STI

STIR (Secure Telephony Identity Revisited) and SHAKEN (Secure Handling of Asserted information using toKENs) are frameworks designed to prevent the completion of illegally spoofed calls. Spoofed calls display modified calling numbers to hide the true call source often for fraudulent purposes. The SHAKEN framework requires that telephone service providers authenticate and verify caller identities for every phone call by using certificates.

Every telephone service provider has a certificate that identifies them and is used to verify their signature. Certificates are held in a public certificate repository and are issued by a certificate authority. ClearIP automatically obtains certificates from a certificate authority and publishes certificates into the certificate repository for users.

Telephone service providers who originate a phone call should configure their Authentication Policies to authenticate their calls as responsibly as possible.

Telephone service providers who terminate phone calls should configure their Verification Policies to verify phone calls, using the originating service provider’s certificate.