Answer Posted / swapnil garg
1.Data in the cookie should be displayed in the encrypted
form. If the data is in encrypted format then it will not be
easy for any user to retrieve data from in it which is a
security feature.
2.User can test whether appropriate message is displayed or
not by disabling the cookies from the browser settings. Once
the cookie is disabled from the browser settings, then run
the application, applications that require the use of the
cookies should display a proper message like “For smooth
functioning of the application, cookies needs to be enable
on the browser”. At any point application should not get
crash even when the cookies are disabled.
3.Try to check the functionality of the application by
accepting & rejecting some cookies. Change the browser
settings so that system should prompt the user to
accept/reject the cookies. Now let’s say that there are 10
cookies required in the application, now accept any 5 out of
them & reject another 5, now check the functionality of the
application, at any point of time application should not
gets crashed.
4.Functionality of the application after deletion of
cookies: Examine the behavior of the application after
deleting all the cookies written by the application
5.Corrupting the cookies: Cookies store at the default
location in the users pc, manually change the parameter
value displayed in the cookies or change the name of the
cookie generated & then try to access the application.
6.Checking the deletion of cookies from the web application:
Sometimes, cookies generated by the page in the web
application is deleted by another page of the same
application, for example lets consider the case of an
Application having shopping cart in it, when the user
performs some purchase out of it then a cookie is generated
& when the user .navigates to any other page in the same
application, then the cookies generated by the page
(shopping cart) gets deleted,. This is a security issue so
that no mores transaction will take place with the same values.
7.Cookie Testing on Multiple Browsers: This is regarding the
testing of cookies generated by the application in different
browsers. In the different browsers If the application
(using for testing) is writing the cookies, then the user
can check whether it is writing cookies successfully in
different browsers like Mozilla , Internet Explorer, Safari
, Netscape etc.
8.In some cases when the cookies are used to store the
logging stats of the user, then in the url logged in
parameters are displayed in the form of the ID’s, change
this id values, lets say the id value displayed is 100 or
something else change this value to any other value. Proper
message should be displayed to the user.
9.More use of cookies can lead to loss of site traffic: Not
every user has the cookies enabled on the browser, Lets
consider that the user (make the settings like system will
prompt the user before accepting any cookies) is accessing
the web application. Now to navigate around different pages
(Lets say from page 1 to page 2) there ate a lot of cookies
used, then the user will annoy & this may lead to the loss
of site traffic. So its always better to generate the
minimum number of cookies in the application.
10.Best approach to write the cookie is to that no sensitive
information like username, password, Credit Card Numbers
(in case of an transactional application) should not be
stored in the cookie, if it is getting stored in the cookies
then it should be in encrypted form.
| Is This Answer Correct ? | 6 Yes | 0 No |
Post New Answer View All Answers
Which are the different tests for apparel testing?
State a generalized process for load test? Or explain how you did it previously.
i want information about API testing and i want info like how process can be done in company? i want added info like coding ,debugging, desing in c.v ? what should add in c.v for eg banking domin? pls any answer my question?
Unix question: 1)command to print a list of files containing a particular word. 2) what does a .profile mean. 3) what is a file server? 4) Command to move towards left in vi editor explain grep and find commands using example.
what technical problem u face in your module please tell what is it mean its any bug or anything else i want ans give any example which ever modul u r working for u can give me any example
test cases for Insurance Processing System ?
What is boundary value testing? Give an example.
can anyone help me regarding testing patterns?
How to integrate Bugzilla with QTP?
Can anybody help i put the pharma and bank project in my resume, but i dont know what to tell about them, any body tell the where can i get the information about them,what i need to tell about these applications,please help me
Write positive and negative test cases for forgot password?
hi sir, i completed my GNIIT from NIIT. i recently joined in IT company for Testing(manual) on JD EDWARDS.So,i wanna to ask that after taking 1yr experience can i able to do Testing .NET in another company.Pl i am confused pl send yours suggestion throw my email(paresh_shindeal@yahoo.com)
What is grey box testing?
how to test a store procedure?
If anyone have attended interview with deloitte for the post of senior manual test engineer. Please share the interview process and the questions asked. How to prepare for the interview. Thanks in advance
