CTAL-TM_SYLL2012 Online Practice Questions and Answers

You are the Test Manager for a project to develop a web customer portal of a Pay-TV company that allows customers (with a smartcard and a set-top box) to purchase digital contents.

In the "select" page the system displays a dialogue where the customer can select the items (digital contents) he/she is interested in. In this page he/she can add one or more items to a shopping cart. An item consists of a product and a

duration.

There are three types of products: Movie, sport and premium (movie and sport).

There are four possible durations: 1 months, 2 months, winter (from the beginning of January to end of March) and summer (from the beginning of July to end of September).

All the combinations of products and durations are allowed to define an item. Thus there are twelve possible items. A maximum of six different items can be added to the shopping cart at a time.

When the customer decides to check out he/she goes to the "purchase" page where he/she can pay the total amount of the shopping cart in three different ways:

-

using a credit voucher

-

using a credit already charged on the smartcard

-

using a credit card (accepted credit cards are. Visa, MasterCard and Great Wall Card)

The customer can logout from both the "select" and "purchase" pages. In this case no purchase is made.

You decide to apply a blended risk-based and reactive testing strategy and the following is a subset of the exit criteria for system testing:

EXCR1- Each "critical" quality risk item must be covered by at least one test condition

EXCR2- Each "critical" requirement must be covered by at least one test condition

You are following a risk-based testing strategy. The test execution time is very limited. Assume that all the product risk items require more or less the same level of test effort.

Which of the following answers describes the best execution schedule in this scenario?

A. 1- Test the acceptance of transactions coming from the IVR channel 2- Test the correct charge of the Smart Card with the required contents 3- Test the correct pre-activation of the Smart Card 4- Test the correct activation of the Smart Card

B. 1- Test the correct pre-activation of the Smart Card 2- Test the correct charge of the Smart Card with the required contents 3- Test the correct activation of the Smart Card 4- Test the acceptance of transactions coming from the IVR channel

C. 1- Test the correct activation of the Smart Card 2- Test the correct pre-activation of the Smart Card 3- Test the correct charge of the Smart Card with the required contents 4- Test the acceptance of transactions coming from the IVR channel

D. 1- Test the correct pre-activation of the Smart Card 2- Test the correct activation of the Smart Card 3- Test the correct charge of the Smart Card with the required contents 4- Test the acceptance of transactions coming from the IVR channel

Assume that you are the Test Manager for a small insurance application development project.

You have decided to adopt a risk-based testing strategy: 5 product risks (R1, R2, R3, R4, R5) have been identified and their levels of risk have been assessed. 10 test cases (T1, ..., T10) have been designed to cover all the product risks.

The following table shows the risk level and the test cases associated to the identified product risks (higher risk level means higher risk):

You are not confident with the assessment of the risk level and you suspect that it will be possible to find high-priority bugs in low-risk areas.

Furthermore the period for test execution is very short. Your goal is to test all the product risks in a risk-based way, while assuring that each product risk gets at least some amount of testing. Which of the following answers describes the best test execution schedule in this scenario?

A. T1, T2, T3, T4, T5, T6, T7, T8, T9, T10

B. T1, T3, T5, T7, T9, T2, T4, T6, T8, T10

C. T10, T9, T8, T7, T6, T5, T4, T3, T2, T1

D. T10, T8, T6, T4, T2, T9, T7, T5, T3, T1

During the follow-up phase the following conditions are checked:

X1. The code has been completely reviewed

X2. All the identified defects have been correctly fixed and the modified code has been compiled successfully and run through all the static analyzers used by the project without warnings and errors

X3. The modified code is available under the configuration management system with a new version number for the specified CI

If these conditions are fulfilled then the review process terminates.

Which of the following characteristics of a formal review is missing in this description?

A. Defined entry and exit criteria

B. Checklists to be used by the reviewers

C. Deliverables such as reports, evaluation sheets or other review summary sheets

D. Metrics for reporting on the review effectiveness, efficiency, and progress

You are working on a project to develop an authentication system for an e-commerce website. This system provides two features: Registration and authentication. Two different development teams develop these two features.

There is a high likelihood that the delivery of the authentication feature to the test team will be three weeks later. To complete the registration the user must provide the following registration inputs: Name, surname, birth date, fiscal code and

he/she can select a username and a password.

A registered user can be a special user or a normal user. To be identified as a special user, he/she must also provide, during the registration process, a voucher possibly received from the IT department.

Access is granted only if a user is registered and the password is correct: In all other cases access is denied. If the registered user is a special user and the password is wrong, a special warning is shown on the system console.

You are currently performing a quality risk analysis using FMEA.

Based only on the given information, which of the following is NOT a product risk that could be identified during the quality risk analysis?

A. The late delivery of the authentication feature to the test team causes delays in the start of test execution and this could result in a shorter test period

B. The authentication system denies access for a special user with a wrong password, but doesn't display a special warning on the system console

C. The authentication system grants access to a normal user with a wrong password

D. The authentication system grants access to a special user with a wrong password

In the next two months some new features will be constantly added to new releases of a project you are working on as Test Manager.

You have identified as one of the main project risks, that the requirements specification will still be incomplete when your team starts the test design and implementation phase.

Some requirements will most likely be completed too late to allow a proper test preparation.

You and your test team have already worked on several similar past projects in the same organization.

Which one of the following options would you expect to be the most effective at mitigating this risk?

A. Don't prepare any test and just run the regression test suite to check that the new features don't introduce regression

B. Make reasonable assumptions about the missing details and design lightweight tests that can be easily updated during test execution

C. Don't design any test until the test execution starts, then communicate that test execution is blocked due to incomplete requirements

D. Even if there are only few details missing, escalate the risk to the project manager without preparing any tests

You are managing the system testing for a SOA based system. The integrated system consists of several subsystems:

-

A SOA middleware

-

A CRM (Customer Relationship Management) system

-

A BRM (Billing and Revenue Management) system

-

A SMS (Subscriber Management System) system and you performed a risk analysis based on these subsystems.

At the end of the scheduled period for test execution you produce a first classical report based on the traditional metrics of testing. Test pass/fail status and bug status (open/resolved) That table provides you a distorted picture of the quality

risk, because there is no indication of the risk level of the failed tests, the tests not run, or the open bugs. Thus, you produce the following table to solve this distortion issue:

In the table above, where you have introduced the concept of risk weighting, the highest risk test or bug report has a score of 1, while the lowest risk test or bug report has a score of 0.04.

Which of the following subsystems, based on the risk scores of the table, is most risky?

A. SOA

B. CRM

C. BRM

D. SMS

Which of the following statements best describes an appropriate approach for managing exploratory testing? Number of correct responses: 1

A. Define very detailed mission statements, which allow testing work to be broken into sessions of up to 10 minutes duration in which testing is guided by these mission statements

B. Break the testing work in 30 to 120 minutes sessions and use properly defined mission statements consisting of two or three sentences to guide testing during these sessions

C. Define very generic charters to drive exploratory testing sessions of 2 days where testers are completely free to decide what to test

D. Exploratory testing should not be managed because such testing is inherently unmanageable and not measurable

The main objectives the senior management team wants to achieve are:

-

to reduce the costs associated with dynamic testing

-

to use reviews to ensure that the project is on course for success and following the plan

-

to use reviews as a well-documented and effective bug-removal activity following a formal process with well-defined roles

-

to determine the effectiveness of reviews in terms of phase containment

-

to improve phase containment effectiveness

Which of the following answers would you expect to describe the best way to achieve these objectives?

A.

You should plan for lightweight exit-phase reviews at the end of each development and testing phase, and plan for a process of gathering information from testing to perform an analysis aimed at identifying the larger cluster of defects

B.

You should plan for formal exit-phase reviews at the end of each development and testing phase, and plan for a process of gathering information from testing to perform an analysis aimed at identifying the larger cluster of defects

C.

You should plan for formal exit-phase reviews at the end of each development phase and testing phase, and plan for a process of gathering information from testing to perform an analysis of the bugs found during testing to determine the people responsible for those bugs

D.

You should plan for formal exit-phase reviews at the end of each development and testing phase, and plan for a process of gathering information from testing to perform an analysis of the bugs found during testing to determine the phase in which they have been introduced

Which of the following factors could negatively influence a review?

A. Include people with the adequate level of knowledge, both technical and procedural

B. Include people who are detail-oriented and scrupulous at finding issues

C. Include as many people as possible in order to have more viewpoints about possible problems on the item under review

D. Include people able to contribute to a clear, thoughtful, constructive and objective discussion

During the system testing phase a tester from your test team observes a failure in the system under test and he/she decides to create an incident report. The incident report is currently in a "new" state, indicating it needs to be investigated. Which THREE of the following information items can't yet be present in the incident report?

A. The type of defect that caused the failure

B. The actual and the expected result highlighting the failure

C. The lifecycle phase in which the defect has been introduced

D. What really caused the failure (actual cause)

E. Steps to reproduce the failure, including screenshots, database dumps and logs where applicable

Consider the following statements describing the importance of improving the test process:

I. Test process improvement is important because being focused only on the test process it can provide recommendations to improve the test process itself, but it can't indicate or suggest improvement to areas of the development process

II. Test process improvement is important because it is much more effective than software process improvement to improve the quality of a software system

III. Test process improvement is important because several process improvement models (STEP, TPI Next, TMMi) have been developed over the years

IV.

Test process improvement is important because every organization, regardless of the context, should always achieve the maximum level of maturity of testing described in the test improvement models such as TMMi Which of the following answers is correct?

A.

I. and IV. are true; II. and III. are false

B.

I., II., III. and IV are false

C.

I., II. and III are true; IV. is false

D.

I., II. and III. are false; IV. is true

In your organization the following tools of the same vendor are currently in usE. a requirements management tool, a test management tool and a bug tracking tool.

You are the Test Manager.

You are currently evaluating a test automation tool of the same vendor (to complete the vendor's tool suite) against an interesting open-source test automation tool under the GNU GPL (General Public License).

There are no initial costs associated to that open-source tool.

Which of the following statements associated to the selection of the open-source tool is correct in this scenario?

A. The open-source tool can be modified but only if the community of developers of that tool gives you the formal permission to modify it

B. There are no initial costs for the open-source tool but you should carefully consider the costs associated to the integration with the existing tools and also evaluate the recurring costs

C. There are no initial costs for the open-source tool because open-source tools are usually low- quality, while vendor tools have always a better quality than the corresponding open-source tools

D. The open-source tool can be modified but it can't be distributed further in any way

Assume you are the Test Manager in charge of independent testing for avionics applications.

You are in charge of testing for a project to implement three different CSCI (Computer Software Configuration Item):

-

a BOOT-X CSCI that must be certified at level B of the DO-178B standard

-

a DIAG-X CSCI that must be certified at level C of the DO-178B standard

-

a DRIV-X CSCI that must be certified at level A of the DO-178B standard These are three different software modules written in C language to run on a specific hardware platform. You have been asked to select a single code coverage tool to perform the mandatory code coverage measurements, in order to meet the structural coverage criteria prescribed by the DO- 178B standard. This tool must be qualified as a

verification tool under DO-178B.

Since there are significant budget constraints to purchase this tool, you are evaluating an open- source tool that is able to provide different types of code coverage. This tool meets perfectly your technical needs in terms of the programming

language and the specific hardware platform (it supports also the specific C-compiler).

The source code of the tool is available.

Your team could easily customize the tool to meet the project needs. This tool is not qualified as a verification tool under the DO-178B.

Which of the following are the three main concerns related to that open-source tool selection?

A. Does the tool support all the types of code coverage required from the three levels A, B, C of the DO-178B standard?

B. Does the tool have a good general usability?

C. What are the costs to qualify the tool as a verification tool under the DO-178B?

D. Is the installation procedure of the tool easy?

E. Does the tool require a system with more than 4GB of RAM memory?

F. Is the licensing scheme of the tool compatible with the confidentiality needs of the avionics company?

Assume you are a Test Manager involved in system testing of a CRM application for a Pay-TV company. Currently the application is able to support a proper number of users assuring the required responsiveness. Since the business is expected to grow, you have been asked to evaluate the ability of the application to grow to support more users while maintaining the same responsiveness.

Which of the following tools would you expect to be the most useful at performing this evaluation?

A. Coverage tools

B. Test management tools

C. Static analysis tools

D. Performance tools

Which of the following would you expect to be most likely an example of a motivating factor for testers?

A. The resources allocated for the testing activities are not sufficient and don't allow the testers to contribute to the quality of the product

B. The testers contribution to the quality of the software products developed from an organization is recognized with increased responsibilities

C. The same regressions tests are executed manually by the same testers, for every product release, without any progression in content

D. The testers are asked to perform, in parallel with their testing tasks, other tasks unrelated to their testing responsibilities