A requirement that ensures the security of an app. A general requirement is an app security requirement that defines software characteristics or behavior that an app must exhibit to be considered secure. A context-sensitive requirement is an app security requirement that is specific to the organization. An organization's app security requirements comprise a subset of general and context-sensitive requirements.
NIST SP 800-163