Weekly CISSP Exam Questions
Scenario: Your organization is using a black-box testing technique for the first time. What is the main limitation of this technique?
A. Time-consuming
B. Lack of internal structure analysis
C. High cost
D. Requires high expertise
Answer: B
Explanation:
In black-box testing, the internal workings of the application are not known or examined. The test is purely based on input and output, without any knowledge of the internal paths, structures, or implementation of the application. Here's why the other options are less relevant as the "main limitation":
Time-consuming: While black-box tests can be time-consuming, this is not the primary limitation. The lack of internal knowledge can be a much more significant hindrance.
High cost: The cost may vary depending on the tools used, the scope, and the duration of the testing. However, it's not the primary limitation, especially since black-box testing doesn't require as in-depth knowledge of the system as white-box testing does.
Requires high expertise: While some expertise is always beneficial, black-box testing generally requires less specialized knowledge of the system's internals compared to white-box testing.
Podcasts
Check out my weekly podcasts that delve deep into the relevant topics related to each of CISSP domains. In addition, I will go over specific questions and they can be interpreted and answered.
CISSP Cyber Training Academy
Tired of not knowing how to study for the CISSP Exam?
Check out the CISSP Cyber Training Academy to help you on your journey!
CISSP Cyber Training - YouTube
Check out my video collection on YouTube discussing all the details needed to help you pass the CISSP exam.
