The following are questions I am routinely asked about development and testing:


What is a DMZ (computing)?

The DMZ functions as a small, isolated network positioned between the Internet and a private network.


What is a vulnerability?

In computer security, a vulnerability is a weakness which can be exploited by a Threat Actor


What is a Zero-day vulnerability?

"Zero-day” refers to the fact that the developers have “zero days” to fix the problem that has just been exposed — and perhaps already exploited by hackers.


What is the difference between an Exploit and Vulnerability?

A vulnerability is a weak point in a system. This implies a risk, especially to confidential information. An exploit is a means of taking advantage of the vulnerability and using it to take advantage of a system or network.


When should I bring in software testers?

For great quality, bring your software testers in early.


What is Black Box testing?

A software testing method in which the internal structure/design/implementation of the item being tested is not known to the tester. These tests can be functional or non-functional, though usually functional. Test design techniques include Equivalence partitioning, Boundary Value Analysis, Cause-Effect Graphing.


What is White Box testing?

A software testing method in which the internal structure/design/implementation of the item being tested is known to the tester. Test design techniques include Control flow testing, Data flow testing, Branch testing, Path testing.


What is Gray Box testing?

A software testing method which is a combination of Black Box Testing method and White Box Testing method.


What is Agile testing?

A method of software testing that follows the principles of agile software development.


What is Ad hoc testing?

A method of software testing without any planning and documentation.


What is Smoke testing?

Smoke Testing, also known as “Build Verification Testing”, is a type of software testing that comprises of a non-exhaustive set of tests that aim at ensuring that the most important functions work.


What is Functional testing?

(also known as Clear Box Testing, Open Box Testing, Glass Box Testing, Transparent Box Testing, Code-Based Testing or Structural Testing) is a software testing method.


What is Usability testing?

Usability Testing is a type of software testing done from an end-user’s perspective to determine if the system is easily usable.


What is Security testing?

Security Testing is a type of software testing that intends to uncover vulnerabilities of the system and determine that its data and resources are protected from possible intruders.


What is Performance testing?

Performance Testing is a type of software testing that intends to determine how a system performs in terms of responsiveness and stability under a certain load.


What is Regression testing?

Regression testing is a type of software testing that intends to ensure that changes (enhancements or defect fixes) to the software have not adversely affected it.


What is Compliance testing?

Compliance Testing [also known as conformance testing, regulation testing, standards testing] is a type of testing to determine the compliance of a system with internal or external standards.