As far as I can tell, our use of a PRNG for address derivation was not driven by specific cryptographic security concerns. If the primary aim is simply to avoid address collisions, I think we can allow the user to include their own nonce in the account creation transaction (used as part of the preimage for address derivation). This will also allow for collision prevention in the case of duplicate account data, and avoids order dependency (so users can calculate addresses deterministically, which is very convenient).
cwgoes
commented
2 months ago
As far as I can tell, our use of a PRNG for address derivation was not driven by specific cryptographic security concerns. If the primary aim is simply to avoid address collisions, I think we can allow the user to include their own nonce in the account creation transaction (used as part of the preimage for address derivation). This will also allow for collision prevention in the case of duplicate account data, and avoids order dependency (so users can calculate addresses deterministically, which is very convenient).