# Traditional Login

## Definition

Traditional Login (password-based authentication) remains one of the most widespread methods for verifying a user's identity. In this approach, users prove their identity by providing a secret known only to them and the authentication system, typically in the form of a password. This method is straightforward to implement and use, making it a popular choice for many applications.

## Key Challenges

* **Vulnerability to Theft**: Passwords can be stolen through various means including phishing, keylogging, and brute-force attacks.
* **Poor User Habits**: Users often choose weak passwords or reuse them across multiple sites, compromising security.
* **Maintenance Overhead**: Requires systems for password recovery, strength enforcement, and secure storage, increasing complexity.

In the modern digital landscape, while password-based authentication is familiar and user-friendly, it also introduces significant security risks and administrative burdens. This has led to the exploration and adoption of more secure and efficient methods, such as [token-based authentication](https://jframework.gitbook.io/help/services/identity/user/authentication-methods/external-login) and multi-factor authentication (MFA), to enhance user security.

## Example

<figure><img src="https://3374736535-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FqcsSJG3T9ZAuApNz1W50%2Fuploads%2Fgit-blob-e9754a72ad2ffe8919c709bbaaea5cdda714ca6a%2Fimage%20(1).png?alt=media" alt=""><figcaption><p>A tradition login form from BoostPTE.</p></figcaption></figure>