ExpertEasy1 markMultiple Choice
CPA · Question 53 · Area II: Security
Which type of security test involves the tester having full knowledge of the system (network diagrams, source code, IP addresses) beforehand?
Which type of security test involves the tester having full knowledge of the system (network diagrams, source code, IP addresses) beforehand?
Answer options:
A.
Black Box Testing
B.
Gray Box Testing
C.
White Box Testing
D.
Blind Testing
How to approach this question
Associate 'White/Clear' with 'Seeing everything'.
Full Answer
C.White Box Testing✓ Correct
White Box testing (or Crystal Box) simulates an insider attack or allows for a comprehensive audit because the tester has full access to documentation and code.
Common mistakes
Confusing White and Black box.
Practice the full CPA ISC Practice Exam 5
82 questions · hints · full answers · grading
More questions from this exam
Q01A service organization provides a cloud-based payroll processing application to its user entities...MediumQ02An auditor is reviewing the shared responsibility model for a client using an Infrastructure as a...HardQ03A financial institution requires a cloud deployment model that offers the highest level of contro...MediumQ04During an IT audit, you observe that a company uses a 'Hybrid Cloud' architecture. Which scenario...MediumQ05Which component of IT architecture is primarily responsible for translating domain names (like ww...Easy