The National Security Agency has issued a Report describing best practices for overall network security and protection of individual network devices. The guidance covers: (1) network architecture and design; (2) security maintenance; (3) authentication, authorization and accounting; (4) administrator accounts and passwords; (5) remote logging and monitoring; (6) remote administration and network services; (7) routing; (8) interface ports; and (9) notification banners. In creating this Report, NSA relies on its depth and breadth of experience in assisting NSA customers with evaluating their networks and providing recommendations to immediately harden network devices.
