Welcome to the National Security Agency - NSA/CSS

NSA has developed and distributed configuration guidance for operating systems. These guides are currently being used throughout the government and by numerous entities as a security baseline for their systems.

Apple Mac   |   Linux   |   Microsoft Windows   |   Sun Solaris

Apple

Apple iOS 5 Devices

This guide provides security configuration recommendations for Apple iOS 5 devices such as iPhone, iPad, and iPod Touch.

Apple Mac OS X 10.6 'Snow Leopard'

The recommendations in Apple's Mac OS X Security Configuration for Version 10.6 'Snow Leopard' tracks closely with the security level historically represented in NSA guidelines. It is our belief that this guide establishes the best practices for securing the product and recommends that traditional customers of our security recommendations use the Apple guide when securing Mac OS X 10.6 systems

Return to Top

Linux

Red Hat Enterprise Linux 5

NSA has developed and distributed configuration guidance for Red Hat Enterprise Linux 5 that is currently being used throughout the government and by numerous entities as a security baseline for their Red Hat Enterprise Linux 5 systems.

Return to Top

Microsoft Windows

Microsoft Windows Applications

Software Restriction Policies (SRP) enables administrators to control which applications are allowed to run on Microsoft Windows. SRP is a feature of Windows XP and later operating systems. It can be configured as a local computer policy or as domain policy using Group Policy with Windows Server 2003 domains and later. Using this guide, administrators can configure SRP to prevent all applications in their domain from running except applications they explicitly allow. Utilizing SRP as an application whitelisting technique significantly increases the security posture of the domain by preventing some malicious programs from executing.

Return to Top

Microsoft Windows 7

As part of a change in our development strategy for security guidance, NSA does not intend to publish a separate guide for Windows 7 beyond what was produced as a cooperative effort between the vendor and the security community. The Special Security – Limited Functionality (SSLF) settings in Microsoft's Windows 7 Security Guide track closely with the security level historically represented in the NSA guidelines. It is our belief that this guide establishes the latest best practices for securing the product and recommend that traditional customers of our security recommendations use the Microsoft Security Compliance Management Toolkit when securing Windows 7.

Return to Top

Microsoft Windows Vista

As part of a change in our development strategy for security guidance, NSA does not intend to publish a separate guide for Windows Vista beyond what was produced as a cooperative effort between the vendor and the security community. The "Specialized Security - Limited Functionality" (SSLF) security settings in Microsoft's Windows Vista Security Guide track closely with the security level historically represented in the NSA guidelines. It is our belief that this guide establishes the latest best practices for securing the product and recommend that traditional customers of our security recommendations use the Microsoft guide when securing Windows Vista. Windows Vista FAQs

Return to Top

Microsoft Windows Server 2008/ Windows Server 2008 R2

As part of a change in our development strategy for security guidance, NSA does not intend to publish a separate guide for Windows Server 2008 beyond what was produced as a cooperative effort between the vendor and the security community. The Special Security – Limited Functionality (SSLF) settings in Microsoft's Windows Server 2008 Security Guide for Windows Server 2008 track closely with the security level historically represented in the NSA guidelines. It is our belief that this guide establishes the latest best practices for securing the product and recommend that traditional customers of our security recommendations use Microsoft's Security Compliance Management Toolkit when securing Windows Server 2008.

Return to Top

Microsoft Windows Server 2003

As part of a change in our development strategy for security guidance, NSA does not intend to publish a separate security guide for Windows Server 2003 beyond what was produced as a cooperative effort between the vendor and the security community. The Special Security - Limited Functionality (SSLF) settings in Microsoft's Windows Server 2003 Security Guide track closely with the security level historically represented in the NSA guidelines. It is our belief that this guide establishes the latest best practices for securing the product and recommend that traditional customers of our security recommendations use the Microsoft guide when securing Windows Server 2003.

Return to Top

Microsoft Windows XP

The XP Windows operating system is no longer recommended by the SNAC. Please see the Microsoft website for more information with regard to upgrading your operating system. As part of a change in our development strategy for security guidance, NSA is no longer maintaining and updating security guides for Windows XP Professional beyond what was produced as a cooperative effort between the vendor and the security community. The "Specialized Security - Limited Functionality" (SSLF) security settings in Microsoft's Windows XP Security Guide track closely with the security level historically represented in the NSA guidelines. It is our belief that this guide establishes the latest best practices for securing the product and recommend that traditional customers of our security recommendations use the Microsoft guide when securing Windows XP.

Return to Top