If you want to proceed with authentication by passing the password through the JavaScript library an HTTPS connection is strongly recommended. But please note that this option is not available in "Moderato" edition of Lightstreamer server (please refer here).

You can also simply encrypt your password at the application level before passing it to the JavaScript library but this exposes you to security problems (for example sniffing), unless, again at the application level, you implement more sophisticated mechanisms.