The study analyzes the security landscape in Bluetooth Low Energy (BLE) tracking systems, with a particular emphasis on Apple AirTags and Samsung SmartTags. The investigation covers a variety of attack vectors such as physical tampering, firmware exploitation, signal spoofing, and others. The findings reveal that while BLE trackers offer substantial utility, they also pose significant security risks. Apple’s approach, which prioritizes user privacy, leads to device authentication challenges. Conversely, Samsung SmartTags, designed to prevent beacon spoofing, raise concerns about cloud security and user privacy. The paper concludes with insights into the anticipated evolution of these tracking systems, predicting that future enhancements will likely focus on bolstering security features.
Publication date: 26 Jan 2024
Project Page: Not provided
Paper: https://arxiv.org/pdf/2401.13584