AWS Cloud9 is no longer available to new customers. Existing customers of AWS Cloud9 can continue to use the service as normal. [Learn more](https://aws.amazon.com/blogs/devops/how-to-migrate-from-aws-cloud9-to-aws-ide-toolkits-or-aws-cloudshell/)

# Security best practices for AWS Cloud9
<a name="security-best-practices"></a>

The following best practices are general guidelines and don’t represent a complete security solution. Because these best practices might not be appropriate or sufficient for your environment, treat them as helpful considerations instead of prescriptions.

**Some security best practices for AWS Cloud9**
+ Store your code securely in a version control system, for example, [AWS CodeCommit](https://docs.aws.amazon.com/codecommit/latest/userguide/).
+ For your AWS Cloud9 EC2 development environments, configure and use [Amazon Elastic Block Store](https://docs.aws.amazon.com/ebs/latest/userguide/what-is-ebs.html) encrypted volumes.
+ For your EC2 environments, use [tags](tags.md) to control access to your AWS Cloud9 resources.
+ For your shared AWS Cloud9 development environments, follow the [best practices](share-environment-best-practices.md) for them.