Tools

Basics of Finite Fields

Theory

In all the previous experiments, we dealt with codes over the binary alphabet. Codes can also be constructed over fields of size greater than $2$. In this experiment, we shall focus on finite fields in general. Firstly, we will describe prime fields denoted by $\mathbb{F}{p}$, where $p$ is a prime number. Then we study the construction of finite fields ($\mathbb{F}{q}$) of size $q$, which is a power of a prime ($ q = p^{m}$, $m \geq 2$). Then we describe about the element through which every element of the finite field can be generated (primitive element) and the construction of minimal polynomials of all the elements.

The theory associated with Experiment-6 is divided into four parts:

(1) Prime Fields
(2) Ring of polynomials and Extended Euclidean algorithm
(3) Construction of finite fields of prime power
(4) Structural Properties of Finite Fields
   (a) Vector space structure of finite fields
   (b) Multiplicative structure of finite fields
   (c) Minimal Polynomials

1    Prime Fields

Consider a set $\mathbb{F}_p = {0, 1, \ldots, p-1 }$, where $p$ is prime. The addition and multiplication operations for any $a, b \in \mathbb{F}_p$ are defined as $a +_p b = a+b \mod p$ and $a ._p b = a.b \mod p$. For simplicity of notation, we will use $+$ instead of $+_p$ and $.$ instead of $._p$ subsequently in the theory.

We would like to argue that $(\mathbb{F}_p, +, .)$ is a field. In Experiment-1, field definition is given. It is easy to verify that the following field properties of $(\mathbb{F}_p, +, .)$

  • Closure under addition, multiplication
  • Commutativity under addition, multiplication
  • Distributivity with respect to addition and multiplication
  • Additive identity is $0$ and multiplicative identity is $1$
  • Additive inverse of $a$ is $p-a$.

The only property which requires to be verified carefully is the existence of multiplicative inverse for every non-zero element in the field. In order to prove that, we need to invoke the fact that $p$ is prime. We also use the well-known relation of the greatest common divisor($gcd$), i.e., for integers $a$ and $b$ there are two integers $x$ and $y$ such that $$\begin{equation}ax + py = 1 \end{equation}$$

Consider $a \neq 1 \in \mathbb{F}_p$. $a$ is co-prime with $p$ as $p$ is a prime number. Hence, $gcd(a,p)=1$. Thus, it turns out, there are two integers $x,y$ such that $ax + py = 1$. Doing $\mod p$ operation on the above relation, we have that $a.(x \mod p) = 1 \mod p$. Thus, $x \mod p$ is the required multiplicative inverse of $a$ in the field $\mathbb{F}_p$.

Consider the case of $p=7$. The addition and multiplication tables for $\mathbb{F}7$ are given below. For e.g., $(4+5) \mod 7 = 2$ and $(4.5) \mod 7 = 6$. In this field, the additive inverse of an element $a$ is $7-a$. For e.g., additive inverse of $5$ is $7-5= 2$. The multiplicative identity is $1$ in $\mathbb{F}{7}$, so the multiplicative inverse of an element $a$ is $b$ if and only if $a.b=1$. For e.g., the multiplicative inverse of $5$ is $3$ (check from the Table 2). Students are suggested to find the multiplicative inverses of all the elements from Table 2 and additive inverses of all the elements from Table 1.
alt text

2   Ring of Polynomials and Extended Euclidean Division Algorithm

In Experiment-1, we have defined the field ${\mathbb{F}, +, \cdot}$. Students are suggested to recall the axioms that satisfy with two binary operations called addition $(+)$ and multiplication $(\cdot)$ (see Section 1 in the current experiment). Let $R$ be a set of elements, known as a ring, which satisfies all the field axioms but does not necessarily require the presence of multiplicative inverses and doesn't require satisfying the commutative property with respect to multiplication. It is denoted by ${R, +, \cdot}$. Consider the set of all polynomials with coefficients from $\mathbb{F}_p$, denoted by $\mathbb{F}_p[x]$ where $x$ is indeterminate. It is easy to verify that $(\mathbb{F}_p[x],+,.)$ is a ring of polynomials. Addition and multiplication are defined as ordinary addition and multiplication, with the difference being the coefficient operations are carried out $\mod p$.

For example, consider the ring of polynomials $\mathbb{F}_7[x]$. Let $a(x) = 1 + 3x + 4x^2 + x^3 + 6x^5 $ and $b(x) = 2 + 5x^2 + 5x^5 + x^6$, then we have that $$ \begin{equation*} a(x) + b(x) = 3 + 3x + 2 x^2 + x^3 + 4x^5 + x^6. \end{equation*} $$ We also can compute the product of $a(x)$ and $b(x)$ as follows: $$ a(x) b(x) = ( 1 + 3x + 4x^2 + x^3 + 6x^5) (2 + 5x^2 + 5x^5 + x^6) \ \hspace{3.53cm} = (2 + 5x^2 + 5x^5 + x^6) + (6x + x^3 + x^6 + 3x^7) + (8x^2 + 6x^4 + 6x^7 + 4x^8) \ \hspace{2.8cm} + (2x^3 + 5x^5 + 5x^8 + x^9) + (5x^5 + 2x^7 + 2x^{10} + 6x^{11}) \ \hspace{3.53cm} = 2 + 6x + 6x^2 + 3x^3 + 6x^4 + x^5 + 2x^6 + 4x^7 + 2x^8 + x^9 + 2x^{10} + 6x^{11}. $$

Let $a(x) = 4x^4 + 3x^2 + 2x + 1 $ and $b(x) = 3x^2 + 2x + 1 $ are the two polynomials in $\mathbb{F}_{7}[x]$. The division of $a(x)$ by $b(x)$ is computed as follows:
alt text

Division algorithm for polynomials states that there is a unique representation for $a(x)$ and $b(x)$ in $\mathbb{F}[x]$ ($\mathbb{F}$ is a field), $ a(x) = q(x) b(x) + r(x)$, where the degree of $r(x)$ is less than the degree of $b(x)$. Throughout the experiment, we denote the degree of any polynomial, say $f(x)$ by $deg(f(x))$. Sometimes it is convenient to express the remainder polynomial in terms of the modulo operation, as we do for integers, i.e., $r(x) = a(x) \mod b(x)$. Using the division algorithm repetitively, the $gcd$ of two polynomials is determined, which is discussed below.

Euclidean Algorithm: To compute the $gcd(f(x), g(x))$, the division algorithm is used repetitively. Repeated application of the division algorithm, we obtain a series of equations: $$ f(x) = q_{1}(x) g(x) + r_{1}(x) \quad \quad \quad r_{1}(x) \neq 0 , \text{and} , deg(r_{1}(x)) < deg(g(x)) \ g(x) \hspace{0.1cm} = q_{2}(x) r_{1}(x) + r_{2}(x) , , , \quad \quad r_{2}(x) \neq 0 , \text{and} , deg(r_{2}(x)) < deg(r_{1}(x)) \ r_{1}(x) = q_{3}(x) r_{2}(x) + r_{3}(x) , , , \quad \quad r_{3}(x) \neq 0 , \text{and} , deg(r_{3}(x)) < deg(r_{2}(x)) \ \hspace{-8.6cm}\vdots \ r_{j-2}(x) \hspace{0.1cm} = q_{j}(x) r_{j-1}(x) + r_{j}(x) \quad \quad r_{2}(x) \neq 0 , \text{and} , deg(r_{j}(x)) < deg(r_{j-1}(x)) \ \hspace{-1.7cm}r_{j-1}(x)\hspace{0.1cm} = q_{j+1}(x) r_{j}(x) + 0,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, \quad \quad \quad , ,,, r_{j+1}(x) = 0. $$

Then $gcd(f(x), g(x)) = r_{j}(x) $, the last nonzero remainder of the division process. Let's understand the procedure to find the $gcd$ of two polynomials with the following example.

$\textbf{Example 1:}$ Consider the polynomials $f(x) = x^6 + x^5 + x^4 + x^3 + x^2 + 1 $ and $g(x) = x^4 + x^3 + x + 1$ from $\mathbb{F}{2}[x]$. Remember that all the operations are performed modulo 2. We will apply the Euclidean algorithm to find the $gcd(f(x),g(x))$._

$\textbf{Step 1:}$ As a first step, apply the division algorithm for the polynomials $f(x)$ and $g(x)$. For that, we have to divide the polynomial $f(x)$ by $g(x)$ which is given below.
alt text

Therefore by applying the division algorithm for the polynomials $f(x)$ and $g(x)$ we get $$ \begin{equation} f(x) = (x^2+1) g(x) + (x^3+x), \end{equation} $$ here quotient $q{1}(x) = (x^2+1)$ and the remainder $r_{1}(x) = x^3+x$._

$\textbf{Step 2:}$ Next, we apply division algorithm for the polynomials $g(x) = x^4 + x^3 + x + 1 $ and $r{1}(x) = x^3+x$ we get_ $$ \begin{equation} g(x) = (x+1) r_{1}(x) + (x^2+1), \end{equation} $$ here quotient $q_{2}(x) = (x+1)$ and the remainder $r_{2}(x) = x^2+1$.

$\textbf{Step 3:}$ Next, we apply division algorithm for the polynomials $r{1}(x) = x^3+x$ and $r_{2}(x) = x^2+1$ we get_ $$ \begin{equation} r_{1}(x) = (x) r_{2}(x) + 0, \end{equation} $$

Since the remainder $r{3}(x)=0$, the Euclidean algorithm terminates here, and the last non-zero remainder is $ r_{2}(x) = (x^2+1) $. Therefore $gcd(f(x),g(x)) = (x^2+1)$._

The relation of the greatest common divisor of two polynomials is analogous to integers (see Eq.(1)). For any two polynomials $f(x)$ and $g(x)$, there exists polynomials $s(x)$ and $t(x)$ such that $$ \begin{equation} gcd(f(x),g(x))= s(x) f(x) + t(x) g(x). \end{equation} $$ In further discussion, we always consider $f(x)$ is the dividend and $g(x)$ is the divisor. The relation given by Eq. (5) is used to find the construction of finite fields of prime power (also called Galois fields) and is described in Section 3. The well-known extended Euclidean Algorithm for polynomials for finding $s(x)$ and $t(x)$ is given below. In this algorithm, the remainder $r_{i}(x)$ and the quotient $q_{i}(x)$ determined at the $i$th step of the Euclidean algorithm are used.

Extended Euclidean Division Algorithm: The polynomials $s(x)$ and $t(x)$ are computed by finding intermediate polynomials $s_{i}(x)$ and $t_{i}(x)$ satisfying

$$ \begin{equation} r_{i}(x) = s_i(x) f(x) + t_i(x) g(x) \end{equation} $$ at every step of the algorithm. Here, $r_{i}(x)$ is the remainder at the $i$th step of the Euclidean algorithm. The quotient $q_{i}(x)$ obtained at the $i$th step of the Euclidean algorithm is used to update $s_{i}(x)$ and $t_{i}(x)$.The formula to update $s_{i}(x)$ and $t_{i}(x)$ is $$ \begin{equation} s_{i}(x) = s_{i-2}(x)-q_{i}(x)s_{i-1}(x) \end{equation} $$ $$ \begin{equation} t_{i}(x) = t_{i-2}(x)-q_{i}(x)t_{i-1}(x) \end{equation} $$

for $i = 1,2, \ldots$ (until termination), with $$ s_{-1}(x) = 1 \quad s_{0}(x)=0 \nonumber \ $$ $$ \begin{equation} \hspace{0.2cm}t_{-1}(x) = 0 \quad s_{0}(x)=1. \end{equation} $$

We have seen that the last non-zero remainder $r_{j}$ obtained in the Euclidean algorithm is the $gcd(f(x),g(x))$. So, the extended Euclidean algorithm terminates when the last non-zero remainder is expressed as shown in the Eq. (6). The corresponding $s_{j}(x)$ and $t_{j}(x)$ resulted as $s(x)$ and $t(x)$ of the $gcd(f(x),g(x))$. In the following example, we determine the polynomials $s(x)$ and $t(x)$ for the Example 1.

$\textbf{Example 2:}$ Consider the Example 1. We have obtained $gcd(f(x), g(x)) = x^2+1$. A series of equations (Eq. (2), Eq. (3) and Eq. (4)) obtained in the Euclidean algorithm are used sequentially to determine the $s(x)$ and $t(x)$. We start with the initial values given by Eq. (9), and tabulated in the Table 3.
alt text

We will apply the extended Euclidean algorithm step by step till we get the remainder zero.

$\textbf{Step 1:}$ At this step we determine $s{1}(x)$ and $t_{1}(x)$. For this, we need the quotient $q_{1}(x) = (x^{2}+1)$ obtained at the first step of the Euclidean algorithm (see Eq. (2)), and the initial values from the above table ($s_{i}(x)$'s $&$ $t_{i}(x)$'s). From Eq. (7)_

$$ s_{1}(x) = s_{-1}(x)-q_{1}(x) s_{0}(x) \ \hspace{0.2cm} = 1 - (x^{2}+1) (0) \ \hspace{-1.8cm} = 1,
$$ and from Eq. (8) $$ t_{1}(x) = t_{-1}(x)-q_{1}(x) t_{0}(x) \ \hspace{0.2cm} = 0 - (x^{2}+1) (1) \ \hspace{-0.7cm} = (x^{2}+1). $$

At the first step of the Euclidean algorithm, the remainder is $r{1}(x) = x^3+x$ (from Eq. (2)). Students are suggested to verify that $r_{1}(x) = s_{1}(x) f(x) + t_{1}(x) g(x)$. The Table 4 shows all the values that have been obtained till now._
alt text

$\textbf{Step 2:}$ As done in Step 1, at this step we determine $s{2}(x)$ and $t_{2}(x)$. For this we need the values obtained in Tabl 4 and the quotient $q_{2}(x) = (x+1)$ obtained in step 2 of the Euclidean algorithm (see Eq. (3)). From Eq. (7)_

$$ s_{2}(x) = s_{0}(x)-q_{2}(x) s_{1}(x) \ \hspace{0.2cm} = 0 - (x+1) (1) \ \hspace{-1cm} = x+1, $$ and from Eq.(8)

$$ t_{2}(x) = t_{0}(x)-q_{2}(x) t_{1}(x) \ \hspace{1.1cm} = 1 - (x+1)(x^{2}+1) \ \hspace{0.3cm} = (x^{3}+x^{2}+x).
$$

At this step, the remainder is $r{2}(x) = x^2+1$ (see Eq. (3), which is obtained at the second step of the Euclidean algorithm). The Table 4 shows all the values obtained till now. Students are encouraged to confirm that $r_{2}(x) = s_{2}(x) f(x) + t_{2}(x) g(x)$._
alt text

Note that the Euclidean algorithm for this example terminates here, since $r{3}(x) = 0$, and the $gcd(f(x),g(x))= r_{2}(x) = (x^2+1)$. Therefore the extended Euclidean algorithm also terminates here, and $r_{2}(x) = s_{2}(x) f(x) + t_{2}(x) g(x)$. That is_

$$ gcd(f(x),g(x)) = r_{2}(x) = (x^2+1) \ \hspace{4.9cm} = (x+1) f(x) + (x^3+x^2+x) g(x). $$

Hence for this example the polynomials $s(x) = (x+1)$ and $t(x) = (x^3+x^2+x)$. From the Eq. (4) we know the remainder $r{3}(x)=0$ and the quotient $q_{3} = x$. Hence with all these values we obtain the final table of the algorithm (Table 6)_
alt text

3   Construction of Finite Fields

In this section, we provide fundamental definitions necessary for building finite fields. These definitions are essential for the construction process.

Monic Polynomial: Consider a polynomial $f(x)$ of degree $d$, given by $f(x) = \sum_{i=0}^d f_i x^i$. $f(x)$ is said to be monic if $f_d=1$.

Irreducible Polynomial: A monic polynomial $f(x)$ over $\mathbb{F}_p$ of degree $d$ is said to be irreducible if it cannot be factored into the form: $$ \begin{equation*} f(x) = g(x) h(x), \end{equation*} $$ where $0 < \text{deg}(g(x)), \text{deg}(h(x)) < \text{deg}(f(x)) = d$.

Consider a binary field with $p=2$ and $\mathbb{F}_2 = {0,1}$. The list of all irreducible polynomials over $\mathbb{F}_2$ upto degree 4 are given in the table below:
alt text

It can be shown that for every prime $p$, and every integer $m \geq 1$, irreducible polynomials of degree $m$ exist. Consider the set $\mathbb{F}_p[x]/f(x)$, where $f(x)$ is irreducible of degree $m \geq 2$. $\mathbb{F}_p[x]/f(x)$ is the collection of equivalence classes. Where we define

$$ \begin{equation*} a_1(x) \sim a_2(x) \text{ if and only if } f(x) \text{ divides } (a_1(x) - a_2(x)),
\end{equation*} $$ which means $(a_1(x) - a_2(x))$ is a multiple of $f(x)$. Each equivalence class represents an element in the finite field. These equivalence classes can be denoted as $[a(x)]$, where $a(x)$ is a representative polynomial within that class. This class includes all the polynomials whose division by $f(x)$ gives the remainder $a(x)$. For simplicity of notation, the element $[a(x)]$ is represented as $a(x)$. From this, we can see that the field $\mathbb{F}_p[x]/f(x)$ is the collection of all the polynomials of degrees less than or equal to $m-1$. It is easy to verify that the field properties (see Section 1) of $\mathbb{F}_p[x]/f(x)$. Students are encouraged to verify all the field properties carefully. The critical thing to verify is that every nonzero element in the field has another element with which you can multiply it to get 1 (the multiplicative inverse) which is discussed below.

Consider any non-zero element $a(x)$ from the field $\mathbb{F}_p[x]/f(x)$. Since $f(x)$ is the irreducible polynomial of degree $m$, the $gcd(f(x),a(x)) = 1$. From Eq. (5), there are two polynomials $s(x)$ and $t(x)$ such that $s(x)f(x)+t(x)a(x) = 1$. By performing a modulo operation with the irreducible polynomial $f(x)$, we get $(t(x) \mod f(x))a(x) = 1$. Thus $(t(x) \mod f(x))$ is the multiplicative inverse of $a(x)$ in the field $\mathbb{F}_p[x]/f(x)$.

For example consider irreducible polynomial $f(x) = x^2+x+1$ over $\mathbb{F}{2}[x] $. Then $\mathbb{F}{2^2} = \mathbb{F}2[x]/(x^2+x+1) = { [0], [1], [x], [x+1] } \triangleq { 0, 1, x, x+1 }$. In this, each element is an equivalence class. Consider an element $[x]$ from $\mathbb{F}{2^2}$, this class includes all polynomials over $\mathbb{F}_2[x]$ which gives the remainder $x$ with modulo $(x^2+x+1)$. In this field, the multiplicative inverse of $x$ is $x+1$, since $(x).(x+1) = x^2+x = 1$.

4   Structural Properties of Finite Fields

4.1    Vector Space Structure of a Finite Field

Consider a finite field $\mathbb{F}_q$ with $q$ elements. The characteristic $p$ of $\mathbb{F}q$ is the smallest integer $p$ such that $\underbrace{1 + 1 + \ldots + 1}{p times} = 0$ in $\mathbb{F}_q$. Hence, $\mathbb{F}_q$ contains the set ${0,1,\ldots, p-1}$.

The arithmetic used to operate on these elements is $\mod p$ arithmetic since $p \equiv 0$ in $\mathbb{F}_q$. It can be shown that the characteristic $p$ is a prime. Hence, $\mathbb{F}_q$ contains a copy of $\mathbb{F}_p$. It can be shown that if $\mathbb{E}$ and $\mathbb{F}$ are fields and $\mathbb{E} \supseteq \mathbb{F}$, then $\mathbb{E}$ is a vector space over $\mathbb{F}$. It follows that $\mathbb{F}_q$ is a vector space over $\mathbb{F}_p$. Let $m$ be the dimension of this vector space over $\mathbb{F}_p$. Then, we have $$\begin{equation*} \mathbb{F}q = { \sum{i=1}^m a_i \underline{\gamma}_i | a_i \in \mathbb{F}_p }, \end{equation*}$$

where ${ \underline{\gamma}_1, \ldots, \underline{\gamma}_m }$ is a basis of $\mathbb{F}_q$ over $\mathbb{F}_p$. It follows that $\mathbb{F}_q$ is of size $p^m$. Thus, every finite field $\mathbb{F}_q$ has size $q$ of the form $q = p^m$, $p$ prime, $m \geq 1$ (moreover $p$ is the characteristic of $\mathbb{F}_q$.

For example, consider $\mathbb{F}{2^4} = \mathbb{F}2[x]/(x^4+x+1)$. The basis of $\mathbb{F}{2^4} $ over $\mathbb{F}{2}$ is $ S = {(1,0 ,0,0), (0,1 ,0,0), (0,0 ,1,0), (0,0 ,0,1) }$ and $\mathbb{F}{2^4}$ is the vector space spanned by the set $S$ over $\mathbb{F}{2}$ which has size of $2^4$.

4.2    Multiplicative Structure of a Finite Field

We denote $\mathbb{F}_q^* = \mathbb{F}_q \setminus {0}$. The multiplicative order of $\beta \in \mathbb{F}_q^*$ is the smallest exponent $e$ such that $\beta^e = 1$. Every finite field $\mathbb{F}_q$ contains an element $\alpha$ of order $q-1$. In terms of $\alpha$, $\mathbb{F}_q$ has the representation $$\begin{equation*} \mathbb{F}_q = {0} \cup { \alpha_i | 0 \leq i \leq q-2}. \end{equation*}$$

An element $\alpha \in \mathbb{F}_q^*$ of order $q-1$ is called a primitive element of $\mathbb{F}_q$. Multiplicative inverse of any $\alpha^{j} (1 \leq j \leq q-1)$ is $\alpha^{q-1-j}$, since $(\alpha^{j}).(\alpha^{q-1-j}) = \alpha^{q-1} = 1$.

For example, consider $\mathbb{F}_{2^4} = \mathbb{F}_2[x]/(x^4+x+1)$. Note that $x^4+x+1$ is irreducible over $\mathbb{F}_2$. Denote $\alpha = [x]$, the equivalence class of $[x]$ in $\mathbb{F}_2[x]/(x^4+x+1)$. Alternately, we may regard $\alpha$ as the imaginary element satisfying $\alpha^4+\alpha+1=0$. Now, we will show that we can express all the non-zero elements of $\mathbb{F}_2[x]/(x^4+x+1)$ as powers of $\alpha$ (see Table 8). In the Table 8, we will get an element by multiplying the previous element by $\alpha$ and then applying the condition $\alpha^4+\alpha+1 = 0$. We also use the condition every element is its own additive inverse. This is because the characteristic of the field is $2$. for e.g., let's calculate the polynomial representation of $\alpha^8$,

$$ \alpha^8 = \alpha^7.\alpha = (\alpha^3+\alpha+1) \alpha \ \hspace{4.3cm}= \alpha^4+\alpha^2+\alpha \quad \quad (\because \alpha^4 = \alpha+1)\ \hspace{3.4cm}= \alpha+1+\alpha^2+\alpha = \alpha^2+1. $$

In this field multiplicative inverse of any $\alpha^{j} (1 \leq j \leq 15)$ is $\alpha^{15-j}$, since $(\alpha^{j}).(\alpha^{15-j}) = \alpha^{15} = 1$. For e.g., multiplicative inverse of $\alpha^3$ is $\alpha^{12}$.
alt text
As a part of the study of finite fields, we will discuss the construction of minimal polynomials, which are useful in constructing codes that we will discuss in Experiment 9.

4.3    Minimal Polynomials

The minimal polynomial $m_{\beta}(x)$ of $\beta \in \mathbb{F}_q^*$ is the smallest degree monic polynomial in $\mathbb{F}_p[x]$ of which $\beta$ is a zero. Some properties of the minimal polynomial (without proofs) are given below:

  • $m_{\beta}(x)$ is an irreducible polynomial.
  • If $f(\beta) = 0$, then $m_{\beta}(x) | f(x)$, i.e., if $\beta$ is a root of $f(x)$, then $m_{\beta}(x)$ divides $f(x)$.
  • Applying the above fact, we have that $m_{\beta}(x) \mid (x^q -x)$. This is because all the elements of field $\mathbb{F}_q$ satisy the equation $x^q=x$.
  • For a non-zero element $\beta$, all the distinct elements of ${\beta^p, \beta^{p^2}, \ldots \beta^{p^{{m}}}}$, where $p$ is the characteristic of $\mathbb{F}q$, are all termed as conjugates of the element $\beta$. Let $C{\beta}$ denote the set of all conjugates of the element $\beta$ including $\beta$ itself.
  • $m_{\beta}(x) = \prod_{\gamma \in C_{\beta}} (x-\gamma)$. In particular, an element and all its conjugates have the same minimal polynomial.

$\textbf{Example 3:} $ Consider the Galois field $\mathbb{F}{2^{4}}$ such that $1+\alpha+\alpha^{4} = 0$ (see Table 8). Suppose we want to determine the minimal polynomial $\phi(X)$ of $\beta = \alpha^{7}$ in $\mathbb{F}{2^{4}}$. Recall that conjugates of $\beta$ are the distinct elements $\beta^p, \beta^{p^2}, \ldots, \beta^{p^{{m}}} $, where $p$ is the characteristic of $\mathbb{F}{p^{m}}$ (here $p=2$). So the conjugates of the element $\beta=\alpha^{7}$ are $\alpha^{7.2} = \alpha^{14}, \alpha^{7.2^{2}}=\alpha^{13}$, $\alpha^{7.2^{3}}=\alpha^{11}$ and $\alpha^{7.2^{4}}=\alpha^{7}$. Hence, the minimal polynomial of $\beta = \alpha^{7}$ is_ $$ \begin{align*} \phi(X) & = (X+\alpha^{7}) (X+\alpha^{11}) (X+\alpha^{13}) (X+\alpha^{14}) \ & = [X^{2}+(\alpha^{7}+\alpha^{11})X+\alpha^{18}] [X^{2}+(\alpha^{13}+\alpha^{14})X+\alpha^{27}] \ & = (X^{2}+\alpha^{8}X+\alpha^{3}) (X^{2}+\alpha^{2} X+\alpha^{12}) \ & = X^{4} + (\alpha^{2} + \alpha^{8}) X^{3} + (\alpha^{12}+\alpha^{10}+\alpha^{3}) X^{2} + (\alpha^{5} + \alpha^{5}) X + \alpha^{15} \ & = X^{4} + X^{3} +1. \end{align*} $$