1.
Suppose there are an user story and it has got 7-8 points in acceptance
criteria. How would you estimate it?
If I have to estimate a user story, we can do that estimation on story points.
The no of story points increasing, the complexity of user story is also increasing.
The more the higher number, the more user story would be the complex. If we have
story points 1-5, then we can complete it in 2 days. If it is medium
complexity, something like 5-10, then we can take 3-5 days, if it is more than
that we will take more. We have to do Testcase writing, Review, approval,
Execution. We have to check acceptance criteria. Is it only Functional or Non
Functional also? So we will give time accordingly.
2. A new table is introduced, but sensitive data is stored in plain text. What
should I do?
First of all, sensitive data or password should be encrypted. If it is stored in
plain text. So it will be visible while typing. We should raise a bug with high
priority. We will add tests to validate the encryption mechansism. We will make
this point out in retrospective meeting. We can follow with dev team to
fix this issue.
3. Unauthorized data access is detected in the database, what should I do?
Identify the source of the unauthorized access using the audit logs.
Restrict access by reviewing roles, permissions and credentials.
Implement encryprtion for sensitive data and ensure compliance with security
policy.
COnduct security test and involve stakeholders to review policies.
4. How to handle release in tight schedule during peak time?
We have to do Concurrent Testing, Parallal Testing, Functional Testing and
Performance testing/load/stress testing.
5. Suppose we have to test payment gateways of ecomerce website, what stratergy I
would approach?
We will check different payment methods is accepting or. If the card use for
international transcation, those kind of card testing we should follow. We have
to do negative testing. It is part of the stratergy. We will check the whole
payment process is succesfully done or not. We will check how much time user
take for the done the payments or otp gets generated.
6. Suppose I have given a requirement for testing, how would I come with risk
assesment checklist.? How would I create some checklist which I define risk??
Those kind of factors are added in the test plan. I will follow that along with
the objective test. We will check the priority and work on the testcase
accordingly.
I will ensure Test environment, test data, all should be readily prepared. So we
will make it should not be any delay for either test case approval, testcase
data approval, stability of the environment. So these are general risk I have to
follow in my testplan. We can evaluate with the third party tool also.
�-----------------------------------------------------------------------------------
---------------------------------------------------------
1. What is acceptance criteria?
4. Difference b/w Trace matrix and tracebility matrix?
