<div dir="ltr"><div>Glen, </div><div><br></div><div>What are we to do for our clients who have DID/TFN from 3rd paries? We won't have any relationship with their DID provider to request a delegated certificate, and wouldn't have one of our own to sign those calls, even as Attestation level B or C. Does the client need to request a delegated cert and provide it to each termination carrier they want to use?</div><div><div><br></div></div><div><div>I had a call with Bandwidth today was told the delegated certificates would need to contain (or refer via URL) a list of which numbers are permitted to be signed by that cert. I hope they've considered the potential information leak here and use hashes of the permitted numbers, not the numbers in cleartext.</div><div><br></div><div><div>For what it's worth, I received confirmation from NECA that an IPES OCN can be issued without an FCC waiver. This would at least let us sign with level B or C. </div><div><br></div><div>Query to NECA and their reply:</div><div><span class="gmail-im" style="color:rgb(80,0,80)"><div><p class="MsoNormal">Assuming I will need an OCN, I have been told that VoIP carriers that are not certified by <br>the FCC as Interconnected VoIP carriers cannot be assigned an OCN. This doesn't jive with the lingo on your website:<u></u><u></u></p></div></span><div><p class="MsoNormal"><br clear="all"><u></u><u></u></p><div><div><div><div><div><div><span class="gmail-im" style="color:rgb(80,0,80)"><blockquote style="border-top:none;border-right:none;border-bottom:none;border-left:1pt solid rgb(204,204,204);padding:0in 0in 0in 6pt;margin-left:4.8pt;margin-right:0in"><p class="MsoNormal">IPES service: Proof of service and customers, e.g., interconnection agreement (or evidence of an interconnection order pursuant to an approved tariff) and contractual agreements with end-user customers. Or, regulatory administration approval, if applicable. <u></u><u></u></p></blockquote><div><p class="MsoNormal"><u></u> <u></u></p></div></span><div><p class="MsoNormal">We definitely have contracted customers and definitely have interconnections with DID/TFN origination carriers and termination carriers. If we have no intention to obtain numbering resources directly, can we still obtain an OCN?</p><p class="MsoNormal"> <b><span style="color:red">Yes, you can still obtain an OCN.</span></b></p></div></div></div></div></div></div></div></div><div><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><br></div><div dir="ltr"><br></div><div dir="ltr">Regards,<div><br></div><div><p style="font-family:helvetica,arial,sans-serif;font-size:12px;margin:0px;padding:0px 0px 20px;color:rgb(0,0,0)"><strong>Calvin Ellison</strong><br>Senior Voice Operations Engineer<br><a href="mailto:calvin.ellison@voxox.com" style="text-decoration:none;color:rgb(14,123,174)" target="_blank">calvin.ellison@voxox.com</a><br>+1 (213) 285-0555<br><br>-----------------------------------------------<br><strong><a href="http://www.voxox.com/" style="text-decoration:none;color:rgb(14,123,174)" target="_blank">voxox.com</a> </strong><br>5825 Oberlin Drive, Suite 5<br>San Diego, CA 92121<br></p><img src="http://cdn.voxox.com/img/voxox-logo.png" alt="Voxox" style="color:rgb(0,0,0);font-family:"Times New Roman";font-size:medium"><br></div></div></div></div></div></div></div></div></div></div></div></div><br></div></div></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Tue, Aug 20, 2019 at 9:17 AM Glen Gerhard <<a href="mailto:glen@cognexus.net">glen@cognexus.net</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
<div bgcolor="#FFFFFF">
<font size="+1">Yes, I believe that is the case today. In the new
"delegated certificate" model the VoIP provider (or CPaaS
provider) will be provided a certificate from the OCN that is used
for the ANI. This delegated certificate will give the downstream
carriers A level Attestation for the calls regardless of where the
outbound calls are originated.<br>
<br>
Ultimately it is the originating Enterprise that needs to be
traceable from the terminating carrier. Once this relationship
chain has been vetted the certificates can be delegated and used
at call set up time. NetNumber has a service for brokering the
Certificates but the spec is not fully adopted to my knowledge.<br>
<br>
Another proposal at ATIS is to have the sending CNAM (and expanded
eCNAM) validated with a similar vetted relationship and
certificate chain. Ultimately this may be more useful for both the
Enterprise and the Callee than just the ANI.<br>
<br>
~Glen<br>
<br>
</font><br>
<div class="gmail-m_4507837824571939158moz-cite-prefix">On 8/16/2019 11:40, Mary Lou Carey
wrote:<br>
</div>
<blockquote type="cite">So
it sounds to me like you just have to be a certified carrier to
get a STIR/SHAKEN certificate. That means either a CLEC,
Wireless, or Interconnected VOIP Carrier. The VOIP carriers that
are not certified by the FCC as Interconnected VOIP carriers
cannot be assigned an OCN.
<br>
<br>
MARY LOU CAREY
<br>
BackUP Telecom Consulting
<br>
Office: 615-791-9969
<br>
Cell: 615-796-1111
<br>
<br>
On 2019-08-16 01:32 PM, Calvin Ellison wrote:
<br>
<blockquote type="cite">As explained to me by TransNexus, the
Certificate Authorities will
<br>
most likely require an OCN. VoIP carriers with their own
numbering
<br>
resources already have their IPES category OCN. It's also
possible
<br>
they might only require a SPID.
<br>
<br>
Regards,
<br>
<br>
CALVIN ELLISON
<br>
Senior Voice Operations Engineer
<br>
<a class="gmail-m_4507837824571939158moz-txt-link-abbreviated" href="mailto:calvin.ellison@voxox.com" target="_blank">calvin.ellison@voxox.com</a>
<br>
+1 (213) 285-0555
<br>
<br>
-----------------------------------------------
<br>
<a href="http://VOXOX.COM" target="_blank">VOXOX.COM</a> [1]
<br>
5825 Oberlin Drive, Suite 5
<br>
San Diego, CA 92121
<br>
<br>
On Fri, Aug 16, 2019 at 8:02 AM Dovid Bender
<a class="gmail-m_4507837824571939158moz-txt-link-rfc2396E" href="mailto:dovid@telecurve.com" target="_blank"><dovid@telecurve.com></a>
<br>
wrote:
<br>
<br>
<blockquote type="cite">Alex,
<br>
<br>
You would think so. From what I understand you will need to be
a LEC
<br>
to get a cert.
<br>
<br>
On Fri, Aug 16, 2019 at 10:33 AM Alex Balashov
<br>
<a class="gmail-m_4507837824571939158moz-txt-link-rfc2396E" href="mailto:abalashov@evaristesys.com" target="_blank"><abalashov@evaristesys.com></a> wrote:
<br>
<br>
<blockquote type="cite">If non-LEC VoIP providers can direct
own numbering resources now,
<br>
it follows that they should be able to partake of
STIR/SHAKEN.
<br>
<br>
—
<br>
Sent from mobile, with due apologies for brevity and errors.
<br>
<br>
<blockquote type="cite">On Aug 16, 2019, at 9:16 AM, Dovid
Bender <a class="gmail-m_4507837824571939158moz-txt-link-rfc2396E" href="mailto:dovid@telecurve.com" target="_blank"><dovid@telecurve.com></a>
<br>
</blockquote>
wrote:
<br>
<blockquote type="cite">
<br>
As I understand it if one wants to get a cert for STIR
shaken
<br>
</blockquote>
you need to become a CLEC. Anyone have a how to/contacts for
<br>
companies that make this effortless and easy?
<br>
<blockquote type="cite">
<br>
<br>
_______________________________________________
<br>
VoiceOps mailing list
<br>
<a class="gmail-m_4507837824571939158moz-txt-link-abbreviated" href="mailto:VoiceOps@voiceops.org" target="_blank">VoiceOps@voiceops.org</a>
<br>
<a class="gmail-m_4507837824571939158moz-txt-link-freetext" href="https://puck.nether.net/mailman/listinfo/voiceops" target="_blank">https://puck.nether.net/mailman/listinfo/voiceops</a>
<br>
</blockquote>
_______________________________________________
<br>
VoiceOps mailing list
<br>
<a class="gmail-m_4507837824571939158moz-txt-link-abbreviated" href="mailto:VoiceOps@voiceops.org" target="_blank">VoiceOps@voiceops.org</a>
<br>
<a class="gmail-m_4507837824571939158moz-txt-link-freetext" href="https://puck.nether.net/mailman/listinfo/voiceops" target="_blank">https://puck.nether.net/mailman/listinfo/voiceops</a>
<br>
</blockquote>
_______________________________________________
<br>
VoiceOps mailing list
<br>
<a class="gmail-m_4507837824571939158moz-txt-link-abbreviated" href="mailto:VoiceOps@voiceops.org" target="_blank">VoiceOps@voiceops.org</a>
<br>
<a class="gmail-m_4507837824571939158moz-txt-link-freetext" href="https://puck.nether.net/mailman/listinfo/voiceops" target="_blank">https://puck.nether.net/mailman/listinfo/voiceops</a>
<br>
</blockquote>
<br>
<br>
Links:
<br>
------
<br>
[1] <a class="gmail-m_4507837824571939158moz-txt-link-freetext" href="http://www.voxox.com/" target="_blank">http://www.voxox.com/</a>
<br>
_______________________________________________
<br>
VoiceOps mailing list
<br>
<a class="gmail-m_4507837824571939158moz-txt-link-abbreviated" href="mailto:VoiceOps@voiceops.org" target="_blank">VoiceOps@voiceops.org</a>
<br>
<a class="gmail-m_4507837824571939158moz-txt-link-freetext" href="https://puck.nether.net/mailman/listinfo/voiceops" target="_blank">https://puck.nether.net/mailman/listinfo/voiceops</a>
<br>
</blockquote>
_______________________________________________
<br>
VoiceOps mailing list
<br>
<a class="gmail-m_4507837824571939158moz-txt-link-abbreviated" href="mailto:VoiceOps@voiceops.org" target="_blank">VoiceOps@voiceops.org</a>
<br>
<a class="gmail-m_4507837824571939158moz-txt-link-freetext" href="https://puck.nether.net/mailman/listinfo/voiceops" target="_blank">https://puck.nether.net/mailman/listinfo/voiceops</a>
<br>
</blockquote>
<br>
<pre class="gmail-m_4507837824571939158moz-signature" cols="72">--
Glen Gerhard
<a class="gmail-m_4507837824571939158moz-txt-link-abbreviated" href="mailto:glen@cognexus.net" target="_blank">glen@cognexus.net</a>
858.324.4536
Cognexus, LLC
7891 Avenida Kirjah
San Diego, CA 92037
</pre>
</div>
_______________________________________________<br>
VoiceOps mailing list<br>
<a href="mailto:VoiceOps@voiceops.org" target="_blank">VoiceOps@voiceops.org</a><br>
<a href="https://puck.nether.net/mailman/listinfo/voiceops" rel="noreferrer" target="_blank">https://puck.nether.net/mailman/listinfo/voiceops</a><br>
</blockquote></div>