I'm coding GENERIC_WEB_SERVICE, which could potentially be running as multiple instances on multiple machines down the line. I'm using UUIDs as identifiers, and haven't settled yet on whether to use version 1 or version 4.
In this case, I have absolutely no idea what the implications are of exposing the MAC address by using version 1. I don't think I'm concerned about exposing the generation time.
So:
- Are there potential issues?
- I could apply an XOR mask over the portion of the UUID that represents the MAC address. The same mask would be used by every instance of the running service. Does this sufficiently handle aforementioned potential issues?