STIR/SHAKEN information hub
This information hub draws content about STIR/SHAKEN from across our website and a variety of industry sources.
TransNexus STIR/SHAKEN solutions
Our STIR/SHAKEN solutions include everything you need to deploy STIR/SHAKEN. They work with any network equipment and are available in our ClearIP and NexOSS software platforms.
We offer SHAKEN certificates to use with our software products or any other. Certificates are available with flexible duration and no contract or commitment.
You can easilly combine robocall mitigation techniques with STIR/SHAKEN call authentication to improve customer experience and satisfy compliance requirements.
Learn more about STIR/SHAKEN
STIR/SHAKEN whitepapers
STIR/SHAKEN overview — A brief introduction
Understanding STIR/SHAKEN — An introduction to some technical details
Certificate management for STIR/SHAKEN — Creating and managing keys and certificates
STIR/SHAKEN authentication service — Authentication technical details
STIR/SHAKEN verification service — Verification technical details
Out-of-Band SHAKEN — Extends the current SHAKEN framework to include service providers using TDM
Rich Call Data and STIR/SHAKEN — How to include additional caller info in the SHAKEN token to improve call completion
Delegate certificates improve STIR/SHAKEN for providers and enterprises — How a special certificate extends the trusted network
STIR/SHAKEN videos
Prepare for the FCC SHAKEN deadline
Preparing for SHAKEN in Canada
Robocall Mitigation Filing Essentials
Prepare for the FCC June 30th robocall deadline — Tutorial
TRACED act compliance — Everything you need to know
Complying with the TRACED act made simple
CFCA Know SHAKEN videos
TransNexus presented a series of webinars with the CFCA on STIR/SHAKEN topics, including:
ATIS STIR/SHAKEN standards
ATIS-1000074.v002, ATIS Standard on Signature-based Handling of Asserted information using toKENs (SHAKEN)
ATIS-1000080.v004, ATIS Standard on Signature-based Handling of Asserted information using toKENs (SHAKEN): Governance Model and Certificate Management
ATIS-1000081, ATIS Technical Report on a Framework for Display of Verified Caller
ATIS-1000082, ATIS Technical Report on SHAKEN APIs for a Centralized Signing and Signature Validation Server
ATIS-1000084.v002, ATIS Technical Report on Operational and Management Considerations for SHAKEN STI Certification Authorities and Policy Administrators
ATIS-1000085.v002, ATIS Standard on Signature-based Handling of Asserted information using ToKENs (SHAKEN): SHAKEN Support of “div” PASSporT
ATIS-1000088, ATIS Technical Report on a Framework for SHAKEN Attestation and Origination Identifier
ATIS-1000089.v002, ATIS Technical Report on Study of Full Attestation Alternatives for Enterprises and Business Entities with Multi-Homing and Other Arrangements
ATIS-1000091, ATIS Technical Report on a Mechanism for International Signature-based handling of Asserted information using toKENs (SHAKEN)
ATIS-1000092, ATIS Standard on Signature-based Handling of Asserted information using toKENs (SHAKEN): Delegate Certificates
ATIS-1000093, ATIS Standard on Toll-Free Numbers in the SHAKEN Framework
ATIS-1000095, ATIS Standard on Extending STIR/SHAKEN over TDM
ATIS-1000096, ATIS Standard on SHAKEN: Out-of-Band PASSporT Transmission Involving TDM Networks
ATIS-1000097, ATIS Technical Report on Alternatives for Caller Authentication for Non-IP Traffic
IETF STIR/SHAKEN standards
IETF RFC 7340, Secure Telephone Identity Problem Statement and Requirements
IETF RFC 7375, Secure Telephone Identity Threat Model
IETF RFC 8224, Authenticated Identity Management in the Session Initiation Protocol (SIP)
IETF RFC 8225, PASSporT: Personal Assertion Token
IETF RFC 8226, Secure Telephone Identity Credentials: Certificates
IETF RFC 8443, Personal Assertion Token (PASSporT) Extension for Resource Priority Authorization
IETF RFC 8588, Personal Assertion Token (PASSporT) Extension for Signature-based Handling of Asserted information using toKENs (SHAKEN)
IETF RFC 8816, Secure Telephone Identity Revisited (STIR) Out-of-Band Architecture and Use Cases
IETF RFC 8946, Personal Assertion Token (PASSporT) Extension for Diverted Calls
IETF RFC 9027, Assertion Values for Resource Priority Header and SIP Priority Header Claims in Support of Emergency Services Networks
United States STIR/SHAKEN regulations
WC Docket No. 17-97, Call Authentication Trust Anchor
| Document | Adopted | Summary |
|---|---|---|
| TRACED Act | Dec 30, 2019 | Law requires FCC to issue orders that require STIR/SHAKEN call authentication and related provisions. |
| Report and Order | Mar 31, 2020 | Mandates STIR/SHAKEN. |
| Second Report and Order | Sep 29, 2020 | Provides extensions for SHAKEN implementation, requires robocall mitigation program during extensions, requires certification in new Robocall Mitigation Database. |
| Third Report and Order | Aug 6, 2021 | Establishes a process for voice service providers to appeal STI Governance Authority SPC Token revocation decisions to the Commission. |
| Caller ID Authentication Best Practices | Dec 22, 2020 | Voluntary, optional best practices for SHAKEN authentication developed by the CATA Working Group. |
| Robocall Mitigation Database (RMD) | Apr 20, 2021 | New portal used to submit, view, and download certifications in the RMD. |
| Fourth Report and Order | Dec 10, 2021 | Accelerates SHAKEN implementation deadlines for small voice service providers that are non-facilities-based or are found to be a source of illegal robocalls. |
| Fifth Report and Order. | May 19, 2022 | Mandates STIR/SHAKEN for gateway service providers (document includes several orders and proposed rules). |
| Caller ID Verification Best Practices | May 24, 2022 | Voluntary, optional best practices for SHAKEN termination developed by the CATA Working Group. |
United States Robocall mitigation regulations
CG Docket No. 17-59, Advanced Methods to Target and Eliminate Unlawful Robocalls
| Document | Adopted | Summary |
|---|---|---|
| Report and Order | Nov 16, 2017 | Allows providers to block calls from phone numbers that are invalid, unallocated, unused, or that appear on Do-Not-Originate (DNO) lists. |
| Second Report and Order | Dec 12, 2018 | Establishes Reassigned Numbers Database. |
| Declaratory Ruling | Jun 6, 2019 | Clarifies that service providers may offer opt-out call-blocking programs based on any reasonable analytics. |
| Third Report and Order | Jul 16, 2020 | Establishes safe harbors for call blocking. |
| Fourth Report and Order | Dec 29, 2020 | Requires service providers to police their networks and cooperate with traceback, adds network blocking to safe harbor, requires immediate notification of blocking by Jan 1, 2022. |
| Order on Reconsideration, Sixth Further Notice of Proposed Rulemaking, and Waiver Order | Dec 10, 2021 | Changes and clarifies rules on immediate notification of call blocking. |
| Sixth Report and Order | May 19, 2022 | Mandates robocall mitigation for gateway service providers (document includes several orders and proposed rules). |
Canada STIR/SHAKEN regulations
| Document | Adopted | Summary |
|---|---|---|
| CRTC 2018-32 | 25 Jan 2018 | Measures to reduce caller identification spoofing and to determine the origins of nuisance calls |
| CRTC 2019-402 | 9 Dec 2019 | CISC Network Working Group – Status of implementation by telecommunications service providers of authentication/verification measures for caller identification |
| CRTC 2019-403 | 9 Dec 2019 | Establishment of the Canadian Secure Token Governance Authority |
| CRTC 2019-402-2 | 15 Sep 2020 | Rogers Communications Canada Inc. – Request for a nine-month postponement of STIR/SHAKEN implementation |
| CRTC 2021-123 | 6 Apr 2021 | STIR/SHAKEN implementation for Internet Protocol-based voice calls |
| CRTC 2021-267 | 5 Aug 2021 | Instructs the Canadian Secure Token Governance Authority to allow all telecommunications service providers to receive a STIR/SHAKEN certificate |
STIR/SHAKEN blog posts and news
Jun 20, 2022
Authorized SHAKEN providers growing fast
Jun 15, 2022
SHAKEN deadline reminder for small non-facilities-based providers
Jun 1, 2022
STIR/SHAKEN statistics from May 2022
May 31, 2022
Best practices for terminating providers using STIR/SHAKEN
May 25, 2022
More rules proposed for STIR/SHAKEN and robocall mitigation
May 23, 2022
New SHAKEN and robocall rules for gateway providers
May 16, 2022
Pending robocall rules raise concern
May 11, 2022
Highlights from the FCC robocalls and SHAKEN draft order
May 4, 2022
STIR/SHAKEN statistics from April 2022
Apr 27, 2022
FCC to vote on new robocall rules for gateway providers
Apr 14, 2022
Webinar recording — Prepare for the FCC SHAKEN deadline
Apr 4, 2022
STIR/SHAKEN statistics from March 2022
Mar 30, 2022
Delegate certificate roles and benefits
Mar 28, 2022
No SHAKEN claims surge in March
Mar 9, 2022
SHAKEN implementation claims among non-U.S. service providers
Mar 7, 2022
The evolution of SHAKEN implementation claims
Feb 21, 2022
Impact of FCC challenges to robocall mitigation filings
Feb 14, 2022
FCC questions some SHAKEN implementation claims
Dec 13, 2021
FCC order accelerates SHAKEN deadline for some small providers
Nov 1, 2021
Canadian SHAKEN token access policy revised
Oct 25, 2021
Enforcement action against robocallers in the SHAKEN era
Oct 20, 2021
STI-GA announces support for enhanced SHAKEN functionality
August 16, 2021
Canadian regulator changes service provider SHAKEN qualifications
July 15, 2021
Get ready for the SHAKEN deadline
Questions about the June 30 FCC STIR/SHAKEN deadline? We can help. Learn more