Re: Destiny Gaming

["Jones, Dan J." <djjones () WPI EDU>]

Procera has confirmed this is an issue with their packetlogic box. I understand Procera is working on a software update 
that will allow this game to be differentiated from other P2P traffic. Current ETA for the update is about one week.
___________________________
Dan Jones
Information Security Office
Worcester Polytechnic Institute

From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Howard, 
Christopher
Sent: Thursday, September 11, 2014 10:58 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Destiny Gaming

We have had quite a few complaints about this game.  I wrote a blog post about it for our students so I could stop 
repeating myself.  A student forwarded that post to Bungie and a Bungie person has actually contacted me about it.  He 
claims that it's not a NAT issue as I thought it was.  He says that Procera Packetlogic systems are classifying Destiny 
traffic as encrypted bittorrent and as a result getting dropped.  I haven't had a chance to actually verify his claims, 
but he wants to work with Procera about getting a Destiny signature created.

Christopher Howard
Senior Network Engineer
University of Tennessee at Chattanooga

Helping Students Achieve Excellence through Technology

christopher-howard () utc edu<mailto:christopher-howard () utc edu>
423-425-1773


From: Roger A Safian <r-safian () NORTHWESTERN EDU<mailto:r-safian () NORTHWESTERN EDU>>
Reply-To: The EDUCAUSE Security Constituent Group Listserv <SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () 
LISTSERV EDUCAUSE EDU>>
Date: Thursday, September 11, 2014 at 10:48 AM
To: "SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV EDUCAUSE EDU>" <SECURITY () LISTSERV EDUCAUSE 
EDU<mailto:SECURITY () LISTSERV EDUCAUSE EDU>>
Subject: Re: [SECURITY] Destiny Gaming

We have not had this issue.  Not sure if that's because it's not popular here, or, perhaps the ports are open already.

I did want to say though that one of the advantages for us of BYOD, is there are now alternatives to us providing the 
network connectivity.  Potentially, if you deny the request, your user could still access the game via a 3 or 4G 
network.  It's an option that would not have been available in the past.

From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Self, 
Dennis
Sent: Thursday, September 11, 2014 9:33 AM
To: SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV EDUCAUSE EDU>
Subject: [SECURITY] Destiny Gaming

A student has requested the opening of a large number of firewall ports (thousands) as referenced at the vendor site: 
http://www.bungie.net/en/Help/Article/11875.  We do not plan to open the ports.  I have never played the game.  The 
request raises concerns that the application has security design issues, and the company has brazen attitudes towards 
security in stating the ports should be opened.  Has anyone else dealt with this and developed an objective rationale?

Kind regards,

Dennis Self, CISSP
Director, IT Security & Compliance
Technology Services

205-726-2692<tel:205-726-2692> | office
DLSelf () Samford edu<mailto:DLSelf () Samford edu>
www.samford.edu<http://www.samford.edu/>
800 Lakeshore Drive, Birmingham, AL 35229<http://maps.google.com/maps?q=800+Lakeshore+Drive,+Birmingham,+AL+35229,+US>
[Samford University Logo]

 "Truth is not democratic." Dennis Self, 2013