I'm not aware of any spoof attacks. Virtually all sip implementations are UDP only. There are some implementations of sips, which uses TLS and thus TCP, but hardly anyone deploys that. I hope we do deploy a lot more tls. Actually, the trend in the standards work is to move sip towards tcp transport. Brian