 and ± x (which are distinct) are our seeked solutions. Since $ \mathbbm{Z}/ p $ is a field there can't be further solutions.

Modulo prime powers

Examining the previous proof we can generalize to the case of prime powers n = pα.

Theorem: Let p be an odd prime. The equation x2 = -1 has a solution in $ \mathbbm{Z}/ p^{\alpha} $ if and only if p ≡ 1 modulo 4, in which case there are exactly two solutions.

Proof: Again, we claim that -1 is the unique element of order 2 in $ (\mathbbm{Z}/ p^{\alpha})^{\times} $. If x is such an element then pα divides x2 - 1 and hence pα divides either x - 1 or x + 1 (note that p can't divide both x - 1 and x + 1). We conclude x = -1.

Therefore, an element x of $ \mathbbm{Z}/ p^{\alpha} $ satisfies x2 = -1 if and only if it is of order 4 in $ (\mathbbm{Z}/ p^{\alpha})^{\times} $. Assume that we have such an element of order 4. This implies that 4 divides $ | (\mathbbm{Z}/ p^{\alpha})^{\times} | = p^{\alpha - 1} (p - 1) $. The claimed necessity of p ≡ 1 modulo 4 again follows.

Now, suppose p ≡ 1 modulo 4. Consider the group

$$ G = (\mathbbm{Z}/ p^{\alpha})^{\times} /\{\pm 1\}. $$

Its order $ |G| = p^{\alpha - 1} (p - 1) / 2 $ is even which implies that G contains at least one element g of order 2. Let x be in the preimage of g under the quotient map. The order of x can only be 2 or 4. If it were 2 then x = -1 which would imply the contradiction g=1. Consequently, x is of order 4 and ± x (which are distinct) are two solutions. To see that there are no further elements of order 4, suppose x and y are of order 4. It follows from x2 = y2 = -1 that (x y)2 = 1, and hence x y = ± 1. This implies y = ± x.

The general case

We are now able to prove the following theorem.

Theorem: The equation x2 = -1 has a solution in $ \mathbbm{Z}/ n $ if and only if n decomposes as

$$ n = 2^{\varepsilon} p_1 \cdots p_r $$

where ε ∈ {0, 1} and the pj are primes satisfying pj ≡ 1 modulo 4. In this case, there are exactly 2s solutions where s is the number of distinct primes among the pj.

Proof: This is an immediate consequence of our previous discussion, and the Chinese Remainder Theorem. If n = n1 n2 for relatively prime n1 and n2, then n divides x2 + 1 if and only if both n1 and n2 divide x2 + 1. We conclude that n is of the claimed form in order for a solution of x2 = -1 to exist.

On the other hand, given that $ n = 2^{\varepsilon} p_1^{\alpha_1} \cdots p_s^{\alpha_s} $ for distinct primes pj such that pj ≡ 1 modulo 4, we find exactly two solutions for each of the s equations

$$ x^2 \equiv -1 \hspace{1em} \operatorname{mod} p_j^{\alpha_j} . $$

Using the isomorphism given by the Chinese Remainder Theorem, these combine to exactly 2s solutions of x2 ≡ -1 modulo n.

in

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.