YouMail Blog & News

A look at Stir/Shaken’s wins and losses when it comes to robocall mitigation in 2022

Written by YouMailPS | January 10, 2023

What are some factors that a Communication Service Provider (CSP) should evaluate to see if they are choosing the best robocall compliance software for their needs?

In this article, we cover:

What Is STIR/SHAKEN Robocall Mitigation

 

STIR/SHAKEN is a set of standards and protocols that Communication Service Providers (CSPs) are required to adhere to in order to help combat the billions of monthly robocalls.

These standards were developed by a group of telecommunications organizations and regulatory agencies, including the US Federal Communications Commission (FCC) and and the Canadian Radio-television and Telecommunications Commission (CRTC).

Robocalls, of course, often use caller ID spoofing (disguising the caller's phone number by using a fake or different number) for fraudulent purposes, and the FCC has taken strong action to make stopping robocalls a priority. So STIR/SHAKEN was designed to verify the authenticity of caller ID information and help (CSPs) identify and block (or label) suspicious calls.

STIR stands for Secure Telephony Identity Revisited, and SHAKEN stands for Signature-based Handling of Asserted information using toKENs. And, as you may have figured, the name was inspired by the James Bond character, and how he prefers his martini. (As the LA Times said, the creators of SHAKEN "tortured the English language until [they] came up with an acronym.”)

Most CSPs are now required to use STIR/SHAKEN protocols in the US and Canada — or they could have their domestic voice traffic cut off. But how well did it STIR/SHAKEN do for robocall mitigation in 2022?

Key Wins & Losses For STIR/SHAKEN in 2022

 

First, let’s talk about the holes in STIR/SHAKEN robocall mitigation:

  • STIR/SHAKEN robocall mitigation has not been adopted around the world in every country yet.
  • STIR/SHAKEN implementation on a national level can be expensive.
  • STIR/SHAKEN is not accurate for phone networks that are not IP-based.
  • Bad actors are turning to other methods to defraud people, including robotext (text message / SMS) campaigns that use disposable 10-digital numbers acquired legitimately.
  • STIR/SHAKEN doesn’t actually stop robocalls from reaching people. It will just help identify the caller more accurately.

So it’s clear that key losses for robocall mitigation includes the simple fact that STIR/SHAKEN robocall mitigation has not been implemented fully, and that even when it is, there will certainly be holes in the net and the scammers will work to find ways around this solution.

Another loss for STIR/SHAKEN in 2022 is to the smaller CSPs (voice over IP carriers) that  simply haven’t been able to follow the FCC regulations. According to FCC chairwoman Jessica Rosenworcel, “This is a new era. If a provider doesn’t meet its obligations under the law, it now faces expulsion from America’s phone networks. Fines alone aren’t enough.”

Sure enough, in November 2022 the FCC actually removed a voice provider from other networks, effectively terminating their ability to do business.

Has there been any robocall mitigation improvement due to STIR/SHAKEN in 2022, though? Absolutely.

Here are some of the 2022 successes in STIR/SHAKEN robocall mitigation:

  • Tier 1 carriers have implemented STIR/SHAKEN, and it seems to be working. In 2022, roughly 76% of the total targeted intercarrier calls were properly signed, up from roughly 65% in the prior year.
  • Less than 10% of unwanted robocalls come from the Tier 1 carriers, even though they carry more than 75% of the intercarrier voice traffic.
  • STIR/SHAKEN (combined with other robocall mitigation techniques) is raising the cost of robocalls. As the CEO of YouMail, Alex Quilici, said, “ The economics of robocalling is that it's so cheap to make a million calls, you don’t need very many people to respond to make a profit.” Increasing the cost will help slow the flood.
  • Examples of catching robocallers abound. One significant example: In mid-2022 prosecutors, aided by better authentication efforts, filed suit against 3 people that were quite possibly responsible for not just millions of calls — but billions of extended car warranty calls, all using fraudulent caller ID data. This action alone significantly affected the total volume of robocalls in the US.
  • The teams fighting robocalls are using STIR/SHAKEN are part of their toolkit, and are becoming increasingly sophisticated. Take, for example, the partnership between YouMailPS and WMC Global, to stop both voice and SMS calls together. (Or, for that matter, take the sophisticated offering from YouMailPS that helps both CSPs and businesses mitigate robocalls.)

Robocall mitigation made a bit leap forward in 2022, but there’s still a long way to go to fight robocalls.

 

How To Improve STIR/SHAKEN Mitigation in 2023

At this point, most US and Canadian Communication Service Providers have implemented STIR/SHAKEN. So how can they improve their robocall mitigation efforts in 2023?

The best way is to broaden their toolkit by adding a range of additional solutions to their network. This reduces risk from the FCC, from lawsuits, bad press, lost customers, and can even reduce IT costs … all while increasing your robocall identification accuracy.

Companies like YouMailPS, for example, partner with CSPs to offer a collection of technologies to extend the CSPs range. YouMailPS, for example, uses patented AI algorithms to analyze communications content. These algorithms first accurately identify unwanted calls. They also identify unique digital fingerprints for numbers associated with bad actors. These then follow bad actors wherever they go – across spoofed telephone numbers and multiple originating service providers. YouMailPS adaptive algorithms are effective regardless of attack duration, frequency, and other tactics. Combine this with billions of data points from their consumer solution, and you also get audio content-based analytics. The various tools offered by YouMailPS dramatically impact the accuracy and effectiveness of a CSP’s robocall mitigation efforts, taking it to the next level beyond STIR/SHAKEN.

CSPs can now rapidly improve their robocall compliance. We'll show you how, in just 15 minutes >
View full post