Digest Authentication and RTC (Windows Embedded CE 6.0)
1/6/2010
Digest authentication is a challenge-response authentication method within the SIP protocol. It does not require credentials to be transmitted over the network in clear text. Instead, the client sends passwords in hashed form.
Initial authentication occurs when the server challenges the client. The client uses the challenge from the server to generate a password hash that it includes in the response to the server.
Because the password is hashed, Digest authentication has an advantage over Basic authentication. However, the hashed password can potentially be deciphered by network attackers, especially if the password is weak.