The IT Law Wiki

Tunneled password protocol

32,085pages on
this wiki
Add New Page
Add New Page Talk0

Definition Edit

The tunneled password protocol is

[a] protocol where a password is sent through a protected channel. For example, the TLS protocol is often used with a verifier’s public key certificate to (1) authenticate the verifier to the claimant, (2) establish an encrypted session between the verifier and claimant, and (3) transmit the claimant’s password to the verifier. The encrypted TLS session protects the claimant’s password from eavesdroppers.[1]

References Edit

  1. NIST Special Publication 800-63.

Also on Fandom

Random Wiki