Abstract
RFC 2228 defines security extensions for FTP, introducing the AUTH, ADAT, PROT, PBSZ, and CCC commands to support authentication and data channel protection negotiation. These extensions enable TLS and Kerberos-based security mechanisms to be layered onto the existing FTP command set.