diff --git a/core/src/main/java/org/springframework/security/core/AuthenticationException.java b/core/src/main/java/org/springframework/security/core/AuthenticationException.java
index d6a5a642f7..8a14b4d37c 100644
--- a/core/src/main/java/org/springframework/security/core/AuthenticationException.java
+++ b/core/src/main/java/org/springframework/security/core/AuthenticationException.java
@@ -64,11 +64,14 @@ public abstract class AuthenticationException extends RuntimeException {
 
     /**
      * The authentication request which this exception corresponds to (may be {@code null})
+     * @deprecated to avoid potential leaking of sensitive information (e.g. through serialization/remoting).
      */
+    @Deprecated
     public Authentication getAuthentication() {
         return authentication;
     }
 
+    @Deprecated
     public void setAuthentication(Authentication authentication) {
         this.authentication = authentication;
     }