The default is no encryption, so the users password could be captured as it travels over the network to the application server. To enable encryption you need to use an appropriate SNC library. Some SNC libraries offer encryption only, and some offer authentication (e.g. for Single Sign-On) as well as encryption. The SNC libraries that offer SSO are often licensed so you might have to pay money for a license.
Thanks
Tim