To restrict access to certain parts of the site, people tend to use:

WWW-Authenticate: Basic realm="Eyes Only Zone"
HTTP/1.0 401 Unauthorized

And I'm wondering about the "Basic" part, what other options are there other than Basic, and what are the differences?