How can we protect the beacons, so that nobody can change their UUID?
Our Beacons have a high level of security due to a mix of encryption, randomness and simplicity. The encryption is based on a combination of AES-128 and MAC (Message Authentication Code), relying on a dedicated hardware coprocessor embedded in our beacons. The configuration process is greatly simplified by moving away from the mobile client and assigning this responsibility to the server side Beacon Management Software. This provides a secure way to configure and manage large-scale deployments, avoiding beacon loss to UUID hijacking.
Posted in: Firmware