STIR\/SHAKEN is used to help defeat scammers and illegal robocalls. If you\u2019re thinking it sounds like something out of James Bond\u2019s cocktail order, you\u2019d be right as the acronyms (\u2018Secure Telephony Identity Revisited’ and \u2018Signature-based Handling of Asserted Information Using Tokens\u2019) were created as a nod to the character\u2019s villain fighting skills. It may not seem like a dramatic threat, but just under 2000 robocalls are made per second. According to the FCC, these calls are the number one source of consumer complaints. So, it\u2019s good news that we\u2019ll soon be able to avoid scam call trickery and, thanks to Microtalk, your business can be one of the first in the UK to benefit.<\/p>\n
What is caller ID spoofing?<\/u><\/p>\n
STIR\/SHAKEN refers to a new range of protocols and procedures that are designed to stop caller ID spoofing. Most people complain about getting too many phone calls from spammers and telemarketers at work or home. These days, they\u2019re getting harder to spot. You may see a familiar number \u2014 either a local area code or a recognisable local business number or even the name of your bank \u2014 and assume the call is legitimate. However, caller ID spoofing is the act of maliciously faking the caller ID on a phone call and using this to increase the chances of the call being answered. Once the receiver picks up, they\u2019re open to any number of scams as they assume, judging by the number, the caller is either local or a trustworthy business and familiar.<\/p>\n
In the past, there was little to be done to stop this, but STIR\/SHAKEN ensures there are steps we can take to battle nuisance callers.<\/p>\n
How can STIR\/SHAKEN stop caller ID spoofing?<\/u><\/p>\n
In short, STIR provides the ability to authenticate the caller ID and SHAKEN is the set of guidelines that set out how to deal with calls that have suspicious or missing STIR information.<\/p>\n
To give a little more detail, STIR works by adding a\u00a0digital certificate\u00a0to the\u00a0Session Initiation Protocol\u00a0(SIP) information used to initiate and route calls via your VoIP system, for example, a call made using a Cloud PBX<\/a>. The VoIP service provider automatically examines the caller ID and compares it to the existing list of IDs that have already been provided to that customer. Then, the VoIP service provider can add the\u00a0digital certificate to the SIP information; it includes the service provider’s identity and a trust value. The VoIP software on the receiving end can check the authenticity and can decide whether to reroute any suspicious calls.<\/p>\n What are the different trust tokens?<\/u><\/p>\n The digital certificate differentiates between trusted, unsure, and untrustworthy calls with a simple ABC.<\/p>\n Full (A) \u2014 This means the carrier knows the caller ID has not been spoofed. For example, the carrier is responsible for the origination of the call, it\u2019s on the list of known caller IDs as the caller has an authenticated relationship with the customer and the number used to make the call has already been verified with that ID.<\/p>\n Partial (B) \u2014 This means that, although the carrier originated the call and has a relationship with the customer making the call, the carrier cannot be certain the caller ID has not been spoofed as the number used for the call may not be recognised.<\/p>\n Gateway (C) \u2014 Lastly, this means the carrier isn\u2019t familiar with caller ID. It may have entered their network, but its origins are unknown.<\/p>\n What happens as a result of the different verifications<\/u>?<\/u><\/p>\n All calls aid Real-Time Analytics, so the system will be better placed to tell the difference between spam and real calls by the more calls received. Practice makes perfect!<\/p>\n In the meantime, receivers can also be notified on the interface where they receive the call, showing if the caller ID has been verified. You can also have the B and C calls intercepted and diverted to voicemails.<\/p>\n How can my business use STIR\/SHAKEN?<\/u><\/p>\n