Does iOS 8's MAC address randomization give the actual MAC address once connected?
Solution 1:
It should, but I have found no source that explicitely states it. Apple writes in its iOS Security Guide for September 2014 that
When iOS 8 is not associated with a Wi-Fi network and a device’s processor is asleep, iOS 8 uses a randomized Media Access Control (MAC) address when conducting PNO scans. When iOS 8 is not associated with a Wi-Fi network or a device’s processor is asleep, iOS 8 uses a randomized MAC address when conducting ePNO scans. Because a device's MAC address now changes when it's not connected to a network, it can’t be used to persistently track a device by passive observers of Wi-Fi traffic.
This is of course a bit ambigiuous because it doesn't explicitely describe the behaviour when the iDevice is connecting.
It should be noted that contrary to the statement above, the MAC address randomization currently only works if there is no cellular connection and Location Services are deactivated.
Solution 2:
Yes. Even before you're connected, your device will give its real MAC address when you tap on a network to connect to it, to allow for MAC address filtering, etc.
MAC address randomisation is discussed in this Apple security guide:
- https://www.apple.com/privacy/docs/iOS_Security_Guide_Sept_2014.pdf