Figure 3: Leveling of SRE Practices Categories
Figure 3 presents that RE3 ”Requirement Elicitations of Security Requirements” is dependent only on level 3 (RE1: Awareness of SRE), but all the coming categories (RE2, RE4-RE11) of level 1 depend on level 2 category (RE3). The findings of this figure depict that RE2, RE4-RE11 practices categories depend on RE3 and RE1. This indicates that to fulfill the need of RE2, RE4-RE11, all the practices associated with these categories must be implemented, including the categories on which they depend on them, i.e., RE3 and RE1.