NSA Releases Cybersecurity Technical Report (CTR) – “Network Infrastructure Security Guidance”
CISA Adds 95 Known Exploited Vulnerabilities to Catalog
March 8, 2022U.S. calls attention to major weaknesses in the firmware supply chain
March 8, 2022
Summary:
The National Security Agency (NSA) has released a new Cybersecurity Technical Report (CTR) titled "Network Infrastructure Security Guidance." The report captures best practices based on the depth and breadth of experience in supporting customers and responding to threats. Recommendations include perimeter and internal network defenses to improve monitoring and access controls throughout the network.
Additional Discussion:
This report presents best practices for overall network security and protection of individual network devices and will assist administrators in preventing an adversary from exploiting their network. While the guidance presented here is generic and can be applied to many types of network devices, sample commands for Cisco Internetwork Operating System (IOS) devices are provided which can be executed to implement the recommendations.
Associated Files:
