#Interactive Session by Saby Saurabh Bhardwaj, "Redefine Quality Assurance – Journey from Centralized to Decentralized, Distributed Blockchain/Web3 testing" at #ATAGTR2023.

G lobal T esting Retreat
#ATAGTR2023
Global Testing Retreat
#ATAGTR2023
R E - D E F I N E Q U A L I T Y A S S U R A N C E :
J O U R N E Y F R O M C E N T R A L I S E D T O
D E C E N T R A L I S E D , D I S T R I B U T E D
B L O C K C H A I N T E S T I N G

#ATAGTR2023
#ATAGTR2023
ABOUT ME
Saurabh Bhardwaj
Vice President – QA Digital & Blockchain Practice
Saby-Saurabh-Bhardwaj

#ATAGTR2023
#ATAGTR2023
• "According to Gartner, by 2025, 55% of enterprise data will be
managed on Blockchain." This highlights the increasing adoption and
importance of Blockchain technology in various industries.
• "McKinsey estimates that Blockchain technology has the potential to
generate $3.1 trillion in business value by 2030." This demonstrates
the immense economic potential and significance of Blockchain in
transforming industries.
• "E&Y states that 92% of surveyed companies had invested in
Blockchain technology by 2021." This showcases the widespread
interest and intention of businesses to leverage Blockchain for their
operations.
Blockchain – Is it a good bet?

#ATAGTR2023
#ATAGTR2023
Blockchain - Basics
“Blockchain” is a shared, immutable ledger that
facilitates the process of recording transactions and
tracking assets on a business networks.
“Block” refers to data and state being stored in
consecutive groups known as “blocks”. Ex - If you send
digital assets, the transaction data needs to be added to a
Block to be successful.
“Chain” refers to each block cryptographically reference
its parents / blocks getting chained together via
consensus. The data in a Block cannot be altered
(immutable).
“Consensus Mechanism” a system that validates a
transaction and marks it as authentic without the need for
a third party intermediary . Key- PoW, PoS, PoA,
IBFT/QBFT
“Ethereum” is primarily public Blockchain. It is
designed to be open , accessible, allowing
decentralized transitions, smart contracts,
dApps. We can also have private permission
Ethereum Blockchain..
“Hyperledger” is an open source for building
private and permissioned Blockchain networks,
designed for business and enterprise use cases
that prioritize privacy, scalability and
interoperability.
“Hyperledger Besu” is an Ethereum based
open source Blockchain platform that enables
the development of private and public enterprise
Blockchain applications, offering flexibility and
compatibility with Ethereum standards and
tooling.

#ATAGTR2023
#ATAGTR2023
Blockchain – Smart Contracts
“Smart Contract” is a self-executing digital agreement
that automatically enforces the terms and conditions
coded within it, facilitating secure and trustless
transactions on a Blockchain.
Smart Contracts are written in a language called Solidity.
Solidity is statically typed and supports inheritance,
libraries and complex user defined types. Syntax is like
JavaScript
Use Case – Following are few key business use
cases that can be designed using smart contract
and make it work on a Blockchain decentralized
applications:
 SCM
 Property Ownership
 Ballot and Voting
 Retail , Judiciary, Medical
 Insurance, Mortgages, Financial Data

#ATAGTR2023
#ATAGTR2023
Blockchain – Decentralised Apps (dApps)
dApps or Decentralized Apps are software applications that run on a decentralized networks, typically a Blockchain. dApps
can enable various functionalities such as financial services, gamming, social media and more while allowing users to retain
control over their data and interactions (web3.0).
In dApps , smart contract acts as the backbone, handling essential operations such as user authentication, data storage and
executing business logics. The user interfaces for these dApps consist of familiar languages such as HTML, CSS, and Java
scripts. Data is distributed across multiple nodes and makes it difficult for external hacks.
dApps could be a solution for many industries, including but not limited to:
 SCM
 Property Ownership
 Ballot and Voting
 Retail , Legal, Medical
 Insurance, Mortgages, Financial Data
One can create his/her own dApp, test it using (Ganache) or
testnet of your choice- Kovan, Rinkeby, Sokol, Görli, and Ropsten
on Ethereum free of cost!

#ATAGTR2023
#ATAGTR2023

#ATAGTR2023
#ATAGTR2023
Blockchain – Testing
Blockchain Testing is a verification and validations of the
Blockchain’s various functional components:
o Network/Distributed Node testing
o DR/HA
o Deployment and validation of Smart Contracts
o dApp Testing
PN : Unlike traditional S/W Testing , in Blockchain testing
involves several components such block details, successful
mining, transactions including send and sign, wallet update,
onchain / offchain. Most of these require specialist
knowledge.
Smart Contract Testing – Verify & validate that the parties
involved in transactions are adhering to the rules also
simulate the expected and unexpected condition for every
contract.
PN: Involves validating the Methods, Validating Processing
and Validating the Encryption and Transmission.
Other testing includes:
• API Testing
• Node/Peer Testing
• Functional, Integration Testing
• Security, Performance Testing

#ATAGTR2023
#ATAGTR2023
 Ensuring the security and integrity of data across multiple nodes, validating smart contract logic, and detecting any
vulnerabilities upfront.
 Data privacy is a critical issue due to the immutability and transparency. Testing to address the confidentiality and
privacy concerns associated with sensitive information on the Blockchain.
 Smart contract verification is essential in ensuring the reliability of Blockchain systems. Testing processes should
include comprehensive audits & verifications to detect potential vulnerabilities and avoid costly exploits.
 Decentralized data handling is a key aspect of Blockchain testing, which involves validating data storage and retrieval
mechanisms across multiple nodes. Testing strategies need to ensure the consistency and availability of data in a
decentralized environment.
 Web3 testing focuses on the verification and validation of decentralized applications (dApps) built on Blockchain
technology. Testing methodologies should cover aspects such as user experience, functionality, and compatibility with
different Blockchain networks.
 Interoperability testing is crucial in ensuring the seamless integration and communication between different
Blockchain networks. Comprehensive testing frameworks should be developed to verify interoperability protocols and
standards.
Challenges

#ATAGTR2023
#ATAGTR2023
Test Automation Framework
Pytest
Locust
Runner
Custom
plugin &
logger
Brownie/
Web3
Blockchain
Tests,
Pages,
Services
Custom plugin & logger
Locust –
Load Test
Reporting
Utilities
Functional –
UI & API
Local Config, Test
Data, Logger Folders
Storage
Automation Components
Master Slave
S1
S2
S3
Continuous Test Pipeline
Django Model & Views
API/UI
report
Endpoint
SQL or
Oracle
Reporting Dashboard
• Python automation framework
supports Brownie / Web3 for
Blockchain / DLT testing.
• Support UI, API Automation. &
Locust for Load test/
concurrency.
• Trigger via CI Pipeline.
• #GenAI Modules for
• Smart Contract Vulnerability
• Smart Contract Details Smart Contract
Vulnerability
#GenAI

#ATAGTR2023
#ATAGTR2023
Beyond Traditional QA: Embracing New Techniques
 Fuzz Testing: Identify edge cases and vulnerabilities by injecting invalid data
to uncover defects.
 Mutation Testing: Analyze smart contract behavior by deliberately introducing
small changes.
 Property-Based Testing: Specify desired properties and automatically
generate test cases .
 Runtime Verification (RV): Continuously monitor smart contract execution for
anomalies.
 Security Audits: Meticulous analysis of smart contracts to detect exploits and
gas optimization opportunities.
 Concurrency Testing Tools: Simulate real-world usage patterns to gauge
performance under scalability demands.
Innovative Testing Methodologies

#ATAGTR2023
#ATAGTR2023
dApp Testing: Ensuring a Seamless User Experience
Best Practices for dApp Testing:
 Start early: Integrate testing throughout the
development process, not just at the end.
 Automate as much as possible: Automate repetitive
tasks to save time and resources.
 Use a combination of testing methods: Don't rely on a
single technique for comprehensive testing.
 Use the right tools: Choose tools specifically
designed for dApp testing.
 Focus on user needs: prioritize testing functionalities
that impact the user experience.
Benefits:
 Reduced Costs: Early bug detection and automated
testing significantly reduce costs.
 Enhanced Security: Comprehensive security testing
mitigates vulnerabilities & minimizes the risk.
 Improved Scalability: Performance testing ensures
the dApp can handle increasing user loads..
 Elevated User Satisfaction: increased engagement,
higher user retention, and a thriving dApp community.
 Competitive Advantage: A consistently refined and
improved dApp stands out in the marketplace.

#ATAGTR2023
#ATAGTR2023
 Transaction Speed and Latency: Measures time taken for transactions to be
processed and confirmed.
 Resource Consumption: Memory and CPU usage by nodes, impacting scalability
and cost
 Network Throughput: Number of transactions processed per second.
 Smart Contract Performance: Gas consumption and execution time of smart
contracts.
 Node Availability and Uptime: Ensures network stability and continuous operation.
 Security Incidents and Vulnerabilities: Measures effectiveness of security controls
and proactive risk mitigation.
 User Adoption and Engagement: Measures the level of dApp usage and user
satisfaction.
 Block Time: Time interval between consecutive blocks added to the chain
Key Performance Indices

#ATAGTR2023
#ATAGTR2023
Thank You

#ATAGTR2023
#ATAGTR2023
5: Consensus Algorithm Testing: Effectiveness and Resilience
Building Trust: Validating the Backbone of Blockchain
• QBFT / IGFT / Byzantine Fault Tolerance (BFT): Testing consensus algorithms like Proof-of-
Work and Proof-of-Stake for their ability to reach agreement despite malicious actors.
• Fork Resilience: Evaluating the system's ability to recover from accidental or intentional
network forks.
• Incentive Mechanisms: Assessing the effectiveness of economic incentives in maintaining
network stability and participation.

#ATAGTR2023
#ATAGTR2023
6. Onchain vs Offchain Content Testing: Seamless Integration
Bridging the Gap: Seamless Communication and Data Exchange
• Data Availability: Verifying that onchain references point to readily available offchain data.
• Oracle Integration: Testing the accuracy and reliability of oracles that bridge onchain and
offchain data.
• Storage Optimization: Evaluating the cost-effectiveness of storing data onchain versus
leveraging offchain storage solutions..

#Interactive Session by Saby Saurabh Bhardwaj, "Redefine Quality Assurance – Journey from Centralized to Decentralized, Distributed Blockchain/Web3 testing" at #ATAGTR2023.

Recommended

Recommended

More Related Content

Similar to #Interactive Session by Saby Saurabh Bhardwaj, "Redefine Quality Assurance – Journey from Centralized to Decentralized, Distributed Blockchain/Web3 testing" at #ATAGTR2023.

Similar to #Interactive Session by Saby Saurabh Bhardwaj, "Redefine Quality Assurance – Journey from Centralized to Decentralized, Distributed Blockchain/Web3 testing" at #ATAGTR2023. (20)

More from Agile Testing Alliance

More from Agile Testing Alliance (20)

Recently uploaded

Recently uploaded (20)

#Interactive Session by Saby Saurabh Bhardwaj, "Redefine Quality Assurance – Journey from Centralized to Decentralized, Distributed Blockchain/Web3 testing" at #ATAGTR2023.

Editor's Notes