Content deleted Content added
No edit summary Tags: Reverted Visual edit Mobile edit Mobile web edit |
m Reverted edits by 102.90.46.186 (talk): unexplained content removal (HG) (3.4.12) |
||
Line 1:
{{Short description|Method of negotiating credentials between web server and browser}}
'''Digest access authentication''' is one of the agreed-upon methods a web server can use to negotiate credentials, such as username or password, with a user's web browser. This can be used to confirm the identity of a user before sending sensitive information, such as online banking transaction history. It applies a hash function to the username and password before sending them over the network. In contrast, basic access authentication uses the easily reversible encoding instead of hashing, making it non-secure unless used in conjunction with TLS.▼
{{HTTP}}
▲'''Digest access authentication''' is one of the agreed-upon methods a [[web server]] can use to negotiate credentials, such as username or password, with a user's [[web browser]]. This can be used to confirm the identity of a user before sending sensitive information, such as online banking transaction history. It applies a [[hash function]] to the username and [[password]] before sending them over the network. In contrast, [[basic access authentication]] uses the easily reversible [[Base64]] encoding instead of hashing, making it non-secure unless used in conjunction with [[Transport Layer Security|TLS]].
Technically, digest authentication is an application of [[MD5]] [[cryptographic
== Overview ==
| |||