You can optionally visualize the Security Reference Model (SRM). Visualizing all or part of it can help you in these ways:
▪You can gain a full understanding of the SRM, as you categorize your assets against it.
▪The Consolidated Reference Models (CRM) are often utilized as reference models by non-US-government organizations and commercial companies. These organizations and companies make use of the reference models but tailor them – adding or removing elements from it to match their organization. Visualizing the reference models can help with this effort.
To visualize the SRM
1 Create a FEAF2 SRM type diagram – provide a name to the diagram.
2 From the Explorer tree, drag-and-drop all FEAF2 SRM Area onto the diagram.
3 From the Explorer tree, drag-and-drop all FEAF2 SRM Consideration onto the diagram.
4 From the Explorer tree, drag-and-drop all FEAF2 SRM Context onto the diagram.