Security Architecture
Create security architecture diagrams showing security zones, trust boundaries, controls, and identity architecture.
Security architecture diagrams document security zones, controls, and trust boundaries. They help communicate security posture to stakeholders and identify gaps in protection.
What Security Diagrams Show
Security architecture diagrams typically include:
Creating Security Zone Diagrams
Visual Conventions for Security
| Element | Representation |
|---|---|
| Security zone boundaries | Dashed rectangles |
| Security controls | Shield icons (firewalls, WAF) |
| Encryption points | Lock icons |
| Untrusted zones | Red colour |
| DMZ zones | Yellow colour |
| Trusted zones | Green colour |
| Trust boundaries | Thick lines |
Network Security Zones
Common security zones to document:
Identity Architecture
Document identity and access components:
Creating Identity Diagrams
Icons for Security
Use these icons for security diagrams:
| Platform | Icons |
|---|---|
| Azure | Azure AD, Key Vault, Firewall, DDoS Protection |
| AWS | IAM, WAF, Shield, KMS, Security Hub |
| Lucide | Shield, lock, key icons for generic security |
| Brand | Okta, Auth0, CrowdStrike, Palo Alto |
Best Practices
Show All Trust Boundaries
Every boundary is a potential attack surface.
Document Controls at Boundaries
Firewalls, WAF, authentication.
Colour Code Zones
Make trust levels visually obvious.
Include Data Flows
Show what crosses boundaries.
Keep Diagrams Current
Security architecture changes frequently.
Review with Security Team
Validate accuracy before publishing.