What is STIR/SHAKEN?
STIR/SHAKEN is a framework developed and mandated by the FCC to combat illegal robocalls and caller ID spoofing across the U.S. telephone network. STIR stands for Secure Telephony Identity Revisited, and SHAKEN stands for Signature-based Handling of Asserted information using toKENs.
The framework works by requiring voice service providers to digitally sign call origination data using a certificate issued by a trusted Certificate Authority. When a call is placed, the originating provider attaches a cryptographic signature (a SIP Identity header) that asserts the caller's identity and the provider's relationship to the calling number. The terminating provider then verifies this signature to determine whether the call is legitimate.
The FCC requires all voice service providers to either implement STIR/SHAKEN or register an alternative robocall mitigation plan. Providers who do not comply risk having their traffic blocked by other carriers. Inclusion in the FCC's Robocall Mitigation Database is essential for maintaining call deliverability.
Attestation Levels
Under STIR/SHAKEN, there are three levels of attestation that indicate the originating provider's confidence in the caller's identity:
Full Attestation (A)
The provider has authenticated the caller and verified they are authorized to use the calling number. This is the highest level of trust.
Partial Attestation (B)
The provider has authenticated the call origin but cannot verify the caller's authorization to use the specific number.
Gateway Attestation (C)
The provider received the call from an international gateway or other source and can only verify the entry point into its network.
Why STIR/SHAKEN Compliance Matters
The mandate exists because illegal robocalls and caller ID spoofing had become a massive problem β billions of unwanted calls per month eroding consumer trust in the telephone network. STIR/SHAKEN provides traceability and accountability across all carriers, supporting law enforcement efforts through the Industry Traceback Group.
For businesses, STIR/SHAKEN compliance directly affects call deliverability and answer rates. Calls that carry a verified attestation are less likely to be flagged as spam or blocked by analytics engines on the receiving end. Conversely, calls from providers without proper authentication may see declining answer rates and potential blocking.
DIDLive / PEC Signs Its Own Certificate
This is an important distinction: DIDLive (Parwan Electronics Corporation) holds its own STIR/SHAKEN certificate and signs calls directly. Many smaller VoIP providers rely on their upstream carrier to sign calls on their behalf, which means they have no direct control over the attestation process and may receive lower attestation levels.
Because DIDLive signs its own certificate, we provide Full Attestation (Level A) for calls originating from numbers we manage. This means your outbound calls carry the highest level of verification, giving your customers and their recipients confidence that the calls are legitimate and properly authenticated.
Direct Certificate Authority
We hold our own STI certificate issued by a trusted CA, giving us direct signing authority rather than depending on third parties.
Full (A) Attestation
Calls from DIDLive-managed numbers receive the highest attestation level, maximizing call deliverability and answer rates.
Better Answer Rates
Properly attested calls are less likely to be flagged as spam or blocked by carrier analytics engines on the terminating side.
Robocall Mitigation
DIDLive is registered in the FCC's Robocall Mitigation Database, ensuring your traffic is never blocked for non-compliance.
Reference Documents
For detailed regulatory information on STIR/SHAKEN implementation and compliance requirements, refer to these resources:
Your Calls Deserve Full Attestation
Partner with a provider that signs its own STIR/SHAKEN certificate for maximum call deliverability.
Get Started β