Cryptanalysis of the tiger hash function

Authors:
Florian Mendel;Vincent Rijmen
Affiliations:
Institute for Applied Information Processing and Communications, Graz University of Technology, Graz, Austria;Institute for Applied Information Processing and Communications, Graz University of Technology, Graz, Austria
Venue:
ASIACRYPT'07 Proceedings of the Advances in Crypotology 13th international conference on Theory and application of cryptology and information security
Year:
2007

Citing 4
Cited 9

TIGER: A Fast New Hash Function

Proceedings of the Third International Workshop on Fast Software Encryption
Update on tiger

INDOCRYPT'06 Proceedings of the 7th international conference on Cryptology in India
Collisions and near-collisions for reduced-round tiger

FSE'06 Proceedings of the 13th international conference on Fast Software Encryption
Exploiting coding theory for collision attacks on SHA-1

IMA'05 Proceedings of the 10th international conference on Cryptography and Coding

Preimages for Reduced-Round Tiger

Research in Cryptology
The Hash Function Family LAKE

Fast Software Encryption
Cryptanalysis of the GOST Hash Function

CRYPTO 2008 Proceedings of the 28th Annual conference on Cryptology: Advances in Cryptology
Memoryless Related-Key Boomerang Attack on the Full Tiger Block Cipher

ISPEC '09 Proceedings of the 5th International Conference on Information Security Practice and Experience
Two Passes of Tiger Are Not One-Way

AFRICACRYPT '09 Proceedings of the 2nd International Conference on Cryptology in Africa: Progress in Cryptology
Rebound Distinguishers: Results on the Full Whirlpool Compression Function

ASIACRYPT '09 Proceedings of the 15th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
Finding preimages of tiger up to 23 steps

FSE'10 Proceedings of the 17th international conference on Fast software encryption
Preimage attacks on step-reduced RIPEMD-128 and RIPEMD-160

Inscrypt'10 Proceedings of the 6th international conference on Information security and cryptology
GHOST: GPGPU-offloaded high performance storage I/O deduplication for primary storage system

Proceedings of the 2012 International Workshop on Programming Models and Applications for Multicores and Manycores

Quantified Score

Hi-index	0.00

Visualization

Abstract

Tiger is a cryptographic hash function with a 192-bit hash value. It was proposed by Anderson and Biham in 1996. Recently, weaknesses have been shown in round-reduced variants of the Tiger hash function. First, at FSE 2006, Kelsey and Lucks presented a collision attack on Tiger reduced to 16 and 17 (out of 24) rounds with a complexity of about 244 and a pseudo-near-collision for Tiger reduced to 20 rounds. Later, Mendel et al. extended this attack to a collision attack on Tiger reduced to 19 rounds with a complexity of about 262. Furthermore, they show a pseudo-near-collision for Tiger reduced to 22 rounds with a complexity of about 244. No attack is known for the full Tiger hash function. In this article, we show a pseudo-near-collision for the full Tiger hash function with a complexity of about 247 hash computations and a pseudocollision (free-start-collision) for Tiger reduced to 23 rounds with the same complexity.