ISTQB Chapter 3 Theories

Question 1

What are the sample work products examinable by Static Testing?

Answer 1

1. Requirement Specification Documents
2. Source Code
3. Test Plans
4. Test Cases
5. Product Backlog Items
6. Test Charters
7. Project Documentation
8. Contract
9. Models

Note: Work product that is not appropriate for static testing include those that are difficult to interpret by human beings and that should not be analyzed by tools (e.g. 3rd party executable code due to legal reasons)

Question 2

What are the Benefits of Static Testing?

Answer 2

1. Static Testing can detect defects in the earliest phases of the SDLC, fulfilling the principle of early testing.
2. Static Testing can identify defects which cannot be detected by dynamic testing (e.g. unreachable code, design patterns not implemented as desired, defects in non-executable work products)
3. Static Testing provides the ability to evaluate the quality of, and to build confidence in work products
4. Lower overall project cost because less time and effort is needed to be spent on fixing defect later in the project, even though reviews can be costly to implement.
5. Certain code defects can be detected using static analysis more efficiently than in dynamic testing, usually resulting in both fewer code defects and lower overall development effort.

Note: For improved communication, it is recommended to involve a wide variety of stakeholders in static testing.

Question 3

What are the differences between static testing and dynamic testing?

Answer 3

1. Static testing and dynamic testing (with analysis of failures) can both lead to the detection of defects, however there are some defect types that can only be found by either static or dynamic testing.
2. Static testing finds defects directly, while dynamic testing causes failures from which the
   associated defects are determined through subsequent analysis
3. Static testing may more easily detect defects that lay on paths through the code that are rarely executed or hard to reach using dynamic testing
4. Static testing can be applied to non-executable work products, while dynamic testing can only be applied to executable work products
5. Static testing can be used to measure quality characteristics that are not dependent on executing code (e.g., maintainability), while dynamic testing can be used to measure quality characteristics that are dependent on executing code (e.g., performance efficiency)

Question 4

What are the typical defects that are easier and/or cheaper to find through static testing:

Answer 4

1. Defects in requirements (e.g. inconsistencies, ambiguities, contradictions, omissions, inaccuracies, duplications)
2. Design defects (e.g. inefficient database structures, poor modularization)
3. Certain type of coding defects (e.g. variable with undefined values, undeclared variables, unreachable or duplicated code, excessive code complexity)
4. Deviations from standards (e.g. lack of adherence to naming conventions in coding standards)
5. Incorrect interface specifications (e.g. mismatched number, type or order of parameters)
6. Specific types of security vulnerabilities (e.g. buffer overvlows)
7. Gaps or inaccuracies in test basis coverage (e.g. missing tests for an acceptance criterion)

Question 5

What are the standard activities in a review process?

Answer 5

1. Planning
2. Review Initiation
3. Individual Review
4. Communication and analysis
5. Fixing and reporting

Question 6

This activity in the review is where the scope of the review, which comprises the purpose, the work product to be reviewed, quality characteristics to be evaluated, areas to focus on, exit criteria, supporting information such as standards, effort and the timeframes for the review, shall be defined.

a. Planning
b. Review initiation
c. Individual review
d. Communication and analysis
e. Fixing and reporting

Answer 6

a. Planning

Question 7

This activity in the review is where the goal is to make sure that everyone and everything involved is prepared to start the review. This includes making sure that every participant has access to the work product under review, understands their role and responsibilities and receives everything needed to perform the review.

a. Planning
b. Review initiation
c. Individual review
d. Communication and analysis
e. Fixing and reporting

Answer 7

b. Review initiation

Question 8

This activity in the review is where the reviewers assess the quality of the work product under review, and identify anomalies, recommendations, and questions by applying one or more review techniques. The reviewers log all their identified anomalies, recommendations, and questions.

a. Planning
b. Review initiation
c. Individual review
d. Communication and analysis
e. Fixing and reporting

Answer 8

c. Individual review

Question 9

This activity in the review is where anomalies identified are analyzed and discussed.

a. Planning
b. Review initiation
c. Individual review
d. Communication and analysis
e. Fixing and reporting

Answer 9

d. Communication and analysis

Question 10

This activity in the review is where a defect report is created so that corrective actions can be followed-up.

a. Planning
b. Review initiation
c. Individual review
d. Communication and analysis
e. Fixing and reporting

Answer 10

e. Fixing and reporting

Question 11

Who are the principle stakeholders in reviews?

Answer 11

1. Manager
2. Author
3. Moderator (also known as the facilitator)
4. Scribe (also known as the recorder)
5. Reviewer
6. Review Leader

Question 12

This stakeholder in review decides what is to be reviewed and provides resources, such as staff and time for the review

a. Manager
b. Author
c. Moderator
d. Scribe
e. Reviewer
f. Review Leader

Answer 12

a. Manager

Question 13

This review stakeholder creates and fixes the work product under review

a. Manager
b. Author
c. Moderator
d. Scribe
e. Reviewer
f. Review Leader

Answer 13

b. Author

Question 14

This review stakeholder ensures the effective running of review meetings, including mediation, time management, and a safe review environment in which everyone can speak freely

a. Manager
b. Author
c. Moderator
d. Scribe
e. Reviewer
f. Review Leader

Answer 14

c. Moderator (also known as the facilitator)

Question 15

This review stakeholder collates anomalies from reviewers and records review information, such as decisions and new anomalies found during the review meeting

a. Manager
b. Author
c. Moderator
d. Scribe
e. Reviewer
f. Review Leader

Answer 15

d. Scribe (also known as recorder)

Question 16

This review stakeholder performs reviews. It may be someone working on the project, a subject matter expert, or any other stakeholder.

a. Manager
b. Author
c. Moderator
d. Scribe
e. Reviewer
f. Review Leader

Answer 16

e. Reviewer

Question 17

This review stakeholder takes overall responsibility for the review such as deciding who will be involved, and organizing when and where the review will take place

a. Manager
b. Author
c. Moderator
d. Scribe
e. Reviewer
f. Review Leader

Answer 17

f. Review Leader

Question 18

What are the commonly used review types?

Answer 18

a. Informal review
b. Walkthrough
c. Technical Review
d. Inspection

Question 19

This review type do not follow a defined process and do not require a formal documented output. The main objective is detecting anomalies

a. Informal review
b. Walkthrough
c. Technical Review
d. Inspection

Answer 19

a. Informal review

Question 20

This review type is led by the author. The objective of which is to evaluate quality and build confidence in the work product, educate reviewers, gain consensus, generate new ideas, motivate and enable authors to improve and detect anomalies.

a. Informal review
b. Walkthrough
c. Technical Review
d. Inspection

Answer 20

b. Walkthrough

Question 21

This review type is performed by technically qualified reviewers and led by a moderator. The objective of this is to detect anomalies, evaluate quality and build confidence in the work product, generate new ideas, and to motivate and enable authors to improve.

a. Informal review
b. Walkthrough
c. Technical Review
d. Inspection

Answer 21

c. Technical Review

Question 22

This review type is the most formal type of review, they follow the complete generic process. The main objective is to find the maximum number of anomalies. Other objectives are to evaluate quality, build confidence in the work product, and to motivate and enable authors to improve. Metrics are collected and used to improve the SDLC, including the inspection process. In inspections, the author cannot act as the review leader or scribe.

a. Informal review
b. Walkthrough
c. Technical Review
d. Inspection

Answer 22

d. Inspection

Question 23

What are the success factors for reviews?

Answer 23

• Defining clear objectives and measurable exit criteria. Evaluation of participants should never be an objective
• Choosing the appropriate review type to achieve the given objectives, and to suit the type of work product, the review participants, the project needs and context
• Performing reviews on small chunks, so that reviewers do not lose concentration during an
  individual review and/or the review meeting (when held)
• Providing feedback from reviews to stakeholders and authors so they can improve the product and their activities (see section 3.2.1)
• Providing adequate time to participants to prepare for the review
• Support from management for the review process
• Making reviews part of the organization’s culture, to promote learning and process improvement
• Providing adequate training for all participants so they know how to fulfil their role
• Facilitating meetings