Content deleted Content added
m Fixing links to disambiguation pages, replaced: three-way handshake. This happens at the time of establishing the initial link (LCP), and may happen again at any |
Sammi Brie (talk | contribs) Adding local short description: "Authentication protocol to validate users", overriding Wikidata description "authentication protocol for the point-to-point protocol" |
||
| (2 intermediate revisions by 2 users not shown) | |||
Line 1:
{{Short description|Authentication protocol to validate users}}
In [[computing]], the '''Challenge-Handshake Authentication Protocol''' ('''CHAP''') is an [[authentication protocol]] originally used by [[Point-to-Point Protocol]] (PPP) to validate users. CHAP is also carried in other authentication protocols such as [[RADIUS]] and [[Diameter (protocol)|Diameter]]. Almost all [[network operating system]]s support PPP with CHAP, as do most [[network access server]]s. CHAP is also used in [[PPPoE]], for authenticating DSL users.
Line 10 ⟶ 11:
==Benefits of CHAP==
When the peer sends CHAP, the authentication server will receive it, and obtain the "known good" password from a database, and perform the CHAP calculations. If the resulting hashes match, then the user is deemed to be authenticated. If the hashes do not match, then the
Since the authentication server has to store the password in clear-text, it is impossible to use different [[Password#Form of stored passwords|formats for the stored password]]. If an attacker were to steal the entire database of passwords, all of those passwords would be visible "in the clear" in the database.
| |||