CISSP Practice question #135

In software testing a black box test would have how much information?
A: Just the software, no source code.
B: The software, source code, data structures and variables.
C: User logs, access entries and project plan.
D: A version of the software, but only the cripple ware version.

CBK 6: Security Assessment and Testing
Source: ThorTeaches.com practice tests

Answer


A: Black box software testing: The tester has no details, just the software, they then test for functionality and security flaws.

show less

IT security trainer.
Sharing my knowledge, to help you reach your IT certification goals.
CISSP, C|EH, PMP, CCNP, CompTIA Security+, SCP, CCNA-Security, CCNA, et. Al.

You may also like

23 Comments

  1. A is the right answer, Black box testing, test the software from the user perspective. In Grey Box testing, you also have the source code along with software, it is still user perspective testing. White Box is Delveloper perspective testing in which you have software and access to source code.

Leave a Reply