Transferring a domain from one registrar company to another typically involves the use of a special domain authorization code, which different companies call an EPP authentication code, a domain password or an AuthInfo code. This code can be used as a protection measure against unsanctioned transfers with all gTLD and with most ccTLD extensions. It can be obtained only by the domain registrant and is issued by the current registrar company. It must be given to the new registrar because the transfer process cannot be initiated without it. The code is case-sensitive and generally contains numbers and special characters, so as to obstruct unauthenticated individuals from breaking it. Certain domain registrars even change the codes of domain names registered through them every now and then for greater security.