DOCSLIB.ORG

Software Testing in the Textbook

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Software Testing in the Textbook Software Testing in the textbook Software Testing • Introduction (Verification and Validation) • 8.1 Development testing • 8.2 Test-driven development 8.3 Release testing Chapter 8 • • 8.4 User testing 1 2 Verification and Validation Verification and Validation: Goals • Verification: • Establish confidence that the software is fit for - The software should conform to its specification purpose. (functional and non-functional requirements). • NOT that it’s completely free of defects. "Are we building the product right”. - generally not an achievable goal • Validation: • Good enough for its intended use - The software should do what the customer really - the type of use will determine the degree of confidence requires. that is needed "Are we building the right product”. Requirements don’t always reflect real wishes and needs of customers and users 3 4 Verification and Validation: Verification Techniques confidence level • Software inspections (static verification) Required confidence level depends on: - Analyze static system representation to discover problems • Software purpose - Specifications, design models, source code, test plans - how critical is the software to an organization? • Software testing (dynamic verification) • User expectations - The system is executed with simulated test data - Users may have low expectations of certain kinds of - Check results for errors, anomalies, data regarding non- software. functional requirements. • Marketing environment - Getting a product to market early may be more important than finding all the defects in the program. 5 6 Verification Techniques Software Testing Goals • Demonstrate that the software meets its Inspections requirements. - Validation testing - Collect test cases that show that the system operates as intended. Requirements Software UML design Database Program specification architecture models schemas • Discover situations in which the behavior of the software is incorrect or undesirable. System - Defect testing prototype Testing - Create test cases that make the system perform incorrectly. V&V at different stages in the software process - Then fix the defect: Debugging 7 8 Software Testing Software testing process Input test data Ie Inputs causing anomalous behaviour Test Test Test Test cases data results reports System Design test Prepare test Run program Compare results cases data with test data to test cases Can be automated Test Case specifies: Outputs which reveal Output test results • what to test Oe the presence of • input data defects • expected output Validation testing (white only) versus Defect testing (blue) 9 10 Three stages of software testing 8.1 Development testing • 8.1 Development testing: • All testing activities carried out by the team - the system is tested during development to discover developing the system. (defect testing) bugs and defects. - Unit testing: individual program units or object classes are tested. • 8.3 Release testing: --should focus on testing the functionality of objects. - a separate testing team tests a complete version of the - Component testing: several individual units are system before it is released to users. integrated to create composite components. 8.4 User testing: --should focus on testing component interfaces. • - System testing: some or all of the components in a - users or potential users of a system test the system in system are integrated and the system is tested as a their own environment. whole. --should focus on testing component interactions. 11 12 8.1.1 Unit testing Writing test cases for WeatherStation Unit testing is the process of testing individual • 1. Write a test case to check if components in isolation. identifier is set properly during normal WeatherStation - functions vs classes system startup identifier • Goal: complete test coverage of a class: reportWeather ( ) reportStatus ( ) - Testing all operations associated with an object 2. Write test cases for each of the powerSave (instruments) - Setting and interrogating all object attributes methods (reportWeather(), etc.) remoteControl (commands) - Exercising the object in all possible states Try to test in isolation, but for example you cannot test shutdown unless you reconfigure (commands) have already executed restart. restart (instruments) shutdown (instruments) 13 14 Testing the states of an object Testing States Controlled • Use the state model: - Identify sequences of state transitions to be tested Operation shutdown() remoteControl() - Write a test case that generates the event sequences to cause these transitions. reportStatus() restart() Testing Shutdown Running - Verify that the program ends up in the proper state. transmission done test complete configuration done reconfigure() For example (for WeatherStation): Transmitting • powerSave() clock collection - Shutdown -> Running-> Shutdown done reportWeather() Configuring weather summary complete - Configuring-> Running-> Testing -> Transmitting -> Summarizing Running Collecting - Running-> Collecting-> Running-> Summarizing -> Transmitting -> Running Shutdown -> Running-> Shutdown is tested with a call to restart() followed by a call to shutdown(), then check the state 15 16 Sample JUnit style test case Automated unit testing (from ch. 3) • Unit testing should be automated so that tests are run and checked without manual public class MoneyTest extends TestCase { intervention. public void testSimpleAdd() { JUnit: a unit testing framework for the Java Money m1 = new Money(12,”usd”); • Money m2 = new Money (14, “usd”); programming language. Money expected = new Money(26, “usd”); - Your test classes extend the JUnit test class: Money result = m1.add(m2); assertEquals (expected, result); - Initialize the test case with the inputs and expected } outputs. } - Call the method to be tested. - Make the assertion: compare the result of the call with the expected result. - When executed, if the assertion evaluates to true, the test has been successful if false, then it has failed. 17 18 8.1.2 Choosing unit test cases Two strategies for choosing unit test cases Two types of unit test cases: • Partition testing: identify groups of inputs that have common characteristics and should be • those that show the component behaves processed in the same way. correctly under normal use - choose tests from within each of these groups. - For example, demonstrate (part of) a use case Guideline-based testing: use testing guidelines those that expose the defects/bugs • • based on the kinds of errors that programmers - For example, invalid input should generate error message and fail gracefully often make. - choose tests based on these guidelines. 19 20 Partition testing Equivalence partitions example 3 11 • Divide the input data of a software unit into 4710 partitions of data - program should behave similarly for all data in a given Less than 4Between 4 and 10 More than 10 partition Number of input values • Determine partitions from specifications 9999 100000 10000 50000 99999 • Design test cases to cover each partition at least once. Less than 10000Between 10000 and 99999 More than 99999 • If the partition is a range, also test boundary Input values values. Specification states the program accepts 4 to 10 inputs • Enables good test coverage with fewer test cases. which are five-digit integers (greater than 10,000) 21 22 Guideline-based testing 8.1.3 Component testing • Choose test cases based on previous experience of common programming errors • Software components are made up of several interacting objects (or sub-components) • For example: - Choose inputs that force the system to generate all error • The functionality of these objects is accessed messages through the defined component interface. - Repeat the same input or series of inputs numerous times • Component testing is demonstrating that the - Try to force invalid outputs to be generated component interface behaves according to its - Force computation results to be too large or too small. specification. - Test sequences/lists using - Assuming the subcomponents (objects) have already ✦ one element been unit-tested ✦ zero elements ✦ different sizes in different tests 23 24 Interface (component) testing 8.1.4 System testing Test cases • System testing: integrating components to create a version of the system and then testing the integrated system. • Checks that: - components are compatible, A B - components interact correctly - components transfer the right data at the right time across their interfaces. C • Tests the interactions between components. Small empty boxes represent the interface 25 26 Use case-based testing reportWeather sequence diagram Weather • Use cases developed during requirements information system engineering to identify system interactions are a SatComms WeatherStation Commslink WeatherData good basis for system testing. request (report) - typically each use case is implemented by several acknowledge components in the system. reportWeather () acknowledge get (summary) summarise () If you developed sequence diagrams for the use send (report) • acknowledge cases, you can see the components and reply (report) interactions that are being tested. acknowledge Use the diagram to identify operations that will be tested, and to help design test cases to execute the tests. 27 28 System testing policies 8.3 Release testing • Exhaustive system testing is impossible • Release Testing is testing a particular release of a system that is intended for use outside of the Testing policies define the required subset of all • development team. possible
Load more

Recommended publications
  • A Combinatorial Approach to Detecting Buffer Overflow Vulnerabilities
    A Combinatorial Approach to Detecting Buffer Overflow Vulnerabilities Wenhua Wang, Yu Lei, Donggang Liu, David Raghu Kacker, Rick Kuhn Kung, Christoph Csallner, Dazhi Zhang Information Technology Laboratory Department of Computer Science and Engineering National Institute of Standards and Technology The University of Texas at Arlington Gaithersburg, Maryland 20899, USA Arlington, Texas 76019, USA {raghu.kacker,kuhn}@nist.gov {wenhuawang,ylei,dliu,kung,csallner,dazhi}@uta.edu Abstract— Buffer overflow vulnerabilities are program defects Many security attacks exploit buffer overflow vulnerabilities that can cause a buffer to overflow at runtime. Many security to compromise critical data structures, so that they can attacks exploit buffer overflow vulnerabilities to compromise influence or even take control over the behavior of a target critical data structures. In this paper, we present a black-box system [27][32][33]. testing approach to detecting buffer overflow vulnerabilities. Our approach is a specification-based or black-box Our approach is motivated by a reflection on how buffer testing approach. That is, we generate test data based on a overflow vulnerabilities are exploited in practice. In most cases specification of the subject program, without analyzing the the attacker can influence the behavior of a target system only source code of the program. The specification required by by controlling its external parameters. Therefore, launching a our approach is lightweight and does not have to be formal. successful attack often amounts to a clever way of tweaking the In contrast, white-box testing approaches [5][13] derive test values of external parameters. We simulate the process performed by the attacker, but in a more systematic manner.
    [Show full text]
  • Types of Software Testing
    Types of Software Testing We would be glad to have feedback from you. Drop us a line, whether it is a comment, a question, a work proposition or just a hello. You can use either the form below or the contact details on the rightt. Contact details [email protected] +91 811 386 5000 1 Software testing is the way of assessing a software product to distinguish contrasts between given information and expected result. Additionally, to evaluate the characteristic of a product. The testing process evaluates the quality of the software. You know what testing does. No need to explain further. But, are you aware of types of testing. It’s indeed a sea. But before we get to the types, let’s have a look at the standards that needs to be maintained. Standards of Testing The entire test should meet the user prerequisites. Exhaustive testing isn’t conceivable. As we require the ideal quantity of testing in view of the risk evaluation of the application. The entire test to be directed ought to be arranged before executing it. It follows 80/20 rule which expresses that 80% of defects originates from 20% of program parts. Start testing with little parts and extend it to broad components. Software testers know about the different sorts of Software Testing. In this article, we have incorporated majorly all types of software testing which testers, developers, and QA reams more often use in their everyday testing life. Let’s understand them!!! Black box Testing The black box testing is a category of strategy that disregards the interior component of the framework and spotlights on the output created against any input and performance of the system.
    [Show full text]
  • Scenario Testing) Few Defects Found Few Defects Found
    QUALITY ASSURANCE Michael Weintraub Fall, 2015 Unit Objective • Understand what quality assurance means • Understand QA models and processes Definitions According to NASA • Software Assurance: The planned and systematic set of activities that ensures that software life cycle processes and products conform to requirements, standards, and procedures. • Software Quality: The discipline of software quality is a planned and systematic set of activities to ensure quality is built into the software. It consists of software quality assurance, software quality control, and software quality engineering. As an attribute, software quality is (1) the degree to which a system, component, or process meets specified requirements. (2) The degree to which a system, component, or process meets customer or user needs or expectations [IEEE 610.12 IEEE Standard Glossary of Software Engineering Terminology]. • Software Quality Assurance: The function of software quality that assures that the standards, processes, and procedures are appropriate for the project and are correctly implemented. • Software Quality Control: The function of software quality that checks that the project follows its standards, processes, and procedures, and that the project produces the required internal and external (deliverable) products. • Software Quality Engineering: The function of software quality that assures that quality is built into the software by performing analyses, trade studies, and investigations on the requirements, design, code and verification processes and results to assure that reliability, maintainability, and other quality factors are met. • Software Reliability: The discipline of software assurance that 1) defines the requirements for software controlled system fault/failure detection, isolation, and recovery; 2) reviews the software development processes and products for software error prevention and/or controlled change to reduced functionality states; and 3) defines the process for measuring and analyzing defects and defines/derives the reliability and maintainability factors.
    [Show full text]
  • A Test Case Suite Generation Framework of Scenario Testing
    VALID 2011 : The Third International Conference on Advances in System Testing and Validation Lifecycle A Test Case Suite Generation Framework of Scenario Testing Ting Li 1,3 Zhenyu Liu 2 Xu Jiang 2 1) Shanghai Development Center 2) Shanghai Key Laboratory of 3) Shanghai Software Industry of Computer Software Technology Computer Software Association Shanghai, China Testing and Evaluating Shanghai, China [email protected] Shanghai, China [email protected] {lzy, jiangx}@ssc.stn.sh.cn Abstract—This paper studies the software scenario testing, emerged in recent years, few of them provide any which is commonly used in black-box testing. In the paper, the consideration for business workflow verification. workflow model based on task-driven, which is very common The research work on business scenario testing and in scenario testing, is analyzed. According to test business validation is less. As for the actual development of the model in scenario testing, the model is designed to application system, the every operation in business is corresponding test case suite. The test case suite that conforms designed and developed well. However, business processes to the scenario test can be obtained through test case testing and requirements verification are very important and generation and test item design. In the last part of the paper, necessary for software quality. The scenario testing satisfies framework of test case suite design is given to illustrate the software requirement through the test design and test effectiveness of the method. execution. Keywords-test case; software test; scenario testing; test suite. Scenario testing is to judge software logic correction according to data behavior in finite test data and is to analyze results with all the possible input test data.
    [Show full text]
  • Evaluating Testing with a Test Level Matrix
    FSW QA Testing Levels Definitions Copyright 2000 Freightliner LLC. All rights reserved. FSW QA Testing Levels Definitions 1. Overview This document is used to help determine the amount and quality of testing (or its scope) that is planned for or has been performed on a project. This analysis results in the testing effort being assigned to a particular Testing Level category. Categorizing the quality and thoroughness of the testing that has been performed is useful when analyzing the metrics for the project. For example if only minimum testing was performed, how come so many person-hours were spent testing? Or if the maximum amount of testing was performed, how come there are so many trouble calls coming into the help desk? 2. Testing Level Categories This section provides the basic definitions of the six categories of testing levels. The definitions of the categories are intentionally vague and high level. The Testing Level Matrix in the next section provides a more detailed definition of what testing tasks are typically performed in each category. The specific testing tasks assigned to each category are defined in a separate matrix from the basic category definitions so that the categories can easily be re-defined (for example because of QA policy changes or a particular project's scope - patch release versus new product development). If it is decided that a particular category of testing is required on a project, but a testing task defined for completion in that category is not performed, it will be noted in the Test Plan (if it exists) and in the Testing Summary Report.
    [Show full text]
  • Tips for Success
    Tips for Success EHR System Implementation Testing By this stage of your EHR system implementation, you have fully grasped the significant flexibility of your EHR system, and have devoted significant hours to making major set-up and configuration decisions to tailor the system to your specific needs and clinical practices. Most likely, you have spent many long hours and late nights designing new workflow processes, building templates, configuring tables and dictionaries, setting system triggers, designing interfaces, and building screen flow logic to make the system operate effectively within your practice. Now, it is absolutely critical to thoroughly test your “tailoring” to be sure the system and screens work as intended before moving forward with “live” system use. It is far easier to make changes to the system configuration while there are no patients and physicians sitting in the exam rooms growing impatient and frustrated. Testing (and more testing!) will help you be sure all your planning and hard work thus far pays off in a successful EHR “Go-Live”. The following outlines an effective, proven testing process for assuring your EHR system works effectively and as planned before initial “Go-Live”. 1. Assign and Dedicate the Right Testing Resources Effectively testing a system requires significant dedicated time and attention, and staff that have been sufficiently involved with planning the EHR workflows and processes, to fully assess the set up of the features and functions to support its intended use. Testing also requires extreme patience and attention to detail that are not necessarily skills all members of your practice staff possess.
    [Show full text]
  • Standard Glossary of Terms Used in Software Testing Version 3.0 Advanced Test Analyst Terms
    Standard Glossary of Terms used in Software Testing Version 3.0 Advanced Test Analyst Terms International Software Testing Qualifications Board Copyright Notice This document may be copied in its entirety, or extracts made, if the source is acknowledged. Copyright © International Software Testing Qualifications Board (hereinafter called ISTQB®). acceptance criteria Ref: IEEE 610 The exit criteria that a component or system must satisfy in order to be accepted by a user, customer, or other authorized entity. acceptance testing Ref: After IEEE 610 See Also: user acceptance testing Formal testing with respect to user needs, requirements, and business processes conducted to determine whether or not a system satisfies the acceptance criteria and to enable the user, customers or other authorized entity to determine whether or not to accept the system. accessibility testing Ref: Gerrard Testing to determine the ease by which users with disabilities can use a component or system. accuracy Ref: ISO 9126 See Also: functionality The capability of the software product to provide the right or agreed results or effects with the needed degree of precision. accuracy testing See Also: accuracy Testing to determine the accuracy of a software product. actor User or any other person or system that interacts with the test object in a specific way. actual result Synonyms: actual outcome The behavior produced/observed when a component or system is tested. adaptability Ref: ISO 9126 See Also: portability The capability of the software product to be adapted for different specified environments without applying actions or means other than those provided for this purpose for the software considered.
    [Show full text]
  • →Different Models(Waterfall,V Model,Spiral Etc…) →Maturity Models. → 1. Acceptance Testing: Formal Testing Conducted To
    different models(waterfall,v model,spiral etc…) maturity models. 1. Acceptance Testing: Formal testing conducted to determine whether or not a system satisfies its acceptance criteria and to enable the customer to determine whether or not to accept the system. It is usually performed by the customer. 2. Accessibility Testing: Type of testing which determines the usability of a product to the people having disabilities (deaf, blind, mentally disabled etc). The evaluation process is conducted by persons having disabilities. 3. Active Testing: Type of testing consisting in introducing test data and analyzing the execution results. It is usually conducted by the testing teams. 4. Agile Testing: Software testing practice that follows the principles of the agile manifesto, emphasizing testing from the perspective of customers who will utilize the system. It is usually performed by the QA teams. 5. Age Testing: Type of testing which evaluates a system's ability to perform in the future. The evaluation process is conducted by testing teams. 6. Ad-hoc Testing: Testing performed without planning and documentation - the tester tries to 'break' the system by randomly trying the system's functionality. It is performed by the testing teams. 7. Alpha Testing: Type of testing a software product or system conducted at the developer's site. Usually it is performed by the end user. 8. Assertion Testing: Type of testing consisting in verifying if the conditions confirm the product requirements. It is performed by the testing teams. 9. API Testing: Testing technique similar to unit testing in that it targets the code level. API Testing differs from unit testing in that it is typically a QA task and not a developer task.
    [Show full text]
  • The Nature of Exploratory Testing
    The Nature of Exploratory Testing by Cem Kaner, J.D., Ph.D. Professor of Software Engineering Florida Institute of Technology and James Bach Principal, Satisfice Inc. These notes are partially based on research that was supported by NSF Grant EIA-0113539 ITR/SY+PE: "Improving the Education of Software Testers." Any opinions, findings and conclusions or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of the National Science Foundation. Kaner & Bach grant permission to make digital or hard copies of this work for personal or classroom use, including use in commercial courses, provided that (a) Copies are not made or distributed outside of classroom use for profit or commercial advantage, (b) Copies bear this notice and full citation on the front page, and if you distribute the work in portions, the notice and citation must appear on the first page of each portion. Abstracting with credit is permitted. The proper citation for this work is ”Exploratory & Risk-Based Testing (2004) www.testingeducation.org", (c) Each page that you use from this work must bear the notice "Copyright (c) Cem Kaner and James Bach", or if you modify the page, "Modified slide, originally from Cem Kaner and James Bach", and (d) If a substantial portion of a course that you teach is derived from these notes, advertisements of that course should include the statement, "Partially based on materials provided by Cem Kaner and James Bach." To copy otherwise, to republish or post on servers, or to distribute to lists requires prior specific permission and a fee.
    [Show full text]
  • What Is a Good Test Case? Cem Kaner, J.D., Ph.D
    What Is a Good Test Case? Cem Kaner, J.D., Ph.D. Florida Institute of Technology Department of Computer Sciences [email protected] STAR East, May 2003 This research was partially supported by NSF Grant EIA-0113539 ITR/SY+PE: "Improving the Education of Software Testers." Any opinions, findings and conclusions or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of the National Science Foundation (NSF). Abstract Designing good test cases is a complex art. The complexity comes from three sources: Test cases help us discover information. Different types of tests are more effective for different classes of information. Test cases can be “good” in a variety of ways. No test case will be good in all of them. People tend to create test cases according to certain testing styles, such as domain testing or risk-based testing. Good domain tests are different from good risk-based tests. What’s a Test Case? Let’s start with the basics. What’s a test case? IEEE Standard 610 (1990) defines test case as follows: “(1) A set of test inputs, execution conditions, and expected results developed for a particular objective, such as to exercise a particular program path or to verify compliance with a specific requirement. “(2) (IEEE Std 829-1983) Documentation specifying inputs, predicted results, and a set of execution conditions for a test item.” According to Ron Patton (2001, p. 65), “Test cases are the specific inputs that you’ll try and the procedures that you’ll follow when you test the software.” Boris Beizer (1995, p.
    [Show full text]
  • ISTQB Glossary of Testing Terms 2.3X
    Standard glossary of terms used in Software Testing Version 2.3 (dd. March 28th, 2014) Produced by the ‘Glossary Working Party’ International Software Testing Qualifications Board Editor : Erik van Veenendaal (Bonaire) Copyright Notice This document may be copied in its entirety, or extracts made, if the source is acknowledged. Copyright © 2014, International Software Testing Qualifications Board (hereinafter called ISTQB®). 1 Acknowledgements This document was produced by the Glossary working group of the International Software Testing Qualifications Board (ISTQB). The team thanks the national boards for their suggestions and input. At the time the Glossary version 2.3 was completed the Glossary working group had the following members (alphabetic order): Armin Beer, Armin Born, Mette Bruhn-Pedersen, Josie Crawford, Ernst Dőring, George Fialkovitz, Matthias Hamburg, Bernard Homes, Ian Howles, Ozgur Kisir, Gustavo Marquez- Soza, Judy McKay (Vice-Chair) Avi Ofer, Ana Paiva, Andres Petterson, Juha Pomppu, Meile Posthuma. Lucjan Stapp and Erik van Veenendaal (Chair) The document was formally released by the General Assembly of the ISTQB on March, 28th, 2014 2 Change History Version 2.3 d.d. 03-28-2014 This new version has been developed to support the Foundation Extention Agile Tester syllabus. In addition a number of change request have been implemented in version 2.3 of the ISTQB Glossary. New terms added: Terms changed; - build verification test - acceptance criteria - burndown chart - accuracy testing - BVT - agile manifesto - content
    [Show full text]
  • Testing, SEED Infotech’S Service Portfolio Encompasses the Entire Range of Solutions Required by the IT Industry
    The Journey of Thousand miles starts with a single step Take the Step Today SEED Infotech Ltd. is Pune’s leading Training, Consulting and Staffing Company, offering a wide array of solutions customized for a range of key verticals and horizontals in the IT industry. From customized corporate training in IT, Project Management and Soft-skills to Strategy Consulting for the implementation of the right tools for enterprise wide planning, software development and testing, SEED Infotech’s service portfolio encompasses the entire range of solutions required by the IT industry. We have 33+ branches all across India. 16+ years of Experience in Technology Training, Staffing and Consulting 600 dedicated and highly skilled IT Professional with 200+ in house Trainers 1,80,000+ Students and Professional trained so far 1,00,000+ Sq. ft. of Training Infrastructure Courses mapped with Industry Requirement State-of-the-art IT laboratories and communication set-up 33+ Training Location across India Strategic tie-ups with Global Technology leaders Short Term IT Courses Job Oriented Diploma Courses C, C++ NET Java/J2EE Oracle IBM SEED - Diploma in Software Testing Linux PERL PHP IT for 10th & 12th IBM Tivoli Storage Manager SCTS - SEED Certified Technology Specialist (Java / .NET Track) Hardware & Networking Courses Technical Writing SPIC - Software Professionals’ Incubation Center A+ N+ MCSA CCNA SCHANSA - Java / .NET - Software Testing - Hardware & Networking - Tivoli Admin English & Foreign Languages SEED Tutorails Spoken English Japanese Chinese German English Maths Science Sanskrit German French Maths & English Aptitude French Marathi Hindi Computer Science Personality Development SEED Infotech Ltd. 'Panchasheel', 42/16, Erandawana, SEED Infotech Lane, Off Karve Road, Pune - 411004.
    [Show full text]