Diagram Components
ThreatGet contains a collection of components (such as Elements, Connectors, Interfaces, and Boundaries) that the user can use to model their required scenarios. However, in some cases, the user needs to create new customized components to model a particular scenario. With the ThreatGet web interface, users can create and update their own diagram components, as well as interact with them. Before delving into the ThreatGet components, the following diagram gives an overview of the difference between Elements, Connectors, Interfaces and Boundaries.
The diagram shows that a Sensor and an ECU are defined as elements. Connectors allow these elements to be linked together. Assets refer to vital items that require additional security precautions. Assets in ThreatGet can be directly connected to element(s) or attached to connector(s) using Asset Connector. Boundaries are used to define a scope of a collection of elements and assets.
In the general context, a connector describes a connection between two elements. This connection can be considered physical as well as logical. For example, you want to check the connection between two elements, wireless or wired. Alternatively, you want to investigate what kind of data is exchanged between these elements. Boundaries can be seen as a container for one or more Elements. They can also collect physical or logical features. Elements, Connectors, Interfaces and Boundaries can be grouped into hierarchies as a set of groups of elements and sub-elements.
There is a superordinate category External Interactor and several subordinate elements like a Car. The security characteristics are defined for the top category (i.e., External Interactor) inherits its properties to the derivatives below.
Each element has a defined namespace (e.g., AIT), which can be found next to the element's title within parenthesis. You can only change or delete Elements you have created.
!!! info "💡 Tip" Note:** Elements provided by AIT cannot be updated or deleted. However, users can manage custom namespaces as described in the Managing Namespaces section.
Create a New Element
In the system design modeling process, users may need customized elements to align with the system's design requirements. If the required element is not available in the ThreatGet components list, users can create it. To create a new Element, first navigate to the correct overview by clicking on Toolbox in the Navigation Bar, as indicated by the RED marks in the image below.
This opens the overview with the defined elements. You can already see all defined Elements, Connectors, Interfaces and Boundaries in their hierarchical structure on the left side.
In order to create a new component, click on the green New Diagram Component button on top of the listing to the left.
This opens a new window to the right in which you can define the name and select the type of the desired component. In this case, we define the name as "Top Element" and select the ELEMENT as the component type.
The following window is then displayed to start to add more relevant details into your desired element.
Here please now enter a Description for the created element. You can define an Icon, if the default ones are not appropriate. If so, please click on the Upload Icon button and select the desired image to add the icon and image. Image size and resolution are automatically adjusted. Please only use PNG or JPG images.
All elements you create are assigned the default namespace (in the standard installation, this is labeled as "USER"). However, you can select different custom namespaces as described in the Managing Namespaces section.
In the lower part of this window, you can see a table where entries are still missing. The table displays all Security Properties that have been assigned to this element. These Security Properties describe the security/safety properties of diagram components.
Click on the + button inside the table to add security properties to the newly created element. A dialog box will open, allowing you to review and add the Security Properties you need. You can easily scroll up or down to locate the security property you wish to add to your element (e.g., Top Element). ThreatGet also provides a search bar to help you quickly find your desired security properties.
To add a Security Property, you have to activate the Checkbox next to the Security Property name. For example, you can just add the Configuration Data, Cryptographic Data, and Cryptographic Hardware Modules Security Properties to your element.
!!! info "💡 Tip" Note: The yellow ⚠️ Warning Sign indicates that the Security Property is not intended for the diagram component you want to create. However, we do not restrict you from assigning a Security Property to a component; we simply point it out to you.
You can set any of the Security Properties to Fixed. This means that if a fixed value is assigned to a particular security property for an element, it will remain constant and cannot be modified. For example, in the figure below, a "true" value is set for the Cryptographic Data property, and the fixed value option is activated. This ensures that when a user utilizes the newly created Top Element component, its Cryptographic Data security property will be set to "true" and cannot be changed.
You can also add Tags to your element. These tags are different from the Security Properties, as the purpose of the Tags is to group Elements, Assets, Connectors, Interfaces and Boundaries.
To add a Tag to an Element please click on the selectable Tags Input.
You can select as many predefined Tags as you want. To learn how to create new Tags please check the Managing Tags section.
On the left upper corner, you can see two buttons ("Circular Arrow", "Trash Can") and a Save button in the middle below the input area.
- Circular Arrow: to undo any changes.
- Trash Can: to cancel the creation of the new element or delete an element, click on the Trash Can.
- Save Button: to save your newly defined component, click on the Save button.
For now please save your new Top Element.
Create a Sub Element
After creating the Top Element, we will now proceed to create a Sub Element. Locate the newly created element by scrolling up or down the components list, or use the Search Field to quickly find it.
Move your mouse cursor over the newly created element, and a green + button will appear. Click this button to start creating a new Sub-Element that inherits all associated information from its parent element (i.e., Top Element).
A window will be displayed, similar to the one used for creating new elements. The Top Type field shows the name of its parent element (i.e., Top Element). In the Security Properties section, you’ll notice that Configuration Data, Cryptographic Data, and Cryptographic Hardware Modules are automatically inherited from the Parent Element. Additional security properties can be added as a new set for the sub-element. The image and icon are also inherited from the parent but can be adjusted if needed. In this example, we added the value DoS Mitigation to indicate that the sub-element is secured against DoS attacks.
Creating a Connector, Boundary, or Interface
Creating another diagram component, such as a Connector, Boundary, or Interface, follows a similar process to creating an Element or Sub-Element. Press on the grenn New Diagram Compoennet. Select the desired component type (e.g., Connector, Boundary, or Interface) from the Component Type dropdown, then enter the necessary information (e.g., name, description, icon, tags, and suitable security properties).
If you want to add new Security Properties, you can follow the same steps we followed in creating a new element. But as you can see on the picture below other Security Properties are marked with the yellow triangle, because it is a different component type.
Once you have finished selecting the required security properties for your customized connector, press Save to ensure all changes are stored.