Regulatory Requirements Compliance in Requirements Engineering: A Systematic Classification and Analysis

Abstract

Regulations and policies contain a rich source of requirements and failure to address these authoritative requirements in software system development can impose costly penalties for regulatory noncompliance. Despite the advancement of information system research, regulatory requirements compliance remains one of the primary challenges still to be efficiently dealt in system development because of the scarce information, complexity, and understanding of available approaches in requirements engineering process of a system development. This paper reports a systematic literature review of the documented approaches of regulatory requirements compliance, classifies these approaches according to different criteria and provides a qualitative analysis of their operational characteristics. The results of this analysis can serve system developers as the means of deriving appropriate methods and tools for regulatory requirements compliance in the software system development.