UNLIMITED FREE ACCESS TO THE WORLD'S BEST IDEAS

close
Already an Engineering360 user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your Engineering360 Experience

close

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

IETF - RFC 9060

Secure Telephone Identity Revisited (STIR) Certificate Delegation

active, Most Current
Organization: IETF
Publication Date: 1 September 2021
Status: active
Page Count: 12
scope:

Abstract

The Secure Telephone Identity Revisited (STIR) certificate profile provides a way to attest authority over telephone numbers and related identifiers for the purpose of preventing telephone number spoofing. This specification details how that authority can be delegated from a parent certificate to a subordinate certificate. This supports a number of use cases, including those where service providers grant credentials to enterprises or other customers capable of signing calls with STIR.

Document History

RFC 9060
September 1, 2021
Secure Telephone Identity Revisited (STIR) Certificate Delegation
Abstract The Secure Telephone Identity Revisited (STIR) certificate profile provides a way to attest authority over telephone numbers and related identifiers for the purpose of preventing telephone...

References

This document references:
RFC 3261 - SIP: Session Initiation Protocol
Published by IETF on June 1, 2002
A description is not available for this item.
This document references:
IETF RFC 8225 - PASSporT: Personal Assertion Token
Published by IETF on February 1, 2018
This document defines a method for creating and validating a token that cryptographically verifies an originating identity or, more generally, a URI or telephone number representing the originator of...
This document references:
IETF RFC 8226 - Secure Telephone Identity Credentials: Certificates
Published by IETF on February 1, 2018
In order to prevent the impersonation of telephone numbers on the Internet, some kind of credential system needs to exist that cryptographically asserts authority over telephone numbers. This...
This document references:
IETF RFC 8555 - Automatic Certificate Management Environment (ACME)
Published by IETF on March 1, 2019
Public Key Infrastructure using X.509 (PKIX) certificates are used for a number of purposes, the most significant of which is the authentication of domain names. Thus, certification authorities (CAs)...
This document references:
IETF RFC 8739 - Support for Short-Term, Automatically Renewed (STAR) Certificates in the Automated Certificate Management Environment (ACME)
Published by IETF on March 1, 2020
Abstract Public key certificates need to be revoked when they are compromised, that is, when the associated private key is exposed to an unauthorized entity. However, the revocation process is often...
This document references:
X.509 CORR 1 - Information technology – Open Systems Interconnection – The Directory: Public-key and attribute certificate frameworks Technical Corrigendum 1
Published by ITU-T on October 1, 2021
A description is not available for this item.
This document is referenced by:
RFC 9115 - An Automatic Certificate Management Environment (ACME) Profile for Generating Delegated Certificates
Published by IETF on September 1, 2021
Abstract This document defines a profile of the Automatic Certificate Management Environment (ACME) protocol by which the holder of an identifier (e.g., a domain name) can allow a third party to...
View Less
View All
Advertisement