Loading
Loading
Your feedback directly shapes Sporos.
Sign in to track your feedback history
In this document, the Federal Communications Commission (Commission) adopts rules that strengthen the Commission's caller ID authentication requirements by establishing clear practices for providers that rely on third parties to fulfill their STIR/SHAKEN implementation obligations. The rules authorize providers with a STIR/ SHAKEN implementation obligation to engage third parties to perform the technological act of digitally "signing" calls consistent with the requirements of the STIR/SHAKEN technical standards so long as: the provider with the implementation obligation makes the "attestation- level" decisions for authenticating caller ID information; and all calls are signed using the certificate of the provider with the implementation obligation--not the certificate of a third party. The rules also explicitly require all providers with a STIR/SHAKEN implementation obligation to obtain a Service Provider Code (SPC) token from the STIR/SHAKEN Policy Administrator and present that token to a STIR/SHAKEN Certificate Authority to obtain a digital certificate. Additionally, the rules include recordkeeping requirements for third- party authentication arrangements to enable the Commission to monitor compliance with and enforce Commission rules.
Published
Aug 19, 2025
Effective
Sep 18, 2025
Citation
90 FR 40241
Agencies
1
Full text not available in our database.
View on Federal Register →Get a plain-English explanation of what this regulation does, which agencies are responsible, and how it affects existing rules.
No document text available yet
WC Docket No. 17-97
FCC 24-120
FR ID 304848
47 CFR 64