Yes, there is no restriction to Diagram functionality.

Yes, you can retrieve your project diagram in JSON via the SD Elements API. However, downloading and viewing the diagram is only available in the user interface.

You will no longer see the Save & continue to diagram button on the Survey page or the Diagram tab in the project menu.

Diagrams can only be generated from stock Survey Answers.

You will lose Survey edits if you navigate away from the Survey page without saving or if the session times out (2 hours), which will affect any generated diagram.

No, adding or removing diagram components does not affect project Countermeasures. Project Countermeasures are brought in only from Project Survey answers.

No, only one person can edit a diagram, similar to Survey functionality.

An exported diagram is a representation of what you can see on the canvas. If only part of the diagram is visible on the canvas but you want to export the entire thing, click the [ - ] zoom button until you can see the all components, zones, and connectors.

You can add a label to a connector to denote an ingress or egress point.

You can create a text box by pressing t on your keyboard.

You can nest zones by pressing Ctrl+g (Windows) or Cmd+g (MAC)

At this time, SD Elements does not include functionality for resizing zones.

Some people in your organization may not be experts in threat modeling or feel confident using SD Elements for threat modeling. If a threat model diagram includes trust zones nested in a way that matches your architecture, more people will be encouraged to collaborate using SD Elements.

At this time, notifications for threat model diagram notes are not supported in SD Elements 2022.4. If you require such notification functionality, please reach out to your Customer Success Manager (CSM) to request their inclusion in a future SD Elements release.

Our existing content model doesn’t accommodate the auto generation of edges (connections) or zones (trust zones, trust boundaries). We hope to include this functionality in future releases.

Both nested zones and text boxes encourage collaboration among teams within your organization by helping people who might not be familiar with your team’s project understand the design and data flows.

At this time, the threat model diagram doesn’t have audit log capabilities, so notes captured as part of a diagram do not have a history of who wrote them.

Threats are applied to your project through the match conditions of the survey answers you have selected. More specifically, threats are brought into your project by Countermeasures and their associated Weaknesses.

Threat status comes from the Countermeasure status in the following way: