*.overline {text-decoration: overline;}

Our series of articles on algebraic number theory is back again. Maybe this time it won’t be so sporadic. Stranger things have happened. The previous installment, of which this is a direct continuation, is here. All previous installments are listed here.

When we left off, we were talking about how to determine the way a prime ideal factors in the ring of integers of a quadratic extension of ℚ. Such a field is of the form ℚ(√d) for some square-free d∈ℤ. We were using very simple elementary reasoning with congruences, and we found a fairly simple rule, namely:

If p∈ℤ is an odd prime (i. e., not 2), and K=ℚ(√d) is a quadratic extension of ℚ (where d is not divisible by a square) then

- p splits completely in K if and only if p∤d and d is a square modulo p.
- p is prime (i. e. inert) in K if and only if d is not a square modulo p.
- p is ramified in K if and only if p|d.

The prime 2 behaves a little more weirdly, but the result is that 2 ramifies if and only if d≡2 or 3 (mod 4); 2 is inert if and only if d≡5 (mod 8); 2 splits if and only if d≡1 (mod 8).

One limitation was that our simple reasoning made it necessary to assume that O_{K}, the ring of integers of K, was a PID (principal ideal domain).

Let’s review what we were trying to do. We were investigating the factorization of a prime ideal (p)=pO_{ℚ(√d)} in O_{ℚ(√d)}. If O_{ℚ(√d)} is a PID, then there is a simple approach to investigate how p splits. If p splits then (p)=P_{1}⋅P_{2}, where P_{i}=(α_{i}), i=1,2. Any quadratic extension is Galois, and the Galois group permutes the prime ideal factors of (p). The factors are conjugate, so if α_{1}=a+b√d we can assume α_{2}=α_{1}*=a-b√d. Hence (p)=(α_{1})⋅(α_{1}*)= (α_{1}α_{1}*)= (a^{2}-db^{2}).

Taking norms (to eliminate possible units ε∈O_{ℚ(√d)}) reduces the problem to a Diophantine equation of the form ±p=a^{2}-db^{2}. With the problem thus reduced, a necessary condition for (p) to split (or ramify) is that the equation can be solved for a,b∈ℤ. A sufficient condition to show that (p) is inert, i. e. doesn’t split or ramify, is to show that the equation can’t be solved.

Let’s look at how that might work. For example, let d=3. Looking at the equations modulo 3, we have ±p≡a^{2} (mod 3). That is, either p or -p is a square modulo 3. Say p=5. The only nonzero square mod 3 is 1, and 5≢1 (mod 3). However -5≡1 (mod 3), so could we have -5=a^{2}-3b^{2}? Suppose there were some a,b∈ℤ such that -5=a^{2}-3b^{2}. Then instead of looking at the equation modulo 3, we could look at it modulo 5, and find that then a^{2}≡3b^{2} (mod 5). If 5 divides either a or b, it divides both, and so 25 divides a^{2}-3b^{2}, which is impossible since 25∤5. Therefore 5∤b. ℤ/(5) is a field, so b must have an inverse c such that cb≡1 (mod 5). Therefore, (ac)^{2} ≡ 3(bc)^{2} ≡ 3 (mod 5), and so 3 is a square mod 5. But that can’t be, since only 1 and 4 are squares modulo 5. The contradiction implies -5=a^{2}-3b^{2} has no solution for a,b∈ℤ.

All that does show 5 doesn’t split or ramify in ℚ(√3), hence it must be intert, but this approach is messy and still requires knowing that the integers of ℚ(√3) form a PID. We need to find a better way. Fortunately, there is one. But first let’s observe that this elementary discussion shows there is a fairly complicated interrelationship among:

- Factorization of (prime) ideals in extension fields,
- Whether a given ring of integers is a PID,
- Whether an integer prime can be represented as the norm of an integer in an extension field,
- Whether an integer can be represented by an expression of the form a
^{2}+db^{2}for a,b∈ℤ (in the case of quadratic extensions), - Whether, for primes p,q∈ℤ, p is a square modulo q and/or q is a square modulo p.

The problem of representing an integer by an expression like a^{2}+db^{2} is a question of solving a Diophantine equation, and more specifically is of the type known as representing a number by the value of a quadratic form. This question was studied extensively by Gauss, who proved a remarkable and very important result, known as the law of quadratic reciprocity, which relates p being a square modulo q to q being a square modulo p, for primes p,q.

We will take up quadratic reciprocity soon (and eventually much more general “reciprocity laws”), but right now, let’s attack head on the issue of determining how a prime of a base field splits in the ring of integers of an extension field. We will use abstract algebra instead of simple arithmetic to deal with this question. For simplicity, we’ll assume here that the base field is ℚ, even though many results can be stated, and are often valid, for more arbitrary base fields.

**Chinese Remainder Theorem**

The first piece of abstract algebra we’ll need is the Chinese Remainder Theorem (CRT). Although it’s been known since antiquity to hold for the ring ℤ, generalizations are actually true for any commutative ring.

Let R be a commutative ring, and suppose you have a collection of ideals I_{j}, for j in some index set, j∈J. Suppose that the ideals are relatively prime in pairs. In general that means that I_{i}+I_{j}=R if i≠j, and further, the product of ideals, I_{i}⋅I_{j}, is I_{i}∩I_{j} when i≠j. If R is Dedekind, then each ideal has a unique factorization into prime ideals, and they are relatively prime if I_{i} and I_{j} have no prime ideal factors in common when i≠j. Let I be the product of all I_{j} for j∈J, which is also the intersection of all I_{j} for j∈J, since the ideals are coprime in pairs.

The direct product of rings R_{i} for 1≤i≤k is defined to be the set of all ordered k-tuples (r_{1}, … ,r_{k}), for r_{i}∈R_{i}, with ring structure given by element-wise addition and multiplication. The direct product is written as R_{1}×…×R_{k}, or &Pi_{1≤i≤k}R_{i}.

Given all that, the CRT says the quotient ring R/I is isomorphic to the direct product of quotient rings Π_{1≤i≤k}(R/I_{i}) via the ring homomorphism f(x)=(x+I_{1}, … ,x+I_{k}) for all x∈R.

The CRT is very straightforward, since f is obviously a surjective ring homomorphism, and the kernel is I, since it’s the intersection of all I_{i}. (It’s straightforward, at least, if you’re used to concepts like “surjective” and “kernel”.)

Now we’ll apply the CRT in two different situations. First let R be the ring of integers O_{K} of a finite extension K/ℚ, and I_{i}=P_{i}, 1≤i≤g, be the set of all distinct prime ideals of O_{K} that divide (p)=pO_{K} for some prime p∈ℤ. Then (p)=P_{1}^{e1} ⋅⋅⋅ P_{g}^{eg}, where e_{i} are the ramification indices of each prime factor of (p). An application of CRT then shows that O_{K}/(p) ≅ Π_{1≤i≤g}(O_{K}/P_{i}^{ei}). Recall that for each i, O_{K}/P_{i} is isomorphic to the finite field 𝔽_{qi}, where q_{i}=p^{fi} for some f_{i}, known as the degree of inertia of P_{i}. (This field is the extension of degree f_{i} of 𝔽_{p}=ℤ/pℤ.) Further, Σ_{1≤i≤g}e_{i}f_{i}=[K:ℚ], the degree of the extension. Check here if you need to review these facts. Specifying how (p) splits in O_{K} amounts to determination of the P_{i} and the numbers e_{i}, f_{i}, and g.

The second situation where we apply CRT involves the ring of polynomials in one variable over the finite field 𝔽_{p}=ℤ/pℤ, denoted by 𝔽_{p}[x]. Let f(x) be a monic irreducible polynomial with integer coefficients, i. e. an element of ℤ[x]. Let f(x) be f(x) with all coefficients reduced modulo p, an element of 𝔽_{p}[x]. f(x) will not, in general, be irreducible in 𝔽_{p}[x], so it will be a product of powers of irreducible factors: Π_{1≤i≤g}(f_{i}(x)^{ei}), where f_{i}(x)∈𝔽_{p}[x]. Each quotient ring 𝔽_{p}[x]/(f_{i}(x)) is a finite field that is an extension of 𝔽_{p} of some degree f_{i}. In general, e_{i}, f_{i}, and g will be different, of course, from the same numbers in the preceding paragraph. But the CRT gives us an isomorphism 𝔽_{p}[x]/(f(x)) ≅ Π_{1≤i≤g}(𝔽_{p}[x]/(f_{i}(x)^{ei})).

Now, here’s the good news. For many field extensions K/ℚ, there exists an appropriate choice of f(x)∈ℤ[x] such that for most primes (depending on K and f(x)), the numbers e_{i}, f_{i}, and g will be the same for both applications of the CRT. Consequently, we will have O_{K}/(p) ≅ 𝔽_{p}[x]/(f(x)), because for corresponding factors of the direct product of rings, O_{K}/P_{i}^{ei} ≅ 𝔽_{p}[x]/(f_{i}(x)^{ei}). As it happens, most primes don’t ramify for given choices of K and f(x), so that things are even simpler, since all e_{i}=1, and all factors of the direct products are fields.

We can’t go into all of the details now as to how to choose f(x) and what the limitations on this result are. However, here are the basics. Any finite algebraic extension of ℚ (and indeed of any base field that is a finite algebraic extension of ℚ) can be generated by a single algebraic number θ: K=ℚ(θ), called a “primitive element”. In fact, &theta can be chosen to be an integer of K. Then the ring of integers of K, O_{K}, is a finitely generated module over ℤ. (A module is like a vector space, except that all coefficients belong to a ring rather than a field.) The number of generators is the index [O_{K}:ℤ[θ]]. (ℤ[θ] is just all polynomials in θ with coefficients in ℤ.) If p∈ℤ is any prime that does not divide [O_{K}:ℤ[θ]], then the result of the preceding paragraph holds. If for some p and some choice of θ p does divide the index, then there may be another choice of θ for which p doesn’t divide the index. Unfortunately, there are some fields (even of degree 3 over ℚ) where this isn’t possible for some choices of p.

The situation is especially nice in the case of quadratic fields, K=ℚ(√d), square-free d∈ℤ. If d≢1 (mod 4); we can take θ=√d and f(x)=x^{2}-d, since O_{K}=ℤ[√d]. If d≡1 (mod 4), then the index [O_{K}:ℤ[√d]]=2, and there’s a possible problem only for p=2. However, we still have O_{K}/(p) ≅ 𝔽_{p}[x]/(x^{2}–d) for all p≠2. From that it’s obvious that, except for p=2, (p) ramifies if p|d, (p) splits if d is a square modulo p, or else (p) is inert. That is exactly the conclusion we began with at the beginning of this article, on the basis of elementary considerations. Only now we need not assume that O_{K} is a PID.

There are four important lessons to take away from this discussion.

First, there is a very close relationship between the arithmetic of algebraic number fields and the arithmetic of polynomials over a finite field. Not only do we have the isomorphism discussed above, but it turns out that a number of similar powerful theorems are true for both algebraic number fields and the field of quotients of polynomial rings over a finite field.

Second, a lot of the arithmetic of algebraic number fields can be analyzed in terms of what happens “locally” with the prime ideals of the ring of integers of the field.

Third, many of the results of algebraic number theory are fairly simple if the rings of integers are PIDs (or, equivalently, have unique factorization). Such results often remain true when the rings aren’t PIDs, though they can be a lot harder to prove. Often the path to proving such results involves considering the degree to which a given ring of integers departs from being a PID.

Fourth, and perhaps most importantly, abstract algebra is a very powerful tool for understanding algebraic number fields – and it is much easier to work with and understand than trying to use “elementary” methods with explicit calculations involving polynomials and their roots.

We will see these lessons validated time and again as we get deeper into the subject.

So where do we go from here? There are a lot of directions we could take, so we’ll probably jump around among a variety of topics.