STIR/SHAKEN — caller authentication and the trust framework
This is the most developed section in the library because STIR/SHAKEN is where I’ve done the most foundational work. I’m a co-author of several of the core RFCs (8224, 8225, 8226, 8588, plus 9795 for the RCD PASSporT extension and 9796 for the SIP Call-Info delivery of RCD to end devices) and I’ve served as principal architect on the framework’s deployment across North American networks. The notebook will frequently link back to specific topics here.
The topic name “STIR/SHAKEN” elides a distinction worth holding clearly: STIR and SHAKEN are not the same thing. STIR is the cryptographic protocol — defined at the IETF, applicable in principle to any deployment of caller authentication anywhere in the world. SHAKEN is the operational profile of STIR specified by ATIS for North American carriers, including the governance arrangement that decides who issues certificates and what trust anchors verifiers should honor. The two are paired in deployment because the framework needs both — protocol and profile — to actually work, but their evolution and their constituencies are different. STIR covers the protocol layer; SHAKEN covers the profile and governance.
┌──────────────────────────────────────────────┐
│ REGULATORY │
│ FCC rulemakings, robocall mitigation, │
│ blocking authority, RMD │
└─────────────────────┬────────────────────────┘
│ delegates technical
│ implementation to
▼
┌──────────────────────────────────────────────┐
│ SHAKEN │
│ Operational profile, governance, attestation │
│ ATIS-1000xxx specifications │
│ STI-GA / STI-PA / STI-CA hierarchy │
└─────────────────────┬────────────────────────┘
│ built on
│ protocol layer
▼
┌──────────────────────────────────────────────┐
│ STIR │
│ RFC 8224 (Identity in SIP) │
│ RFC 8225 (PASSporT) │
│ RFC 8226 (Certificate model) │
│ + extensions for OOB, RCD, delegation, ACME │
└──────────────────────────────────────────────┘
How we got here
The problem STIR addresses — caller-ID spoofing — has been around as long as caller-ID has. The SS7 era’s calling-party number was trivially settable by any switch with sufficient privilege, and the trust model was institutional: a small number of carriers, all known to each other, all bound by interconnection agreements that discouraged abuse. The honor system worked, more or less, because the population of entities able to inject calls was small enough to police socially.
The transition to SIP-signaled networks broke that arrangement. SIP made it cheap to originate calls — a VoIP provider could stand up a softswitch in an afternoon — and the population of originators expanded by orders of magnitude. Spoofing the calling-party number, which had been technically straightforward all along, became economically viable. By the early 2010s, a caller-ID display was unreliable enough as a trust signal that the public was beginning to ignore it entirely, and robocall volumes were starting their multi-year climb.
The IETF response was the STIR working group, chartered in 2013 to specify a cryptographic protocol that would let an originating provider sign an assertion about a calling identity in a way that downstream verifiers could check. The problem statement and threat model came out in late 2014 (RFC 7340 and RFC 7375); the core protocol trilogy — RFC 8224 for SIP-side identity, RFC 8225 for the PASSporT token format, RFC 8226 for the certificate model — was published in February 2018. Those three documents specify the cryptographic machinery; for the per- document treatment of each, see the IETF catalog.
The North American operational profile came together in parallel. ATIS — the Alliance for Telecommunications Industry Solutions — chartered the IP-NNI Task Force (Internet Protocol Network-to-Network Interface) to specify how STIR would actually be deployed between US and Canadian carriers. Three foundational documents emerged. ATIS-1000074, the SHAKEN base specification, established the use of the core STIR protocols and defined the operational profile carriers would deploy — attestation levels, signing semantics, and the on-the-wire structure of the SHAKEN PASSporT. ATIS-1000080 and ATIS-1000084 together define the certificate governance model — critical for SHAKEN management, STIR PKI governance, administration of certificate policies, and the eco-system participation rules that determine who can issue certificates and who can validate them. The governance arrangement (the STI-GA, STI-PA, STI-CA roles) was operational by 2019.
The third leg of the framework was regulatory: the United States TRACED Act of December 2019 directed the FCC to require carrier-level caller authentication, and the FCC’s March 2020 Report and Order mandated SHAKEN deployment for IP-based voice service by June 2021 for major carriers, with extensions for smaller carriers. The TRACED Act and the FCC order are what turned SHAKEN from a voluntary industry effort into compliance-driven deployment, and they’re the reason the framework is now live across essentially all major US and Canadian carriers.
Where the framework stands now
As of the mid-2020s, SHAKEN is operationally deployed across the North American carrier ecosystem. The vast majority of legitimate inter-carrier calls carry an authentication assertion; analytics engines and call-blocking products consume those assertions; the FCC continues to evolve the regulatory requirements through ongoing rulemakings.
The framework is not finished. The active work spans several fronts:
- Enterprise origination at scale — getting calls signed with attestation A from enterprise customers (rather than B from their carrier) requires the delegation model in RFC 9060 plus operational arrangements between carriers and customers that are still maturing. See delegate certificates.
- Non-IP call paths — SHAKEN’s in-band model assumes SIP signaling end to end, which TDM and SS7 segments break. Out-of- band SHAKEN, specified in RFC 8816, addresses this; deployment is slower than in-band SHAKEN. See out-of-band.
- Display-layer trust — caller-ID is necessary but not sufficient as a trust signal; rich call data (RFC 9795) and branded calling work add an authenticated display layer on top of the calling-number assertion. See rich call data.
- Cross-border arrangements — SHAKEN’s governance is North American; international interconnection requires trust arrangements with foreign carriers whose certificate hierarchies don’t share trust anchors. The ITU-T work on cross-border trust frameworks intersects here; see trust governance.
- Domain-bound identity — the current framework anchors trust in telephone-number authority, but many calling parties have stronger identity in their internet domain (a bank, a retailer, an airline). VESPER extends the framework to bind both. This is active draft work I’m authoring.
How this section is organized
STIR covers the IETF protocol layer — the identity-in-SIP mechanism (RFC 8224), the PASSporT token format (RFC 8225), the certificate model (RFC 8226), and how the pieces compose at runtime. STIR extensions catalogs the body of work that extends STIR — PASSporT extensions for SHAKEN, diversion, RCD, resource priority, and messaging; auxiliary mechanisms for delegation, out-of-band, error handling, and ACME-based certificate issuance; and the active drafts. The per-document pages live in the IETF catalog; the STIR and extensions pages provide the framing.
SHAKEN covers the operational profile and governance — the ATIS-1000xxx specifications, the STI- GA / STI-PA / STI-CA trust triangle, the attestation model, and the regulatory framework. Per-spec pages for the core ATIS documents live as sub-pages within this topic.
The remaining sub-pages are concept pages that synthesize across the protocol and the profile: attestation levels, out-of-band, delegate certificates, and rich call data. A glossary collects the terminology that gets used across all of these.
In this section
-
Attestation levels — A, B, and C in practice
SHAKEN attestation is network authentication — a structured claim by the originating service provider, the network putting a call onto the telephone network, about what it knows of the caller and the caller's authority to use the calling number. The three levels (A, B, C) are precise, but their operational meaning is more nuanced than the bare definitions suggest. This page covers the model, the network-versus-user authentication distinction (delegate certificates being the user-authentication counterpart), and how the system has evolved in practice.
-
Certificate hierarchy & trust anchors — the SHAKEN PKI
The end-to-end certificate model behind STIR/SHAKEN — the STI-PA at the root of trust, the STI-CAs it authorizes, the Service Provider certificates that carry TNAuthList authority, and the chain a verifier walks from an Identity header back to a trusted anchor. A consolidating hub for the SHAKEN public-key infrastructure.
-
Delegate certificates — solving the customer-of-customer authority problem
How STIR's certificate model is extended to let parties downstream of a carrier sign their own calls. RFC 9060 specifies the IETF mechanism; ATIS-1000092 specifies the SHAKEN operational profile. The current model anchors authority in the carrier; VESPER is the next-generation profile that extends it with RTU establishment, certificate transparency, and domain identity binding.
-
ATIS/SIP Forum IP-NNI Joint Task Force
The joint working group between ATIS's Packet Technologies and Systems Committee (PTSC) and the SIP Forum's Technical Working Group (TWG), formed in 2014 to specify IP-based network-to-network interconnection between North American service providers. Produced the foundational IP-NNI Profile and IP Interconnection Routing documents, then developed SHAKEN as Phase 2 work, and continues with profile updates, non-negotiated interconnection, and messaging.
-
Out-of-band — PASSporT delivery across signaling boundaries
Out-of-band is a general model for delivering signed PASSporTs outside traditional in-band signaling — supporting any interaction between two parties using a telephone number as the entity identifier, whether call, message, or asynchronous flow. The originating motivating use case is TDM-bridging in SHAKEN (where SIP Identity headers can't traverse non-IP segments), but the architectural pattern extends to branded-calling pre-call delivery, messaging trust, mutual authentication via Connected Identity, and credential-retrieval contexts that have no in-band signaling at all. RFC 8816 establishes the foundational architecture; ATIS specifications operationalize the TDM application; VESPER extends the model toward general PASSporT delivery and bi-directional authentication. Many proprietary branded-calling solutions already use OOB-style techniques today, and could evolve toward open-standard VESPER as the trust mechanism.
-
Rich call data — extending STIR with verified content beyond the telephone number
RCD extends STIR with content beyond the telephone number — names, logos, organizational identity, reason for call. For that content to be trustworthy, it must inherit trust through the same explicit foundation STIR provides for the telephone number itself. JWT Claim Constraints in delegate certificates are the mechanism — the certificate issuer verifies and authorizes what RCD content the bearer can assert, so a verifier can trace the content to authoritative verification rather than treating it as self-asserted content (which would have the same fraud potential as illegitimate caller-ID spoofing). RFC 9795 (STIR working group) is the substantive specification that defines how RCD content is signed and verified; RFC 9796 (SIPCORE working group) is a supplementary spec for delivering already-verified RCD content from the network to end-user devices over the UNI. ATIS-1000094 is the SHAKEN operational profile.
-
SHAKEN — the operational profile and governance framework
SHAKEN is the North American operational profile of STIR — the trust hierarchy, governance arrangement, attestation model, regulatory framework, and ATIS specifications that turn the IETF protocol into a deployed system. STIR is the cryptography; SHAKEN is the deployment.
-
STIR extensions and related work — the family of PASSporT extensions, auxiliary mechanisms, and active drafts
STIR's PASSporT format was designed for extensibility. The body of STIR work that has accumulated since the core trilogy (RFC 8224/8225/8226) is large — multiple PASSporT extensions for specific operational cases, auxiliary mechanisms for certificate management and error handling, and a continuing pipeline of active drafts. This page is the catalog — each entry briefly characterized, with forward pointers to deep-dive concept pages where they exist.
-
STIR — the protocol layer of caller authentication
STIR is the IETF cryptographic protocol for caller authentication. This page covers the core protocol layer — the identity-in-SIP mechanism, the PASSporT token format, the certificate model, and how the pieces compose at runtime. Extensions and related work live on the STIR extensions page; per-document pages live in the IETF catalog.
Planned
- stir · the protocol layer — identity in sip, passport, certificates
- shaken · the operational profile, atis specs, and the governance framework (sti-ga / sti-pa / sti-ca)
- ip-nni · the joint ATIS/SIP Forum task force and the catalog of ATIS-1000xxx specifications it produces
- attestation-levels · what A, B, and C mean and why the distinction matters operationally (drafted)
- out-of-band · extending the framework to non-IP call paths (drafted)
- delegate-certificates · solving the customer-of-customer authority problem (drafted)
- rich-call-data · RCD, branded calling, and the post-attestation display layer (drafted)
- per-spec ATIS pages (atis-1000074, 1000080, 1000084, 1000092, 1000094, etc.) added incrementally
- glossary · STIR/SHAKEN-specific terminology