stir/shaken support

Status
Not open for further replies.

mrjoli021

Member
Jul 20, 2017
133
2
18
47
Hello All,

Stir/Shaken has been added to freeswich with libstirshaken. What are the plans to integrate stir/shaken to FusionPBX?
 

DigitalDaz

Administrator
Staff member
Sep 29, 2016
3,070
577
113
I haven't heard a sausage about this in a while though I will watch with interest.
 

Starblazer

New Member
Nov 3, 2018
16
1
3
43
going to bump this -- end of june service providers in the usa will need to be sending it per FCC mandate, so we should at least get inbound verification coded in...
 

KonradSC

Active Member
Mar 10, 2017
166
99
28
From my understanding the requirements apply to interconnected service providers like Bandwidth.com, T-Mobile, or Verizon.

If you are a hosted voice provider just managing phones and get your dialtone from someone like Bandwidth.com, they will take care of all the STIR/SHAKEN stuff and send you the results in the SIP header.

This article has a good explanation of how it will work for Bandwidth.com customers.

I think we'll be able to do some cool stuff with this new SIP header though.

You could modify the Caller-ID and add "Verified" or "Unverified" to the name. Or you could create dialplan rule that allows verified callers through, but sends unverified callers to an IVR.
 

Starblazer

New Member
Nov 3, 2018
16
1
3
43
While I agree that filtering via SIP headers provided by bandwidth would be an easy solution, not everybody uses Bandwidth and different carriers will have different solutions

I view the best way to do what would be build in the spec so that we can fully decode it on our end versus having to rely on another service provider. Y
 
Last edited:

Davesworld

Member
Feb 1, 2019
99
11
8
65
From my understanding the requirements apply to interconnected service providers like Bandwidth.com, T-Mobile, or Verizon.

If you are a hosted voice provider just managing phones and get your dialtone from someone like Bandwidth.com, they will take care of all the STIR/SHAKEN stuff and send you the results in the SIP header.

This article has a good explanation of how it will work for Bandwidth.com customers.

I think we'll be able to do some cool stuff with this new SIP header though.

You could modify the Caller-ID and add "Verified" or "Unverified" to the name. Or you could create dialplan rule that allows verified callers through, but sends unverified callers to an IVR.
Late reply but not all append the caller id. The other issue is that most calls will be B level attestation calls that are legitimate and partially verified. C level attestation calls are unverified and those are the ones that need to be sent to the IVR. A level calls will show as verified in the headers, C level will show as unverified. B level calls are partially verified in that the outgoing CLEC knows you but does not recognize the CID you sent since they do not own that DID. For one of my SBCs, BulkVS, I had to fill out a form and tick off boxes as to how I would and would not use their service so I get B level attestation because they do not handle my DIDs yet now I am legally bound by the form I filled and signed so any abuse by me and they have legal recourse.
 

Starblazer

New Member
Nov 3, 2018
16
1
3
43
freeswitch now has libstirshaken built into it so it will do the heavy work of decoding and verifying the certificates for verification, so, anything bought into FusionPBX would be a bonus. Right now I'm using lua to base64decode the string and then inject that into my spam system.

Also, we are getting a ton of unattested calls that come "from the ILECS" because SS7-originated calls doesn't have to send stir/shaken.
 

Davesworld

Member
Feb 1, 2019
99
11
8
65
freeswitch now has libstirshaken built into it so it will do the heavy work of decoding and verifying the certificates for verification, so, anything bought into FusionPBX would be a bonus. Right now I'm using lua to base64decode the string and then inject that into my spam system.

Also, we are getting a ton of unattested calls that come from ILECS because SS7-originated calls doesn't have to send stir/shaken.
I noticed that too in my case, otherwise I see A, B, or C level attestation applied. Since the PSTN is starting to go away now and is supposed to be globally phased out by 2030, will the ILECS simply stay in the game and use VOIP, do they use some VOIP already?

I should also acknowledge that Stir/Shaken is a USA construct as of now. I cannot verify this but it has been said that the EU is watching to see how it works here and has plans to implement it or something like it that suits their needs. Perhaps someone from across the Atlantic can educate us on this?
 
Status
Not open for further replies.