Hello agk1330,

I've only heard this question once.  That user found that the Skype's Fraud Department and the Skype Enterprise Support teams have the tools to TRACE EVERY call coming in and going out of our SBC's. We can trace BACK to any user that tries to place malious or fraudulent calls into Skype.  We value the security of our users and protect you around ever corner.  If you have issues with this, please come into our Live Chat immediately and we will start tracing for you and escalate this to Skype's Security and Fraud departments.

You can Chat with us 24/7 by loggig into your Skype Manager and clicking on the Chat button in the top right of that screen.

I hope this answers your question.

Regards,

Victor S.

Skype Enterprise Support

Thanks for the quick reply. 

My concern isn't someone placing fraudulent calls through the Skype network (though its good to know we've got help if that happens), but rather someone not associated with Skype can send a SIP INVITE with a source address of the Skype SBCs (which are well known).  Because UDP (which is, currently, the only supported transport protocol) is trivial to spoof, and because many ISPs don't implement anti-spoofing measures, we have no way of knowing if the packet really did come from Skype or from someone else.

The only way to prevent this would be to implement TCP, or better yet, TLS.  Some vendors are supporting something called Authenticated Invites, though I don't believe this is standard.

Thanks.

Great.  Thanks for the advice.

Glad to hear this.  This make it much more likely we will more widely use Skype Connect.

I'm working with our vendor for the procedure to implement TLS on our side.

Thanks for the follow up.

Hello akg1330,

Thanks for your feedback and for being a frequent visitor of our forums. We appreciate your questions.

Regards,

Chris Knott
Skype Enterprise Support
113