- Implementing Digest Authentication will encrypt the user password using hashing algorithms before sending it to the server
- MD5, SHA, BCrypt, SCrypt and PBKDF2WithHmacSHA1 are the hashing algorithms used for hashing password
- Digest contains “nonce"
– Prevents plaintext attacks for retrieving plain text from cryptographic hash functions
– It contains timestamps and prevents replay attacks - Example: “nonce" value format generated by server
– expirationTime: Expiration time in millisecond
– key: Its private key to protect “nonce" changes
DigestAuthenticationFilter Configuration
Example: Unauthorized Response
Cheng® 