This seems the obvious threat model when thinking about a "no action requred" wireless token, same thing as contactless payments and RFID passports etc.
To be secure against this type of attack, such a device has to be designed assuming the adversary controls the nearby radio spectrum and can do relaying and MITM.
To control for distance, a speed of light based latency limit might work, though I don't know how cheaply it could be implemented. Laser based distance meters are cheap now, and light travels just 30cm per 1 GHz clock cycle...
To be secure against this type of attack, such a device has to be designed assuming the adversary controls the nearby radio spectrum and can do relaying and MITM.
To control for distance, a speed of light based latency limit might work, though I don't know how cheaply it could be implemented. Laser based distance meters are cheap now, and light travels just 30cm per 1 GHz clock cycle...