Basic authentication is dependent upon the web server to protect the resources. The form will be provided by the system and the credentials entered by the user are encrypted to the base64 encoded text. The password sent through HTTP can be easily captured and reused. Basic authentication should only be used HTTPs.