CTFL_Syll2018 Exam Dumps : ISTQB Certified Tester Foundation Level (Syllabus 2018)

 The correct roles and responsibilities in a formal review are as follows1:

• Review Leader - Plans and leads the review process
• Scribe - Documents all issues raised during the review meeting
• Author - Creates the work product under review
• Facilitator - Supports the review leader in conducting the review process
• Reviewers - Identify potential defects in the work product under review

Therefore, option B is the correct answer, as it correctly matches the role of scribe with the responsibility of collating potential defects found during the individual review activity. Options A, C, and D are incorrect, as they do not match the roles and responsibilities correctly. References: 1, Section 3.2.3

Static testing is a type of testing that does not involve executing the software or system under test, but rather analyzing it using various techniques, such as reviews, inspections, walkthroughs, checklists, static analysis tools, etc. Static testing can be applied to any work product that participants know how to read and understand, such as requirements specifications, design specifications, code, test cases, test plans, user manuals, etc. Static testing can help find defects and improve the quality of any work product at any stage of the software development lifecycle.

References: Certified Tester Foundation Level Syllabus, Section 3.1 and 3.2

Risk-based testing is an approach to testing that prioritizes and focuses on testing activities based on the level of risk associated with each feature or function of the system under test. Risk-based testing aims to optimize the use of time, resources, and techniques for testing by identifying and addressing the most critical and likely sources of failure or harm in the system under test. Some examples of typical risk-based testing activities are:

• Brainstorming sessions are held with a wide variety of stakeholders to identify possible failures in the system: This activity is part of the risk identification process, which involves gathering information and opinions from different perspectives and sources to discover potential risks in the system under test.
• Tests are prioritized to ensure that those associated with critical parts of the system are executed earlier: This activity is part of the risk analysis and evaluation process, which involves assessing the probability and impact of each risk and ranking them according to their severity and importance.
• The focus of testing is shifted to an area in the system where tests find more defects than expected: This activity is part of the risk mitigation and monitoring process, which involves taking actions to reduce or eliminate the risks and tracking their status and progress.

The evaluation of a risk-management tool to decide which tool to use for future projects is not an example of a typical risk-based testing activity because it is not directly related to testing the system under test based on its risks. Rather, it is an example of a tool selection or evaluation activity, which involves comparing and choosing a tool that can support or enhance the testing process based on criteria such as functionality, usability, reliability, compatibility, cost, etc. You can find more information about risk-based testing in [A Study Guide to the ISTQB® Foundation Level 2018 Syllabus], Chapter 3, Section 3.4.