I have been reading a lot about BLE security lately. But, I have found only a bunch of links talking about doing something concrete around ble security:
Apart from these, I couldn't find resource to learn further. Turning towards this community to learn more practical implementations for developers. What do you do in terms of security implementations? I would love to get your opinion on Key20's approach as well.
I have worked with BLE beacons lately. Key security issues I faced in general were passive eavesdropping, man in the middle (MITM) attacks and identity tracking.
You can work upon BLE security by pairing it with other BLE device, to exchange information securely.
Before starting my BLE project 2 years back I worked hard on its prototype stage. Security was part of it. It got me sailed through it. Security is a factor you need to consider right from the prototyping stage. You can visit this link for prototyping securely. It can help you a lot.
For more info about BLE security, you can visit this link.
https://www.digikey.com/eewiki/display/Wireless/A+Basic+Introduction+to+BLE+Security