|
|
Who is Stealing a Living off Your Web Site? So, your company makes money from its Web site. Who else might also be doing the same? While the Web is a profitable venture for many companies, it is often equally profitable for hackers and thieves. Due to unknown vulnerabilities of your Web application, hackers may end up with more profit from your Web site than you do. See examples of hacker techniques-SQL injection, format string attacks, session-based attacks-and a host of others. Find out why the current crop of Web testing tools is not sufficient to thwart hackers and will leave you with a false and dangerous sense of security. Learn the skills and techniques you must know to stay ahead of hackers and find security holes in your Web applications.
- Hidden Web application security vulnerabilities
- Testing skills and techniques to find security holes and prevent breaches
- Tools to help you with security testing Web sites
|
Florence Mottay, Security Innovation LLC
|
|
|
Workgroup Retrospectives for Test Teams You may have heard about the power of project retrospectives, but will a retrospective benefit your test team or development team when you don't control the budget or set priorities for the entire project? The answer is yes. Workgroup retrospectives apply the proven methods and techniques of project retrospectives to improve teamwork and results within a software team. An experienced retrospective facilitator, Esther Derby describes how a retrospective supports learning and offers the basics of putting on a retrospective for your team. Learn about the phases, exercises, outcomes, and action planning that go into a successful retrospective. The next time you complete a project, invest in a workgroup retrospective instead of doing a standard post-review. You will be surprised and possibly amazed by the results.
- How retrospectives differs from post-project reviews
|
Esther Derby, Esther Derby Associates Inc
|
|
|
Free Test Tools are Like a Box of Chocolates You never know what you are going to get! Until you explore, it can be hard to tell whether a free, shareware, or open source tool is an abandoned and poorly documented research project or a robust powerhouse of a tool. In this information-filled presentation, Danny Faught shows you where open source and freeware tools fit within the overall test tool landscape. During this double session, Danny installs and tries out several tools right on the spot and shares tips on how to evaluate tools you find on the Web. Find out about licensing, maintenance, documentation, Web forums, bugs, and more. Discover the many different types of testing tools that are available for free and where to find them. Danny demonstrates examples of tools that you can put to use as soon as you get back to the office.
|
Danny Faught, Tejas Software Consulting
|
|
|
Using Personas to Improve Testing Too often testers are thrown into the testing process without direct knowledge of the customers' behaviors and business process. As a tester, you need to think and act like a customer to make sure the software does-in an easy-to-use way-what the customer expects. By defining personas and using them to model the way real customers will use the software, you can have the complete customer view in designing test cases. Get the basics of how to implement customer personas, their limitations, and ways to create tests using them. See examples of good bugs found using personas while learning to write bug reports based on them.
- What you need to know to develop customer personas
- Use customer personas for designing test cases
- The types of bugs found by using personas but missed by other techniques
|
Robyn Edgar, Microsoft
|
|
|
Managing Agile Test Departments What is the impact of agile methods on test departments and testers? How do you manage testing in an agile test department? Robert Martin, an early adopter and proponent of agile development practices, discusses his experiences and recommendations for how to organize and run an agile test department. He describes the principles, practices, tools, and metrics that are important to successful test management within agile development. Agile methods change the role of test departments from verification to specification. With agile methods, you develop tests before the code, and the tests become the detailed requirements documentation. This paradigm shift has a profound impact on both the test team and the programming team. Learn about the test management problems that often arise in making the transition to agile development and common solutions that address these issues.
|
Robert Martin, Object Mentor
|
|
|
Mainframe-Class Recoverability Testing The corollary to the axiom "all software has bugs" is "you will never find them all." Even if you could, hardware and environmental failures always are lurking about, waiting to crash the software. If you accept the premise that failures are inevitable, then part of your testing should confirm that the software gracefully recovers from failures, protecting customer data and minimizing downtime. In this presentation Scott Loveland helps you face the issue head-on by explaining novel ways to force failures and then test the software's ability to recover. Having spent his career with IBM in test for z/OS and its predecessors, MVS and OS/390, and most recently Linux, Scott reveals the tools and techniques proven for testing recoverability of industrial-strength software in the trenches of the IBM mainframe development lab.
- Methods for injecting errors and monitoring recovery of large, complex systems
|
Scott Loveland, IBM Corporation
|
|
|
STARWEST 2004: The Business Case for Software Quality Software quality is first and foremost a business issue, and testing is often the last line of defense. The staffing, tools, and processes that we use to support our customers are fundamental to achieving quality-and their business objectives-in a cost-effective manner. Significantly improving software quality in an organization is a major project and not for the faint of heart. Such an improvement project must have a positive return on investment and a good likelihood of success. In this talk Richard Bender addresses fourteen major areas of concern for software quality and how they can impact the business. He includes industry statistics to help you make the case and weaves into the solution set the importance of good requirements and integrated testing.
- Fourteen reasons to improve software quality
- The ROI of software testing and quality improvement
- How to achieve buy-in for quality improvement
|
Richard Bender, Bender RBT Inc.
|
|
|
Asia as a Test Outsource Center Outsourcing testing software projects to countries in Asia is a trend that is here to stay. You have a growing number of choices for an outsourcing country in Asia-India, China, Taipei, Korea, and others. Although India currently dominates the scene and both Taipei and Korea have historically provided excellent quality, though at a higher cost, China is quickly moving to become the leader with even lower billing rates and a large number of experienced and educated engineers. In this session, Jacob Hsu offers an overview of the Asian outsource scene including the latest trends and data. Take away a checklist of best practices for successfully outsourcing product testing to Asia, including how to manage distributed testing teams, how to overcome language/cultural issues by country, and what types of testing should (and should not) be outsourced offshore.
|
Jacob Hsu, Symbio Group
|
|
|
Rescuing a Runaway Test Project As a testing consultant Geoff Horne often is called upon to help rescue runaway testing projects. In this presentation, Geoff looks at common causes of such problems, what to do to remedy them, and how to prevent their recurrence. If your testing is taking longer than planned ... or you are finding too many (or too few) defects... or your test project has simply lost its way, then this session is for you. Find out if you are operating with faulty assumptions, learn how to identify the root causes of your problems, and develop a strategy and plan to fix them. Whether your issues relate to test planning, analysis, design, execution, management, or reporting, you will take away an assortment of tools and approaches to help get your testing project back on track-and keep it there.
- How to re-scope your test strategy and move forward
- Stringent incident logging and management procedures
|
Geoff Horne, iSQA
|
|
|
Testing in an Outsourced World Many of us have worked on projects where some or all of the development is done by third parties, sometimes in a different country. While cost savings may make such arrangements attractive, projects face significant new challenges in an outsourced world. Rex Black offers a testing perspective and lessons learned from his involvement in successful-and not-so-successful-- outsourcing projects. In this revealing session, Rex addresses the following questions: What are the critical logistical issues when we manage testing or work as testers on outsourced projects? What good advice can we offer executives who are considering outsourcing testing or development? How does ISO or CMM® certification of the outsource firm change the testing picture? How should we approach integration testing when some components are developed by an outsourced company? How will outsourcing affect the way we build and test systems?
|
Rex Black, Rex Black Consulting
|
