Internal Structure Testing: Exploring Application's Inner Workings | CISA Exam Preparation

Internal Structure Testing

Prev Question Next Question

Question

Which of the following testing method examines internal structure or working of an application?

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

A.

White-box testing (also known as clear box testing, glass box testing, transparent box testing, and structural testing) is a method of testing software that tests internal structures or workings of an application, as opposed to its functionality (i.e.

black-box testing)

In white-box testing an internal perspective of the system, as well as programming skills, are used to design test cases.

The tester chooses inputs to exercise paths through the code and determine the appropriate outputs.

This is analogous to testing nodes in a circuit, e.g.

in-circuit testing (ICT)

White-box testing can be applied at the unit, integration and system levels of the software testing process.

Although traditional testers tended to think of white-box testing as being done at the unit level, it is used for integration and system testing more frequently today.

It can test paths within a unit, paths between units during integration, and between subsystems during a system"level test.

Though this method of test design can uncover many errors or problems, it has the potential to miss unimplemented parts of the specification or missing requirements.

For your exam you should know the information below: Alpha and Beta Testing - An alpha version is early version is an early version of the application system submitted to the internal user for testing.

The alpha version may not contain all the features planned for the final version.

Typically, software goes to two stages testing before it consider finished.

The first stage is called alpha testing is often performed only by the user within the organization developing the software.

The second stage is called beta testing, a form of user acceptance testing, generally involves a limited number of external users.

Beta testing is the last stage of testing, and normally involves real world exposure, sending the beta version of the product to independent beta test sites or offering it free to interested user.

Pilot Testing -A preliminary test that focuses on specific and predefined aspect of a system.

It is not meant to replace other testing methods, but rather to provide a limited evaluation of the system.

Proof of concept are early pilot tests " usually over interim platform and with only basic functionalities.

White box testing - Assess the effectiveness of a software program logic.

Specifically, test data are used in determining procedural accuracy or conditions of a program's specific logic path.

However, testing all possible logical path in large information system is not feasible and would be cost prohibitive, and therefore is used on selective basis only.

Black Box Testing - An integrity based form of testing associated with testing components of an information system's functional operating effectiveness without regards to any specific internal program structure.

Applicable to integration and user acceptance testing.

Function/validation testing " It is similar to system testing but it is often used to test the functionality of the system against the detailed requirements to ensure that the software that has been built is traceable to customer requirements.

Regression Testing -The process of rerunning a portion of a test scenario or test plan to ensure that changes or corrections have not introduced new errors.

The data used in regression testing should be same as original data.

Parallel Testing - This is the process of feeding test data into two systems " the modified system and an alternative system and comparing the result.

Sociability Testing -The purpose of these tests is to confirm that new or modified system can operate in its target environment without adversely impacting existing system.

This should cover not only platform that will perform primary application processing and interface with other system but, in a client server and web development, changes to the desktop environment.

Multiple application may run on the user's desktop, potentially simultaneously, so it is important to test the impact of installing new dynamic link libraries (DLLs), making operating system registry or configuration file modification, and possibly extra memory utilization.

The following answers are incorrect: Parallel Testing - This is the process of feeding test data into two systems " the modified system and an alternative system and comparing the result.

Regression Testing -The process of rerunning a portion of a test scenario or test plan to ensure that changes or corrections have not introduced new errors.

The data used in regression testing should be same as original data.

Pilot Testing -A preliminary test that focuses on specific and predefined aspect of a system.

It is not meant to replace other testing methods, but rather to provide a limited evaluation of the system.

Proof of concept are early pilot tests " usually over interim platform and with only basic functionalities Reference: CISA review manual 2014 Page number 167 Official ISC2 guide to CISSP CBK 3rd Edition Page number 176

The testing method that examines the internal structure or workings of an application is white-box testing.

White-box testing, also known as structural or code-based testing, involves testing an application's internal structure or code. In this testing method, the tester has access to the source code and uses it to design test cases that cover all possible paths through the code. The goal of white-box testing is to ensure that the code is working correctly and that all code paths are tested thoroughly.

In contrast, black-box testing, also known as functional testing, involves testing an application's external behavior without examining its internal workings. In black-box testing, the tester does not have access to the source code and relies on the application's specifications or requirements to design test cases. The goal of black-box testing is to ensure that the application behaves as expected and meets the specified requirements.

Parallel testing involves running two or more versions of an application or system simultaneously to compare their results. The goal of parallel testing is to ensure that the new version of the application or system performs as well as the old version.

Regression testing involves retesting an application or system after changes have been made to ensure that the changes have not introduced new defects or caused existing defects to resurface.

Pilot testing involves testing a new application or system on a limited scale in a real-world environment before rolling it out to a wider audience. The goal of pilot testing is to identify and fix any issues before the full implementation of the new application or system.

Therefore, the correct answer to the question is A. White-box testing.