[csdvrx]

> That attack requires continuously monitoring a given device or area though, right?

The "randomization" seems to be a pseudo-randomization: with the seed and the timestamp, you should be able to deduce the future "randomized" addresses.

[lxgr]

Not with a cryptographically secure pseudorandom number generator, and constructing one doesn't seem hard to do, given that LE devices will need to support AES anyway.