Overview#

Extended Protection for Authentication is a Microsoft name for changes in Authentication Mechanism designed to protect against Man-In-The-Middle (MiTM) attacks when an attacker intercepts a client’s credentials and forwards them to a server.

This solution Requires Microsoft Channel Binding or the use of Transport Layer Security (TLS)

More Information#

There might be more information for this subject on one of the following:

• Channel Binding
• Windows Authentication Package

---

• [#1] - Extended Protection for Authentication Overview - based on information obtained 2020-01-17