Consider the following list of statements about audits and management reviews:
Audits are usually more effective than management reviews at finding defects
Audits and management reviews have the same main goals, the only difference is related to the roles and level of formality
A typical outcome of an audit includes observations and recommendations, corrective actions and a pass/fail assessment
An audit is not the appropriate mechanism to use at the code review in order to detect defects prior to dynamic testing
Which of the following statements is true?
K2 1 credit
Assume that you are the Test Manager for a small insurance application development project. You have decided to adopt a risk-based testing strategy: 5 product risks (R1, R2, R3, R4, R5)
have been identified and their levels of risk have been assessed. 10 test cases (T1, ..., T10) have been designed to cover all the product risks.
The following table shows the risk level and the test cases associated to the identified product risks (higher risk level means higher risk):
You are not confident with the assessment of the risk level and you suspect that it will be possible to find high-priority bugs in low-risk areas.
Furthermore the period for test execution is very short. Your goal is to test all the product risks in a risk-based way, while assuring that each product risk gets at least some amount of testing. Which of the following answers describes the best test execution schedule in this scenario? K3 2 credits
You are the Test Manager of a project that adopts a V-model with four formal levels of testing.
unit, integration, system and acceptance testing.
On this project reviews have been conducted for each development phase prior to testing, which is to say that reviews of requirements, functional specification, high-level design, low-level design and code have been performed prior to testing.
Assume that no requirements defects have been reported after the release of the product. Which TWO of the following metrics do you need in order to evaluate the requirements reviews in terms of phase containment effectiveness?
K3 2 credits
You are the Test Manager for a project to develop a client-server application that allows wine vendors to order custom-assorted packages of wines of several winemakers to sell special packages in their wine shops.
You decide to apply a blended risk-based and reactive testing strategy. Below the exit criteria for the system testing.
EXCR1- Each ''critical'' quality risk item must be covered by at least one test condition EXCR2- Each ''critical'' requirement must be covered by at least one test condition The following are the ''critical'' requirements of the application:
REQ-SEL-1. The application shall allow the user to order only one package at a time
REQ-SEL-2. The application shall allow the user to select between four different packages (2-bottles, 6-bottles, 12-bottles, 15-bottles)
REQ-SEL-3. The application shall allow the user to order a package containing at least 1 bottle and no more bottles than the package size. No error messages shall be displayed if the user selects a valid number of bottles (at least 1 bottle and no more than the package size) REQ-SEL-4. The application shall display an error message ''Invalid number of bottles'' if an invalid number of bottles is selected by the user (zero bottles or a number higher than the package size)
REQ-PAY-1. The application shall allow the user to pay with the three accepted credit cards (Visa, MasterCard, American Express)
REQ-PAY-2. The application shall display an error message ''Invalid credit card'' if invalid credit card data are given by the user
The following is the unique ''critical'' quality risk item that has been identified:
CR-RSK-1. The GUI of the application might accept non-integer values for the input field designed
to get the number of bottles from the user
Test analysis for system testing has just begun and the following test conditions have been identified.
TC-SEL-2. Test the selection of the package sizes
TC-SEL-4. Test wrong numbers of bottles for an order
TC-CR-RSK-1. Test the accepted values from the input field designed to get the number of bottles from the user Assume that you have used traceability to determine the logical test cases that cover all the requirements and the single risk item identified in that scenario.
Which of the following is a positive logical test that is complete and correct, and covers the REQSEL-4 requirement?
K3 2 credits
Assume you are working on a CAS (Conditional Access System) for Pay-TV that allows the access, selection and transfer of services and media to authorized users. Authorized users can choose their services through different channels: Web Customer Portal, IVR (Interactive Voice Response), Call Centre and SMS. The system uses a Smart Card to receive and decrypt the broadcasted encrypted control words which allow decrypting pay-per-view TV. Every authorized user must have a Smart Card and a Set-Top Box to view the contents.
The following is an excerpt from the product risk analysis document:
Both likelihood and impact have been rated on the following scale: (1 -- Very low, 2 -- Low, 3 --Medium, 4 -- High, 5 -- Very High).
The required test environment and code have been delivered. All test cases for each identified product risk item have been written and are ready to be executed. The Database used to contain the Smart Cards is empty and so only new Smart Cards can be used during test execution.
A Smart Card can only be activated if it has been previously pre-activated. This means the postconditions for the execution of the test cases to test the pre-activation of the Smart Card are the pre-conditions for activation of the Smart Card.
Which of the following statements represents the most effective contribution of the stakeholders to the completion of the failure mode analysis table?
K4 3 credits
