What is STIR/SHAKEN?
Understand what STIR/SHAKEN is, how call authentication works, and why this technology is essential to combat fraud.
What is STIR/SHAKEN?
STIR/SHAKEN is a revolutionary technology created to combat caller ID spoofing in telephone calls. These protocols work together to validate the caller's identity and fight fraud in the telecommunications sector.
How does STIR/SHAKEN work?
The two protocols have complementary roles:
- STIR (Secure Telephone Identity Revisited) — Defines the technical standard for telephone identity authentication
- SHAKEN (Signature-based Handling of Asserted information using toKENs) — Establishes how operators implement STIR in their networks
The authentication framework operates in three phases:
1. Authentication
The call origin is validated through a digital certificate that confirms the legitimacy of the displayed number. The originating operator signs the call with its private key.
2. Transmission
The certificate accompanies the call through the networks, allowing each operator along the path to verify authenticity. The token is transmitted in SIP headers in JSON Web Token (JWT) format.
3. Verification
The destination provider confirms the certificate's validity using the originating operator's public key, available in accessible HTTP repositories, ensuring authentic caller identification.
Attestation levels
There are three primary attestation levels that indicate the degree of confidence in caller identification:
| Level | Name | Description |
|---|---|---|
| A | Full Attestation | The operator authenticated the caller and they are authorized to use the number |
| B | Partial Attestation | The origin was authenticated but authorization could not be verified |
| C | Gateway Attestation | The reception point was authenticated but the origin could not be verified |
Benefits of STIR/SHAKEN
- Fraud reduction — Significantly reduces fraudulent call schemes and robocalls
- Consumer trust — Restores consumer confidence in caller identification data
- Efficient management — Enables efficient identification and management of legitimate calls
- Regulatory compliance — Preparation for future Anatel regulations
Implementation in Brazil
The Brazilian implementation of STIR/SHAKEN differs from other countries, using a system based on SIP redirection instead of the integrated certificate approach used in the United States. This choice accommodates the heterogeneous legacy networks present in Brazil.
Conclusion
STIR/SHAKEN represents a significant advancement for telecommunications security and reliability, protecting consumers and companies against fraud. With the global expansion of these initiatives, widespread adoption is essential to reduce fraud and increase user confidence in telecommunications infrastructure.
Related Articles
ABR Telecom: What It Is and Its Role in Brazilian Telecommunications
Learn about ABR Telecom and its four essential regulatory roles in the operation of Brazilian telecommunications.
How to Choose an SBC for Your Voice Operation
Understand the role of a Session Border Controller in your voice network and learn how to choose the right SBC based on capacity, protocol support and deployment model.
Telecommunications Network Interconnection in Brazil: Regulation and Systems
Network interconnection is fundamental for telecommunications operations, regulated by the RGI and consolidated by Resolutions 777 and 779/2025.