stackoom
  简体   繁体   中英

What is the difference between basic authentication and cryptographic authentication?

 原文  2014-06-10 17:34:42       security/ authentication/ cryptography/ basic-authentication

Question

What are the main differences between these two authentication methods?
And when would you use one over the other?

1 answers

solution1
 3 ACCPTED  2014-06-10 18:02:06

Basic authentication is just sending the username + password to the server .

Cryptographic authentication is a generic term that may include any kind of authentication that uses cryptographic algorithms to authenticate the entities. Most of the time it will consist of a challenge response protocol , where the response is created by encrypting or keyed hashing over the challenge. As only the person that knows the key (/password) is able to create a cryptogram that way, the other party knows who has performed the authentication.

Note that basic authentication over SSL/TLS is may be more secure than cryptographic authentication over an unprotected http transport layer.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Switching between WCF windows authentication and basic authentication Is there a difference between authentication and authorization? What's the difference between Message Digest, Message Authentication Code, and HMAC? Basic authentication and WCF Basic authentication for Silverlight browser Is basic authentication the right choice? Basic Authentication in Glassfish EventSource and basic http authentication LogiXML Security - Basic Authentication What are (if any) the security drawbacks of REST Basic Authentication with Javascript clients?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM