STIR/SHAKEN Overview

STIR/SHAKEN is an industry-standard framework designed to prevent Caller ID Spoofing. Yeastar Central Management allows you to configure STIR/SHAKEN for shared trunks, which enables the associated P-Series Cloud PBX to sign outbound calls and verify inbound calls, ensuring caller ID authenticity and building trust with your customers.

Requirements

The firmware of P-Series Cloud PBX is 84.21.0.16 or later.

Caller ID authentication

To comply with the STIR/SHAKEN framework, the calling party needs to digitally sign outbound calls, and the called party needs to verify inbound calls.

You can configure the following features to enable the PBX to handle caller ID authentication in different communication roles.

Sign outbound calls

When outbound call signing feature is enabled for a shared trunk, the associated PBX (calling party) will digitally sign all outbound calls (excluding emergency and anonymous calls) routed through the trunk, enhancing the call credibility.

For more information, see the following topics:

Verify inbound calls

There are two methods of using STIR/SHAKEN for verifying inbound calls. The key difference between these methods is whether the PBX (called party) performs the verification itself or relies on the ITSP.


Method	Description	Instruction
Inbound call verification	The associated PBX directly verifies the signature of inbound calls routed through the trunk, and reject calls based on the rejection criteria globally configured for all shared trunks in the STIR/SHAKEN module.	Configure inbound call verification policy that are available for all shared trunks Enable inbound call verification feature for a shared trunk
Inbound call filtering	The ITSP verifies the calls and sends the verification results to the associated PBX. The PBX uses these verification results to reject calls based on the rejection criteria configured on the shared trunk.	Enable inbound call filtering for a shared trunk