Computation of Algebraic Relations

In the final section of this chapter we investigate the complexity of computing the algebraic relations of arithmetic circuits.

Exponential-space computation of algebraic relations

Let K be a field and let K[x] = K[x1, . . . , xn] be a polynomial ring over K.

The algebraic relations AlgRel_K[y](f1, . . . , fm) of polynomials f1, . . . , fm ∈

K[x] can be expressed as an elimination ideal in K[x, y].

Lemma 4.4.1 ([KR00, Corollary 3.6.3]). Let f1, . . . , fm ∈ K[x] be polyno-

mials. Then we have

AlgRel_K[y](f1, . . . , fm) =y1− f1, . . . , ym− fm



K[x,y]∩ K[y], (4.4.1)

where y = {y1, . . . , ym} are new variables.

This elimination ideal can be computed via Gr¨obner basis methods (for an introduction to Gr¨obner bases, we refer to [KR00]). Since Gr¨obner bases can be computed in exponential space [KM96], we obtain the following theorem. Theorem 4.4.2. Let K = Q or K = Fq for some prime power q. Then there

exists an exponential-space bounded Turing machine that, given arithmetic circuits C1, . . . , Cm over K[x], computes a generating system of the ideal

AlgRel_K[y](C1, . . . , Cm).

Proof sketch. Let C1, . . . , Cm be arithmetic circuits over K[x] and denote

J := hy1− C1, . . . , ym− CmiK[x,y]. By Lemma 4.4.1, we have

AlgRel_K[y](C1, . . . , Cm) = J ∩ K[y].

Let σ be a term ordering on T(x, y) which is an elimination ordering for x. Let G ⊂ K[x, y] be a σ-Gr¨obner basis of J . Then, by [KR00, Theorem 3.4.5 (b)], G∩K[y] is a σ0-Gr¨obner basis of J ∩K[y], where σ0is the restriction of σ to T(y).

Let s :=Pm

i=1size(Ci) and let δ := s

s_{. By Lemma 2.2.4, we have deg(y} i−

Ci) ≤ δ for all i ∈ [m].

First let K = Q. The bit-size of the coefficients of y1− C1, . . . , ym− Cm is

bounded by B := ss+1_{. By [KM96], a σ-Gr¨obner basis G ⊂ K[x, y] of J can}

be computed in space poly 2n_{, log m, log δ, B
= poly 2}n_{, s}s
_{(in [KM96] the}

input polynomials are given in sparse representation, but we can compute the coefficients of y1−C1, . . . , ym−Cm in space poly(ss)). This algorithm can

If K = Fq for some prime power q, then the algorithm in [KM96] works

mutatis mutandis. Most notably, the underlying degree bound for Gr¨obner bases in [Dub90] holds over any field.

Remark 4.4.3. The exponential-space upper bound for computing Gr¨obner bases is best possible [MM82]. However, it is conceivable that the computa- tion of elimination ideals of the shape (4.4.1) is easier.

Hardness of computing minimal polynomials

Kayal obtained hardness results connected with the computation of annihilat- ing polynomials [Kay09]. We prove one of his results in a slightly generalized setting.

Let K be a field and let K[x] = K[x1, . . . , xn] be a polynomial ring over

K. We consider a situation where we have a more reasonable bound on the size of a generating system of the algebraic relations than in the general case. Let f1, . . . , fm ∈ K[x] be polynomials such that trdegK(f1, . . . , fm) = m − 1.

Then, by Lemma 4.1.6, the ideal AlgRel_K[y](f1, . . . , fm) is generated by a

minimal polynomial F ∈ K[y] of f1, . . . , fm (recall Definition 4.1.7). If

K = Q or K = Fq for some prime power q, then the degree bound for annihi-

lating polynomials implies that a minimal polynomial of arithmetic circuits C1, . . . , Cm of transcendence degree m − 1 can be computed in polynomial

space.

The following theorem gives evidence that the computation of minimal polynomials is hard [Kay09, Section V]. It shows that, if φ is a boolean circuit over x with arithmetization arithφ, then a minimal polynomial of arithφ,

x2

1 − x1, . . . , x2n − xn encodes information about the number of satisfying

assignments of φ. Recall that computing this number is a #P-hard problem [AB09, Theorem 17.10].

Theorem 4.4.4. Let φ be a boolean circuit over x and let N ∈ [0, 2n_{] be}

the number of satisfying assignments of φ. Let C := arithφ ∈ K[x] be the

arithmetization of φ and let fi := x2i − xi ∈ K[x] for i ∈ [n]. Let F ∈

K[y, y1, . . . , yn] be a minimal polynomial of C, f1, . . . , fn. Then we have

F (y, 0, . . . , 0)k = c · (y − 1)N · y2n_−N

for some k ≥ 1 and c ∈ K∗.

Before we give the proof of this theorem, we draw some consequences. Let K = Q or K = Fqfor some prime power q. Suppose we were able to efficiently

compute an arithmetic circuit G for the polynomial F (y, 0, . . . , 0) ∈ K[y] of encoding size poly(|φ|, n). Then, by checking whether G(1) = 0, we could

decide the satisfiability of φ, an NP-hard problem. Note that, in contrast to [Kay09], we do not require G to be monic. Therefore, in the case K = Q, the only efficient test for the zeroness of G(1) we know of is a randomized check.

Now let K = Q. We have G(−1)G(2) G(1/2)2 = 2 3·2n_/k and G(−1) 4 G(1/2)2_G(2)2 = 2 6N/k_.

Using random modular evaluations of G, it is possible to efficiently extract the exponents 3 · 2n_{/k and 6N/k (cf. the proof of [Kay09, Claim 15.2]) from}

which we obtain N . This implies that computing an arithmetic circuit for G (more precisely, a suitably defined function problem) is even #P-hard under randomized reductions (cf. [Kay09, Theorem 15]; note that we do neither require G to be monic nor to be over Z).

For the proof of Theorem 4.4.4 we set up some notation. Let σ be a term ordering on T(x), let δ1, . . . , δn≥ 1, and let f1, . . . , fn ∈ K[x] be polynomials

such that ltσ(fi) = xδii for all i ∈ [n]. Moreover, let b = (b1, . . . , bs) ∈ K n

. By Lemma 4.1.3, f1− b1, . . . , fn− bn are algebraically independent over K.

Define the ideal

Ib:=f1− b1, . . . , fn− bn



K[x].

By [KR00, Corollary 2.5.10], {f1 − b1, . . . , fn− bn} is a σ-Gr¨obner basis of

Ib_{, and by [KR00, Proposition 3.7.1], I}b _{is a zero-dimensional ideal, hence}

Ab _{:= K[x]/I}b _{is finite-dimensional as a K-vector space. More precisely,}

Bb:= B + Ib _{is a K-basis of A}b_{, where}

B :=xα| α ∈ [0, δ1− 1] × · · · × [0, δn− 1] ⊂ T(x),

in particular, we have dim_K(Ab) = δ1· · · δn =: d.

Now let f ∈ K[x] be another polynomial. Multiplication by f in Ab

yields a K-linear map

mb_f: Ab → Ab_{, g + I}b _{7→ f g + I}b_.

Let Mb f ∈ K

d×d

be the matrix of mb

f with respect to Bb and let χMb

f ∈ K[y]

be the characteristic polynomial of M_fb. Let a ∈ V_Kn(Ib) and let Ab

a := U −1

a Ab be the localization of Ab with

respect to the multiplicatively closed set

Ua:=f + Ib| f ∈ K[x] such that f (a) 6= 0 ⊂ Ab.

The number µ(a) := dim_K(Ab

Theorem 4.4.5 (Stickelberger’s Theorem). Let V_Kn(Ib) = {a₁, . . . , a_m}.

Then we have Ab ∼=Qm_i=1Ab_ai and χ_Mb f =

Qm

i=1(y − f (ai))µ(ai).

Proof. For char(K) = 0, this is [BPR06, Theorem 4.94 and Theorem 4.98]. The assumption on the characteristic is only used in [BPR06, Lemma 4.90], however, the fact that K is infinite is sufficient.

The following lemma sheds light on the connection between minimal poly- nomials of f, f1, . . . , fn and the characteristic polynomial of Mfb.

Lemma 4.4.6. Let b ∈ Kn and let F ∈ K[y, y1, . . . , yn] be a minimal poly-

nomial of f, f1, . . . , fn. Then F (y, b)k = c · χMb

f for some k ≥ 1 and c ∈ K

∗_.

Proof. Let y := {y1, . . . , yn} and define

Iy :=f1− y1, . . . , fn− yn



K(y)[x].

Then Ay _{:= K(y)[x]/I}y _{is finite-dimensional as a K(y)-vector space. More}

precisely, By := B + Iy _{is a K(y)-basis of A}y_{, hence dim} K(y)(A

y_{) = d. Let}

my_f: Ay→ Ay, g + Iy 7→ f g + Iy

and let M_fy ∈ K(y)d×d be the matrix of my_f with respect to By_{. Let x}α _{∈ B.}

By [KR00, Corollary 2.5.10], {f1− y1, . . . , fn− yn} ⊂ K[y][x] is a σ-Gr¨obner

basis of Iy with monic leading terms. By the Division Algorithm [KR00, Theorem 1.6.4], there exist polynomials q1, . . . , qn, r ∈ K[y][x] such that

f · xα _{= q}

1(f1 − y1) + · · · + qn(fn− yn) + r and Supp(r) ⊆ B. This shows

that, in fact, we have M_fy ∈ K[y]d×d _{and M}b f = M y f(b) for all b ∈ K n . In particular, we have χ_My f ∈ K[y, y] and χMfb = χM y f(y, b).

Now we want to show that F vanishes on V_Kn+1(χ_My

f). To this end, let

(c0, c) = (c0, c1, . . . , cn) ∈ V_Kn+1(χ_My f). Then χM c f(c0) = χM y f(c0, c) = 0.

Thus, c0 is an eigenvalue of Mfc. By Theorem 4.4.5, there exists a ∈ VKn(I c₎

such that f (a) = c0. Therefore, we have F (c0, c) = F (f, f1, . . . , fn)
(a) =

0.

By Hilbert’s Nullstellensatz (see Theorem A.4.1), F is in the radical of hχ_My

fiK[y,y], and since F is irreducible, there exist k ≥ 1 and c ∈ K

∗ _such

that Fk_{= c · χ}

M_fy. We conclude F (y, b)k = c · χM_fy(y, b) = c · χMb f.

Proof of Theorem 4.4.4. We have V_Kn(f₁, . . . , f_n) = {0, 1}n, thus m = 2n =

d (with the notation above). By Theorem 4.4.5, we have µ(a) = 1 for all a ∈ {0, 1}n _{and, together with Lemma 2.3.6 (a), we obtain}

χ_M0 C = Y a∈{0,1}n (y − C(a)) = (y − 1)N · y2n_−N .

Conclusion

In this thesis we used the concept of faithful homomorphisms to construct hitting sets for various classes of arithmetic circuits. By those techniques, we also obtained a promising blackbox algorithm candidate for ΣkΠdΣΠδ-

circuits, when k and δ are constants. To be useful, a good upper bound for Rδ(k, d) has to be found (see Conjecture 4.2.36). Even bounds for the special

cases k = 3 and δ = 2 would be interesting. Another direction for research on small-depth PIT is to consider ΣkΠδΣ-circuits with unbounded top fan-in

k.

Another question that has not yet been answered in a satisfactory way is the complexity status of algebraic independence testing over a finite field Fq.

Using the Witt-Jacobian Criterion, we could make some progress by showing AlgIndep_Fq ∈ NP#P_{. We conjecture, however, that AlgIndep}

Fq ∈ BPP. This

could be shown by devising an efficient randomized test for non-degeneracy of Witt-Jacobian polynomials. It was shown by Stefan Mengel that testing 2-degeneracy of general arithmetic circuits is hard [MSS12]. It is conceivable that degeneracy testing of Witt-Jacobian polynomials is easier due to their special shape.

Preliminaries

A.1

Notation

We fix some notation. Sets

By N, Z, Q, R, and C we denote the sets of non-negative integers, integers, rational numbers, real numbers, and complex numbers, respectively.

The power set of a set S will be denoted by 2S_{, and, for k ≥ 0, the set of}

k-subsets of S will be denoted by S_k
. If S is a subset of T , we write S ⊆ T , and if S is a strict subset of T , we write S ⊂ T .

For m, n ∈ Z, we define [m, n] := {m, m + 1, . . . , n} (with the convention [m, n] = ∅ if m > n) and [n] := [1, n]. The group of permutations [n] → [n] will be denoted by Sn for n ≥ 1.

Asymptotic notation Let f, g : Nk _{→ R}

≥0 be functions. We write g = O(f ) if there exist c > 0 and

N ≥ 0 such that g(n1, . . . , nk) ≤ c · f (n1, . . . , nk) for all n1, . . . , nk ≥ N . If

f = O(g), then we write g = Ω(f ). Finally, if g = O(f ) and f = O(g), then we write g = Θ(f ).

Let f1, . . . , fm: Nk → R≥0 be functions and let g : Nmk → R≥0 be another

function. We write g = poly(f1, . . . , fm) if there exists a fixed polynomial

F ∈ N[x1, . . . , xm] such that g = O F (f1, . . . , fm)
.

Prime numbers

We denote the set of prime numbers by P. The following theorem gives a lower bound on the number of primes in an interval.

Theorem A.1.1 ([RS62, Corollary 1, (3.5)]). Let k ≥ 17. Then we have |[k] ∩ P| > k/ log k.

Corollary A.1.2. Let k ≥ 2. Then we have (a) |[2k_{] ∩ P| ≥ 2}k_{/k, and}

(b) |[k2_{] ∩ P| ≥ k.}

Proof. Since [16] ∩ P = {2, 3, 5, 7, 11, 13}, (a) and (b) hold for k = 2, 3, 4. For k ≥ 5, (a) and (b) follow from Theorem A.1.1.

In document Independence in Algebraic Complexity Theory (Page 132-140)