Not if all devices are registered. If that happens you can black list anything not in the database. Not in the database, not allowed on the net. Or, is subject to intense , unrelenting scrutiny from the second you connect. And if you try and spoof an existing address, that's already connected, red flags go up all over the place.
Trust me, it might be seemingly impossible to you now, but computers are very good at dealing with large amounts of mundane data. And they'll only get better at it; about every 18 months.
Do not let you guard down on crap like this just because you don't think it's possible.
It is a bad law; sets a bad precedent; and will open up a Pandora's box you don't want opened.