Battling Robocaller Fraud – Top 5 Questions

By Alan D. Percy, Senior Director of Product Marketing, TelcoBridges

Last week we hosted a webinar with our Alliance Partner TransNexus, titled “Battling Robocaller Fraud – an Introduction to STIR/SHAKEN”.  As we expected, the topic was wildly popular with a larger than normal audience attending the live event and a long list of great questions during the Q/A.

As noted by Jim Dalton, CEO of TransNexus at the start of the session, automatic dialers with pre-programmed IVR scripts (aka Robocallers) do have valid applications (reminder calls from medical offices, bill pay reminders, school closures, reverse 911…)  But they are increasingly being used as part of elaborate fraud schemes, bilking victims and stealing their identities.  As noted by the Treasury Inspector General for Tax Administration (TIGTA), over 10,000 victims have collectively paid over $54 million because of phone scams since October 2013.  And that’s just the crime that was reported.

What is STIR/SHAKEN?

In a nut-shell, STIR/SHAKEN is a framework that adds an encrypted identity certificate to the header of a SIP INVITE (the message that initiates the call), proving that the originator has permission to use the associated caller-ID.

Once the call makes its way through the various IP-based wholesale operators, the terminating operator can use a public key to examine the certificate and verify that the caller-ID is intact and rightfully being used by the originator. Calls with a valid certificate will pass to the recipient unimpeded and with the associated caller-ID, knowing it is valid.  If a call arrives without a valid certificate, the terminating operator may flag the call as possible SPAM, send the call to a Captcha-like screening application or block the call altogether.

With literally billions of unwanted robocalls being made every month, they have become the largest source of complaints to the FCC, a very popular topic for a webinar and a great source of questions.

Here’s the Top 5 questions (and answers) from the “Battling Robocaller Fraud” webinar:

#1 How will stir/shaken affect class 4 telephony?

Answer: Implementing STIR/SHAKEN only impacts the originating and terminating carriers.  The intermediary carriers (class 4) must pass the SIP identity headers without modification.

#2: Sounds great, but it depends entirely on the originating TSP to provide genuine authentication.  What guarantees do we have this will be done by all originating TSPs, especially cellular carriers?  What about calls that originate outside the US?

Answer:  As the terminating service providers begin to flag calls without certificates as potential SPAM, or begin screening calls, the originators (both domestic and foreign) will have a strong incentive to add certificates to their calls.  One of the beauties of STIR/SHAKEN is that the originators of bogus calls can be quickly found and dealt with by the regulators, making enforcement pretty easy.

#3: Does STIR/SHAKEN work only on the PSTN using SS7?  What about OTT calls?

Answer: STIR/SHAKEN depends on IP infrastructure and the certificate is lost when handing a call over to a legacy TDM network.  However, calls without a certificate can be flagged in the caller-ID by adding/substituting text in the caller-ID fields.   Other applications like Skype SIP trunks could pass this information too.

#4: Does the size of the SIP packet require carriers to use TCP instead of UDP?

Answer: No, the identity certificates do fit within a SIP/UDP INVITE packet.  However, there is a trend to consider SIP/TCP to handle traffic in the future.

#5: What role does TelcoBridges FreeSBC or Tmedia Gateways play?

Answer: When a call is originated, either the SBC or gateway passes the INVITE to the Authentication Server, which returns a signed SIP token to the SBC/gateway before passing the call to the network.

There were many more great questions (22 in all!) – take a listen to the recorded webinar, available now in the FreeSBC Video Library

More insight into STIR/SHAKEN can be found in an Understanding STIR/SHAKEN article by TransNexus article

Interested in integrating STIR/SHAKEN into your network?  Request a consultation at the Discover SHAKEN workshop from TransNexus.

Caller-ID Spoofing – No, That’s Not Your Neighbor Calling

By Alan Percy, Senior Director of Product Marketing, TelcoBridges

The phone rings and the number looks familiar, just a few digits off from your own.  You wonder if a neighbor or possibly your child’s school calling, so you answer only to hear “Congratulations, you’ve been selected for a three night vacation package”   You’ve been tricked into answering by a Robocaller, using caller-ID spoofing.  Continue reading Caller-ID Spoofing – No, That’s Not Your Neighbor Calling

Fraud and Robocalls – More Than an Annoyance

By Alan Percy, Senior Director of Product Marketing, TelcoBridges

This last week, the NY Times Tara Siegel Bernard published an article explaining the trends of Robo calls and their scams are surging.  With the International Telecommunications Week (ITW) conference this week in Chicago, Tara’s timing couldn’t have been any better.

Continue reading Fraud and Robocalls – More Than an Annoyance

TelcoBridges and Jerasoft – Connecting at ITW 2018

by Alan Percy, Senior Director of Product Marketing

Leading communication service providers depend on cloud-based and virtualized software to deliver services to their customers.  Like building blocks in a building foundation, communications software products fit together, creating an inter-locking base for reliable and profitable services. During the upcoming ITW event in Chicago (May 6-9th), CSPs have an opportunity to see the latest innovations in software solutions and learn how the various communications system building blocks fit together.

Continue reading TelcoBridges and Jerasoft – Connecting at ITW 2018

Building a Virtualized Session Border Controller

By Alan Percy, Senior Director of Product Marketing

Over my career, I’ve been through plenty of software installation processes – some were of my own doing, others from open source or commercial products. Almost all of them are like watching a Rube Goldberg machine where an intricate sequence of interdependent steps occurs before your eyes. This week, I saw something very different.


Rube Goldberg Machine

Continue reading Building a Virtualized Session Border Controller

Notes from EC18: Why is Everybody Talking About Teams?

by Alan Percy, Senior Director of Product Marketing for TelcoBridges

As I pack my bags and head home from Orlando and put another Enterprise Connect event behind me, I wondered why (more than ever) has one communications platform gained so much mindshare as Microsoft Teams did this week?

Continue reading Notes from EC18: Why is Everybody Talking About Teams?

Notes from MWC 2018: 5G was Everywhere and Nowhere

By Alan Percy, Senior Director of Product Marketing

For four days every spring, Mobile World Congress is the center of the mobile industry universe. Under the guidance of the GSMA, the event is a chance for the industry to show off their new mobile and wireless consumer products, underlying technologies and most importantly, a vision of the future. Based on these goals, the 2018 event did not disappoint. Continue reading Notes from MWC 2018: 5G was Everywhere and Nowhere

FreeSBC – A New Approach to the SBC

by Alan Percy, Senior Director of Product Marketing

Wow – what a response! Thanks so much for participating in the event and our apologies for those that arrived to find the webinar platform at capacity. Your response far exceeded our expectations.

The webinar recording is now available for playback:

Click here to play the Webinar.

You can also view the slides on Slideshare.

You asked so many great questions – we’ve captured all your questions and posted them with answers on the FreeSBC FAQ Forum – take a look!

In addition, many of the common questions about compatibility and installation procedures can be found on the TelcoBridges FreeSBC Wiki.