Book Image

Software Test Design

By : Simon Amey
Book Image

Software Test Design

By: Simon Amey

Overview of this book

Software Test Design details best practices for testing software applications and writing comprehensive test plans. Written by an expert with over twenty years of experience in the high-tech industry, this guide will provide you with training and practical examples to improve your testing skills. Thorough testing requires a thorough understanding of the functionality under test, informed by exploratory testing and described by a detailed functional specification. This book is divided into three sections, the first of which will describe how best to complete those tasks to start testing from a solid foundation. Armed with the feature specification, functional testing verifies the visible behavior of features by identifying equivalence partitions, boundary values, and other key test conditions. This section explores techniques such as black- and white-box testing, trying error cases, finding security weaknesses, improving the user experience, and how to maintain your product in the long term. The final section describes how best to test the limits of your application. How does it behave under failure conditions and can it recover? What is the maximum load it can sustain? And how does it respond when overloaded? By the end of this book, you will know how to write detailed test plans to improve the quality of your software applications.

Related Content you might be interested in

Current Title:

Small book image
Software Test Design
Simon Amey
Dec, 2022 | 426 pages
Small book image
Modern Game Testing
Nikolina Finska
Jul, 2023 | 232 pages
Small book image
Software Testing Strategies
Michael Larsen | Matthew Heusser
Dec, 2023 | 378 pages
Table of Contents (21 chapters)
Preface
Preface
Who this book is for
Is this book for Agile or waterfall projects? Both!
Is this book for manual or automated testing? Both!
Types of testing
Test process
What this book covers
Download the color images
Conventions used
Get in touch
Share Your Thoughts
Download a free PDF copy of this book
1
Part 1 – Preparing to Test
Part 1 – Preparing to Test
Free Chapter
2
Chapter 1: Making the Most of Exploratory Testing
Chapter 1: Making the Most of Exploratory Testing
What is exploratory testing?
Advantages, disadvantages, and alternatives
Understanding when testing should begin
Understanding the test activities
The spiral model of test improvement
Performing the first test
Mapping out new features
Using your naivety while testing
Running complete exploratory testing
Using exploratory testing by necessity
Checking exploratory test results
Using curiosity in testing
Summary
3
Chapter 2: Writing Great Feature Specifications
Chapter 2: Writing Great Feature Specifications
Advantages, disadvantages, and alternatives to feature specifications
Improving the handover from the product owner
Understanding the requirements format
Requirement priority
Improving requirement statements
Improving requirement content
Completing the specification
The first draft of a feature specification
Turning a specification into a test plan
Countering arguments against specifications
Summary
4
Chapter 3: How to Run Successful Specification Reviews
Chapter 3: How to Run Successful Specification Reviews
Why do we need a specification review?
Advantages, disadvantages, and alternatives of specification review meetings
Inviting the right people
Scheduling the meeting
Running the meeting
Fixing incorrect requirements
Opening the black box
Setting a good tone for the meeting
Prioritizing requirement testing
Review meeting checklist
Summary
5
Chapter 4: Test Types, Cases, and Environments
Chapter 4: Test Types, Cases, and Environments
Understanding different levels of testing
Defining test cases
Prescriptive and descriptive test steps
Evaluating different test environments
Setting the correct version, configuration, and environment
Performing systematic testing
Testing in the release cycle
Using curiosity and feedback
Summary
What we learned from Part 1, Preparing to Test
6
Part 2 – Functional Testing
Part 2 – Functional Testing
7
Chapter 5: Black-Box Functional Testing
Chapter 5: Black-Box Functional Testing
Advantages and disadvantages of black-box testing
Enabling new features
Performing API testing
Performing CRUD testing
Performing negative testing
Identifying worse-case scenarios
Understanding equivalence partitioning
Using boundary value analysis
Mapping dependent and independent variables
Using decision tables
Using cause-effect graphing
Testing variable types
Testing numeric processing
Uncovering hidden defects
Optimizing error guessing
Using feedback
Determining what to check
Trading off precision versus brittleness in automated testing
Test prioritization
Comparing bugs and features
Summary
8
Chapter 6: White-Box Functional Testing
Chapter 6: White-Box Functional Testing
Advantages and disadvantages of white-box testing
Using code analysis
Using static testing
Measuring code coverage
Testing modules and messages
API testing
Considering states and transitions
Checking asynchronous applications
Error guessing
White-box checks
Gray-box testing
Summary
9
Chapter 7: Testing of Error Cases
Chapter 7: Testing of Error Cases
Advantages and disadvantages of error testing
Classifying expected versus unexpected problems
Error handling philosophies
Fail as early as possible
Fail as little as possible
Understanding defect cascading
Prioritizing error case testing
Testing beyond the limits
Testing timeouts
Understanding network degradation
Data failures
Fuzzing
Giving user feedback on errors
Summary
10
Chapter 8: User Experience Testing
Chapter 8: User Experience Testing
Defining UX testing
Advantages and disadvantages of UX testing
Understanding usability and the feature specification
Running UX reviews
Setup versus ongoing usage
Testing the user interface’s look and feel
Interoperability
Testing displays
Choosing clear words
Testing localization
Testing time zones
Ensuring accessibility
Testing information display
Testing user interaction
Testing the documentation
Testing error feedback
UX and loading
Running usability studies
Comparing bugs and feature requests
Summary
11
Chapter 9: Security Testing
Chapter 9: Security Testing
Advantages and disadvantages of security testing
Attack types
Discovering the attack area
Running security scans
Running code analysis
Upgrading everything
Logging in
Testing injection attacks
Validating file inputs
Testing web application security
Handling personally identifiable information
Running a bug bounty program
Avoiding security through obscurity
Considering security beyond the application
Summary
12
Chapter 10: Maintainability
Chapter 10: Maintainability
Understanding maintainability use cases
Advantages and disadvantages of maintainability testing
Goals of maintainability
Designing monitoring
Testing maintenance operations
Using logging
Summary
What we learned from Part 2, Functional Testing
13
Part 3 – Non-Functional Testing
Part 3 – Non-Functional Testing
14
Chapter 11: Destructive Testing
Chapter 11: Destructive Testing
Advantages and disadvantages of destructive testing
Failover testing
System shutdowns
Communication failure
Chaos engineering
Backup and restore testing
Summary
15
Chapter 12: Load Testing
Chapter 12: Load Testing
Advantages and disadvantages of load testing
Prerequisites
Identifying load operations
Load test design
Raising system limits
What to check during load testing
Defect hiding
Race conditions and asynchronous systems
Startup and shutdown
Loading inefficiencies
Loading messages between modules
Performance testing
Filtering load test errors
Debugging load test issues
Summary
16
Chapter 13: Stress Testing
Chapter 13: Stress Testing
The advantages and disadvantages of stress testing
Stress test architecture
Breaching transaction rates
Policed and unpoliced limits
Identifying positive feedback loops
Graceful degradation
Limited resources
Soak testing
Spikes in load
Stress testing with errors
What to check when stress testing
Summary
17
Conclusion
Conclusion
18
Index
Index
Why subscribe?
19
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts
Download a free PDF copy of this book
Appendix – Example Feature Specification
Appendix – Example Feature Specification

Testing web application security

There are many common web security issues that you should protect yourself against, of varying degrees of severity. If you run a bug bounty program with these present, these are likely to be the first reports that you get. You will receive many duplicates of the same basic issues, so these are the faults to fix first to encourage researchers to explore more deeply.

Some tools step through these kinds of attacks, but here, we will describe how these attacks work and why.

Information leakage

An attacker looking for vulnerabilities to exploit needs to know what system they are attacking: what kind of web server is this, and what version is running? Web servers generally present this information in headers because it may help client web browsers with compatibility, but that information is not usually needed. Instead, it lets attackers know what exploits are likely to work, so it’s best to disable it. There are settings to implement that...

Previous Section
End of Section 11
Next Section