[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 228
  • Last Modified:

BA vs. OAuth, SAML, etc

I read from an expert on another thread that Basic Authrtication will send the password directly to the server on the wire.

However, OAuth and SAML or Kerberos will use third party servers to verify pw's but not transmit the pw on the wire

My Question:  How do the more complex security servers avoid transmitting a pw on the wire,

Did I read the post incorrectly?  (Is the pw sent to the third party verification server, but not the http server ?

Anthony Lucia
Anthony Lucia
1 Solution
Jens FiedererCommented:
More comples security servers avoid transmitting a pw on the wire in the clear by either encrypting it or by simply USING it.   For example, Kerberos will send the client information that does not contain the pw, but is encrypted USING the pw, so the client is unable to use the information without decrypting it .... for which the correct pw is necessary.

Featured Post

Cyber Threats to Small Businesses (Part 2)

The evolving cybersecurity landscape presents SMBs with a host of new threats to their clients, their data, and their bottom line. In part 2 of this blog series, learn three quick processes Webroot’s CISO, Gary Hayslip, recommends to help small businesses beat modern threats.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now