Incorrect Testing Types in CISA Exam

Incorrect Testing Types

Prev Question Next Question

Question

Identify the INCORRECT statement from below mentioned testing types.

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

A.

The word INCORRECT is the keyword used in this question.

You need to find out the incorrect option specified above.

The term recovery testing is incorrectly defined in the above options.

The correct description of recovery testing is: Recovery Testing " Checking the system's ability to recover after a software or hardware failure For CISA exam you should know below types of testing: Unit Testing " The testing of an individual program or module.

Unit testing uses set of test cases that focus on control structure of procedural design.

These tests ensure internal operation of the programs according to the specification.

Interface or integration testing " A hardware or software test that evaluates the connection of two or more components that pass information from one area to another.

The objective it to take unit tested module and build an integrated structure dictated by design.

The term integration testing is also referred to tests that verify and validate functioning of the application under test with other systems, where a set of data is transferred from one system to another.

System Testing " A series of tests designed to ensure that modified programs, objects, database schema, etc , which collectively constitute a new or modified system, function properly.

These test procedures are often performed in a non-production test/development environment by software developers designated as a test team.

The following specific analysis may be carried out during system testing.

Recovery Testing " Checking the system's ability to recover after a software or hardware failure.

Security Testing " Making sure the modified/new system includes provisions for appropriate access control and does not introduce any security holes that might compromise other systems.

Load Testing " Testing an application with large quantities of data to evaluate its performance during peak hour.

Volume testing " Studying the impact on the application by testing with an incremental volume of records to determine the maximum volume of records that application can process.

Stress Testing " Studying the impact on the application by testing with an incremental umber of concurrent users/services on the application to determine maximum number of concurrent user/service the application can process.

Performance Testing " Comparing the system performance to other equivalent systems using well defined benchmarks.

Final Acceptance Testing " It has two major parts: Quality Assurance Testing(QAT) focusing on the technical aspect of the application and User acceptance testing focusing on functional aspect of the application.

QAT focuses on documented specifications and the technology employed.

It verifies that application works as documented by testing the logical design and the technology itself.

It also ensures that the application meet the documented technical specifications and deliverables.

QAT is performed primarily by IS department.

The participation of end user is minimal and on request.

QAT does not focus on functionality testing.

UAT supports the process of ensuring that the system is production ready and satisfies all documented requirements.

The methods include: Definition of test strategies and procedure.

Design of test cases and scenarios Execution of the tests.

Utilization of the result to verify system readiness.

Acceptance criteria are defined criteria that a deliverable must meet to satisfy the predefined needs of the user.

A UAT plan must be documented for the final test of the completed system.

The tests are written from a user's perspective and should test the system in a manner as close to production possible.

The following were incorrect answers: The other options presented contains valid definitions.

All of the testing types mentioned in the question are important for evaluating the performance, reliability, and security of a system. However, only one of them is incorrect. Let's look at each testing type in detail:

A. Recovery Testing: This type of testing ensures that the system can recover from a failure or disaster and continue to function as intended. It also checks that the modified or new system includes provisions for appropriate access control and does not introduce any security holes that might compromise other systems. This statement is correct.

B. Load Testing: Load testing is performed to evaluate the performance of an application under normal and peak load conditions. It involves testing an application with large quantities of data to see how it handles the load. This statement is also correct.

C. Volume Testing: Volume testing is done to determine the maximum volume of records that an application can handle without any performance degradation. It involves testing the application with an incremental volume of records to determine the point where the application starts to slow down or crash. This statement is also correct.

D. Stress Testing: Stress testing is used to evaluate how a system performs under stressful conditions such as heavy load, high traffic, or limited resources. It involves testing the application with an incremental number of concurrent users or services to determine the maximum number of concurrent users or services that the application can handle without crashing or degrading performance. This statement is also correct.

Therefore, the incorrect statement in the given options is Option A. The statement mentioned in option A is related to Security testing, and not recovery testing. Recovery testing is used to verify if a system can recover from a failure or disaster, whereas Security testing is used to identify vulnerabilities and weaknesses in a system's security controls.