Skip to main content
Do you know how long it takes to become FCC Compliant?
June 13, 2022 at 7:00 AM
Do you know how long it takes to become FCC Compliant?

It is now estimated that full compliance for US intermediate and gateway carriers up to a month, where international call producers can take up to 6 months... are you prepared to take the risk...? ACT NOW and ask us to help... In one of our emails, before the June 30th 2022 deadline for compliance, we detailed the following steps to compliance, but as of today there are still approximately 3,000 carriers registered with the FCC who are not in compliance. (FCC's publicly available RRAPTOR database). http://portal.legalcallsonly.org/List/RoboMitigate

Steps to full STIR/SHAKEN Compliance for non-facilities carriers

Non-facilities-based resellers must incorporate the required analytics in the IP portions of their networks to deploy the necessary STIR/SHAKEN capabilities. There are also six required administrative steps such providers must take in order to be fully compliant.

WE CAN HELP YOU EVERY STEP OF THE WAY

· Step 1: Obtain an Operating Company Number (“OCN”). These are assigned by NECA and used to identify companies in other telecommunications resources.

· Step 2: Register with the Policy Administrator. The Policy Administrator (iconectiv is the designated “PA”) evaluates and authorizes certain trusted third parties to act as Certification Authorities (“CAs”) and issue SHAKEN digital certificates to service providers. This both protects the authenticity and validity of the certificates and prevents people who shouldn’t be signing calls from getting a certificate. Iconectiv is responsible for coordinating, registering, and verifying CAs through a closely controlled process outlined by the Secure Telephone Identity Governance Authority (“STI-GA). ATIS manages the STI-GA, defining the rules governing the certificate management infrastructure to ensure effective use and security of SHAKEN certificates.

· Step 3: Get a token from the PA. Carriers must request a service provider code or token from the PA. If the PA validates the service provider and approves the request, they then provide a token to the service provider with contains the OCN, and authorizes the service provider to request a certificate from a CA.

· Step 4: Select a CA. Secure Telephone Identity Certification Authorities (“STI-CAs”) are critical to call authentication. CAs will be responsible for assigning digital certificates to authorized service providers that will be used to ensure calls get proper caller ID. The PA maintains an up-to-date list of all authorized certificate issuers, which is available to all service providers. Every Certification Authority must be authorized by the PA to issue SHAKEN certificates, and they are the only means through which service providers can obtain STIR/SHAKEN certificates and comply with the TRACED Act.

· Step 5: Request a Certificate. To get a certificate, service providers need to submit a certificate signing request “(CSR”) and send it with their token to the CA. If the application is approved, the CA issues a certificate to the service provider.

· Step 6: Update the FCC’s Robocall Mitigation Database to certify as fully STIR/SHAKEN compliant.

If you are not complaint you might be shocked to know how long it currently take to become compliant. 📷 📷 IF YOU HAVE NOT ALREADY BECOME STIR/SHAKEN COMPLIANT, DO YOU KNOW HOW LONG IT WILL TAKE TO COMPLY?

It is now estimated that full compliance for US intermediate and gateway carriers up to a month, where international call producers can take up to 6 months... are you prepared to take the risk...? ACT NOW and ask us to help... In one of our emails, before the June 30th 2022 deadline for compliance, we detailed the following steps to compliance, but as of today there are still approximately 3,000 carriers registered with the FCC who are not in compliance. (FCC's publicly available RRAPTOR database). http://portal.legalcallsonly.org/List/RoboMitigate

Steps to full STIR/SHAKEN Compliance for non-facilities carriers

Non-facilities-based resellers must incorporate the required analytics in the IP portions of their networks to deploy the necessary STIR/SHAKEN capabilities. There are also six required administrative steps such providers must take in order to be fully compliant.

WE CAN HELP YOU EVERY STEP OF THE WAY

· Step 1: Obtain an Operating Company Number (“OCN”). These are assigned by NECA and used to identify companies in other telecommunications resources.

· Step 2: Register with the Policy Administrator. The Policy Administrator (iconectiv is the designated “PA”) evaluates and authorizes certain trusted third parties to act as Certification Authorities (“CAs”) and issue SHAKEN digital certificates to service providers. This both protects the authenticity and validity of the certificates and prevents people who shouldn’t be signing calls from getting a certificate. Iconectiv is responsible for coordinating, registering, and verifying CAs through a closely controlled process outlined by the Secure Telephone Identity Governance Authority (“STI-GA). ATIS manages the STI-GA, defining the rules governing the certificate management infrastructure to ensure effective use and security of SHAKEN certificates.

· Step 3: Get a token from the PA. Carriers must request a service provider code or token from the PA. If the PA validates the service provider and approves the request, they then provide a token to the service provider with contains the OCN, and authorizes the service provider to request a certificate from a CA.

· Step 4: Select a CA. Secure Telephone Identity Certification Authorities (“STI-CAs”) are critical to call authentication. CAs will be responsible for assigning digital certificates to authorized service providers that will be used to ensure calls get proper caller ID. The PA maintains an up-to-date list of all authorized certificate issuers, which is available to all service providers. Every Certification Authority must be authorized by the PA to issue SHAKEN certificates, and they are the only means through which service providers can obtain STIR/SHAKEN certificates and comply with the TRACED Act.

· Step 5: Request a Certificate. To get a certificate, service providers need to submit a certificate signing request “(CSR”) and send it with their token to the CA. If the application is approved, the CA issues a certificate to the service provider.

· Step 6: Update the FCC’s Robocall Mitigation Database to certify as fully STIR/SHAKEN compliant.

We provide stir/shaken tokens, call verification, DID verification, and live fraud and TCPA compliance monitoring, to save you the embarrassment to having a visit from those who wield the stick.....

But remember, whatever solutions you take to reverse your ASR trend, you must comply with both stir/shaken and TCPA regulations. By not doing so, or ignoring them, will invite your eventual demise.

We can also help you with Federal registrations, call compliance, back-room stir/shaken operations for your network, VoIP termination, and other compliance support.

Subscribe to our newsletter
Let's keep in touch!

Stay updated on the latest news in the regulatory and compliance world! Sign up to receive our newsletter.