Password Authentication Protocol

Password Authentication Protocol (PAP) is a password-based authentication protocol used by Point-to-Point Protocol (PPP) to validate users. PAP is specified in RFC 1334. Almost all network operating systems support PPP with PAP, as do most network access servers. PAP is also used in PPPoE, for authenticating DSL users.

Comment: enPassword Authentication Protocol (PAP) is a password-based authentication protocol used by Point-to-Point Protocol (PPP) to validate users. PAP is specified in RFC 1334. Almost all network operating systems support PPP with PAP, as do most network access servers. PAP is also used in PPPoE, for authenticating DSL users.
Has abstract: enPassword Authentication Protocol (PAP) is a password-based authentication protocol used by Point-to-Point Protocol (PPP) to validate users. PAP is specified in RFC 1334. Almost all network operating systems support PPP with PAP, as do most network access servers. PAP is also used in PPPoE, for authenticating DSL users. As the Point-to-Point Protocol (PPP) sends data unencrypted and "in the clear", PAP is vulnerable to any attacker who can observe the PPP session. An attacker can see the users name, password, and any other information associated with the PPP session. Some additional security can be gained on the PPP link by using CHAP or EAP. However, there are always tradeoffs when choosing an authentication method, and there is no single answer for which is more secure. When PAP is used in PPP, it is considered a weak authentication scheme. Weak schemes are simpler and have lighter computational overhead than more complex schemes such as Transport Layer Security (TLS), but they are much more vulnerable to attack. While weak schemes are used where the transport layer is expected to be physically secure, such as a home DSL link. Where the transport layer is not physically secure a system such as Transport Layer Security (TLS) or Internet Protocol Security (IPsec) is used instead.
Hypernym: Protocol
Is primary topic of: Password Authentication Protocol
Label: enPassword Authentication Protocol
Link from a Wikipage to another Wikipage: Authentication protocol; Category:Authentication protocols; Category:Internet protocols; Category:Password authentication; Challenge-handshake authentication protocol; Challenge-Handshake Authentication Protocol; Diameter (protocol); DSL; Extensible Authentication Protocol; Handshake (computing); Internet Engineering Task Force; IPsec; Network access server; Network operating system; Overhead (computing); Password; Point-to-Point Protocol; PPPoE; RADIUS; Service Access Point; Transport Layer Security
SameAs: 56oEg; m.0jfc9; PAP; PAP; Parola Doğrulama Protokolü; Password authentication protocol; Password authentication protocol; Password authentication protocol; Password Authentication Protocol; Password Authentication Protocol; Password Authentication Protocol; Password Authentication Protocol; Password Authentication Protocol; Password Authentication Protocol; Password Authentication Protocol; Password Authentication Protocol; Password Authentication Protocol; Password Authentication Protocol; Q959710; Протокол за аутентикацију шифре; بروتوكول المصادقة بكلمة المرور; پروتکل تأیید گذرواژه; 密码认证协议; 비밀번호 인증 프로토콜
Subject: Category:Authentication protocols; Category:Internet protocols; Category:Password authentication
WasDerivedFrom: Password Authentication Protocol?oldid=1120211813&ns=0
WikiPageLength: 4488
Wikipage page ID: 71663
Wikipage revision ID: 1120211813
WikiPageUsesTemplate: Template:Authentication APIs; Template:Cite IETF; Template:Compu-network-stub; Template:IETF RFC; Template:Reflist

Password Authentication Protocol

Backlinks

About

Resources

Support

Follow us