ISTQB ISTQB-CTFL 시험

Question No : 1

A team's test strategy was to invest equal effort in testing each of a system's modules. After running one test cycle, it turned out that most of the critical bugs were detected in one of the system's modules.
Which testing principal suggests a change to the current test strategy for the next test cycle?

• A.Pesticide Paradox
• B.Early testing
• C.Absence-of-errors fallacy
• D.Defect clustering

답을 확인하기

정답:
Explanation:
Defect clustering is a testing principle that states that a small number of modules contain most of the defects detected during pre-release testing, or are responsible for most of the operational failures. Defect clustering can be explained by Pareto’s principle (also known as the 80-20 rule), which states that approximately 80% of the problems are found in 20% of the modules. Defect clustering suggests a change to the current test strategy for the next test cycle, as it implies that more effort should be allocated to test the modules that have shown high defect density or criticality. Pesticide paradox is another testing principle that states that if the same tests are repeated over and over again, eventually they will no longer find any new defects. Pesticide paradox suggests a change to the current test strategy for the next test cycle, but not based on defect clustering, but rather on test diversity and coverage. Early testing is a testing principle that states that testing activities should start as early as possible in the software development life cycle and should be focused on defined objectives. Early testing does not suggest a change to the current test strategy for the next test cycle, but rather a proactive approach to prevent defects from occurring or propagating. Absence-of-errors fallacy is a testing principle that states that finding and fixing defects does not help if the system built is unusable and does not fulfill the users’ needs and expectations. Absence-of-errors fallacy does not suggest a change to the current test strategy for the next test cycle, but rather a focus on quality attributes and user requirements.
Reference: A Study Guide to the ISTQB® Foundation Level 2018 Syllabus - Springer, Chapter 1, page 9-10.

Question No : 2

Which are the MAIN goals of risk management in a software project?

• A.To increase the success probability for the project regardless of costs.
• B.To increase focus on preventative processes and to increase satisfaction for the testers.
• C.To control contractual problems and minimize the impacts of company policies.
• D.To reduce the probability of undesired situations and to reduce the effect of potential impact.

답을 확인하기

정답:
Explanation:
Risk management is a process that identifies, analyzes, evaluates and mitigates risks in a software project. Risks are factors that may negatively affect the quality, schedule, budget or scope of a software project. The main goals of risk management in a software project are to reduce the probability of undesired situations and to reduce the effect of potential impact. This can be achieved by applying various strategies, such as avoidance, transfer, reduction or acceptance. Risk management does not aim to increase the success probability for the project regardless of costs, as this may not be feasible or realistic. Risk management does not aim to increase focus on preventative processes and to increase satisfaction for the testers, as these are secondary or indirect outcomes. Risk management does not aim to control contractual problems and minimize the impacts of company policies, as these are specific types of risks that may not apply to all projects.
Reference: A Study Guide to the ISTQB® Foundation Level 2018 Syllabus - Springer, Chapter 2, page 14-15.

Question No : 3

Which ONE of the following statements about acceptance testing is NOT correct?

• A.Testing of disaster recovery and backup/restore is usually NOT part of acceptance testing.
• B.The customers or system users are often responsible for the acceptance testing.
• C.The main goal of acceptance testing is to build confidence in the system, not find defects.
• D.Acceptance testing is the last level of testing performed prior to system release.

답을 확인하기

정답:
Explanation:
Acceptance testing is a level of testing performed to verify that a software product meets the agreed acceptance criteria and is acceptable for delivery. Acceptance testing is often performed by the customers or system users, who are the main stakeholders of the software product. The main goal of acceptance testing is to build confidence in the system, not find defects, as defects should have been detected and fixed in earlier levels of testing. Acceptance testing is the last level of testing performed prior to system release, unless there are any changes or fixes that require re-testing. Testing of disaster recovery and backup/restore is usually part of acceptance testing, as these are important aspects of system reliability and security that affect the customer satisfaction and trust. Therefore, statement A is not correct, while statements B, C and D are correct.
Reference: A Study Guide to the ISTQB® Foundation Level 2018 Syllabus - Springer, Chapter 2, page 20-21.

Question No : 4

Manager responsibilities in formal review includes ad except one of the following:

• A.Planning the review
• B.Determines if the review objectives have been met
• C.Decide on the execution of reviews
• D.Allocate time for review

답을 확인하기

정답:
Explanation:
A formal review is a type of review that follows a defined process with formal entry and exit criteria
and roles and responsibilities for participants. A formal review can have various roles involved, such as manager, moderator, author, reviewer and scribe.
The manager responsibilities in formal review include all except one of the following:
Planning the review (correct responsibility)
Determines if the review objectives have been met (incorrect responsibility)
Decide on the execution of reviews (correct responsibility)
Allocate time for review (correct responsibility) The responsibility of determining if the review objectives have been met belongs to the moderator role, not to the manager role.
Reference: [A Study Guide to the ISTQB® Foundation Level 2018 Syllabus - Springer], Chapter 3, page 28-29.

Question No : 5

In which of the following cases you would NOT execute maintenance testing?

• A.Retirement of the software or system
• B.Modifications to a released software or system
• C.Migration of the system data to a replacement system
• D.Update to the Maintainability requirements during the development phase

답을 확인하기

정답:
Explanation:
Maintenance testing is testing performed on a software product after delivery to correct defects or improve performance or other attributes. Maintenance testing can be triggered by various situations, such as modifications to a released software or system, migration of the system data to a replacement system, or retirement of the software or system. Maintenance testing is not executed when there is an update to the maintainability requirements during the development phase, as this is not a maintenance situation but rather a change request that should be handled by the development process.
Reference: [A Study Guide to the ISTQB® Foundation Level 2018 Syllabus - Springer], Chapter 2, page 18-19.

Question No : 6

Which of the following statements about independent testing is WRONG?

• A.Independent testing is necessary because developers don't know any testing.
• B.Independent testing is best suited for the system test level.
• C.A certain degree of independence makes the tester more effective at finding defects.
• D.Independent test teams may find other types of detects than developers who are familiar with the system's structure.

답을 확인하기

정답:
Explanation:
Independent testing is testing performed by a person or group that is independent of the development team. Independent testing can have various degrees of independence, ranging from testers who are part of the same organization as developers to testers who are external contractors or consultants. Independent testing can have various benefits, such as reducing bias, increasing objectivity, improving quality, or providing different perspectives. Independent testing is not necessary because developers don’t know any testing, as this is a wrong and disrespectful statement. Developers can perform various types of testing, such as unit testing, component testing, or integration testing. However, independent testing can complement developer testing by providing additional levels of verification and validation, such as system testing, acceptance testing, or non-functional testing.
Reference: [A Study Guide to the ISTQB® Foundation Level 2018 Syllabus - Springer], Chapter 2, page 16-17.

Question No : 7

Software was found lo take much more time than the stated requirement of less than one second to save a file. Upon investigation it was found that there was an unnecessary check inside a loop which was slowing down the file-save operation.
The software not being able to meet the desired response time is an example of

• A.It is not a defect
• B.Defect
• C.Error
• D.Failure

답을 확인하기

정답:
Explanation:
A failure is an event in which a component or system does not perform a required function within specified limits. A failure is observable by the software users or other stakeholders. A failure is caused by one or more defects in the software. In this case, the software not being able to meet the desired response time is an example of a failure, as it deviates from the stated requirement and affects the user experience. It is not a defect, which is a flaw in the software that causes the failure. It is not an error, which is a human action that produces an incorrect result. It is not a non-defect, as it clearly violates a specified requirement.
Reference: [A Study Guide to the ISTQB® Foundation Level 2018 Syllabus - Springer], Chapter 1, page 4.

Question No : 8

Which of the following statements about Experience Based Techniques (EBT) is correct?

• A.EBT use tests derived from the test engineers' previous experience with similar technologies.
• B.EBT is based on the ability of the test engineer to implement various testing techniques.
• C.EBT is done as a second stage of testing, after non-experienced-based testing took place.
• D.EBT require broad and deep knowledge in testing but not necessarily in the application or technological domain.

답을 확인하기

정답:
Explanation:
Experience based techniques (EBT) are techniques that use the knowledge, intuition and skills of the test engineers to design and execute tests. EBT use tests derived from the test engineers’ previous experience with similar technologies, domains, applications or systems. EBT are not based on the ability of the test engineer to implement various testing techniques, but rather on their personal judgment and creativity. EBT are not done as a second stage of testing, after non-experience-based testing took place, but rather as a complementary or alternative approach to other techniques. EBT require broad and deep knowledge in both testing and the application or technological domain, as this can help the test engineer identify potential risks, scenarios or defects.
Reference: [A Study Guide to the ISTQB® Foundation Level 2018 Syllabus - Springer], Chapter 5, page 48-49.

Question No : 9

Which sequence of state transition stated in the answer choices is correct in accordance with the following figure depicting me life-cycle of a defect?

• A.S0->S1->S2->S3->S4
• B.S0->S1->S2->S3->S5^>S1
• C.S0->S1->S2->S3->S5->S1->S2->S3
• D.S0->S1->S2->S3->S5->S3->S4

답을 확인하기

정답:
Explanation:
The figure depicts the life-cycle of a defect using state transition testing. State transition testing is a technique that models how a system transitions from one state to another depending on events or conditions. The figure shows six states (S0 to S5) and seven transitions (T0 to T6). The correct sequence of state transitions that follows the figure is S0->S1->S2->S3->S5->S1->S2->S3.
This sequence represents the following scenario:
S0: The defect is not yet detected (initial state).
T0: The defect is detected by testing (event).
S1: The defect is reported and registered (state).
T1: The defect is assigned to a developer for fixing (event).
S2: The defect is being fixed by the developer (state).
T2: The developer fixes the defect and delivers a new version (event).
S3: The defect is verified by testing (state).
T5: The testing fails to confirm that the defect is fixed (event).
S5: The defect is rejected by testing (state).
T6: The defect is reassigned to a developer for fixing (event).
S1: The defect is reported and registered (state).
T1: The defect is assigned to a developer for fixing (event).
S2: The defect is being fixed by the developer (state).
T2: The developer fixes the defect and delivers a new version (event).
S3: The defect is verified by testing (state). The other sequences are incorrect, as they do not follow the transitions shown in the figure.
Reference: [A Study Guide to the ISTQB® Foundation Level 2018 Syllabus - Springer], Chapter 4, page 40-41.

Question No : 10

Which of the following is a function of a dynamic analysis tool?

• A.Provide support for traceability of tests, test results and incidents to source documents
• B.Monitor the allocation, use and de-allocation of memory during run-time of a program
• C.Execute programs step-by-step in order to reproduce failures and find corresponding defects
• D.Provide support for release of baselines consisting of configuration items

답을 확인하기

정답:
Explanation:
A dynamic analysis tool is a tool that performs analysis of a software product based on its behavior during execution. A dynamic analysis tool can monitor various aspects of a program’s run-time performance, such as memory usage, CPU load, response time, or resource leaks. A dynamic analysis tool can monitor the allocation, use and de-allocation of memory during run-time of a program, which can help detect defects such as memory leaks, buffer overflows, or memory corruption. A dynamic analysis tool cannot provide support for traceability of tests, test results and incidents to source documents, as this is a function of a test management tool. A dynamic analysis tool cannot execute programs step-by-step in order to reproduce failures and find corresponding defects, as this is a function of a debugging tool. A dynamic analysis tool cannot provide support for release of baselines consisting of configuration items, as this is a function of a configuration management tool.
Reference: [A Study Guide to the ISTQB® Foundation Level 2018 Syllabus - Springer], Chapter 6, page 56-57.

Question No : 11

A bank software has a feature of locking down accounts that have and overdraft higher than $10,000.
Due to a bug in the code, the system locks down accounts once they reached $1000 overdraft.
Based on this context, which of the following is correct statement

• A.It is an example of a defect that it goes undetected, will cause harm to the end customer and to the company (the bank)
• B.It is an example of a defect, that if goes undetected, will cause harm to the end customer but not to the company (the bank)
• C.It is an example of a defect that if goes undetected, will not cause harm to the end customer, but will cause harm to the company (the bank)
• D.It is an example of a defect that if goes undetected, will not cause any real harm to either the end customer or to the company (the bank)

답을 확인하기

정답:
Explanation:
A defect is a flaw in a component or system that can cause the component or system to fail to perform its required function. A defect can cause harm to the end customer, the company, or both, depending on the impact and severity of the failure. In this case, the defect in the code causes the system to lock down accounts that have an overdraft higher than $1000, instead of $10,000. This can cause harm to the end customer, as they may lose access to their funds and face inconvenience or financial difficulties. This can also cause harm to the company, as they may lose customer trust and satisfaction, face legal issues or complaints, or incur additional costs for fixing the defect and restoring the accounts.
Reference: [A Study Guide to the ISTQB® Foundation Level 2018 Syllabus - Springer], Chapter 1, page 3-4.

Question No : 12

For a mandatory input field "ZIP code" the following rules are given:
1 - The valid ZIP code format is 5 numeric digits.
2 - The code has to exist in the post office's official ZIP code list
Using equivalence classes partitioning, how many test cases are required to test this field?

• A.8
• B.3
• C.6
• D.4

답을 확인하기

정답:
Explanation:
Equivalence classes partitioning is a technique that divides the input data and output results of a software component into partitions of equivalent data. Each partition should contain data that is treated in the same way by the component. Equivalence classes partitioning can be used to reduce the number of test cases by selecting one representative value from each partition.
For the ZIP code field, there are four equivalence classes based on the given rules:
Valid ZIP code format and valid ZIP code value (e.g., 12345)
Valid ZIP code format and invalid ZIP code value (e.g., 99999)
Invalid ZIP code format and valid ZIP code value (e.g., 1234)
Invalid ZIP code format and invalid ZIP code value (e.g., ABCDE) Therefore, four test cases are required to test this field, one for each equivalence class.
Reference: [A Study Guide to the ISTQB® Foundation Level 2018 Syllabus - Springer], Chapter 4, page 37-38.

Question No : 13

The following requirement is given “Set X to be the sum of Y and Z”.
All the following four implementations have bugs.
Which one of the following bugs can be caught by Static Analysis?

• A.int x = 1. int y = 2. int y = 3. X = y=z;
• B.int x = 1. int y = 2. int z = 3. X = z-y
• C.int x = 1. Int y = 2. Int z = 3. Z = x +y
• D.int y = 2 Int z = 3. Y = z+y

답을 확인하기

정답:
Explanation:
Static analysis is a technique that analyzes the source code or other software artifacts without executing them. Static analysis can detect defects such as syntax errors, coding standards violations, potential security vulnerabilities, or logical flaws. Static analysis can catch the bug in the first implementation, as it contains two syntax errors: the variable y is declared twice, and the assignment statement X = y=z is invalid. Static analysis cannot catch the bugs in the other three implementations, as they are logical errors that do not violate any syntax rules, but produce incorrect results.
Reference: [A Study Guide to the ISTQB® Foundation Level 2018 Syllabus - Springer], Chapter 3, page 25-26.

Question No : 14

Which test approach will best fit a new project, with little documentation and high probability for bugs?

• A.Exploratory testing
• B.Requirements based testing
• C.Metric based approach
• D.Regression testing

답을 확인하기

정답:
Explanation:
Exploratory testing is an approach to testing that emphasizes learning, test design and test execution at the same time. Exploratory testing relies on the tester’s skills, creativity and intuition to explore the software under test and discover defects. Exploratory testing is suitable for a new project with little documentation and high probability for bugs, as it can help uncover unknown requirements, assumptions and risks. Exploratory testing is not requirements based testing, which is an approach to testing that derives test cases from documented requirements or specifications. Requirements based testing is not feasible for a new project with little documentation, as it requires clear and complete requirements to be available. Exploratory testing is not metric based approach, which is an approach to testing that uses quantitative measures to monitor and control the testing process and evaluate the quality of the software product. Metric based approach is not effective for a new project with high probability for bugs, as it may not capture all aspects of quality and may lead to false confidence or unrealistic expectations. Exploratory testing is not regression testing, which is an approach to testing that verifies that previously tested software still performs correctly after changes. Regression testing is not relevant for a new project with no previous versions or baselines.
Reference: [A Study Guide to the ISTQB® Foundation Level 2018 Syllabus - Springer], Chapter 5, page 47-48.

Question No : 15

A system computes prices for bus tickets.
The price depends on
- the passenger type (baby, child, adult, senior citizen, student, military)
- the travelling type (as single or in a group)
- the distance (zone 1. 2. 3)
- the kind of transport (ordinary, express)
Which of the following test techniques is the most appropriate one for testing the price computation?

• A.Statement coverage
• B.State transition testing
• C.Equivalence partitioning
• D.Use case testing

답을 확인하기

정답:
Explanation:
Equivalence partitioning is a technique that divides the input data and output results of a software component into partitions of equivalent data. Each partition should contain data that is treated in the same way by the component. Equivalence partitioning can be used to reduce the number of test cases by selecting one representative value from each partition. Equivalence partitioning is suitable for testing the price computation, as it can identify different partitions based on the passenger type, the travelling type, the distance and the kind of transport. Equivalence partitioning is not statement coverage, which is a technique that measures how many executable statements in a source code are executed by a test suite. Statement coverage is not appropriate for testing the price computation, as it does not consider the input data or output results. Equivalence partitioning is not state transition testing, which is a technique that models how a system transitions from one state to another depending on events or conditions. State transition testing is not relevant for testing the price computation, as it does not involve any states or transitions. Equivalence partitioning is not use case testing, which is a technique that tests how users interact with a system to achieve a specific goal. Use case testing is not applicable for testing the price computation, as it does not focus on a single function or component.
Reference: [A Study Guide to the ISTQB® Foundation Level 2018 Syllabus - Springer], Chapter 4, page 37-38.