You want to check something online so badly. You see a familiar wi-fi network, try to connect to it, and it asks for authentication. How annoying would it be, right? Thankfully it doesn’t usually happen to familiar networks. And for that, MAC address is the reason. The network recognizes your device using it’s MAC address to provide a smooth connection process.
Now, let’s not expound further on MAC addresses and go off topic. We’re here to talk about MAC randomization. So, let’s get started right away.
What is MAC randomization?
MAC randomization is the process of choosing a random MAC address to connect to a network, and hiding the device’s original MAC address, to maintain anonymity.
That is, when a device connects to a network, a random MAC address will be passed on to other devices in the network, and connection will be established with this address.
Now how effective is this? Even though the scope of a MAC address is limited to within a network, MAC randomization could help alleviate some privacy concerns posed within a network. A device’s MAC address could be used to track its activity, behavior and location data while being connected to a network.
With iOS 14 and iPadOS 14, Apple took MAC address randomization to a tad higher level. Whereas earlier the randomization was done only during network scan, with iOS and iPadOS 14, devices have a random MAC address for each SSID. This means there will be a different MAC address for each network. This is enabled by default.
How does it affect enterprises?
It can affect two classes of enterprises. One being enterprises with a lot of company owned/managed devices used by its employees, and the other being enterprises having a lot of guest users.
The latter could be a restaurant, clothing store or any enterprise with a lot of customers that connect to their Wi-Fi. They use MAC addresses of devices connected to their network to recognize and identify their loyal customers, to provide an easy connection when they visit in the future.
Also, this could be useful to learn customer/guest behavior while they are in the company premises. It can then be used to provide a bespoke experience for their favorite customers.
But even adversely affected would be the former ones. Enterprises have hundreds of company-owned devices distributed to employees. Most of the time, these devices share a common network. MAC addresses could be used to identify user behavior, device history, and more. MAC address randomization could stand in the way of effectively analyzing these data.
Also, some MDM solutions use MAC address to uniquely identify their devices. When MAC address randomization is on, these MDMs fail to communicate with the devices. It may fail to recognize the devices and show that the devices are not connected.
Summing up
Speaking from a privacy point of view, MAC address randomization could be worth its weight in gold. But on the other hand, enterprises might not be huge fans of this feature.
As we saw, this could affect enterprises in quite a few ways. But luckily there is a way to overcome some challenges faced, especially for enterprises having company owned or managed devices.
Hexnode’s Wi-Fi policy for iOS devices solves the fuss caused by MAC address randomization and much more, and helps businesses build a trusted and secure network for all its devices.
Featured resource
Download the Hexnode iOS management datasheet
Learn more about Hexnode's advanced iOS management features with this datasheet
Download
Share your thoughts