|
|
STARWEST 2003: How To Break Software Security We have all experienced the "thrill" of functional testing, going through requirements and then crafting test cases to ensure that the application behaves according to specifications. While this method has its place, it misses many classes of bugs, especially security bugs. For example, security bugs can manifest as extra functionality that may not violate requirements directly, but still expose catastrophic holes in software. Based on strategies that have successfully broken some of the world's most secure applications, Herbert Thompson presents the tools and techniques you need to find security problems before your application is released. Learn the security attacks and tools to uncover security vulnerabilities before hackers discover them for you.
|
Herbert Thompson, Security Innovation LLC
|
|
|
The Best Testers are Free Beta programs and early release programs are commonly used in software release cycles. The next level of partnership is bringing actual customers into the test lab. When customers test, even for short periods of time, their contribution can change your test practices and test environments forever. The best part is, they’ll do it for free! Learn how to recruit customers for testing and then use them to improve test practices within your test team.
|
Adam Tate, IBM Corporation
|
|
|
Managing the Management Balancing Act Great test managers wear many hats and must know how to balance the company's demands for returns against the need to build capacity and skills within their team-all without breaking a sweat. Test groups are often under-funded and test managers run themselves ragged trying to be all things to all people. From her many years of contact with both senior management and test managers, Johanna Rothman discusses ways to navigate through typical test management traps, such as: how to effectively move people from area to area or project to project; when to say "No;" when to let a project go; and how to speak to management in language they understand. Johanna offers techniques you can use to succeed at the test management balancing act.
|
Johanna Rothman, Rothman Consulting Group, Inc.
|
|
|
.NET as powerful platform for performance testing Expensive performance testing automation tools often require special customization and consulting services to test complex applications. Sergey Linetskiy shares his experience using the Microsoft .NET platform as the basis for building a powerful, inexpensive performance testing framework. With a high-speed script engine, built-in classes for management and monitoring, and the classes for different data exchange protocols, .NET has all the key elements you need to build one yourself.
|
Sergey Linetskiy, Genesys Telecommunications Laboratories
|
|
|
Test Automation with Open Source Tools in an Agile SDLC Process Test automation, open source tools, and agile methods are three important trends in software development. The instructors present a case study of a project where the project team integrated these three methods to build and deliver a critical application. Using automated testing as a foundation piece of the process the team met the demands of an aggressive schedule while responding to fluctuating requirements. The use of open source tools for test automation reduced the project cost while providing additional flexibility during the project.
|
Peter Dignan, ProtoTest LLC
|
|
|
Adventures in Testing Data Migration Many organizations do not recognize the need for formal testing approaches to data migrations or systems mergers. Migrations are often performed by specially-built data conversion utilities that should be considered new software applications in their own right. Because conversion is a one-time occurrence, data can be riddled with defects and inaccuracies. Geoff Home discusses the different testing levels that you can apply to data migration and the inherent risks associated with such migrations. Take away strategies you can use to bring quality and focus to your data conversions. Examine examples of migration disasters, and learn how to avoid them in your organization.
|
Geoff Horne, iSQA
|
|
|
Square Peg, Round Hole: Matching Testing with Business Needs There are many types of software testing methods, ranging from exploratory to a full CMM Level 5 compliance. Choosing the wrong style of testing methodology can jeopardize your company’s software success. In this presentation, Patrick Callahan discusses his real-world experience at ePeople and other Silicon Valley startup companies and outlines some proven strategies selecting and implementing the right one for you. Learn about the four stages of test evolution from chaos to a continuous improvement process.
|
Patrick Callahan, ePeople Inc
|
|
|
STARWEST 2003: Testing Dialogues - Management Issues Testing dialogues are a unique platform for you to share your ideas and learn from experienced testers from around the world. In this double session, test managers engage in in-depth, small group discussions with their peers. You'll share your expertise and experiences, learn from others’ challenges and successes, and generate new topics in real-time. Johanna Rothman and Esther Derby facilitate this session, focusing on management issues such as: release criteria; determining ROI of test; coaching and feedback; managing new employees; estimating test time and resources. Bring your BIG issue and start a new dialog with your management peers. Discussions are structured in a framework so that participants will receive a summary or their work product after the conference.
|
Facilitated by Esther Derby and Johanna Rothman
|
|
|
Large Database Load and Stress Testing No one looks forward to load and stress testing a large database, but it is a critical task in the test process. Michele Rossi focuses on practical strategies to test software built for large database environments. Before designing your next database load and stress tests, find out what questions to ask and how to model realistic database activity. With the right test scripts and automated tools to create sufficient activity, you'll go a long way toward improving product quality under heavy database loads.
|
Michele Rossi, BMC Software Inc
|
|
|
Automating J2EE and .NET Tests With the introduction of the new J2EE (1.4) and .NET platforms, the middleware tier of software applications just became more complex. How do you test an application that uses up to 20 major APIs? Using case study of such an application, Frank Cohen describes how to test functionality, scalability, and performance. In this environment, testers and developers must work together, beginning with automated unit testing and continuing through integration and into system testing. Take away the test agent code, documentation, and installation instructions you’ll need to run the same tests in your own environments under a free, open-source license.
|
Frank Cohen, PushToTest
|
