The Orchestrator supports the ability to associate Secure Telephony Identity Revisited/Secure Handling of Asserted information using toKENs (STIR/SHAKEN) Endpoints to Termination Customer Trunk Groups for the purpose of adding a STIR/SHAKEN Identity Headers to Termination Vendor (outbound) SIP Invites. The base64 URL encoded Identity header includes the Call Attestation (A, B, or C), ANI, DNIS, Current Timestamp, and Originating Service Provider ID.
A and B Attestation levels can only be assigned to calls where the ANI (NPANXX) belong to the US 50 States, Washington DC, or the 10 Canadian Provinces. All other NPANXXs and International numbers can be assigned a C level attestation.
The Termination Customer Trunk Group STIR/SHAKEN Treatment options include:
No Treatment - No Identify Header is added to the SIP Invite from the Customer. However if the SIP Invite includes an Identity header it will be passed to the vendor.
Block Unsigned - SIP Invites received Termination Customer Trunk Group with an Identity header will be blocked.
Sign Unsigned Calls - If the Termination Customer SIP Invite does not have an Identity header the SIP Invite will be forward to the selected STIR/SHAKEN endpoint. The endpoint is expected to sign (add an Identity header to) the SIP Invite providing a SIP 302.
Sign All Calls - The Termination Customer SIP Invite will be forwarded to the selected STIR/SHAKEN endpoint. Any existing Identity header will be discarded. The endpoint is expected to sign (add an Identity header to) the SIP Invite providing a SIP 302.
Termination Vendor Trunk Group STIR/SHAKEN Treatment options include:
No Treatment - No Identify Header is added to the SIP Invite from the Customer. However if the SIP Invite includes an Identity header it will be passed to the vendor.
Block Unsigned - SIP Invites received with an Identity header will be blocked.
STIR/SHAKEN Certificate Verification can be enabled on Termination Customer and Origination Vendor Trunk Groups.
Subject Level Filtering
This feature will allow incoming SIP Invites with identity headers to be filtered (rejected) based on the contents of the Subject line of the certificate that signed the identity header.
Example Subject Line for a Stir/Shaken signing certificate
To reject all SIP Invites from a Service Provider with the OCN 962J or an organization name that includes the name Versatel the below Subject Filters could be used.
Subject Line Filtering is supported on Termination Customer and Origination Vendor Trunk Groups and requires the STIR/SHAKEN Certificate Verification feature to be enabled.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article