Apple’s iOS 14, iPadOS 14, and watchOS 7 will randomize MAC addresses
- jul
- 20
What you need to know
- Apple's iOS 14, iPadOS 14, and watchOS 7 will be able to randomize devices' MAC addresses.
- Apple says it will help with user privacy.
- But this will need to be disabled in some network settings.
It's an interesting move, but a potentially problematic one.
Apple will release iOS 14, iPadOS 14, and watchOS 7 to the public later this year and developers are already testing them out. Apple has also published some support documentation for the updates ahead of time with one tidbit particularly interesting. All three of those updates will be able to randomize a device's MAC address to help maintain user privacy.
Spotted by Stephen Hacket at 512 Pixels, the support document explains that while a MAC address is a great way to identify a device, that identification also makes it perfect for tracking users.
To communicate with a Wi-Fi network, a device must identify itself to the network using a unique network address called a media access control (MAC) address. If the device always uses the same Wi-Fi MAC address, network operators and other network observers can more easily relate that address to the device's network activity and location over time. This allows a kind of user tracking or profiling, and it applies to all devices on all Wi-Fi networks.
To reduce this privacy risk, iOS 14, iPadOS 14, and watchOS 7 include a feature that periodically changes the MAC address your device uses with each Wi-Fi network. This randomized MAC address is your device's private Wi-Fi address for that network—until the next time it joins with a different address.
And that's great, for users at least. But as Hacket also points out, there is a potential for all kinds of problems here. Many enterprise Wi-Fi setups rely on identifying MAC addresses as a way to handle authentication. If a device doesn't present a MAC address that's approved, it can't get onto the network. Some particularly security-conscious home users might have a similar security switch flipped in their civilian setups, too. In both cases, having a device change something that's historically been static could lead to all kinds of unforeseen problems.
Thankfully Apple will allow this MAC randomization to be disabled at will. It also appears to be disabled by default, too. At least, it is in the current developer beta of iOS 14.