risk based testing with jira and jubula
play

Risk-based Testing with Jira and Jubula Daniele Gagliardi - PowerPoint PPT Presentation

Mar 31, 2024 •303 likes •974 views

Risk-based Testing with Jira and Jubula Daniele Gagliardi @dangagliar Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 1 66 / Agenda The Theory What is it ? Why should I care ? The Practice The

  1. Risk-based Testing with Jira and Jubula Daniele Gagliardi @dangagliar Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 1 66 /

  2. Agenda ✔ The Theory ✔ What is it ? ✔ Why should I care ? ✔ The Practice ✔ The ingredients and the recipe ✔ The Use Case ✔ How can you use it (with a special guest../) Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 2 66 /

  3. The Theory Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 3 66 /

  4. What to test? How many tests for each One ! Of course ! requirement ? We need to see if it works ! Mmmmhh… we can prove that it works well with good data Uh oh… combination (how many good for good data are data ?)…What about a lot ! And bad bad data ? data…. Uncountable ! Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 4 66 /

  5. What to test? We have 1342 new Everything! Of requirements. What should we course ! We need test ? to be confjdent that it works ! Mmmmhh… OK, I need 42 10 good Mmmmmhhh…I'm testers and 10 42 wondering if our years to test all budget… we need to Once upon a time make a choice about someone told me what to test something about risk based testing… Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 5 66 /

  6. Traditional Testing vs RBT Risk Based Testing Traditional Testing Efgectiveness Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 6 66 /

  7. Guarini : chapel of the Holy Shroud ● Baroque-style Roman Catholic chapel ● Designed by architect Guarino Guarini and built in Turin at the end of 17th century, during the reign of Charles Emmanuel II, Duke of Savoy ● Constructed to house the Shroud of Turin, a religious relic believed by many to be the burial shroud of Jesus Christ ● 1997 : a fire, due to a short circuit, seriously damages the chapel ● Restoration in progress, supported by a software project Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 7 66 /

  8. The chapel and the software ● Applications to manage all the phases of the restoration project ● Every single piece subject to restauration is geo-referenced within a 3D model ● Database with all the relevant information and documents collected during the investigation phase (world-wide relevance) ● Web site to publish news on the restoration progress, and to offer search functions on the single elements subject to restoration ● Cam video system management ● Technologies : open source ! Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 8 66 /

  9. The chapel, the software and the risks (A non exahustive list…) ● World-wide relevance of the data → Usability, Accessibility and performance tests And also backup/recovery test !!! ● High level of innovation and required technologies not so well known to the project team ( project risk ) ● Heterogenuous technologies and components → integration tests ● Search functions on web site → functional tests (Mitigate risks with proper testing…) Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 9 66 /

  10. Five Phases in a Tester's Mental Life Phase 0 : There's no difference between testing and debugging. Other than in support of debugging, testing has no purpose. Phase 1 : The purpose of testing is to show that the software works. Phase 2 : The purpose of testing is to show that the software doesn't work. Phase 3 : The purpose of testing is not too prove anything, but to reduce the perceived risk of not working to an acceptable value. Phase 4 : Testing is not an act. It is a mental discipline that results in low-risk software without much testing effort. Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 10 66 /

  11. Phase 4 and new ISO 9001:2015 ● ISO 9001:2015 – systematic approach to risk ● Risk based thinking ● Become proactive rather OK, where are the really interesting things here ? than purely ISO stufg is boring me../ reactive Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 11 66 /

  12. What is Risk ? ● Risk: the possibility of a negative or undesirable event or outcome ● Quality risk: the possibility that the product or system might fail to deliver one or more of the key quality attributes ● Project Risks ● Software Risks (Risky features) Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 12 66 /

  13. What is Risk ? ● Probability : trivial ● Note : ● 0 % event : not a risk ! ● 100 %: not a risk ! Rather issue ! ● Impact : an evaluation of the hypothetical damage (on costs, times, …) ● Exposure : f(P,I) ● E = f(P)*f(I) Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 13 66 /

  14. Risk-based Testing What is Risk Based Testing ? 1.Make a prioritized list of risks 2.Perform testing that explores each risk 3.As risks evaporate and new ones emerge, adjust your test effort to stay focused on the current crop (James Bach, Heuristic Risk-Based Testing) Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 14 66 /

  15. Risk-based Testing Prioritize ? How can I do it ? 1.Rigorous risk analysis, applying statistical models or... 2.Heuristic Risk Analysis : 1.Inside-Out : study (you tester with a developer) your product and ask yourself repeatedly: « What can go wrong here ? » 2.Outside-In : start with a potential set of risks and match them to the current product – Need for a risk catalogue/lists Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 15 66 /

  16. Risk-based Testing – Outside-In 1.Three possible kind of risks : 1.Quality risks (performance, usability, …) 2.Generic risk list (complex, new, critical, third party, strategic,… 3.Risk catalogue (risk lists, related to specific domains) 2.Use them 1.Choose a component/function 2.Determine scale of concern 3.Match risks Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 16 66 /

  17. Traditional Testing vs RBT Risk Based Testing Traditional Testing Wolf attack Smaug attack Realistic Wolf attack T-Rex attack Rhino attack Shark attack Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 17 66 /

  18. Catalogue and prioritize Wolf attack Smaug attack 87% 0,00002% T-Rex attack 0,00001% 0,1% 0,002% Rhino attack Shark attack Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 18 66 /

  19. Refine your risk analysis Wolf attack 1% Realistic Wolf attack 87% Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 19 66 /

  20. Risk-based Testing – Considerations Your risk analysis incomplete and inaccurate to some degree ; ● At the beginning of a project rumors of risks ; ● As the project progresses, and you gain information about the product, you ● should adjust your test effort to match your best estimation of risk ; to deal with the risk of poor risk analysis, use other weapons : exploratory ● testing ( remember the talk of Alex last year ? ), static testing, code coverage testing, or functional coverage testing (principle of diverse half-measures: use a diversity of methods, because no single heuristic always works) two vital factors needed to make risk-based testing work : experience and ● teamwork ; over a period of time, any product line or technology will reveal its pattern ● of characteristic problems : learn from that ; do whatever you can to invite different people with different points of view ● into the risk analysis process. Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 20 66 /

  21. The Practice Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 21 66 /

  22. The Ingredients and the Recipe ● Use Jira to catalogue and prioritize risks ● Use Jubula to mitigate them ● Use Mylyn to mix everything (Risk Based Interface) The Recipe Ingredients Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 22 66 /

  23. Jira to manage risks Would you really pay 36000$ for a bug tracking system ? ● Very flexible tool to manage almost everything ● Define objects, attributes, lifecycle, actions, validators, conditions,... ● If you're missing something, develope it with Atlassian SDK! (but it isn't necessary to manage risks…) Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 23 66 /

  24. Jira to manage risks - types Specifjc type Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 24 66 /

  25. Jira to manage risks - workflow New In Assessment Managing Surveillance Happened Closed Raise Issue ! Other Jira types… Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 25 66 /

  26. Jira to manage risks – screens... Custom screen Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 26 66 /

  27. Jira to manage risks – ...custom fields (1) Details/ Analysis Source Cause Very High (5) High (4) Medium (3) Probability Efgect Low (2) Very Low (1) Costs impact Time impact Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 27 66 /

  28. Jira to manage risks – ...custom fields (2) Strategy and Actions Actions Selected To mitigate strategy - Mitigate risk -Transfer -Accept Contingency - Composite Plan Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported. 28 66 /

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Property Based Testing Pradeep Gowda @btbytes ... ... ... Tests are important for ...

Property Based Testing Pradeep Gowda @btbytes ... ... ... Tests are important for ...

Property Based Testing Pradeep Gowda @btbytes ... ... ... Tests are important for ... Stability of the projects Confidence to make changes (Refactoring) Design (Huh! I thought that was captured in JIRA-124) Regression Detection (upstream

820 views • 50 slides
Str Stress ess Testing Testing Cre Credit dit Risk: Risk: The The Great Great Depr

Str Stress ess Testing Testing Cre Credit dit Risk: Risk: The The Great Great Depr

Str Stress ess Testing Testing Cre Credit dit Risk: Risk: The The Great Great Depr Depression ession Scenario Scenario Simone Varotto ICMA Centre, Henley Business School, UK Basel III and Beyond Deutsche Bundesbank and ZEW conference

1.01k views • 25 slides
Risk-Based Coding and Reimbursement What is Risk-Based Coding? Risk-Based Coding Overview A

Risk-Based Coding and Reimbursement What is Risk-Based Coding? Risk-Based Coding Overview A

Risk-Based Coding and Reimbursement What is Risk-Based Coding? Risk-Based Coding Overview A diagnosis coding methodology utilized in risk adjustment models to adjust cost for all patients within a health plan or group Risk

385 views • 23 slides
The Promise of Model-Based Testing The Promise of Model-Based Testing Presented by: Mahesh

The Promise of Model-Based Testing The Promise of Model-Based Testing Presented by: Mahesh

T17 Concurrent Session Thursday 05/08/2008 3:00 PM The Promise of Model-Based Testing The Promise of Model-Based Testing Presented by: Mahesh Velliyur Maveric Testing Solutions Presented at: STAR EAST Software Testing Analysis & Review

582 views • 30 slides
Combining Model-Based and Risk-Based Testing for Effective Test Case Generation Duygu Metin

Combining Model-Based and Risk-Based Testing for Effective Test Case Generation Duygu Metin

Combining Model-Based and Risk-Based Testing for Effective Test Case Generation Duygu Metin Hasan Szer Ceren ahin Gebizli Vestel Electronics R&D zye in University Vestel Electronics R&D duygu.metin@vestel.com.tr

266 views • 3 slides
Black Box Testing (A&O Ch. 4) (2 nd Ed. Ch. 6) Course Software Testing & Verification

Black Box Testing (A&O Ch. 4) (2 nd Ed. Ch. 6) Course Software Testing & Verification

Black Box Testing (A&O Ch. 4) (2 nd Ed. Ch. 6) Course Software Testing & Verification 2019/20 Wishnu Prasetya & Gabriele Keller Plan Partitioning based testing (A&O Ch 4/2 nd Ed Ch. 6). Model based testing Note: black

772 views • 39 slides
Liquidity at Risk Joint Stress Testing of Liquidity and Solvency Risk Rama Cont & Artur

Liquidity at Risk Joint Stress Testing of Liquidity and Solvency Risk Rama Cont & Artur

Liquidity at Risk Joint Stress Testing of Liquidity and Solvency Risk Rama Cont & Artur Kotlicki University of Oxford Laura Valderrama International Monetary Fund 1 Solvency stress testing 2 Solvency Risk Solvency risk is driven

576 views • 28 slides
Structural Testing Also known as glass/white/open box testing Structural testing is based

Structural Testing Also known as glass/white/open box testing Structural testing is based

Path Testing and Test Coverage Chapter 9 Structural Testing Also known as glass/white/open box testing Structural testing is based on using specific knowledge of the program source text to define test cases Contrast with functional

999 views • 60 slides
Germline Genetic Testing for Breast Cancer Risk Evidence-based Genetic Screening Rodney J. Scott

Germline Genetic Testing for Breast Cancer Risk Evidence-based Genetic Screening Rodney J. Scott

Kathmandu, Bir Hospital visit, August 2018 Germline Genetic Testing for Breast Cancer Risk Evidence-based Genetic Screening Rodney J. Scott Demography in New South Wales (total population ~ 7,000,000) Breast Cancer Diagnoses: ~4,400/annum

881 views • 60 slides
UNIFIED STRATEGY A framework for science based measurement and communication of health risk with

UNIFIED STRATEGY A framework for science based measurement and communication of health risk with

5 S LIDES W E RE DISCUSSING W EDNESDAY J UNE 17, 2020 UNIFIED STRATEGY A framework for science based measurement and communication of health risk with case based interventions RAPID SURVEILLENCE TESTING ISOLATION SYNDROMIC RESPONSE

464 views • 7 slides
Property-Based Testing Matt Bachmann @mattbachmann Testing is Important Testing is Important

Property-Based Testing Matt Bachmann @mattbachmann Testing is Important Testing is Important

Property-Based Testing Matt Bachmann @mattbachmann Testing is Important Testing is Important Testing is Important Testing is Hard Testing is Hard Testing is Hard Capture the Important Cases Minimize The Coding Overhead Sorting a list of

1.66k views • 118 slides
Specification-Based Testing 1 Stuart Anderson Stuart Anderson Specification-Based Testing 1

Specification-Based Testing 1 Stuart Anderson Stuart Anderson Specification-Based Testing 1

Specification-Based Testing 1 Stuart Anderson Stuart Anderson Specification-Based Testing 1 2011 c 1 Overview Basic terminology A view of faults through failure Systematic versus randomised testing A systematic approach to

492 views • 32 slides
Test Design Techniques Chapter 4 Part 2 3. Specification-based testing (Black-box) 4.

Test Design Techniques Chapter 4 Part 2 3. Specification-based testing (Black-box) 4.

INF 3121 Software Testing Test Design Techniques Chapter 4 Part 2 3. Specification-based testing (Black-box) 4. Structure-based testing (White-box) 5. Experience-based testing 6. Choosing test techniques Specification-based testing 1.

922 views • 71 slides
Jira for Slack Overview De fi ning and improving how Atlassians products operate within the

Jira for Slack Overview De fi ning and improving how Atlassians products operate within the

Slack app (integration) Jira for Slack Overview De fi ning and improving how Atlassians products operate within the constraints of the communication tool Slack. My role research, facilitate workshops, sketch, wireframe, prototype, design

357 views • 12 slides
Internet Based Testing Testing 2.0 Background 750 000 4 000 1 : 400 Challenges

Internet Based Testing Testing 2.0 Background 750 000 4 000 1 : 400 Challenges

Examinations and Test Section Sep 2015 ATP- SIG (Dublin) Internet Based Testing Testing 2.0 Background 750 000 4 000 1 : 400 Challenges Austerity Application Growth 65% 300% Do more with less Opportunity Unproctored

501 views • 11 slides
Beyond rack testing. Beyond compare. Introducing two new levels of PCR-based testing services

Beyond rack testing. Beyond compare. Introducing two new levels of PCR-based testing services

EDx Environmental Diagnostics Beyond rack testing. Beyond compare. Introducing two new levels of PCR-based testing services for more customized animal health monitoring solutions. More options, more confjdence EDx Prime EDx Plus A PCR-based

500 views • 12 slides
Hacking Appliances: Ironic exploits in security products Ben Williams 9:22 AM Proposition

Hacking Appliances: Ironic exploits in security products Ben Williams 9:22 AM Proposition

9:22 AM Hacking Appliances: Ironic exploits in security products Ben Williams 9:22 AM Proposition There is a temptation to think of Security Appliances as impregnable fortresses, this is definitely a mistake. Security Appliance (noun) -

1.1k views • 63 slides
WITH GREATFET+FD TROOPERS18 KATE TEMKIN & DOMINIC SPILL WHO WE ARE Kate Temkin (@ktemkin):

WITH GREATFET+FD TROOPERS18 KATE TEMKIN & DOMINIC SPILL WHO WE ARE Kate Temkin (@ktemkin):

OPENING BLACK BOX SYSTEMS WITH GREATFET+FD TROOPERS18 KATE TEMKIN & DOMINIC SPILL WHO WE ARE Kate Temkin (@ktemkin): Dominic Spill (@dominicgs): slayer of Tegras, destroyer of worlds cannot stop being extraordinary, on penalty of

861 views • 21 slides
Mark Shtern DDoS Attacks http://en.wikipedia.org/wiki/Operation_Pa yback

Mark Shtern DDoS Attacks http://en.wikipedia.org/wiki/Operation_Pa yback

Mark Shtern DDoS Attacks http://en.wikipedia.org/wiki/Operation_Pa yback http://www.betterhostreview.com/wp-content/uploads/2013/08/ddos-attack.gif 2 DDoS Attacks http://blog.rivalhost.com/wp- http://en.wikipedia.org/wiki/Low

800 views • 36 slides
Visual Security Policy for the Web Terri Oda, Anil Somayaji Carleton University A note to PDF

Visual Security Policy for the Web Terri Oda, Anil Somayaji Carleton University A note to PDF

Visual Security Policy for the Web Terri Oda, Anil Somayaji Carleton University A note to PDF readers These are annotated slides: the second half of the PDF contains the slides with the notes. The notes with each slide are a rough

3.12k views • 82 slides
10 years of Rijndael Vincent Rijmen Overview The AES process (participants perspective)

10 years of Rijndael Vincent Rijmen Overview The AES process (participants perspective)

10 years of Rijndael Vincent Rijmen Overview The AES process (participants perspective) Rijndael Security of Rijndael/AES Spreading of AES Stream ciphers: competitors? Conclusions The early years (1997)

939 views • 70 slides
Block Cipher Cryptanalysis: An Overview Subhabrata Samajder Indian Statistical Institute, Kolkata

Block Cipher Cryptanalysis: An Overview Subhabrata Samajder Indian Statistical Institute, Kolkata

Block Cipher Cryptanalysis: An Overview Subhabrata Samajder Indian Statistical Institute, Kolkata 17 th May, 2017 0/52 Iterated Block Cipher Outline Iterated Block Cipher 1 S-Boxes 2 A Basic Substitution Permutation Network 3 Linear

1.58k views • 113 slides
Anycast for Any Service Michael J. Freedman Karthik Lakshminarayanan David Mazires

Anycast for Any Service Michael J. Freedman Karthik Lakshminarayanan David Mazires

Anycast for Any Service Michael J. Freedman Karthik Lakshminarayanan David Mazires http://oasis.coralcdn.org/ Whats the replica-selection problem? mycdn ? Client needs to choose a good replica server Performance and cost

798 views • 56 slides
Adaptive Application Security Testing Model Ashish Khandelwal Gunankar Tyagi Agendum

Adaptive Application Security Testing Model Ashish Khandelwal Gunankar Tyagi Agendum

Adaptive Application Security Testing Model Ashish Khandelwal Gunankar Tyagi Agendum Confidential McAfee Internal Use Only Security Testing Confidential McAfee Internal Use Only Cost Impact m suffered a heavy The TJX Company breach, which m

429 views • 20 slides

More recommend