Would like to learn the math behind the factoring programs.
I would like to learn the math behind the factoring programs. I am totally ignorant of the way things work, so please forgive the following question if it is stupid.
I'm hoping that the factoring algorithms are able to be learned by expanding one's knowledge of algebra. Does this idea have any credibility? I have had an education up to college algebra, and am hoping there are books that can teach me factoring math, assuming my guess about factoring relating to algebra is correct. If I'm totally off my rocker, just tell me and I'll shut up. (Actually, now that I think about it, it's possible I'm correct AND totally off my rocker. Now where did I put my meds? ) 
There certainly are books out there. I would recommend learning number theory, rather than factorization per se, at least for a start. You need a grounding in number theory to get anywhere and books specializing in factorization usually assume at least a basic knowledge of number theory. My personal favourite introductory book is Niven, Zuckermann & Montgomery, An Introduction to the Theory of Numbers. I've the 5th edition in paperback. There are several other good introductory books; other folk here may post their recommendations and Amazon will prove a valuable resource. As for factoring in particular, the one's I'd recommend are Riesel's Prime Numbers and Computer Methods for Factorization and Crandall & Pomerance's Prime Numbers, a computational perspective. You should probably learn some computer science, if you want to get anywhere implementing the algorithms. If the names "Knuth" and "TAOCP" doesn't mean anything to you, research them immediately! Beware: you may be shocked by the price of these books if purchased new. I'm pretty sure I've typed material like this before. Perhaps it should be in a FAQ. Paul 

I've recently taught myself the Verilog hardware design language and have implemented Field Programmable Gate Array (FPGA) circuits for Fermat's factorization method, PollardRho, and Lenstra's Elliptic Curve factoring method (ECM). Fermat's method is the only design that's actually running on a real FPGA at present (it's factoring the RSA704 challenge number ) because the ECM design for RSA704 is too large to fit into any FPGA that I can afford. Meanwhile I have some time on my hands and am looking for some other project with which to entertain myself. I have a hunch that the FFT portion of the Prime95 code would be an ideal candidate for an FPGA based hardware accelerator board (if one hasn't been designed and built already). I have both Spartan3 and ProAsic3E FPGA development boards to work with, but no idea where to obtain the Prime95 source code. By the way, does anyone have any idea how many eons I should expect to wait for the Lattice FPGA running Fermat's method at 1.16 microseconds per iteration on the RSA704 challenge number to find the solution? Ron 

You could get started by checking out the many papers on building an FFT into dedicated hardware, then estimate what it would take to convert one of those algorithms to use double precision floating point, and use that to estimate how much parallelism you would need at ~100MHz to beat a Pentium at 3000MHz. The above sounds cynical, but I'd actually like to know the answers to those questions. Did the references I pointed out previously help at all? jasonp 

Is that a fixed time or an average ? Does the time depend on how close the difference is to the square root of RSA704 ? What percent of differences, (ie potential squares), do you evaluate, (do a square root on) ? Later today I'll try to figure out the maximum amount of time it will take. Of course the minimum could be in the next week, day, hour, minute or second. Dan 

I figure you only need to evaluate 1/4 of the differences.
Ones that are 9 mod 16, ( 9 AND 15). 
The references you supplied in a previous thread were very interesting, but I got bogged down in all the implementation details. In order for an application to be suitable for FPGA implementation, the dataset the FPGA works with at any given time must be relatively small, local, and the task should be computationally intensive. Otherwise data transfer bandwidth issues would erase any potential gains from using an FPGA. I would like to find some small portion of Prime95 that is reasonably well isolated (encapsulated) from the rest of the program and that has the qualities mentioned above. Ron 

http://lettuce.edsc.ulst.ac.uk/gimps/ Their most recent source collection is for v24.14 (last August) From memory, the core inner loops in prime95 implement a fairly standard radix4 realvalued FFT. All the fun seems to depend on using the macro in a way that fully exploits caches, write buffers, prefetching and other things that dedicated hardware doesn't have to worry about :) p4notes.doc is also a very interesting read. jasonp Last fiddled with by jasonp on 20060605 at 13:09 

But trying to do RSA704 with ECM, PolllardRho, or Fermat's Method (except to test the hardware) will get you labelled as a kook in a hurry. These methods are hopeless for this number. Implementing the lattice sieve on FPGA is a VERY VERY hard problem. I have strong doubts whether they can be used effectively. And what do you mean by "periteration" for the lattice sieve??? The time will be dependent on factor base size. If you mean a single lattice point addition every 1.16 usec, (along with all the overhead) then I am afraid that this will not be competitive with current PC based implementations. My laptop, for example, (1.5GHz Pentium M) does an entire specialq value on a 14M x 7M array (98 million lattice points) using a factor base of 1.8 million primes per polynomial in just 55 seconds. This is twice as fast as your 1.16 usec result. The time includes all the overhead to do the lattice reduction, compute the start points, do the sieving, and to compute the actual factorizations of the smooth norms. My lattice sieve code could do the sieving for RSA704 in "about" 8 months on a collection of "about" 400 Pentium4 PC's (at about 3GHz each). [this estimate is within a factor of 2]. Dealing with the matrix would be a MAJOR problem. 

Maximum iterations, with the bigger of the two factors of RSA704 being 2^352  1
17675749973855171424998162026114852226112656948184937770657347111317090767408538639881686924493222509658 Years 649728432126397408326294393435914916923044910255993098776919748305569032188566456963227775 Last fiddled with by dsouza123 on 20060605 at 14:54 
