Figure 3: Leveling of SRE Practices Categories
Figure 3 presents that RE3 ”Requirement Elicitations of Security
Requirements” is dependent only on level 3 (RE1: Awareness of SRE), but
all the coming categories (RE2, RE4-RE11) of level 1 depend on level 2
category (RE3). The findings of this figure depict that RE2, RE4-RE11
practices categories depend on RE3 and RE1. This indicates that to
fulfill the need of RE2, RE4-RE11, all the practices associated with
these categories must be implemented, including the categories on which
they depend on them, i.e., RE3 and RE1.