Apparently you're not getting the answers. Let give you some explanation. I don't know where the authentication is stored in each case, but I know for sure that the password is not stored anywhere. Not at all! This is because to store a password means to betray the owner of the password, and because
the password is not needed for authentication (surprise?).
There are different techniques; the simplest one is using a Cryptographic Hash Function, see
http://en.wikipedia.org/wiki/Cryptographic_hash_function[
^]. You hash the password and store the hashed form of it only. To authenticate, you only need to compare one hashes password with the stored hashed password, never a password itself. You never need it. And this is impossible to refer the hash to get original password. Each Cryptographic Hash Function is designed to prevent that.
—SA