Call
In computing, the Challenge-Handshake Authentication Protocol is an authentication protocol originally used by Point-to-Point Protocol to validate users. CHAP is also carried in other authentication protocols such as RADIUS and Diameter.
Almost all network operating systems support PPP with CHAP, as do most network access servers. CHAP is also used in PPPoE, for authenticating DSL users.
As the PPP sends data unencrypted and "in the clear", CHAP is vulnerable to any attacker who can observe the PPP session. An attacker can see the user's name, CHAP challenge, CHAP response, and any other information associated with the PPP session. The attacker can then mount an offline dictionary attack in order to obtain the original password. When used in PPP, CHAP also provides protection against replay attacks by the peer through the use of a challenge which is generated by the authenticator, which is typically a network access server.
Where CHAP is used in other protocols, it may be sent in the clear, or it may be protected by a security layer such as Transport Layer Security. For example, when CHAP is sent over RADIUS using User Datagram Protocol , any attacker who can see the RADIUS packets can mount an offline dictionary attack, as with PPP.
Talk Doctor Online in Bissoy App