Currently, the synch protocol supports the Basic Authentication scheme only. This is a simple user:password comparison. The security of this scheme is very low, as the user:password string is essentially transmitted in plaintext.
A stronger authentication scheme should be supported, e.g. Digest Access Authentication Scheme. See RFC 2617.