Browse Definitions :
Definition

double blind test

Double blind test is an experiment where both the subject and observer are unaware that the exercise in practice is a test. Double blind testing is referred to as the gold standard of testing.

Double blind tests are used in science experiments in medicine and psychology, including theoretical and practical testing. The lack of foreknowledge in a double blind test helps avoid biases and account for other effects that might influence results such as the placebo effect, where the belief one is being treated has an effect on results itself.

In computer security, penetration testing is often done as either single or double blind testing.  With single blind penetration testing, the hacking team testing an organization does so with little prior information. Once assigned a target organization, the team would draw on information from publically available sources. The team might draw on USENET, company websites, forums and domain name registration in order to help discover and exploit vulnerabilities. In a double blind penetration test, not only is the testing team not pre-prepared for the test, the defending organization’s IT team is also not informed in advance. Double blind penetration testing makes for a very effective simulation of a real world cyber attack.

Often in medical science clinical trials, a subject undergoing treatment often does not know if they are actually receiving treatment or a placebo. This test condition constitutes a single blind test. If the researcher also does not know which patient or patients are actually receiving treatment, this is a double blind test. Similarly in other sciences, a subject might belong to a double blind testing or control group and the researcher would not know.

This was last updated in April 2019

Continue Reading About double blind test

SearchCompliance
  • ISO 31000 Risk Management

    The ISO 31000 Risk Management framework is an international standard that provides businesses with guidelines and principles for ...

  • pure risk

    Pure risk refers to risks that are beyond human control and result in a loss or no loss with no possibility of financial gain.

  • risk reporting

    Risk reporting is a method of identifying risks tied to or potentially impacting an organization's business processes.

SearchSecurity
  • What is cyber hygiene and why is it important?

    Cyber hygiene, or cybersecurity hygiene, is a set of practices individuals and organizations perform regularly to maintain the ...

  • Pretty Good Privacy (PGP)

    Pretty Good Privacy or PGP was a popular program used to encrypt and decrypt email over the internet, as well as authenticate ...

  • email security

    Email security is the process of ensuring the availability, integrity and authenticity of email communications by protecting ...

SearchHealthIT
SearchDisasterRecovery
  • What is risk mitigation?

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • fault-tolerant

    Fault-tolerant technology is a capability of a computer system, electronic system or network to deliver uninterrupted service, ...

  • synchronous replication

    Synchronous replication is the process of copying data over a storage area network, local area network or wide area network so ...

SearchStorage
  • information lifecycle management (ILM)

    Information lifecycle management (ILM) is a comprehensive approach to managing an organization's data and associated metadata, ...

  • WORM (write once, read many)

    In computer media, write once, read many, or WORM, is a data storage technology that allows data to be written to a storage ...

  • direct access

    In computer storage, direct access is the process of reading and writing data on a storage device by going directly to where the ...

Close