Beacon spoofing

Rui_Couto · November 11, 2014, 11:06pm

Hello,

I'd like to know if, at the moment, beacons incorporate any type of security in terms of possibility of being replicated.
Can one simply get the public UUID+Minor+Major, buy another beacon, and replicate the UUID+Minor+Major, therefore copying the original beacon?

Thanks

benben · November 20, 2014, 3:50am

YES. To prevent this, enable secure UUID.

Unfortunately the technology is flawed on a public network. Anyone can read your ID, use it, or just copy it. Android more so than iPhone.

Otherwise you could invent some crazy security system involving multiple beacons or checking GPS location.

Agnes · November 20, 2014, 3:13pm

Hello,

Let me jump in. At the moment Estimote platforms offers two layers of security:

Authentication process designed to prevent unauthorized access
‘Secure UUID’ mechanism for rotating beacon ID at a fixed interval to block piggybacking on someone’s beacon network. You can find more details about it here: https://community.estimote.com/hc/en-us/articles/204233603-What-is-Secure-UUID-and-how-does-it-work-

Both features are integrated with Estimote Cloud, but please note that while authentication is mandatory, using Secure UUID is optional. You can enable it in Estimote iOS app, the process is described in a link above.

In the future, we’re planning to put even more emphasis on security and encryption, stay tuned!

Topic		Replies	Views
Understanding the security of Estimote Beacons	1	991	April 15, 2015
Are Estimote beacons secure? How does Secure UUID work?	0	1121	July 27, 2017
How to enable beacon security feature	0	697	February 17, 2015
Lock-down, secure beacon's settings and firmware Archive	3	402	November 24, 2014
Mess with my Beacons Archive	5	452	June 2, 2014

Beacon spoofing

Related Topics