Let n be a fixed positive integer. Let’s define a relation on ℤ by a ~ b if and only if n | (b - a). It is clearly an equivalence relation. It is written as a ≡ b (mod n), “a is congruent to be mod n”.
An alternative is a ~ b if and only if b - a = kn for some k ∈ ℤ.
12 ≡ 5 is written in LaTeX as 12 \equiv 5, but $9 \not\equiv 5$ is written as 9 \not\equiv 5.
Let [a] be the equivalent class of a. It is called the congruence class or residue class of a mod n. It is the set of integers that are congruent to a modulo n, that is, that differ from a by a multiple of n, i.e., [a] = {b: b ∈ ℤ: b ≡ a (mod n)} = {a + kn: k ∈ ℤ} = {a, a ± n, a ± 2n, a ± 3n, ···}.
Notice that there are n-1 possible remainders after division by n ⇒ there are n distinct equivalence classes mod n. Therefore, the integers modulo n are the set of these equivalence classes = {[0], [1], [2], … [n-1]}, usually symbolized by the quotient ℤ/nℤ. The representative is just the remainder of the integer when divided by n.
Let’s define an addition and multiplication for ℤ/nℤ:
These operations are well-defined, that is, they do not depend on the choices of representatives for the classes involved.
Suppose a1 ≡ b1 (mod n) and a2 ≡ b2 (mod n) then,
∃s, t ∈ ℤ: a1 = b1 + sn, a2 = b2 + tn.
a1 + a2 = b1 + b2 + (s + t)n ⇒ a1 + a2 ≡ b1 + b2 (mod n) ⇒ [a1 + a2] = [b1 + b2] (the sum of the congruence or residue classes is independent of the representative chosen elements)
a1a2 = (b1 + sn)(b2 + tn) = b1b2 + (b1t + b2s + st)n ≡ b1b2 (mod n) ⇒ [a1a2] = [b1b2] ∎
$\frac{ℤ}{rℤ}$ is an Abelian group with this operation, [0] is the neutral element, and -[n]=[-n].
The group ℤn consists of the elements {[0], [1], [2], . . . , [n-1]} with addition mod n as the operation. For convenience’s sake, we identify each equivalence class with its representative. You can also multiply elements of Zn, but you do not obtain a group. For instance, the identity element 0 does not have a multiplicative inverse.
ℤn is a commutative ring with identity 1.
However, if you confine your attention to the units in ℤn, that is, the elements which have multiplicative inverses, u ∈ ℤn is a unit if ∃v ∈ ℤn: u·v = 1 and v is called a multiplicative inverse of u, then you indeed get a group under multiplication mod n. It is denoted as Un, and is called the group of units in ℤn
Theorem. An integer “a” has a multiplicative inverse modulo n if and only if a and n are coprime or relative prime. Figure 1.b.
⇐) Let n be an integer, suppose a is coprime to n ⇒ [By Bézout’s identity] ∃α, β ∈ ℤ: αa + βn = 1 ⇒ αa = 1 - βn ⇒ αa ≡ 1(mod n) ⇒ a has a multiplicative inverse (α).
⇒) Suppose that a has a multiplicative inverse and, for the sake of contradiction, a is not coprime to n ⇒∃d ∈ ℤ, d > 1 such that a = da’, n = db and (a has a multiplicative inverse, αa ≡ 1 (mod n) ) αa = 1 + βn for some α, β ∈ Z ⇒ αda’ = 1 + βnb ⇒ d(αa’ -βb) = 1 ⇒ d = ±1 ⊥ (which is impossible since d > 1)∎
For each n > 1, we define Un to be the set of all positive integers less than n that have a multiplicative inverse modulo n, that is, ∀a ∈ Un, ∃ b ∈ Zn : ab = 1. Un = {a ∈ Zn: a is relatively prime to n, a < n} = {a ∈ Zn: gcd(a, n)=1}. In particular, |Un| = φ(n) where φ is the Euler’s totient function.
Equivalently, the elements of this group can be thought of as the congruence classes, also known as residues modulo n, that are coprime to n. (ℤ/nℤ)x = {[a] ∈ ℤ/nℤ | gcd(a, n) = 1}
Theorem. ℤ/nℤ ≋ ℤn.
Example. For n = 10, U10 = {1, 3, 7, 9}. The Cayley table for U10 is in Figure 1.a.
Proposition. Un = {[m]| gcd(m, n) = 1} is a group under multiplication mod n, i.e., [x][y] = [xy]. It is called the multiplicative group of integers modulo n.
Definition. The subgroup generated by an element. If k is a divisor of n. Uk(n) = {x ∈ U(n): x mod k = 1}. Uk(n) is a subgroup of U(n).
Theorem. Suppose s and t are relatively prime. Then, U(st) ≋ U(s)⊕U(t), i.e., U(st) is isomorphic to the external direct product of U(s) and U(t). Futhermore, Us(st) ≋ U(t) and Ut(st) ≋ U(s). Proof.
Corollary. Let m = n1n2···nk, ∀i, j, i ≠ j, gcd(ni, nj) = 1. Then, U(m) ≋ U(n1)⊕U(n2)⊕···⊕U(nk).
Theorem (Gauss, 1801). U(2) = {1} ≋ {0}, U(4) = {1, 3} ≋ ℤ2. U(2n) ≋ U(22) ⊕ U(2n-2) ≋ ℤ2⊕ℤ2n-2 ∀n ≥ 3, U(pn) ≋ ℤpn-pn-1 for p a positive integer and an odd prime.
Theorem. Every group U(n) is isomorphic to the external direct product of cyclic groups.
U(55) ≋[Criterion for the direct product to be cyclic] U(5) ⊕ U(11) ≋ ℤ4⊕ℤ10 ≋ ℤ4⊕ℤ2⊕ℤ5
U(8) = U(23) = {1, 3, 5, 7} has 4 elements and is non-cyclic since each element (except the identity 1) has order 2. U(8) ≋ ℤ2⊕ℤ2.
If p = 5, n = 2, U(52) ≋[U(pn) ≋ ℤpn-pn-1 for p a positive integer and an odd prime] ℤ52-51, i.e., U(25) ≋ ℤ20.
U(16) ≋[U(2n) ≋ ℤ2⊕ℤ2n-2 ∀n ≥ 3] ℤ2 ⊕ ℤ4, U(9) ≈[9 = 32, 2 ≱ 3] ℤ6, U(7) ≋ ℤ6, U(5) ≋ ℤ4, U(3) ≋ ℤ2.
U(105) ≋ [105 = 3·5·7] U(3)⊕U(5)⊕U(7) ≋ ℤ2 ⊕ ℤ4 ⊕ ℤ6. |U(105)| = 2 × 4 × 6 = 48.
U(100) ≋ U(4) ⊕ U(25) ≋ ℤ2 ⊕ ℤ20
U(168) ≋ [168 = 3·7·8] U(3)⊕U(7)⊕U(8) ≋ ℤ2 ⊕ ℤ6 ⊕ ℤ2 ⊕ ℤ2.
Euler’s theorem. Let a, n ∈ ℤ, n > 0 and gcd(a, n) = 1. Then, aΦ(n)≡1 (mod n).
If gcd(a, n) = 1 ⇒ a ∈ ℤn* = U(n), |U(n)| = Φ(n) ⇒ [By Lagrange’s theorem. The order of an element of a finite group divides the order of the group] aΦ(n) = e ↭ aΦ(n) ≡ 1 (mod n)∎
Fermat’s Theorem. If a and p are integers, p is prime, and p ɫ a, then ap−1 ≡ 1 (mod p). Futhermore, ap≡ a (mod p) for any integer a.
If p is prime, then Up = {1, 2, 3, ···, p-1}, |Up| = Φ(p) = p-1.
If p is prime and p ɫ a ⇒ a ≡ b (mod p), where b ∈ {1, 2, 3, ···, p-1} -we could exclude the 0 from the list, b≠ 0-
⇒ [By Lagrange’s theorem. The order of an element of a finite group divides the order of the group, a|G|=e.] bp-1 ≡ 1 (mod p) ⇒[a ≡ b (mod p)] ap-1 ≡ bp-1 ≡ 1 (mod p) ∎.
ap≡ a (mod p) is an immediate consequence by multiplying both sides of ap−1 ≡ 1 (mod p) by a. Besides, if p | a, then a ≡ 0 (mod p), and ap ≡ 0p ≡ 0 ≡ 0 (mod p).
Examples. Let’s use this recently proven Fermat’s Theorem to reduce power.
2401/96, quotient = 25, remainder = 1
(7796)25 ≡ 125 (mod 97) ⇒ 772400 ≡ 1 (mod 97) ⇒ 772401 ≡ 77 (mod 97).
100,000/52, quotient = 1923, remainder = 4
(352)1923 ≡ 11923 (mod 53) ⇒ 399,996 ≡ 1 (mod 53) ⇒ 3100,000 = 34(399,996) ≡ 34 (mod 53) ⇒ 3100,000 ≡ 81 (mod 53) ≡ 28 (mod 53).
Fermat’s Little Theorem Converse. If m ≥ 2 and ∀a: 1 ≤ a ≤ m-1, am-1≡ 1 (mod m) ⇒ m is prime.
Proof. (Source LibreTexts,Elementary Number Theory (Barrus and Clark), Primality Test.)
If m ≥ 2 and ∀a: 1 ≤ a ≤ m-1, am-1≡ 1 (mod m) ⇒ a has an inverse modulo m, namely am-2 ⇒ [An integer has an inverse modulo m ↭ (a, m) = 1] ∀a: 1 ≤ a ≤ m-1, (a, m) = 1. Claim: m is prime.
For the sake of contradiction, suppose m is not prime ⇒ m = a·b, 1 < a < m, 1 < b < m ⇒ gcd(a, m) = a > 1 ⊥
Corollary. Primarily Test. Given an integer m ≥ 2, for each a between 1 and m -1, test wether am-1 ≡ 1 (mod m). If the congruence is true for every value of a, then m is prime. Otherwise, if the congruence fails for any value of a between 1 and m-1, then m is not prime.
Example: 13 is prime because 112 ≡ 1 (mod13); 212 = 4096 ≡ 1 (mod13); 312 = 531441 ≡ 1 (mod13); [···] and 1212 ≡ 1 (mod13).