Keywords

1 Introduction

Linear complexity is a very important merit factor for measuring the unpredictability of pseudo-random sequences. The linear complexity of a sequence may be defined as the length of the shortest linear feedback shift register which generates the sequence [1]. According to Berlekamp- Massey algorithm, if the linear complexity of the sequence is l, then 2l consecutive terms of the sequence can be used to restore the whole sequence. Hence, a “high” linear complexity should be no less than one-half of the length (or minimum period) of the sequence [2]. For cryptographic applications, sequences with high linear complexity are required.

An important method of designing sequences with high linear complexity uses classical cyclotomic classes and generalized cyclotomic classes to construct sequences. Cyclotomy is related to difference sets, sequences, coding theory, and cryptography [3]. Classical cyclotomy was first considered in detail by Gauss. Later, Whiteman presented the generalized cyclotomy of order d with respect to the product of two distinct odd primes, which is not consistent with classical cyclotomy [4]. It was extended to odd integers in [5]. Further, a new generalized cyclotomy that includes classical cyclotomy as a special case was introduced by Ding and Helleseth [3]. Fan and Ge proposed a unified approach that determines both Whiteman’s and Ding-Helleseth’s generalized cyclotomy [6]. In the past decades, the linear complexity of binary and nonbinary Whiteman’s and Ding-Helleseth’s generalized cyclotomic sequences has been extensively studied [7,8,9,10,11,12] (see also references therein).

Zeng et al. in [13] presented a new approach and suggested a new generalized cyclotomy. Further, this new generalized cyclotomy was discussed in [14]. Based on the generalized cyclotomic classes from [13], Xiao et al.[15] presented a new family of cyclotomic binary sequences of period \(p^n\) and determined the linear complexity of the sequences for the case when \(n=2\) and \(f=2^r\). Later, these results were generalized in [16, 17]. The use of new generalized cyclotomic classes for constructing sequences with high linear complexity and even periods \(2p^n, 2^mp^n\) was considered in [18, 19]. In this paper, we will study the linear complexity of new generalized cyclotomic sequences with period \(p^nq^m\). These sequences are defined using new generalized cyclotomic classes from [13]. Thus, we continue the study of new generalized cyclotomic sequences started in [15,16,17].

The rest of the paper is organized as follows. The definition of sequences and the main result are introduced in Sect. 2. In Sect. 3 we discuss some subsidiary statements about the sequence polynomial and in Sect. 4 we prove our main result. We conclude the paper in Sect. 5.

2 Definitions of Sequences

First of all, we recall the definition of new generalized cyclotomic classes presented in [13] for \(N=p^nq^m\), where p and q are odd distinct primes, \(n>0, m>0\). Suppose e divides \(p-1\) and \(q-1\); then \(p-1=ef\) and \(q-1=eh\). It is well known that there exists primitive roots \(\eta \) and \(\xi \) modulo \(p^2\) and \(q^2\) respectively. In this case, \(\eta \) is the primitive root modulo \(p^k, \ k=1,2,\dots , n\) and \(\xi \) is the primitive root modulo \(q^l, \ l=1,2,\dots , m\) [20].

Let \(v=p^{k}q^{l}, v\ne 1\), where \(k=0,1,\dots ,n; \ l=0,1, \dots , m\).

According to the Chinese Remainder Theorem, there exists \(g_v\) such that

(1)

Also there exist \(\zeta _p, \ \zeta _q\) such that

$$\begin{aligned} \zeta _p\equiv {\left\{ \begin{array}{ll} \eta \pmod {p^{n}},\\ 1 \pmod {q^{m}}, \end{array}\right. } \text { and } \zeta _q\equiv {\left\{ \begin{array}{ll} \xi \pmod {q^{m}},\\ 1 \pmod {p^{n}}. \end{array}\right. } \end{aligned}$$
(2)

Throughout this paper, we let \(\mathbb {Z}_v\) be the ring of integers modulo v for a positive integer v, and \(\mathbb {Z}_v^{*}\) be the multiplicative group of \(\mathbb {Z}_v\). According to [13] we know that \(D^{(v)}=\{g_v^{s}\ | \ s=0,\dots , e-1\}\) is the subgroup of \(\mathbb {Z}^*_{v}\).

Define

$$\begin{aligned} \varPsi _v= {\left\{ \begin{array}{ll} \mathbb {Z}_{fp^{k-1}}\times \mathbb {Z}_{(q-1)q^{l-1}},&{} \text { if } k\ge 1, l \ge 1,\\ \mathbb {Z}_{fp^{k-1}}\times \{0\},&{} \text { if } l=0,\\ \{0\}\times \mathbb {Z}_{hq^{l-1}},&{} \text { if } k=0. \end{array}\right. } \end{aligned}$$

Let \( I= (i_1,i_2) \in \varPsi _v \) and \(D_I^{(v)}=\zeta _p^{i_1}\zeta _q^{i_2} D^{(v)}\).

By [13] we have the following partitions

$$\mathbb {Z}^*_{v}\setminus \{0\}=\bigcup _{I\in \varPsi _v} D_I^{(v)} \text { and } \mathbb {Z}_N\setminus \{0\}= \bigcup _{v | N, v>1} \ \ \bigcup _{I\in \varPsi _{v}} \ \ \frac{N}{v} D^{(v)}_{I} . $$

It is necessary to note that for \(v=p^k\) (or \(v=q^l\)) we obtain a partition of \(\mathbb {Z}^*_{p^k}\) as in [15] and in this case \(\eta ^tD^{(p^k)}\) is equal to \(D^{(p^k)}_t=\{\eta ^{t+fp^{k-1}i} \bmod {p^k} \ |\ i=0, 1, \dots , e-1 \}\), \(t=0,1,\dots , fp^{k-1}-1\). The properties of \(D^{(p^k)}_t\) were studied in [15, 16].

Let f and h be even numbers and bc be integers such that \( 0 \le b< fp^{n-1}, \ 0\le c < hq^{m-1}\). Then define

$$\begin{aligned} \varPsi _v^{(1)}= {\left\{ \begin{array}{ll} \{(i_1+b, i_2)\in \varPsi _v \ | \ 0\le i_1< p^{k-1}f/2-1\},&{} \text { if } k\ge 1,\\ \{(0, i_2+c)\in \varPsi _v \ | \ 0\le i_2< q^{l-1}h/2-1\},&{} \text { if } k=0. \end{array}\right. } \end{aligned}$$

Let

$$C_1^{(v)}= \bigcup _{I\in \varPsi _{v}^{(1)}} \ \ D^{(v)}_{I} \text { and } C_0^{(v)}= \bigcup _{I\in \varPsi _{v}\setminus \varPsi _{v}^{(1)}} \ \ D^{(v)}_{I}.$$

Then we see that

$$\begin{aligned} |C_j^{(v)}|={\left\{ \begin{array}{ll} p^{k-1}(p-1)q^{l-1}(q-1)/2,&{}\text {if } k\ge 1, l\ge 1,\\ p^{k-1}(p-1)/2,&{}\text {if } k\ge 1, l=0,\\ q^{l-1}(q-1)/2,&{}\text {if } k=0, l\ge 1. \end{array}\right. } \end{aligned}$$
(3)

for \(v=p^kq^l, j=0,1\).

Define

$$ C_j= \bigcup _{v | N, v>1} \ \ \frac{N}{v} C^{(v)}_{j}, j=0, 1$$

or, in more detail

$$\begin{aligned} C_j= \bigcup _{k=1}^n \ \ \bigcup _{l=1}^m p^{n-k}q^{m-l} C^{(p^kq^l)}_{j}\cup \bigcup _{k=1}^n \ \ p^{n-k}q^m C^{(p^k)}_{j} \cup \bigcup _{l=1}^m \ \ p^nq^{m-l}C^{(q^l)}_{j}. \end{aligned}$$
(4)

By definition we get \( \mathbb {Z}_N\setminus \{0\}=C_0\cup C_1\) and \(C_0\cap C_1=\oslash \).

Then we can define a balanced binary sequence \(s^\infty \) with period N as follows:

$$\begin{aligned} s_i ={\left\{ \begin{array}{ll} 1,&{}\text { if } i~\bmod ~N \in C_1\cup \{0\}, \\ 0,&{}\text { if } i~\bmod ~N \in C_0. \end{array}\right. } \end{aligned}$$
(5)

A sequence is called balanced if the numbers of 1’s and 0’s in one minimum period differ by no more than one. Earlier, new generalized cyclotomic classes were used to construct sequences with period \(p^n\). It is necessary to note that for \(N=p^2\) this sequence is the same as in [15].

We conclude this section by recalling the notion of the linear complexity and one method of studying the linear complexity. For a N-periodic sequence \(s^\infty =\{s_i\}_{i\ge 0}\) over the \(\mathbb {F}_2\) (the finite field of two elements), we recall that the linear complexity over \(\mathbb {F}_2\), denoted by \({\text {LC}}(s^\infty )\), is the least order L such that \(\{s_i\}\) satisfies

$$ s_{i+L} = c_{L-1}s_{i+L-1} +\ldots +c_1s_{i+1}+ c_0s_i\quad \textrm{for}\,\ i \ge 0, $$

where \(c_0\ne 0, c_1, \ldots , c_{L-1}\in \mathbb {F}_2\).

It is well known (see, for instance, [21]) that if \(S(x) = s_0 + s_1x +\cdots + s_{N-1}x^{N-1}\) then the linear complexity of \(s^\infty \) is given by

$$ {\text {LC}}(s^\infty )=N-\deg \Big (\gcd \big (x^{N}-1,S(x)\big )\Big ). $$

Thus, if \(\alpha \) is a primitive root of order N of unity in the extension of the field \(\mathbb {F}_2\), then in order to find the linear complexity of a sequence, it is sufficient to study the zeros of S(x) in the set \( \{ \alpha ^i \ | \ i=0,1,\ldots ,N-1 \}\).

In this paper, we will study the linear complexity of \(s^\infty \) defined by (5). The values \(S(\alpha ^i)\) we will consider in the following section.

2.1 Main Result

To begin with, we introduce some new notations. Let \({\text {ord}}_p(2)\) be the orderFootnote 1 of 2 modulo p and

$$ l_k= {\left\{ \begin{array}{ll} k,&{}\text { if } q^{m} \in D^{(p^k)} \text { or } q^{m} \in \eta ^{p^{k-1}f/2}D^{(p^k)}, \\ 0,&{}\text { otherwise } \end{array}\right. }$$

for \(k=1, 2, \dots , n\). Let \(k_0=\max \limits _{1\leqslant k \leqslant n} l_k\).

A prime p is called a Wieferich prime if \(2^{p-1}\equiv 1 \pmod {p^2}\). It is well known that there are only two Wieferich primes, 1093 and 3511, up to \(6 \times 10^{17}\). Bellow, we will consider only non-Wieferich primes. Our main contribution is the following statement.

Theorem 1

Let \(2^{p-1} \not \equiv 1 \pmod {p^2}\), \(2^{q-1} \not \equiv 1 \pmod {q^2}\), \(\gcd (p, q-1)=\gcd (p-1,q)=1\) and let \(s^{\infty }\) be a sequence defined by (5). Then

  1. (i)

    \({\text {LC}}(s^{\infty })= N-r_p\cdot {\text {ord}}_p(2)- p^{k_0}r_q\cdot {\text {ord}}_q(2)-\delta \) for \(k_0>0\), where \(r_p, r_q\) are integers satisfying inequalities \(0\le r_p \le \frac{p-1}{2{\text {ord}}_{p}(2)}\), \(0\le r_q \le \frac{q-1}{2{\text {ord}}_{q}(2)}\) and

    $$\delta ={\left\{ \begin{array}{ll} 1,&{} \text { if } (p^nq^m+1)/2 \text { is even},\\ 0,&{} \text { if } (p^nq^m+1)/2 \text { is odd}. \end{array}\right. }$$
  2. (ii)

    \({\text {LC}}(s^{\infty })= N-r_N\cdot {\text {ord}}_{pq}(2)-r_p\cdot {\text {ord}}_p(2)- r_q\cdot {\text {ord}}_q(2)-\delta \) for \(k_0=0\), where \(r_N\) is an integer satisfying inequality \(0\le r_N \le \frac{(p-1)(q-1)}{2{\text {ord}}_{pq}(2)}\).

According to Theorem 1 the considered sequences have high linear complexity.

Remark 1

We will show that the value \(r_N\) also depends on nm and is not defined only by pq.

3 Subsidiary Lemmas

In this section we prove a few lemmas and discuss the properties of the generating polynomial of \(s^\infty \).

Lemma 1

Let \(v=p^kq^l\), \(k=1,\dots ,n; \ l=1, \dots , m\). Then

  1. (i)

    \(C_1^{(v)}\bmod ~{p^k}= C_1^{(p^k)}\);

  2. (ii)

    \(C_1^{(v)}\bmod ~{q^l}= \mathbb {Z}^*_{q^l}\).

Proof

Suppose \(i\in C_1^{(v)}\); then there exist uts such that \(i=\zeta _p^{u+b}\zeta _q^{t+c} g_v^s\) and \(0\le u<p^{k-1}f/2, 0\le t<q^{l-1}(q-1), \ 0\le s<e\). So, by (1), (2) and the definition of \(C_1^{(v)}\) we get that \(i\bmod {p^k}=\eta ^{u+b} \eta ^{sp^{k-1}f}\), i.e., \(i\bmod {p^k}\in C_1^{(p^k)}\). Further, it is obvious that \(i\pmod {q^l}\in \mathbb {Z}^*_{q^l}\). Moreover, it is clear that if \(j\in C_1^{(v)}, j \ne i\) then \(j \not \equiv i\pmod {p^k}\) or \(j \not \equiv i\pmod {q^l}\). Since by (3) we have

$$ |C_1^{(v)}|=\frac{p^{k-1}(p-1)}{2}\cdot q^{l-1}(q-1)=|C_1^{(p^k)}|\cdot |\mathbb {Z}^*_{q^l}|, $$

it follows that the conclusion of the lemma holds.   \(\square \)

Let \(S(X)=\sum _{i=0}^{N-1} s_iX^i\) be the generating polynomial of \(s^\infty \). Define as in [15, 16] the subsidiary polynomials, i.e.,

$$ T_b^{(p^k)}(X)=\sum _{i\in C_1^{(p^k)}} X^i, \ k=1,2,\dots , n \text { and } T_c^{(q^l)}(X)=\sum _{i\in C_1^{(q^l)}} X^i, l=1,2,\dots ,m. $$

Define

$$S_b^{(p^n)}(X)=\sum _{k=1}^{n} T_b^{(p^{k})}(X^{p^{n-k}}) \text { and } S_c^{(q^m)}(X)=\sum _{l=1}^{m} T_c^{(q^{l})}(X^{q^{m-l}}).$$

As noted before, the sequence \(s^\infty \) defined by (5) for \(N=p^2\) is the same as in [15]. In this case, \(S_b^{(p^n)}(X)+1\) is the polynomial of generalized cyclotomic sequence with period \(p^n\) considered in [16]. The properties of this polynomial are studied in [15, 16].

In the next lemma, we will recall the properties of this polynomial that are necessary in what follows.

Let \(\alpha \) be a primitive N-th root of unity in the extension of \(\mathbb {F}_2\). Since \(\gcd (p^n, q^m)=1\) then there exist integers xy such that \( xp^n+yq^m=1\). Define \(\beta =\alpha ^{yq^m}\) and \(\gamma =\alpha ^{xp^n}\). Then \(\alpha =\beta \gamma \), also \(\beta \) and \(\gamma \) are primitive \(p^n\)-th and \(q^m\)-th roots of unity, respectively. Denote \(\beta _k=\beta ^{p^{n-k}},\, k=1,2\dots ,n\) and \(\gamma _l=\gamma ^{q^{m-l}},\, l=1,2\dots ,m\).

Lemma 2

[16]. For any \(a\in \eta ^tC^{(p^k)}\), we see that

  1. (i)

    \(S^{(p^k)}_i(\beta _k^{p^da}) =S^{(p^{k-d})}_{i+t}(\beta _{k-d}) + (p^d-1)/2 \bmod {2}\) for \(0\le d <k\).

  2. (ii)

    \(S^{(p^k)}_i(\beta _k^{a}) + S^{(p^k)}_{i+d_k/2}(\beta _k^{a}) = 1\), where \(d_k=p^{k-1}f/2\).

  3. (iii)

    Let p be a non-Wieferich prime. Then \(S^{(p^k)}_i(\beta _k) \not \in \{0,1\}\) for \(k>1\).

  4. (iv)

    Let p be a non-Wieferich prime. Then \(S^{(p^k)}_i(\beta _k) + S^{(p^k)}_{i+f/2}(\beta _k) \ne 1\) for \(k>1\).

  5. (v)
    $$\begin{aligned} \begin{aligned}&|\{j\ | \ S^{(p^k)}_i(\beta _k)=0 \ (\text { or } 1), \ j=1,2,\dots ,p^k-1)\}|\\&= |\{j \ | \ S_i^{(p)}(\beta _1^{j})=0 \ (\text { or } 1), j=1,2,\dots , p-1\}|=r_p\cdot {\text {ord}}_p(2), \end{aligned} \end{aligned}$$

    where \(r_p\) is an integer satisfying inequality \(0\le r_p \le \frac{p-1}{2{\text {ord}}_p(2)}\).

Similarly, \(S_c^{(q^m)}(X)+1\) is the generating polynomial of sequence defined by (5) for \(v=q^m\). Hence, the properties of \(S_c^{(q^m)}(X)\) are the same as those of \(S_b^{(p^n)}(X)\) (of course, we need to use \(q^m\) instead of \(p^n\)).

3.1 The Values of Subsidiary Polynomials

In this subsection we will show that the values of subsidiary polynomials define the values of \(S(\alpha ^j)\). Here and further we always suppose that \(\gcd (p, q-1)=\gcd (p-1,q)=1\).

Lemma 3

Let \(v=p^kq^l, k=1,2,\dots ,n; \ l=1,2,\dots ,m\) and \(j\in \mathbb {Z}_N, j\ne 0\). Then

$$ \sum _{i\in \frac{N}{v} C_1^{(v)}}\alpha ^{ij}={\left\{ \begin{array}{ll} T_b^{(p^k)}(\beta ^{jp^{n-k}q^{m-l}}),&{} \text { if } j\equiv 0 \pmod {q^{l-1}} \text{ and } j\not \equiv 0 \pmod {q^{l}},\\ 0,&{} \text { otherwise}. \end{array}\right. } $$

Proof

According to the choice of \(\alpha , \beta , \gamma \) we obtain that

$$ \sum _{i\in p^{n-k}q^{m-l} C_1^{(v)}}\alpha ^{ij}=\sum _{u\in C_1^{(v)}}\beta ^{ujp^{n-k}q^{m-l}} \gamma ^{ujp^{n-k}q^{m-l}}. $$

Since by Lemma 1 \(C_1^{(v)}\bmod {p^k}=C_1^{(p^{k})}\) and \(C_1^{(v)}\bmod {q^l}=\mathbb {Z}^*_{q^l}\), it follows that

$$ \sum _{i\in p^{n-k}q^{m-l} C_1^{(v)}}\alpha ^{ij}=\sum _{u\in C_1^{(p^k)}}\beta ^{ujp^{n-k}q^{m-l}} \cdot \sum _{u\in \mathbb {Z}^*_{q^l}} \gamma ^{ujp^{n-k}q^{m-l}}. $$

Denote \(\gamma ^{p^{n-k}q^{m-l}}\) by \(\tilde{\gamma }_l\). Then \(\tilde{\gamma }_l\) is a primitive \(q^l\)-th root of unity since \(\gcd \left( p-1, q \right) =1\).

Let \(A_l=\sum _{u\in \mathbb {Z}^*_{q^l}} \tilde{\gamma }_l^{uj}\). It is clear

$$A_1\pmod {2}={\left\{ \begin{array}{ll} 1,&{} \text { if } j\not \equiv 0 \pmod {q},\\ 0,&{} \text { if } j \equiv 0 \pmod {q}. \end{array}\right. } $$

Suppose \(l>1\); then

$$A_l=\sum _{u\in \mathbb {Z}_{q^l}} \tilde{\gamma }_l^{uj}- \sum _{u\in q\mathbb {Z}_{q^{l-1}}} \tilde{\gamma }_l^{uj}=\sum _{u\in \mathbb {Z}_{q^l}} \tilde{\gamma }_l^{uj}- \sum _{u\in \mathbb {Z}_{q^{l-1}}} \tilde{\gamma }_l^{ujq}.$$

We consider the following three cases.

  1. (i)

    Let \(j\not \equiv 0 \pmod {q^{l-1}}\). Obviously here \(A_l=0\).

  2. (ii)

    Let \(j \equiv 0 \pmod {q^{l-1}}\) and \(j\not \equiv 0 \pmod {q^{l}}\). In this case \(A_l\equiv 0-q^{l-1}\equiv 1\pmod {2}\).

  3. (iii)

    Suppose \(j \equiv 0 \pmod {q^{l}}\); then \(A_l=q^{l}-q^{l-1}\) and \(A_l\bmod {2}=0\).

This completes the proof of this lemma.

   \(\square \)

Lemma 4

Let \(j=q^aj_0\) and \(\gcd (j_0, q)=1\), \(0 \le a \le m\). Then

$$\sum _{k=1}^n \ \ \sum _{l=1}^m \ \ \sum _{i\in p^{n-k}q^{m-l} C_1^{(p^kq^l)}}\alpha ^{ij}={\left\{ \begin{array}{ll} S_b^{(p^n)}(\beta ^{jq^{m-a-1}}),&{} \text { if } a<m,\\ 0,&{} \text { if } a=m. \end{array}\right. } $$

Proof

If \(a=m\) then \(j\equiv 0\pmod {q^l}\) for \(l=1,2,\dots ,m\) and by Lemma 3 we observe that \(\sum _{l=1}^m \ \ \sum _{i\in p^{n-k}q^{m-l} C_1^{(p^{k}q^{l})}}\alpha ^{ij}=0\).

Let \(a<m\). In this case \(j\equiv 0\pmod {q^a}\) and \(j\not \equiv 0\pmod {q^{a+1}}\). Then again by Lemma 3 we have

$$ \sum _{l=1}^m \ \ \sum _{i\in p^{n-k}q^{m-l} C_1^{(p^kq^l)}}\alpha ^{ij}=\sum _{i\in p^{n-k}q^{m-a-1} C_1^{(p^kq^{a+1})}}\alpha ^{ij}= T_b^{(p^k)}(\beta ^{jp^{n-k}q^{m-a-1}}). $$

Thus, by definitions of \(T_b^{(p^k)}(X)\) and \(S_b^{(p^n)}(X)\) we see that

$$ \sum _{k=1}^n \ \ \sum _{l=1}^m \ \ \sum _{i\in p^{n-k}q^{m-l} C_1^{(p^kq^l)}}\alpha ^{ij}=\sum _{k=1}^n \ T_b^{(p^k)}(\beta ^{jp^{n-k}q^{m-a-1}})= S_b^{(p^n)}(\beta ^{jq^{m-a-1}}). $$

   \(\square \)

Lemma 5

Let \(j=q^aj_0\) and \(\gcd (j_0, q)=1\), \(0\le a \le m\). Then

  1. (i)

    \(S(\alpha ^j)=S_b^{(p^n)}(\beta ^{jq^{m-a-1}})+S_b^{(p^n)}(\beta ^{jq^{m}})+S_c^{(q^m)}(\gamma ^{jp^{n}})+1\) for \(a<m\),

  2. (ii)

    \(S(\alpha ^j)=S_b^{(p^n)}(\beta ^{jq^{m}})+(q^m+1)/2\) for \(a=m\).

Proof

By (4) and (5) we see that

$$ S(\alpha ^j)=\sum _{k=1}^n \ \ \sum _{l=1}^m \ \ \sum _{i\in p^{n-k}q^{m-l} C_1^{(p^kq^l)}}\alpha ^{ij}+\sum _{k=1}^n \ \ \sum _{i\in p^{n-k}q^m C_1^{(p^k)}}\alpha ^{ij}+ \sum _{l=1}^m \ \ \sum _{i\in p^nq^{m-l} C_1^{(q^l)}}\alpha ^{ij}+1. $$

The first sum in the last relation is studied in Lemma 4. Using the definition of subsidiary polynomials and equality \(\alpha =\beta \gamma \) we get that

$$\sum _{k=1}^n \ \ \sum _{i\in p^{n-k}q^m C_1^{(p^k)}}\alpha ^{ij}=\sum _{k=1}^n \ \ \sum _{j\in C_1^{(p^k)}}\beta ^{jp^{n-k}q^{m}} \gamma ^{jp^{n-k}q^{m}}=\sum _{k=1}^n \ \ \sum _{i\in C_k^{(p^k)}}\beta ^{ip^{n-k}q^{m}}=S_b^{(p^n)}(\beta ^{jq^{m}}). $$

and

$$ \sum _{l=1}^m \ \ \sum _{i\in p^nq^{m-l} C_1^{(q^l)}}\alpha ^{ij}=\sum _{l=1}^m \ \ \sum _{j\in C_1^{(q^l)}}\beta ^{jp^nq^{m-l}} \gamma ^{jp^nq^{m-l}}=\sum _{l=1}^m \ \ \sum _{i\in C_1^{(q^l)}}\gamma ^{ip^nq^{m-l}}=S_c^{(q^m)}(\gamma ^{jp^{n}}). $$

Then the statement of this lemma follows from Lemma 4.   \(\square \)

3.2 The Values of Generating Polynomial

Here and further we will always suppose that \(2^{p-1} \not \equiv 1 \pmod {p^2}\), \(2^{q-1} \not \equiv 1 \pmod {q^2}\) and \(\gcd (p, q-1)=\gcd (p-1,q)=1\).

As usual, we denote by \(\mathbb {F}_2(\beta _k)\) a simple extension of \(\mathbb {F}_2\) obtained by adjoining an algebraic element \(\beta _k\) and by \([\mathbb {F}_2(\beta _k): \mathbb {F}_2]\) the dimension of the vector space \(\mathbb {F}_2(\beta _k)\) over \(\mathbb {F}_2\) [2]. Here \(\beta _k=\beta ^{p^{n-k}}, k=1,\dots ,n\) and \(\gamma _l=\gamma ^{q^{m-l}}, l=1,\dots ,m\), as before. It is well known that if \(r_1=[\mathbb {F}_2(\beta _1) : \mathbb {F}_2]\) then \(r_1\) divides \(p-1\) and if \(t_1=[\mathbb {F}_2(\gamma _1) : \mathbb {F}_2]\) then \(t_1\) divides \(q-1\) [2]. Let \(\mathbb {K}=\mathbb {F}_2(\beta _1) \cap \mathbb {F}_2(\gamma _1)\). Then \(\mathbb {K}\) is a finite field and \([\mathbb {K} : \mathbb {F}_2]=\gcd (r_1,t_1).\)

Lemma 6

With notations as above, we have \(\mathbb {F}_2(\beta _k) \cap \mathbb {F}_2(\gamma _l) =\mathbb {K}\) for \(k=1,\dots , n; l=1,\dots , m\).

Proof

Let \(\mathbb {F}=\mathbb {F}_2(\beta _k) \cap \mathbb {F}_2(\gamma _l)\). Then \([\mathbb {F}: \mathbb {F}_2]\) divides \([\mathbb {F}_2(\beta _k) : \mathbb {F}_2] \) and \([\mathbb {F}_2(\gamma _l) : \mathbb {F}_2]\). According to [16] we know that \([\mathbb {F}_2(\beta _k) : \mathbb {F}_2]=p^{k-1}r_1\) and \([\mathbb {F}_2(\gamma _l) : \mathbb {F}_2]=q^{l-1}t_1\) for pq such that \(2^{p-1} \not \equiv 1 \pmod {p^2}\), \(2^{q-1} \not \equiv 1 \pmod {q^2}\). Hence \([\mathbb {F}: \mathbb {F}_2]\) divides \(\gcd (p^{k-1}r_1, q^{m-1}t_1)\). By the condition \(\gcd (p, q-1)=\gcd (p-1,q)=1\), then \([\mathbb {F}: \mathbb {F}_2]\) divides \(\gcd (r_1,t_1)\). Thus, we get \([\mathbb {F}: \mathbb {F}_2]\) divides \([\mathbb {K}: \mathbb {F}_2]\). Since \(\mathbb {K}\subset \mathbb {F}\), this completes the proof of this lemma.

   \(\square \)

Lemma 7

Let notations be as above and \(S_c^{(q^m)}(\gamma ^{j})\in \mathbb {K}\) for \(m>1\). Then \(j\equiv 0 \pmod {q^{m-1}}\).

Proof

By Lemma 2 (i) it is clear that without loss of generality it is enough to consider the case \(c=0\). Let u be an integer such that \(2\equiv g^u \pmod {q^m}\). Denote by r degree \([\mathbb {K}:\mathbb {F}_2]\). Since \(S_c^{(q^m)}(\gamma ^{j})\in \mathbb {K}\), it follows that \(S_0^{(q^m)}(\gamma ^{j})=S_0^{(q^m)}(\gamma ^{j})^{2^{r}}\). Then again by Lemma 2 (i) we get

$$\begin{aligned} S_0^{(q^m)}(\gamma ^{j})=S_0^{(q^m)}(\gamma ^{j})^{2^{ir}}=S_0^{(q^m)}(\gamma ^{j2^{ir}})=S_{iur}^{(q^m)}(\gamma ^{j}) \text { for } i=0,1,\dots \end{aligned}$$
(6)

Let \(w=\gcd (q^{m-1}h, ur)\), where \(h=(q-1)/e\) as before. There exist integers xy such that \(xq^{m-1}h+yur=w\). Then we see from (6) and Lemma 2 (i) that \(S_0^{(q^m)}(\gamma ^{j})=S_{iw}^{(q^m)}(\gamma ^{j})\) for \(i=0,1,\dots \). By [16] \(\gcd (u, q)=1\) for \(2^{q-1} \not \equiv 1 \pmod {q^2}\) and \(\gcd (q, r)=1\) here. Hence \(w=\gcd (h, ur)\) and w divides h. So, we observe that \(S_0^{(q^m)}(\gamma ^{j})=S_{ih}^{(q^m)}(\gamma ^{j})\) for \( i=0,1,\dots \).

Further, \(S_t^{(q^m)}(\gamma ^{j})+S_{t+q^{m-1}h/2}^{(q^m)}(\gamma ^{j})=1\) for \(t=0,1,\dots \) by Lemma 2 (ii). Thus,

$$S_{q^{m-1}h/2}^{(q^m)}(\gamma ^{j})=S_{q^{m-1}h/2+ih}^{(q^m)}(\gamma ^{j})$$

for \(i=0,1,\dots \). Since

$$ S_{q^{m-1}h/2+(q^{m-1}+1)h/2\cdot }^{(q^m)}(\gamma ^{j})=S_{q^{m-1}h+h/2}^{(q^m)}(\gamma ^{j})=S_{h/2}^{(q^m)}(\gamma ^{j}), $$

it follows that \(S_{0}^{(q^m)}(\gamma ^{j})+S_{h/2}^{(q^m)}(\gamma ^{j})=1\). According to Lemma 2 (iii), in this case \(j\equiv 0 \pmod {q^{m-1}}\).

   \(\square \)

Let \(k_0\) be the same as before, i.e., \(k_0=0\) or \(k_0>0\) is the largest integer such that \(q^m\in D^{(p^{k_0})}\) or \(q^m\in \eta ^{p^{k_0-1}f/2}D^{(p^{k_0})}\).

Lemma 8

Let \(j\in p^{n-k}q^{m-1}\mathbb {Z}_{p^kq^{m-1}}^*, 1\le k\le n\) and \(S_b^{(p^n)}(\beta ^{j})+S_b^{(p^n)}(\beta ^{jq^m})\in \mathbb {K}\) for \(n>1\). Then \(j\equiv 0 \pmod {p^{n-1}}\) or \(k\le k_0\).

Proof

Without loss of generality it is enough to consider the case \(b=0\). Let \(j=p^{n-k}q^{m-1}t\), where \(\gcd (t,pq)=1\). If \(k=1\) then \(j\equiv 0 \pmod {p^{n-1}}\). So, this lemma is right for \(k=1\).

Let \(k>1\) and denote \(\beta ^{p^{n-k}q^{m-1}t}\) by \(\tilde{\beta }_k\). Then \(\tilde{\beta }_k\) is a primitive \(p^k\)-th root of unity and \(S_0^{(p^k)}(\tilde{\beta }_k)+S_0^{(p^k)}(\tilde{\beta }_k^{q^{m}})\in \mathbb {K}\) by Lemma 2 (i).

Suppose \(k>k_0\); then \(q^{m}\in \eta ^{z}D^{(p^k)}\) for \(z\ne 0\) and \(z\ne p^{k-1}f/2\). By Lemma 2 (i) we get that \(S_0^{(p^k)}(\tilde{\beta }_k)+S_{z}^{(p^k)}(\tilde{\beta }_k)\in \mathbb {K}\).

We can show in the same way as in Lemma 7 that

$$S_0^{(p^k)}(\tilde{\beta }_k)+S_{z}^{(p^k)}(\tilde{\beta }_k)=S_{f/2}^{(p^k)}(\tilde{\beta }_k)+S_{z+f/2}^{(p^k)}(\tilde{\beta }_k).$$

Using the definitions of \(S_i^{(p^k)}(X)\) and \(T_i^{(p^k)}(X)\) we obtain that

$$ T_0^{(p^k)}(\tilde{\beta }_k)+T_{f/2}^{(p^k)}(\tilde{\beta }_k)+T_{z}^{(p^k)}(\tilde{\beta }_k) +T_{z+f/2}^{(p^k)}(\tilde{\beta }_k)\in \mathbb {F}_2(\beta _{k-1}). $$

Let \(\mathscr {D}=D^{(p^k)}\cup \dots \cup \eta ^{f/2-1}D^{(p^k)}\cup \eta ^{p^{k-1}f/2}D^{(p^k)}\cup \dots \cup \eta ^{p^{k-1}f/2+f/2-1}D^{(p^k)}\) and \(\mathscr {C}=\eta ^z\mathscr {D}\). Then

$$T_0^{(p^k)}(\tilde{\beta }_k)+T_{f/2}^{(p^k)}(\tilde{\beta }_k)=\sum _{i\in \mathscr {D}}\tilde{\beta }_k^i$$

and

$$T_{z}^{(p^k)}(\tilde{\beta }_k)+T_{z+f/2}^{(p^k)}(\tilde{\beta }_k)=\sum _{i\in \mathscr {C}}\tilde{\beta }_k^i.$$

It is clear that \(|\mathscr {D}|=|\mathscr {C}|=p-1\) and \(\mathscr {D}\pmod {p}=\mathscr {C}\pmod {p}=\mathbb {Z}_p^*\).

Denote by \(x_i\in \mathscr {D}\) and \(y_i\in \mathscr {C}\), respectively, such that \(x_i\mod p=y_i\mod p=i\), \(i=1,\dots ,p-1\). Then

$$\sum _{i\in \mathscr {D}}\tilde{\beta }_k^i=\sum _{i=1}^{p-1} \tilde{\beta }_{k-1}^{(x_i-i)/p}\cdot \tilde{\beta }_k^i \text { and } \sum _{i\in \mathscr {C}}\tilde{\beta }_k^i=\sum _{i=1}^{p-1} \tilde{\beta }_{k-1}^{(y_i-i)/p}\cdot \tilde{\beta }_k^i.$$

Suppose that for any i we have \( \tilde{\beta }_{k-1}^{(x_i-i)/p}=\tilde{\beta }_{k-1}^{(y_i-i)/p}\). Then \(x_i\equiv y_i\pmod {p^k}\) for \(i=1,2,\dots , p-1\). Hence \(\mathscr {D}=\mathscr {C}\). Then \(z=0\) or \(z=p^{k-1}f/2\). This is impossible because \(k>k_0\). Thus, we have that the polynomial \(f(X)=\sum _{i=0}^{p-1} (\tilde{\beta }_{k-1}^{(x_i-i)/p}+\tilde{\beta }_{k-1}^{(y_i-i)/p})X^i\) has at least one nonzero coefficient and \(f(\tilde{\beta }_k)\in \mathbb {F}_2(\beta _{k-1})\). This is impossible since \(\deg f(X)<p\) and \([\mathbb {F}_2(\beta _{k}):\mathbb {F}_2(\beta _{k-1})]=p\) for \(k>1\). So, \(k\le k_0\).   \(\square \)

4 The Proof of Main Theorem

In this section we finish the proof of Theorem 1 in the following two Lemmas.

Lemma 9

Let notation be as above and \(k_0>0\). Let \(2^{p-1} \not \equiv 1 \pmod {p^2}\), \(2^{q-1} \not \equiv 1 \pmod {q^2}\), \(\gcd (p, q-1)=\gcd (p-1,q)=1\) and let \(s^{\infty }\) be defined by (5). Then

$${\text {LC}}(s^\infty )= N-r_p\cdot {\text {ord}}_p(2)- p^{k_0}r_q\cdot {\text {ord}}_q(2)-\delta ,$$

where

$$\delta ={\left\{ \begin{array}{ll} 1,&{} \text { if } (p^nq^m+1)/2 \text { is even },\\ 0,&{} \text { if } (p^nq^m+1)/2 \text { is odd } \end{array}\right. }$$

and \(0\le r_p \le \frac{p-1}{2{\text {ord}}_{p}(2)}\), \(0\le r_q \le \frac{q-1}{2{\text {ord}}_{q}(2)}\).

Proof

As noted before we have

$$ {\text {LC}}(s^\infty )=N-\Big |\{j \ | \ S(\alpha ^j)=0, \ j=0,1,\dots , N-1\}\Big |. $$

First of all we note that by definition \(S(1)=(p^nq^m+1)/2\). Further, according to Lemma 5 we have

$$\begin{aligned} S(\alpha ^j)=S_b^{(p^n)}(\beta ^{jq^{m-a-1}})+S_b^{(p^n)}(\beta ^{jq^{m}})+S_c^{(q^m)}(\gamma ^{jp^{n}})+1 \end{aligned}$$
(7)

for \(j=q^aj_0, \ a<m\), \(\gcd (j_0, q)=1\) and

$$S(\alpha ^j)=S_b^{(p^n)}(\beta ^{jq^{m}})+(q^m+1)/2$$

for \(j=q^mj_0\).

Let \(S(\alpha ^j)=0\), \( \ 1\le j \le N-1\). We consider a few cases.

(i) Suppose \(j\equiv 0 \pmod {q^m}\); then \(S(\alpha ^j)=S_b^{(p^n)}(\beta ^{jq^{m}})\) for even \((q^m+1)/2\) and \(S(\alpha ^j)=S_b^{(p^n)}(\beta ^{jq^{m}})+1\) for odd \((q^m+1)/2\). By Lemma 2 (v) we get

figure a

(ii) Let \(j\not \equiv 0 \pmod {q^m}\). According to (7) we see that

$$ S_b^{(p^n)}(\beta ^{jq^{m-a-1}})+S_b^{(p^n)}(\beta ^{jq^{m}})=-S_c^{(q)}(\gamma ^{jp^{n}})-1. $$

Hence \(S_c^{(q^m)}(\gamma ^{jp^{n}})\in \mathbb {F}_2(\beta )\). Then by Lemma 6 we get

$$ S_c^{(q^m)}(\gamma ^{jp^{n}})\in \mathbb {K}=\mathbb {F}_2(\beta _1) \cap \mathbb {F}_2(\gamma _1).$$

In this case, by Lemma 7 we have \(j\equiv 0 \pmod {q^{m-1}}\). Hence \(j\in p^{n-k}q^{m-1}\mathbb {Z}_{p^kq}^*\) for \(k: \ 1\le k \le n\) and the sum \(S_b^{(p^n)}(\beta ^{j})+S_b^{(p^n)}(\beta ^{jq^{m}})\) also belongs to \(\mathbb {K}\). Further by Lemma 8 we get \(k\le k_0\) or \(j\equiv 0 \pmod {p^{n-1}}\). If \(j\equiv 0 \pmod {p^{n-1}}\) then \(k=1\) and since \(k_0>0\), it follows that \(k\le k_0\) in any case.

By choosing \(k_0\) we see that \(q^m\in D^{(p^k_0)}\) or \(q^m\in \eta ^{p^{k_0-1}f/2}D^{(p^k_0)}\). Hence for any \(j: \ j\equiv 0\pmod {p^{n-k_0}}\) we have

$$\begin{aligned} S_b^{(p^n)}(\beta ^{jq^m})={\left\{ \begin{array}{ll} S_b^{(p^n)}(\beta ^{j}),&{}\text { if } q^m\in D^{(p^k_0)},\\ S_{b+p^{k-1}f/2}^{(p^n)}(\beta ^{j}),&{}\text { if } q^m\in \eta ^{p^{k_0-1}f/2}D^{(p^k_0)}. \end{array}\right. } \end{aligned}$$

In any case, by Lemma 2 (ii) \(S_b^{(p^n)}(\beta ^{j})+S_b^{(p^n)}(\beta ^{jq^m})\) is equal to 0 or 1 for all \(j \in p^{n-k_0}q^{m-1}\mathbb {Z}_{p^{k_0}q}\) and \(j\not \equiv 0\pmod {q^m}\).

Then, according to (7) we obtain \(S_c^{(q^m)}(\gamma ^{jp^{n}})=S_c^{(q)}(\gamma _1^{j_0p^{n}}) \in \{0,1\}\) where \(j=q^{m-1}j_0\), \(\gcd (j_0, q)=1\). In this case, by Lemma 2 (v) we have

$$ |\{j| \ S_b^{(p)}(\beta _1^{j_0})=0, \ ( \text { or } 1), j_0=1,2,\dots , p-1\}|=r_p\cdot {\text {ord}}_p(2). $$

For fixed \(j_0\) we have \(p^{k_0}\) numbers from \(\mathbb {Z}_{p^{k_0}q}\) with the same residue modulo q. Thus, we get

figure b

where \(0\le r_q \le \frac{q-1}{2{\text {ord}}_{q}(2)}\).

Finally, we get \(|\{j\ | \ S(\alpha ^j)=0, \ j=1,2,\dots ,N, \}|=r_p\cdot {\text {ord}}_p(2)+ p^{k_0}r_q\cdot {\text {ord}}_q(2).\)

   \(\square \)

We consider a few examples with different values \(r_p, r_q\) and \(k_0=1\).

Example 1

(i) \(p=19, q=7, e=3\), in this case \(7\in D^{(19)}\) and \(r_p=0, r_q\cdot {\text {ord}}_7(2)=3\). Hence \(LC(s^\infty )=N-19\cdot 3\) for \(n=1,2; m=1,2\).

(ii) \(p=7, q=43, e=3\), here \(43\in D^{(7)}\), but \(r_p=1, r_q=0\). Hence \(LC(s^\infty )=301-1\cdot 3= 298\).

(iii) \(p=43, q=7, e=3\), here \(f=14\), \(7\in \eta ^7D^{(43)}\) and \(r_p=0, r_q\cdot {\text {ord}}_7(2)=3\). Hence \(LC(s^\infty )=301-43\cdot 3= 172\). Similarly, for \(n=1,2; m=1,2\).

(iv) \(p=41, q=31, e=5\), \(f=8\), \(31\in \eta ^4D^{(41)}\), \(r_p=0, r_q\cdot {\text {ord}}_31(2)=15\). Finally, \(LC(s^\infty )=1271-41\cdot 15-1=655\).

(v) \(p=7, q=73, e=3\), here \(f=2\), \(73\in \eta D^{(7)}\) and \(r_p=1, r_q\cdot {\text {ord}}_{73}(2)=7\cdot 18\). Hence \(LC(s^\infty )=511-7\cdot 18-3-1= 381\).

Lemma 10

Let notation be as above and \(k_0=0\). Let \(2^{p-1} \not \equiv 1 \pmod {p^2}\), \(2^{q-1} \not \equiv 1 \pmod {q^2}\), \(\gcd (p, q-1)=\gcd (p-1,q)=1\) and let \(s^{\infty }\) be defined by (5). Then

$${\text {LC}}(s^\infty )= N-r_N\cdot {\text {ord}}_{pq}(2)-r_p\cdot {\text {ord}}_p(2)- r_q\cdot {\text {ord}}_q(2)-\delta ,$$

where \(0\le r_N \le \frac{(p-1)(q-1)}{2{\text {ord}}_{pq}(2)}\) and

$$\delta ={\left\{ \begin{array}{ll} 1,&{} \text { if } (p^nq^m+1)/2 \text { is even },\\ 0,&{} \text { if } (p^nq^m+1)/2 \text { is odd }. \end{array}\right. }$$

Proof

Let \(S(\alpha ^j)=0, j\ne 0\). As in Lemma 9 we obtain that \(|\{j\ | \ S(\alpha ^j)=0, \ j=q^m,\dots ,(p^n-1)q^m\}|= r_p\cdot {\text {ord}}_p(2)\) and if \(j\not \equiv 0 \pmod {q^m}\) then \(S_c^{(q^m)}(\gamma ^{jp^{n}})\in \mathbb {K}\) and \(S_b^{(p^n)}(\beta ^{j})+S_b^{(p^n)}(\beta ^{jq^{m}}) \in \mathbb {K}\).

In the last case, according to Lemma 7 and 8 we get that \(j\equiv 0 \pmod {q^{m-1}}\) and \(j\equiv 0 \pmod {p^{n-1}}\). Further, if \(j\equiv 0 \pmod {p^{n}}\) then by Lemma 5 we have \(S(\alpha ^j)=S_c^{(q)}(\gamma ^{jp^{n}})+1\) and in this case we observe that \(|\{j\ | \ S(\alpha ^j)=0, \ j=p^n,\dots ,(q^m-1)p^n\}|= r_q\cdot {\text {ord}}_q(2)\) by Lemma 2 (v).

Suppose \(j=p^{n-1}q^{m-1}t\) and \(\gcd (t, pq)=1\). Then by Lemma 7 and Lemma 2 (i)

$$ S(\alpha ^j)=S_b^{(p)}(\beta _1^{tq^{m-1}})+S_b^{(p)}(\beta _1^{tq^{2m-1}})+S_c^{(q)}(\gamma _1^{tp^{2n-1}})+1 . $$

It is clear that if \(S(\alpha ^j)=0 \) then \(S(\alpha ^j)^{2^u}=0 \) for \(u=0,1,\dots ,{\text {ord}}_{pq}(2)\). Hence, \(|\{j: \ S(\alpha ^j)=0,\ j\in \mathbb {Z}_{pq}|= r_N \cdot {\text {ord}}_{pq}(2)\) for the some \(r_N\).

Let \(w=\zeta _p^{f/2}\zeta _q^{h/2}\). Then \(w\equiv \eta ^{f/2}\pmod {p}\) and \(w\equiv \xi ^{h/2}\pmod {q}\). So, by Lemma 2 (i) we obtain

$$S (\alpha ^{wj})=S_{b+f/2}^{(p)}(\beta _1^{tq^{m-1}})+S_{b+f/2}^{(p)}(\beta _1^{tq^{2m-1}})+S_{c+h/2}^{(q)}(\gamma _1^{tp^{2n-1}})+1.$$

Hence, by Lemma 2 (ii) we see that \(S (\alpha ^{wj})=S (\alpha ^{j})+1\). Thus, \(0\le r_N \le \frac{(p-1)(q-1)}{2{\text {ord}}_{pq}(2)}\). This completes the proof of this lemma.    \(\square \)

The statement of Theorem 1 follows from Lemmas 9 and 10.

The following examples show that in this case the value r depends on N, so we are using a denotation \(r_N\).

Example 2

(i) Let \(p=73, q=7, e=3, b=0, c=0\). Here \(7\in \eta ^9D^{(73)}\), \(r_p\cdot {\text {ord}}_p(2)=18, r_q\cdot {\text {ord}}_q(2)=3\) and \({\text {ord}}_{511}(2)=9\).

For \(n=m=1\) we get \(LC(s^\infty )=435=511-76\), in this case \(r_N=5\).

For \(n=1, m=2\) we have \(LC(s^\infty )= 3577-18-3=3556\), i.e., \(r_N=0\).

(ii) Let \(p=41, q=11, e=5, n=2, m=1, b=0, c=0\).

Here \({\text {ord}}_{pq} (2)=20\). For \(n=1,2; m=1,3\) we get \(LC(s^\infty )=N-101\) (\(r_N=5)\), and \(LC(s^\infty )=N-200\) (\(r_N=10)\) if \(n=1,2; m=2\).

5 Conclusions

Pseudorandom sequences are widely used in communication, radar navigation, cryptography and some other scenarios. By using the new generalized cyclotomy presented by Zeng et al., we constructed a new kind of generalized cyclotomic sequences with period \(p^nq^m\) where pq are odd distinct primes and nm are natural numbers. Thus, we generalized the results obtained in [15,16,17].

Our results show that such sequences have high linear complexity and are suitable for applications. To illustrate the results, some examples are presented. For further study, the k-error linear complexity, autocorrelation, 2-adic complexity and some other cryptographic properties of these sequences may be interesting topics.