Revision as of 17:23, 15 March 2019 edit User-duck (talk \| contribs) Extended confirmed users 37,052 edits m Remove month= from IETF cite. ← Previous edit		Revision as of 20:44, 25 May 2019 edit undo Vid2vid (talk \| contribs) Extended confirmed users 1,082 edits m →Minor edit to emphasize that "unencrypted passwords" means in plain-text, clear text in packets. Next edit →
Line 1: '''Password Authentication Protocol''' ('''PAP''') is a [[password]]-based [[authentication protocol]] used by [[Point to Point Protocol\|Point to Point Protocol (PPP)]] to validate users. Almost all [[network operating system]] remote servers support PAP. PAP is specified in {{IETF RFC\|1334}}. PAP is considered a weak authentication scheme (weak schemes are simple and have lighter [[overhead (computing)\|computational overhead]] but are much more vulnerable to attack; while weak schemes may have limited application in some constrained environments, they are avoided in general). Among PAP's deficiencies is the fact that it transmits unencrypted passwords (i.e. in plain-text) over the network. PAP is therefore used only as a last resort when the remote server does not support a stronger scheme such as [[Challenge-handshake authentication protocol\|CHAP]] or [[Extensible Authentication Protocol\|EAP]]. ==Working cycle==

Password Authentication Protocol: Difference between revisions