Mod 3 > Week 1 > Day 5

Overview of the day

Today we look at the Testing stage of the SDLC.

Lesson 1 - The Testing stage

Learning Objectives

• Explain why testing is necessary, including the principles of early testing; risk reduction; conformance to functional and non-functional requirements; finding defects; differentiating testing from debugging.
• Explain how to determine the correct types of test coverage based on a requirement.
• Summarise the different levels of testing, their purposes and the generic test process that supports them:
  • unit testing;
  • integration testing;
  • system testing;
  • acceptance testing.
• Describe different types and techniques for software testing and why they would be used, including:
  • functional and non-functional testing;
  • regression testing;
  • White Box and Black Box testing;
  • experience-based testing.
• Distinguish functional and non-functional categories of tests for a given case.
• Recognise that different organisations apply different approaches to testing depending on development methodologies used and organisational preferences.
• Distinguish advantages and disadvantages of using independent software testing teams as opposed to using testers who have been involved in other aspects of development.
• Explain the use of equivalence classes and use cases in testing code
• Show how to efficiently and effectively debug code, including:
  • Types of error;
  • Exception handling;
  • Reproduction;
  • Elimination;
  • Logging;
  • Test coverage.

Lesson

Inputs to the Testing stage

The input to the Testing stage is untested software.

Why Test?

The purpose of testing software is to ensure the quality of the system is as high as possible by removing:

1. Errors - mistakes made by humans
2. Defects - bugs in software code
3. Failures - stopping the system from doing something it should

Think about how important testing is for self-driving cars!

Tests are based on 2 key principles:

• Verification - is the system being build in the correct way?
• Validation - is the right system being build?

The earlier in the SDLC we test, the sooner we find issues and avoid shipping flawed software.

The "V" model

The "V" model (also known as the Verification and Validation model) associates a testing phase to each SDLC stage.

Static testing focusses on the early stages of the SDLC, before code is written. It aims to remove errors which could lead to defects in software code. Examples of static testing include:

• checking requirements against the business case
• checking the design against requirements

Static testing is done via reviews and walkthroughs.

Dynamic testing focusses on testing the code as it is executing. It aims to detect defects. Examples include:

• unit testing
• system testing
• user acceptance testing

We can further breakdown dynamic testing into:

Black-box testing - here we treat the system as a black box and only concern ourselves with the inputs and output e.g. system testing, integration testing, user acceptance testing

White-box testing - here we are aware of the inner workings of our code e.g. unit tests

Black Box	White Box
Black box testing asks WHAT inputs produce WHAT outputs	White box testing asks HOW the internal logic of the system works

Experience-based testing - key stakeholders identify areas of the system that, in their experience, are likely to be yield defects e.g. areas of high complexity, areas which previously caused issues.

The 7 Principles of Software Testing

The International Software Testing Qualifications Board describes the following 7 principles of testing.

This video explains each one in detail.

More on dynamic testing

Dynamic testing is concerned with 4 test types:

1. Unit
2. Integration
3. System
4. Acceptance

Unit Testing

Unit Tests isolate a section of code and verify its correctness. A unit may be an individual function, method, procedure, module, or object.

Unit tests are run by developers

Integration Testing

Integration tests determine if independently developed units of software work correctly when they are connected to each other. For example calling this endpoint /users/x023/photos should return a JSON string with an array of urls. This is testing that the server correctly interacts with the database and returns the correct values.

Integration tests are run by developers or testers

System Testing

Examples of system testing are end-to-end tests such as Cypress tests) with assertions of state or outputs. Other examples of system tests include non-functional tests such as load/performance tests, security penetration tests.

System tests are run by testers

Acceptance Testing

The purpose of acceptance tests are to evaluate the system’s compliance with the business requirements and assess whether it is acceptable for delivery. You built a perfect bridge, but did you meet the business requirements?! The Use Cases and User Stories developed during the Requirements Analysis stage help define user acceptance tests.

Acceptance tests are run by the end-users, supported by business analysts

Non-functional testing

During each stage of dynamic testing we must ensure that the system meets the non-functional requirements defined in the Requirements Analysis stage of the SDLC. Non-functional testing includes:

• performance testing
• load testing
• security testing
• accessibility testing
• backup & recovery testing

This video explains how a load testing tool works.

Writing a good test case

Equivalence classes

One of the seven principles of testing is exhaustive testing is impossible. So how should we go about testing our applications? The answer is to use equivalence classes. Equivalence partioning divides the input data to a software unit into partitions of equivalent data from which test cases can be derived.

Imagine we have an input field that is designed to take the number of tickets you can book for a concert. One individual can buy up to 10 tickets. We want to test this. For example

• Selecting -2 tickets is not a valid amount
• Selecting 11 tickets is not a valid amount
• Selecting 6 tickets is OK

What emerges are four classes or partions of tests that are created by the different ranges of valid and invalid possible inputs.

1. negative numbers FAIL
2. zero FAIL
3. valid amount 1 - 10 PASS
4. out of range values FAIL

We only need one test in each class because, testing that 6 is OK would be equivalent to testing 7 is OK. They are both valid amounts, the result of the test would be the same or equivalent. There is no point in testing in this class more than once because the results are equal or equivalent. Same for the out of range values, we tested with 11, but would expect the same results for 50, 100, 1000 etc

Boundary Value Analysis

Boundary testing is the process of testing the extreme ends or boundaries of input values.

For example, imagine we are writing an application which alerts individuals between 28 and 40 to come for their COVID vaccination. Both 28 and 40 will be considered as boundary values.

The assumption of boundary value analysis is that boundary values are most likely to cause an error.

Regression testing

Regression testing ensures that unchanged areas of the system have not been affected by new changes. Running the regression test suite is just as important as creating and running new tests!

Writing a test plan

A test plan typically includes:

• Test schedule
• Test data
• Test scenarios
• Entry criteria
• Exit criteria
• Traceability to requirements

Outputs

The output of the Testing phase is fully tested software.

Assignment

1. Look for job vacancies for software testers - what kind of skills do they require?

2. What are the advantages and disadvantages of outsourcing testing to an external organisation?

3. Update your portfolio to evidence different kinds of tests e.g. unit, system, performance

Additional resources

Example job spec for a tester at Tesla

Fireside Chat: DevOps at Amazon with Ken Exner, GM of AWS Developer Tools - AWS Online Tech Talks

attendance log main|prev|next