Evdokimov's algorithm

In computational number theory, Evdokimov's algorithm, named after Sergei Evdokimov, is the asymptotically fastest known algorithm for factorization of polynomials (until 2019). It can factorize a one-variable polynomial of degree ${\displaystyle n}$ over an explicitly given finite field of cardinality ${\displaystyle q}$. Assuming the generalized Riemann hypothesis the algorithm runs in deterministic time ${\displaystyle (n^{\log n}\log q)^{{\mathcal {O}}(1)}}$ [1] (see Big O notation). This is an improvement of both Berlekamp's algorithm and Rónyai's algorithm[2] in the sense that the first algorithm is polynomial for small characteristic of the field, whearas the second one is polynomial for small ${\displaystyle n}$; however, both of them are exponential if no restriction is made.

The factorization of a polynomial ${\displaystyle f}$ over a ground field ${\displaystyle k}$ is reduced to the case when ${\displaystyle f}$ has no multiple roots and is completely splitting over ${\displaystyle k}$ (i.e. ${\displaystyle f}$ has ${\displaystyle n}$ distinct roots in ${\displaystyle k}$). In order to find a root of ${\displaystyle f}$ in this case, the algorithm deals with polynomials not only over the ground field ${\displaystyle k}$ but also over a completely splitting semisimple algebra over ${\displaystyle k}$ (an example of such an algebra is given by ${\displaystyle k[X]/(f)=k[A]}$, where ${\displaystyle A=X{\bmod {f}}}$). The main problem here is to find efficiently a nonzero zero-divisor in the algebra. The GRH is used only to take roots in finite fields in polynomial time. Thus the Evdokimov algorithm, in fact, solves a polynomial equation over a finite field "by radicals" in quasipolynomial time, see Time complexity.

The analyses of Evdokimov's algorithm is closely related with some problems in the association scheme theory. With the help of this approach, it was proved [3] that if ${\displaystyle n}$ is a prime and ${\displaystyle n-1}$ has a ‘large’ ${\displaystyle r}$-smooth divisor ${\displaystyle s}$, then a modification of the Evdokimov algorithm finds a nontrivial factor of the polynomial ${\displaystyle f}$ in deterministic ${\displaystyle \operatorname {poly} (n^{r},\log q)}$ time, assuming GRH and that ${\displaystyle s=\Omega \left({\sqrt {n/2^{r}}}\,\right)}$.