Revision as of 20:12, 13 April 2022 edit Alandekok (talk \| contribs) 47 edits Align CHAP with recent changes to PPP. CHAP does not authenticate an "Internet Service Provider", that makes zero sense. Updated to discuss trade-offs between the PPP link and password storage formats. Tag: Disambiguation links added ← Previous edit		Revision as of 20:17, 13 April 2022 edit undo Alandekok (talk \| contribs) 47 edits minor english Next edit →
Line 15: Since the authentication server has to store the password in clear-text, it is impossible to user different [[Password#Form_of_stored_passwords\|formats for the stored password]]. If an attacker were to steal the entire database of passwords, all of those passwords would be visible "in the clear" in the database. As a result, while CHAP ~~passwords~~ can be more secure than PAP when ~~sent~~used over a PPP link, ~~they~~it ~~prevent~~prevents more secure storage "at rest" than with other methods such as [[Password authentication protocol\|PAP]].

Challenge-Handshake Authentication Protocol: Difference between revisions