STIR/SHAKEN information hub
This information hub draws content about STIR/SHAKEN from across our website and a variety of industry sources.
TransNexus STIR/SHAKEN solutions
Our STIR/SHAKEN solutions include everything you need to deploy STIR/SHAKEN. They work with any network equipment and are available in our ClearIP and NexOSS software platforms.
We offer SHAKEN certificates to use with our software products or any other. Certificates are available with flexible duration and no contract or commitment.
Learn more about STIR/SHAKEN
STIR/SHAKEN whitepapers
STIR/SHAKEN overview — A brief introduction
Understanding STIR/SHAKEN — An introduction to some technical details
How to obtain access to numbering resources — Service provider requirements to sign calls
Certificate management for STIR/SHAKEN — Creating and managing keys and certificates
STIR/SHAKEN authentication service — Authentication technical details
STIR/SHAKEN verification service — Verification technical details
Out-of-Band STIR/SHAKEN call authentication — Another way to transmit the SHAKEN token, regardless of call path used
Rich Call Data and STIR/SHAKEN — How to include additional caller info in the SHAKEN token to improve call completion
Extending the SHAKEN framework to TDM networks — How Out-of-Band SHAKEN enables call authentication for TDM networks
Delegate certificates improve STIR/SHAKEN for providers and enterprises — How a special certificate extends the trusted network
STIR/SHAKEN videos
CFCA Know SHAKEN videos
TransNexus presented a series of webinars with the CFCA on STIR/SHAKEN topics, including:
- Introduction
- Public Key Infrastructure
- Authentication
- Verification
- Out-of-Band SHAKEN
- Rich Call Data
- Call Analytics
STIR/SHAKEN standards
- ATIS
ATIS-1000074-E, Errata to ATIS Standard on Signature-based Handling of Asserted information using toKENs (SHAKEN)
ATIS-1000080.v003, ATIS Standard on Signature-based Handling of Asserted information using toKENs (SHAKEN): Governance Model and Certificate Management
ATIS-1000081, ATIS Technical Report on a Framework for Display of Verified Caller
ATIS-1000082, ATIS Technical Report on SHAKEN APIs for a Centralized Signing and Signature Validation Server
ATIS-1000084-E, Errata to ATIS Technical Report on Operational and Management Considerations for SHAKEN STI Certification Authorities and Policy Administrators
ATIS-1000085, ATIS Standard on Signature-based Handling of Asserted information using ToKENs (SHAKEN): SHAKEN Support of “div” PASSporT
ATIS-1000088, ATIS Technical Report on a Framework for SHAKEN Attestation and Origination Identifier
ATIS-1000089, ATIS Study of Full Attestation Alternatives for Enterprises and Business Entities with Multi-Homing and Other Arrangements
ATIS-1000091, ATIS Technical Report on a Mechanism for International Signature-based handling of Asserted information using toKENs (SHAKEN)
ATIS-1000092, ATIS Standard on Signature-based Handling of Asserted information using toKENs (SHAKEN): Delegate Certificates
- ATIS/SIP Forum IP-NNI Task Force
ATIS/SIP Forum IPNNI-2020-00022, Signature-based Handling of Asserted information using toKENs (SHAKEN): Delegate Certificates
ATIS/SIP Forum IPNNI-2021-00024, Signature-based Handling of Asserted information using toKENs (SHAKEN): Calling Name and Rich Call Data Handling Procedures
ATIS/SIP Forum IPNNI-2020-00045, Signature-Based Handling of Asserted Information Using Tokens (SHAKEN): SHAKEN Support of "div" PASSporT
ATIS/SIP Forum IPNNI-2020-00058, Signature-Based Handling of Asserted Information Using Tokens (SHAKEN): Out-of-Band Token Transmission
- IETF
IETF RFC 3892, The Session Initiation Protocol (SIP) Referred-By Mechanism
IETF RFC 5031, A Uniform Resource Name (URN) for Emergency and Other Well-Known Services
IETF RFC 8224, Authenticated Identity Management in the Session Initiation Protocol (SIP)
IETF RFC 8225, PASSporT: Personal Assertion Token
IETF RFC 8226, Secure Telephone Identity Credentials: Certificates
IETF RFC 8443, Personal Assertion Token (PASSporT) Extension for Resource Priority Authorization
IETF RFC 8588, Personal Assertion Token (PASSporT) Extension for Signature-based Handling of Asserted information using toKENs (SHAKEN)
IETF draft-ietf-stir-cert-delegation, STIR Certificate Delegation
IETF draft-ietf-stir-passport-divert, PASSporT Extension for Diverted Calls
IETF draft-ietf-stir-passport-rcd, PASSporT Extension for Rich Call Data
IETF draft-ietf-stir-rph-emergency-services, Assertion Values for a Resource Priority Header Claim and a SIP Priority Header Claim in Support of Emergency Services Networks
STIR/SHAKEN regulations
- United States
- TRACED Act, The Pallone-Thune Telephone Robocall Abuse Criminal Enforcement and Deterrence Act — enacted December 30, 2019
- First Report and Order Mandating STIR/SHAKEN to Combat Spoofed Robocalls — adopted March 31, 2020
- Second Report and Order Promoting Caller ID Authentication to Combat Spoofed Robocalls — adopted September 29, 2020
- Second Report and Order in the Federal Register — final rule reported November 17, 2020
- Caller ID Authentication Best Practices released December 22, 2020
- Canada
- Compliance and Enforcement and Telecom Decision CRTC 2018-32, Measures to reduce caller identification spoofing and to determine the origins of nuisance calls — issued 25 January 2018
- Compliance and Enforcement and Telecom Decision CRTC 2019-402, CISC Network Working Group – Status of implementation by telecommunications service providers of authentication/verification measures for caller identification issued 9 December 2019
- Compliance and Enforcement and Telecom Decision CRTC 2019-403, Establishment of the Canadian Secure Token Governance Authority issued 9 December 2019
- Compliance and Enforcement and Telecom Decision CRTC 2019-402-2, Rogers Communications Canada Inc. – Request for a nine‑month postponement of STIR/SHAKEN implementation issued 15 September 2020
Robocall mitigation regulations
- United States
- Report and Order, FNPRM for Advanced Methods to Target and Eliminate Robocalls adopted November 16, 2017
- Declaratory Ruling and Third FNPRM for Advanced Methods to Target and Eliminate Robocalls adopted June 6, 2019
- Third Report and Order, Order on Reconsideration, and Fourth FNPRM for Advanced Methods to Target and Eliminate Robocalls adopted July 16, 2020
- Fourth Report and Order for Advanced Methods to Target and Eliminate Robocalls adopted December 29, 2020
STIR/SHAKEN blog posts and news
March 3, 2021
Why you might use a Centralized SHAKEN Server, and how
March 2, 2021
February 23, 2021
Webinar — What is STIR/SHAKEN, and how to comply
February 23, 2021
TransNexus works with DigiCert to provide SHAKEN certificates
February 17, 2021
ClearIP Out-of-Band SHAKEN enhancements
February 8, 2021
FCC to telcos—You cannot be dumb pipes for robocalls
February 4, 2021
U.S. SHAKEN Governance Authority issues year-end report for 2020
February 1, 2021
Webinar — TRACED Act compliance — everything you need to know
January 27, 2021
Service provider STI fee changes for 2021
January 18, 2021
Webinar recording — Complying with the TRACED Act made simple
January 15, 2021
FCC proposes rules on SHAKEN certificate revocation for noncompliance
January 4, 2021
FCC issues further restrictions on robocalls
December 18, 2020
SIPNOC webinar recording available—Rich Call Data and Out-of-Band SHAKEN
November 30, 2020
Service providers request SHAKEN extensions
November 20, 2020
FCC SHAKEN Second Report and Order deadlines
November 18, 2020
U.S. STI-GA to update the Service Provider Code token access policy for STIR/SHAKEN
November 3, 2020
Comments on caller ID authentication best practices
November 2, 2020
STIR/SHAKEN, least cost routing and attestation
October 28, 2020
Reply comments on caller ID authentication progress
October 26, 2020
October 21, 2020
SHAKEN benefits for enterprise callers
October 19, 2020
PASSporTs used with STIR/SHAKEN
October 19, 2020
How to register with the STI Policy Administrator to authenticate calls with STIR/SHAKEN
October 14, 2020
October 14, 2020
International SHAKEN — how that might work
October 7, 2020
Best practices for call authentication – first proposal
October 5, 2020
Three requirements from the FCC SHAKEN orders that will apply to most U.S. providers
September 30, 2020
FCC approves second order on SHAKEN
September 28, 2020
SHAKEN, robocall mitigation, or both?
September 16, 2020
Robocall mitigation program mandate
June 25, 2020
Open source Call Placement Service advances SHAKEN call authentication for all
