The auditing method that assesses the extent of the system testing, and identifies specific
program logic that has not been tested is called
A.
Decision process analysis
B.
Mapping
C.
Parallel simulation
D.
Test data method
Explanation:
“Testing of software modules or unit testing should be addressed when the modules
are being designed. Personnel separate from the programmers should conduct this testing. The
test data is part of the specifications. Testing should not only check the modules using normal and
valid input data, but it should also check for incorrect types, out-of-range values, and other bounds
and/or conditions. Live or actual field data is not recommended for use in the testing procedures
because both data types might not cover out-of-range situations and the correct outputs of the test
are unknown. Special test suites of data that exercise all paths of the software to the fullest extent
possible and whose corrected resulting outputs are known beforehand should be used.” Pg. 345
Krutz: The CISSP Prep Guide: Gold Edition.