Proofs Of Quadratic Reciprocity

In number theory, the law of quadratic reciprocity, like the Pythagorean theorem, has lent itself to an unusually large number of proofs. Several hundred proofs of the law of quadratic reciprocity have been published.

Proof synopsis

Of the elementary combinatorial proofs, there are two which apply types of double counting. One by Gotthold Eisenstein counts lattice points. Another applies Zolotarev's lemma to $(\mathbb/pq\mathbb)^$, expressed by the Chinese remainder theorem as $(\mathbb /p \mathbb)^ \times (\mathbb /q \mathbb)^$ and calculates the signature of a permutation. The shortest known proof also uses a simplified version of double counting, namely double counting modulo a fixed prime.

Eisenstein's proof

Eisenstein's proof of quadratic reciprocity is a simplification of Gauss's third proof. It is more geometrically intuitive and requires less technical manipulation.

The point of departure is "Eisenstein's lemma", which states that for distinct odd primes ''p'', ''q'',
: $\left(\frac qp\right) = (-1)^,$
where $\left \lfloor x \right \rfloor$ denotes the floor function (the largest integer less than or equal to ''x''), and where the sum is taken over the ''even'' integers ''u'' = 2, 4, 6, ..., ''p''−1. For example,
: $\left(\frac 7\right) = (-1)^ = (-1)^ = (-1)^ = -1.$
This result is very similar to Gauss's lemma, and can be proved in a similar fashion (proof given below).

Using this representation of (''q''/''p''), the main argument is quite elegant. The sum $\sum_u \left \lfloor qu/p \right \rfloor$ counts the number of lattice points with even ''x''-coordinate in the interior of the triangle ABC in the following diagram:

Because each column has an even number of points (namely ''q''−1 points), the number of such lattice points in the region BCYX is the same ''modulo 2'' as the number of such points in the region CZY:

Then by flipping the diagram in both axes, we see that the number of points with even ''x''-coordinate inside CZY is the same as the number of points inside AXY having ''odd'' ''x''-coordinates. This can be justified mathematically by noting that $\textstyle q-1-\left\lfloor \frac\right\rfloor = \left\lfloor\frac\right\rfloor$.

The conclusion is that
: $\left(\frac qp\right) = (-1)^\mu,$
where μ is the ''total'' number of lattice points in the interior of AXY.

Switching ''p'' and ''q'', the same argument shows that
: $\left(\frac pq\right) = (-1)^\nu,$
where ν is the number of lattice points in the interior of WYA. Since there are no lattice points on the line AY itself (because ''p'' and ''q'' are relatively prime), and since the total number of points in the rectangle WYXA is
: $\left(\frac2\right) \left(\frac2\right),$
we obtain
: $\left(\frac qp\right) \left(\frac pq\right) = (-1)^ = (-1)^.$

Proof of Eisenstein's lemma

For an even integer ''u'' in the range 1 ≤ ''u'' ≤ ''p''−1, denote by ''r''(''u'') the least positive residue of ''qu'' modulo ''p''. (For example, for ''p'' = 11, ''q'' = 7, we allow ''u'' = 2, 4, 6, 8, 10, and the corresponding values of ''r''(''u'') are 3, 6, 9, 1, 4.) The numbers (−1)^''r''(''u'')''r''(''u''), again treated as least positive residues modulo ''p'', are all ''even'' (in our running example, they are 8, 6, 2, 10, 4.) Furthermore, they are all distinct, because if (−1)^''r''(''u'')''r''(''u'') ≡ (−1)^''r''(''t'')''r''(''t'') (mod ''p''), then we may divide out by ''q'' to obtain ''u'' ≡ ±''t'' (mod ''p''). This forces ''u'' ≡ ''t'' (mod ''p''), because both ''u'' and ''t'' are ''even'', whereas ''p'' is odd. Since there exactly (''p''−1)/2 of them and they are distinct, they must be simply a rearrangement of the even integers 2, 4, ..., ''p''−1. Multiplying them together, we obtain
: $(-1)^2q \cdot (-1)^4q \cdot \cdots \cdot (-1)^(p-1)q \equiv 2 \cdot 4 \cdot \cdots \cdot (p-1)\pmod.$
Dividing out successively by 2, 4, ..., ''p''−1 on both sides (which is permissible since none of them are divisible by ''p'') and rearranging, we have
:$q^ \equiv (-1)^\pmod.$
On the other hand, by the definition of ''r''(''u'') and the floor function,
:$\fracp = \left \lfloor \fracp\right \rfloor + \fracp,$
and since ''p'' is odd and ''u'' is even,

:$qu = p\left\lfloor\fracp\right\rfloor + r(u)$

implies that $\left \lfloor qu/p \right \rfloor$ and ''r''(''u'') are congruent modulo 2.

Finally this shows that
:$q^ \equiv (-1)^ \pmod.$
We are finished because the left hand side is just an alternative expression for (''q''/''p'').

Addendum to the lemma

This lemma essentially states that the number of least residues after doubling that are odd gives the value of (''q''/''p''). This follows easily from Gauss' lemma.

Also, $qu = p\left\lfloor\fracp\right\rfloor + r(u)$ implies that $\left \lfloor qu/p \right \rfloor$ and ''r''(''u'') are either congruent modulo 2, or incongruent, depending solely on the parity of ''u''.

This means that the residues $1,2,\dots,\frac$ are (in)congruent to $\left \lfloor qu/p \right \rfloor$, and so

$(-1)^\equiv (-1)^\equiv (-1)^$

where $\textstyle 1\le u\le \frac$.

For example, using the previous example of $p=7, q=11$, the residues are $7,3,10,6,2$ and the floor function gives $0,1,1,2,3$. The pattern of congruence is $1,0,1,0,1$.

Proof using quadratic Gauss sums

The proof of Quadratic Reciprocity using Gauss sums is one of the more common and classic proofs. These proofs work by comparing computations of single values in two different ways, one using Euler's Criterion and the other using the Binomial theorem. As an example of how Euler's criterion is used, we can use it to give a quick proof of the first supplemental case of determining $\left(\frac\right)$ for an odd prime ''p'': By Euler's criterion $\left(\frac\right) \equiv (-1)^ \pmod$ , but since both sides of the equivalence are ±1 and ''p'' is odd, we can deduce that $\left(\frac\right) = (-1)^$.

The second supplemental case

Let $\zeta_8 = e^$, a primitive 8th root of unity and set $\tau = \zeta_8+\zeta_8^$. Since $\zeta_8^2 = i$ and $\zeta_8^=-i$ we see that $\tau^ = 2$. Because $\tau$ is an algebraic integer, if ''p'' is an odd prime it makes sense to talk about it modulo ''p''. (Formally we are considering the commutative ring formed by factoring the algebraic integers $\mathbf A$ with the ideal generated by ''p''. Because $p^$ is not an algebraic integer, 1, 2, ..., ''p'' are distinct elements of $/p$.) Using Euler's criterion, it follows that $\tau^ =(\tau^2)^ = 2^ \equiv \left(\frac\right) \pmod$We can then say that $\tau^p\equiv \left(\frac\right)\tau\pmod$But we can also compute $\tau^p \pmod$ using the binomial theorem. Because the cross terms in the binomial expansion all contain factors of ''p'', we find that $\tau^p\equiv \zeta_8^p+\zeta_8^ \pmod$. We can evaluate this more exactly by breaking this up into two cases
* $p\equiv \pm 1\pmod \Rightarrow \zeta_8^p+\zeta_8^ = \zeta_8+\zeta_8^$.
* $p\equiv \pm 3 \pmod \Rightarrow \zeta_8^p+\zeta_8^ = -\zeta_8-\zeta_8^$.
These are the only options for a prime modulo 8 and both of these cases can be computed using the exponential form $\zeta_8=e^$. We can write this succinctly for all odd primes ''p'' as $\tau^p \equiv (-1)^\tau \pmod$Combining these two expressions for $\tau^p\pmod$ and multiplying through by $\tau$ we find that $2\cdot \left(\frac\right) \equiv 2\cdot(-1)^\pmod$. Since both $\left(\frac\right)$ and $(-1)^$ are ±1 and 2 is invertible modulo ''p'', we can conclude that $\left(\frac\right) = (-1)^$

The general case

The idea for the general proof follows the above supplemental case: Find an algebraic integer that somehow encodes the Legendre symbols for ''p'', then find a relationship between Legendre symbols by computing the ''q''th power of this algebraic integer modulo ''q'' in two different ways, one using Euler's criterion the other using the binomial theorem.

Let $g_p = \sum_^\left(\frac\right)\zeta_p^k$where $\zeta_p=e^$ is a primitive ''p''th root of unity. This is a quadratic Gauss sum. A fundamental property of these Gauss sums is that $g_p^2 = p^*$where $p^*=\left(\frac\right) p$. To put this in context of the next proof, the individual elements of the Gauss sum are in the cyclotomic field $L = \mathbb(\zeta_p)$ but the above formula shows that the sum itself is a generator of the unique quadratic field contained in ''L''. Again, since the quadratic Gauss sum is an algebraic integer, we can use modular arithmetic with it. Using this fundamental formula and Euler's criterion we find that$g_p^ = (g_p^2)^ = (p^*)^ \equiv \left(\frac\right)\pmod$Therefore$g_p^q \equiv \left(\frac\right)g_p\pmod$Using the binomial theorem, we also find that $g_p^q\equiv\sum_^\left(\frac\right)\zeta_p^ \pmod$, If we let ''a'' be a multiplicative inverse of $q\pmod$, then we can rewrite this sum as $\left(\frac\right)\sum_^\left(\frac\right)\zeta_p^t$ using the substitution $t=qk$, which doesn't affect the range of the sum. Since $\left(\frac\right)=\left(\frac\right)$, we can then write$g_p^q\equiv\left(\frac\right)g_p\pmod$Using these two expressions for $g_p^q \pmod$, and multiplying through by $g_p$ gives$\left(\frac\right)p^*\equiv \left(\frac\right)p^*\pmod$Since $p^*$ is invertible modulo ''q'', and the Legendre symbols are either ±1, we can then conclude that$\left(\frac\right) = \left(\frac\right)$

Proof using algebraic number theory

The proof presented here is by no means the simplest known; however, it is quite a deep one, in the sense that it motivates some of the ideas of Artin reciprocity.

Cyclotomic field setup

Suppose that ''p'' is an odd prime. The action takes place inside the cyclotomic field
$L = \mathbb Q(\zeta_p),$
where ζ_p is a primitive ''p''^th root of unity. The basic theory of cyclotomic fields informs us that there is a canonical isomorphism
:$G = \operatorname(L/\mathbb Q) \cong (\Z/p\Z)^\times$
which sends the automorphism σ_''a'' satisfying $\sigma_a(\zeta_p) = \zeta_p^a$ to the element $a \in (\Z/p\Z)^\times.$ In particular, this isomorphism is injective because the multiplicative group of a field is a cyclic group: $F^\times\cong C_$.

Now consider the subgroup ''H'' of ''squares'' of elements of ''G''. Since ''G'' is cyclic, ''H'' has index 2 in ''G'', so the subfield corresponding to ''H'' under the Galois correspondence must be a ''quadratic'' extension of Q. (In fact it is the ''unique'' quadratic extension of Q contained in ''L''.) The Gaussian period theory determines which one; it turns out to be $\mathbb Q(\sqrt)$, where
:$p^* = \left\{\begin{array}{rl} p & \text{if } p \equiv 1 \pmod{4}, \\ -p & \text{if } p \equiv 3 \pmod{4}. \end{array}\right.$

At this point we start to see a hint of quadratic reciprocity emerging from our framework. On one hand, the image of ''H'' in $(\mathbb Z/p\mathbb Z)^\times$ consists precisely of the (nonzero) ''quadratic residues modulo p''. On the other hand, ''H'' is related to an attempt to take the ''square root of p'' (or possibly of −''p''). In other words, if now ''q'' is a prime (different from ''p''), we have shown that
:$\left(\frac qp\right) =1 \quad \iff \quad \sigma_q \in H \quad \iff \quad \sigma_q \mbox{ fixes } \mathbb Q(\sqrt{p^*}).$

The Frobenius automorphism

In the ring of integers $\mathcal O_L=\mathbb Z$zeta_p/math>, choose any unramified prime ideal β of lying over ''q'', and let $\phi \in \operatorname{Gal}(L/\mathbb Q)$ be the Frobenius automorphism associated to β; the characteristic property of $\phi$ is that
:$\phi(x) \equiv x^q\!\!\! \pmod{\beta}\ \text{ for any } x\in \mathcal O_L.$
(The existence of such a Frobenius element depends on quite a bit of algebraic number theory machinery.)

The key fact about $\phi$ that we need is that for any subfield ''K'' of ''L'',
:$\phi\,\mbox{ fixes } K \quad \iff \quad q\,\mbox{ splits completely in } K.$
Indeed, let δ be any ideal of ''O''_''K'' below β (and hence above ''q''). Then, since $\phi(x) \equiv x^q\!\!\! \pmod{\delta}$ for any $x\in \mathcal O_K$, we see that $\phi\vert_K \in \operatorname{Gal}(K/\mathbb Q)$ is a Frobenius for δ. A standard result concerning $\phi$ is that its order is equal to the corresponding inertial degree; that is,
:\operatorname{ord}(\phi\vert_K) = _K/\delta O_K : \mathbb Z/q\mathbb Z
The left hand side is equal to 1 if and only if φ fixes ''K'', and the right hand side is equal to one if and only ''q'' splits completely in ''K'', so we are done.

Now, since the ''p''^th roots of unity are distinct modulo β (i.e. the polynomial ''X''^p − 1 is separable in characteristic ''q''), we must have
:$\phi(\zeta_p) = \zeta_p^q;$
that is, $\phi$ coincides with the automorphism σ_''q'' defined earlier. Taking ''K'' to be the quadratic field in which we are interested, we obtain the equivalence
:$\left(\frac qp\right) =1 \quad \iff \quad q\,\mbox{ splits completely in } \mathbb Q(\sqrt{p^*}).$

Completing the proof

Finally we must show that
:$q\,\mbox{ splits completely in } \mathbb Q(\sqrt{p^*}) \quad \iff \quad \left(\frac{p^*}q\right) = 1.$
Once we have done this, the law of quadratic reciprocity falls out immediately since
:$\left(\frac{p^*}q\right) = \left(\frac pq\right)\ \text{ for } p\equiv 1\!\!\! \pmod 4,$
and
:$\left(\frac{p^*}q\right) = \left(\frac{-p}q\right) = \left(\frac{-1}q\right)\left(\frac pq\right) = \begin{cases} +\left(\frac pq \right) & \mbox{if } q \equiv 1 \pmod{4}, \\ -\left(\frac pq\right) & \mbox{if } q \equiv 3 \pmod{4}\end{cases}$
for $p\equiv 3\!\!\! \pmod 4$.

To show the last equivalence, suppose first that $\left(\frac{p^*}q\right) = 1.$ In this case, there is some integer ''x'' (not divisible by ''q'') such that $x^2 \equiv p^* \pmod{q},$ say $x^2 - p^* = cq$ for some integer ''c''. Let
$K = \mathbb Q(\sqrt{p^*}),$ and consider the ideal $(x-\sqrt{p^*},q)$ of ''K''. It certainly divides the principal ideal (''q''). It cannot be equal to (''q''), since $x-\sqrt{p^*}$ is not divisible by ''q''. It cannot be the unit ideal, because then
:$(x+\sqrt{p^*}) = (x+\sqrt{p^*})(x-\sqrt{p^*},q) = (cq, q(x+\sqrt{p^*}))$
is divisible by ''q'', which is again impossible. Therefore (''q'') must split in ''K''.

Conversely, suppose that (''q'') splits, and let β be a prime of ''K'' above ''q''. Then $(q) \subsetneq \beta,$ so we may choose some
:$a+b\sqrt{p^*} \in \beta\setminus(q), \text{ where } a,b\in \mathbb Q.$
Actually, since $p^* \equiv 1\!\!\! \pmod{4},$ elementary theory of quadratic fields implies that the ring of integers of ''K'' is precisely \mathbb Z\left frac{1+\sqrt{p^*2\right so the denominators of ''a'' and ''b'' are at worst equal to 2. Since ''q'' ≠ 2, we may safely multiply ''a'' and ''b'' by 2, and assume that $a+b\sqrt{p^*} \in \beta\setminus(q),$ where now ''a'' and ''b'' are in Z. In this case we have
:$(a+b\sqrt{p^*})(a-b\sqrt{p^*}) = a^2 - b^2p^* \in \beta \cap \mathbb Z = (q),$
so $q \mid a^2 - b^2p^*.$ However, ''q'' cannot divide ''b'', since then also ''q'' divides ''a'', which contradicts our choice of $a+b\sqrt{p^*}.$ Therefore, we may divide by ''b'' modulo ''q'', to obtain $p^* \equiv (ab^{-1})^2\!\!\! \pmod{q}$ as desired.

References

Every textbook on elementary number theory (and quite a few on algebraic number theory) has a proof of quadratic reciprocity. Two are especially noteworthy:

has many proofs (some in exercises) of both quadratic and higher-power reciprocity laws and a discussion of their history. Its immense bibliography includes literature citations for 196 different published proofs.

also has many proofs of quadratic reciprocity (and many exercises), and covers the cubic and biquadratic cases as well. Exercise 13.26 (p 202) says it all
:

Count the number of proofs to the law of quadratic reciprocity given thus far in this book and devise another one.

*
*
*
*

External links

F. Lemmermeyer's chronology and bibliography of proofs of the Quadratic Reciprocity Law
(332 proofs)

{{DEFAULTSORT:Quadratic reciprocity, Proofs of
Algebraic number theory
Article proofs