STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← Back to Enterprise Voice, Video, and Messaging Policy Security Requirements Guide

V-274463

CAT II (Medium)

A site utilizing a commercial VoIP/SIP provider must use a provider compliant with FCC STIR/SHAKEN protocol rules.

Rule ID

SV-274463r1107631_rule

STIG

Enterprise Voice, Video, and Messaging Policy Security Requirements Guide

Version

V1R4

CCIs

CCI-001548

Discussion

The STIR/SHAKEN protocol required by recent FCC regulations ensures the authenticity of calling parties over voice communications. This protocol is aimed to reduce robocalls and spoofing. The carrier can digitally sign and verify the authenticity of caller ID information to combat fraudulent calls.

Check Content

Verify the commercial provider is compliant with the FCC STIR/SHAKEN regulations.

If the commercial provider is not compliant with FCC STIR/SHAKEN regulations, this is a finding.

Fix Text

Ensure the commercial provider is compliant with FCC STIR/SHAKEN regulations.