> But I don't agree with you in "each trial is just as complex as finding a > matching CGA address."
It is just as complex -- unless of course someone cracks the hash algorithm. Absent a published crack, we have to assume that the best method for the attacker is an exhaustive search of salt values. Of course, we have no guarantee that the hash algorithm will not be cracked at some point in the future, and algorithm agility is indeed a desirable property. -- Christian Huitema -------------------------------------------------------------------- IETF IPv6 working group mailing list ipv6@ietf.org Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 --------------------------------------------------------------------