# What you'll learn

After watching this video, you will be able to: 
* Describe a secure development environment.
* Explain what causes an insecure development environment.
* Summarize best practices for implementing a secure development environment.

# Coding without security

* It’s not uncommon for applications under development to be coded without factoring security into the design and development phase.
* What typically happens is that a completed app is given to Operations for deployment into production, and the app would be hacked, and Operations would have to shut the servers down.
* Apps developed without security input from Ops are highly susceptible to cyber-attacks.
* It becomes clear that implementing security in application development should not be a last-minute decision - when you factor in:
    * the cost of downtime,
    * the cost of fixing the security vulnerabilities, 
    * the possibility of a data breach or leak, and 
    * the reputation of your organization

* You can prevent this from happening in your organization by involving the security team early in the software development process.
* Get some solid collaboration with the security people early in the design phase.
* It’s critical to begin securely writing your code from the start.
* But writing secure code isn’t enough.
    * The development environment must be secure, too.
    * Development systems and platforms are also vulnerable to the same types of attacks as production machines.
    * You must harden the environment to keep threat actors out.
    * For that, we rely on the Security team.

Let’s understand how to develop a secure application with DevOps.

# Understanding secure development

![image.png](attachment:a790d9f4-98ee-4d70-9a9e-89e789a80df1.png)

* Without practical knowledge and understanding of secure development techniques, your code isn’t likely to be able to withstand attacks.
* Everyone should understand the importance of secure app development and securing the environment they’re developed on and deploying to.
* If the environment isn’t secure, it's difficult to accept that the code coming from it is also secure.
* Security is a team effort.
    * Everyone on the DevOps team is responsible for security.
    * Everyone and everything that touches the application, its services, and the platform it runs on is responsible for security from design to deployment to production.
* The combined talents of DevOps and Security bring a deeper understanding of defensive code development and risks to the systems they’re building on.

# What is a secure development environment?

![image.png](attachment:1867e6a0-3764-4c5e-b68f-9dcafff94f5b.png)

A secure development environment is an ongoing process of securing the network, compute resources, and storage devices both on-premise and in the cloud.

Securing your development environment reduces the risk of an attacker who tries to: 
* Steal sensitive info such as encryption and access keys, or intellectual property.
* Embed malicious code into your project without your knowledge.
* Use your system as a tool to launch other attacks into your build and deployment pipeline or other machines on the network.

The process entails: 
* Keeping all software up-to-date and Removing or disabling unnecessary services.
* It's important to physically secure development machines and use separate machines for coding and business.
* Use a virtual machine, a Docker container, or a separate computer for business-related functions and develop your code on a hardened system to reduce phishing, malware attacks, and other cyber threats.

Other things you should do is: 
* Use complex passwords and frequent password changes, and implement multifactor authentication.
* Protect the code repository and secure your build and development pipeline.
* You need to invest in monitoring, logging, and auditing controls.
* Continually test for security and plan for security flaws.

# What is an insecure development environment? 

![image.png](attachment:122db5e3-4cd5-4df1-99b8-27f08017476a.png)

Well, it’s an environment where: 
* Production systems are secure, but the development environment where coding is built and deployed is a free-for-all with direct connections to the production infrastructure.
* If your development machines are compromised, then so is your production environment.
* Perhaps the development environment lacks critical processes.
* If the development environment doesn’t have protective monitoring, logging, or auditing in place, then there’s no ability to determine if or when an attack has occurred or if any other vulnerabilities exist.
* Attackers could infiltrate your organization and remain undetected for months or longer.
* Finally, your development machines and any code on them could be vulnerable if there are no up-to-date antivirus or anti-malware products installed on your development systems, leaving them vulnerable to phishing, malware, and other attacks.
* Unrestricted access to unapproved code repositories and a lack of governance or policies for obtaining code could allow suspect software dependencies into your application.

# Best Practices

![image.png](attachment:392cb918-ba19-4257-b265-e37f6a5bbcda.png)

**Here are some best practices you can implement to secure your development environment**.
* Secure the internet connection.
* Insecure networks are highly vulnerable to network attacks.
* You can achieve a secure internet connection by: 
    * regularly checking for open ports and closing any ports not needed, 
    * or setting up firewalls with strict ingress and egress traffic policies to ensure nothing other than allowed traffic is granted.
* This is where developing in Docker containers is really helpful because the containers are on a separate isolated network from your development computer, and all ports are closed to the outside by default.
* You should implement multifactor authentication to protect against identity theft.
* Passwords alone aren’t enough.
    * Relying solely on passwords leaves your system at high risk of being attacked.
    * Also, if the password is traced, your entire code is at risk – along with other assets.
* Multifactor authentication also prevents the attacker from leveraging the permissions of a developer.
    * You can also secure secrets with multifactor authentication.
    * And it protects them from being stolen and reduces the risk of losing them.
* Finally, add additional security for those developers who need to access production systems from their developer machines.

![image.png](attachment:e62e637a-1041-4945-a3ed-9403a592c663.png)

**You should monitor developers' environments but monitoring developers’ environments and activities doesn’t mean keeping an eye on everything they do**.
* Developer machines should be locked down as tightly as possible yet still permit access to the required resources to get the job done.
* Trust me on this one, otherwise, developers will start using ‘workarounds’ to defeat security checks, leaving their machines vulnerable to attacks.
* Incorporate daily security habits and behavior.
* You should watch for suspicious activity and use network utilities to check whether the websites visited are suspicious or safe.
* Track all commits, and changes made by developers in the environment for future reference in case anything goes wrong.
* Using pre-commit hooks, you can even check to make sure that developers aren’t checking in sensitive data like credentials to their code repositories.

# Summary

In this video, you learned: 
* Security is commonly left out of the software development process or is only addressed at the last minute - resulting in software that’s highly vulnerable to attacks and puts your organization at risk.
* Collaboration between Security and Development teams fosters a deeper understanding of defensive code development.
* Security is the responsibility of everyone and everything that touches the app, its development environment, and the platform it runs on. It’s a team effort.
* Monitor activities on your network, developer machines, and production environment to look for open ports, suspicious behavior, and missing antivirus.
* Add multifactor authentication and encryption to protect passwords and secure secrets, and block attackers from gaining developer permissions.
* Add additional security measures for developers requiring access to production systems from their machines.
* Track all commits, and changes made by developers for future reference in case problems arise.