Password Authentication Protocol

Why Trust Techopedia

What Does Password Authentication Protocol Mean?

Password Authentication Protocol (PAP) is a simple user authentication protocol that does not encrypt the data and sends the password and username to the authentication server as plain text. PAP is very vulnerable to being read from the Point-to-Point Protocol (PPP) data packets exchanged between the authentication server and the user’s machine. This was primarily used when connecting to old Unix-based servers with no support for more advanced encryption protocols.

Advertisements

Techopedia Explains Password Authentication Protocol

When PAP is used, the username and password are sent into a remote access server as a single LCP package, instead of the server sending a login request prompt and then waiting for a reply from the user.

There are certain instances where PAPs are considered useful:

  1. When an installed software does not support CHAP or Challenge Handshake Authentication Protocol, a more secure authentication protocol

  2. When there exists incompatibility issues between varied vendor implementations of CHAP

  3. When there are certain events where a simple plaintext password should be available in order to simulate a login at a remote host

Advertisements

Related Terms

Margaret Rouse
Technology Specialist
Margaret Rouse
Technology Specialist

Margaret is an award-winning writer and educator known for her ability to explain complex technical topics to a non-technical business audience. Over the past twenty years, her IT definitions have been published by Que in an encyclopedia of technology terms and cited in articles in the New York Times, Time Magazine, USA Today, ZDNet, PC Magazine, and Discovery Magazine. She joined Techopedia in 2011. Margaret’s idea of ​​a fun day is to help IT and business professionals to learn to speak each other’s highly specialized languages.