Some Important Questions on Scecurity Testing :
Questions-Answer:
1. What is Authorization?
a) Authorization means checking permission
b) Authorization means checking credential.
c) Authorization means checking proper navigation
d) Authorization means checking approval
Ans: a
2. What is Authentication?
a) Authentication means checking permission
b) Authentication means checking credential.
c) Authentication means checking proper navigation
d) Authentication means checking approval
Ans: b
3. Why we do security testing?
a) To maintain Quality
b) To check authorized activities
c) To make application secure and maintains functionality as intended
d) To remove vulnerabilities
Ans: d
4. Which methods/techniques are used for security testing?
a) Functional and Risk based security testing
b) XSS and SQL injection
c) Password cracking and URL Manipulation
d) Get and Post
Ans: b
5. What is “Vulnerability”?
a) Bugs in the application
b) Cause in the web application
c) Weakness in the web application
d) Change in the application
Ans: c
6. Security Tests are created on the basis of:
a) More faults
b) Approches
c) Methods
d) Roles
Ans: d
7. Security Testing is a type of:
a) Review Testing
b) Recovery Testing
c) Performance Testing
d) Functionality Testing
Ans: a
8. Static analysis is best described as:
a) The analysis of batch programs
b) The reviewing of test plans.
c) The analysis of program code.
d) The use of black box testing.
9. Which symbol is used to test SQL injection?
a) Hash
b) Double Quotes
c) Ampersand
d) Single Quote
10. What is the full form of XSS?
a) Cross-Site Scripting
b) Cross-Side Scripting
c) Xml-Site Scripting
d) Xml-Side Scripting
Ans: a