I don't know why it's not implemented like traditional Bluetooth, by pairing. Each beacon vendor could generate a 6 digit code from a private key implemented like 2-factor auth. A corresponding iPad or device in a physical location could show the same code so users know they're pairing to the beacons in a store or location.<p>Then they proximity-fence these pairing requests so it only activates when they tap a device on a "pairing beacon."
Using a geofence for LBT permissions ignores the fact that BLE is being used for its low power properties. If a LBT needs to trigger a GPS lookup, we're going backwards.