Software Development Teams Knowledge and Awareness of Security Requirement Engineering and Security Requirement Elicitation and Analysis

Abstract

Software security is a concern due to software's pervasiveness and how rapid software's are developed. Although studies have emphasized the importance of addressing security requirements during the early phases of requirement engineering, it is often overlooked. This oversight may stem from limited knowledge and awareness among software development teams regarding security requirement engineering (SRE) and security requirement elicitation analysis (SREA). To assess this, a quantitative study was conducted. Respondents completed a survey, and the data was analysed using descriptive statistics. The results indicate that software development teams possessed an average knowledge of SRE but demonstrated good knowledge of SREA.