Yes their are offical documents that describe it as using MD5
"Digest authentication transmits credentials across the network as an MD5 hash" - Microsoft Docs
Question
I am trying to implement my own service side authentication component for WebApi that can perform matching for hashed username/password sent by webclient described at How can I do digest authentication with HttpWebRequest?
This article (http://lbadri.wordpress.com/2012/08/10/digest-authentication-with-asp-net-web-api-part-1/) suggests that the IIS Digest Authentication uses MD5 for hashing.
Are there any official IIS docs that confirm this?
Solution
Yes their are offical documents that describe it as using MD5
"Digest authentication transmits credentials across the network as an MD5 hash" - Microsoft Docs