SlideShare a Scribd company logo

Lecture32-Web-based-testing-II.pptx

Download as PPTX, PDF
B
Balkrishanpatidar

ghj

Data & Analytics
1 of 31
Testing Web-based Systems cont … Prof. Durga Prasad Mohapatra Professor Dept.of CSE, NIT Rourkela
 Navigation testing is performed on various possible paths in web applications ◦ to ensure the functioning of correct sequence of navigations  Design the test cases such that the following navigations are correctly executing: ◦ Internal links & External links ◦ Redirected links (the redirected links should be with proper messages displayed to the user) ◦ Navigation for searching inside the web application Navigation Testing
 The errors must be checked for the followings: ◦ The broken links (the links should not be broken due to any reason). ◦ The proper redirected links with proper messages displayed ◦ Ensuring whether all possible navigation paths active and relevant or not. ◦ The navigations for the back and forward buttons, and their proper working Navigation Testing cont…
 Diversity in configuration for web applications makes the testing of these systems very difficult.  There may be various types of : ◦ Browsers supporting different operating systems ◦ Variation in servers ◦ Networks, etc. Configuration/Compatibility Testing
 Therefore, configuration testing becomes important so that there is compatibility between various available resources and application software.  The tester must consider these configurations and compatibility issues so that they can design the test cases incorporating all the configurations. Configuration/Compatibility Testing cont …
Some important points for configuration testing:  There are a number of different browsers and browser options. ◦ The web application has to be designed to be compatible for majority of the browsers. Configuration/Compatibility Testing cont …
 The graphics and other objects on a website have to be tested on multiple browsers. ◦ If more than one browser will be supported, then the graphics have to be visually checked for differences in the physical appearance. ◦ Some of the things to check are  centering of objects,  table layouts,  colours,  monitor resolution,  forms and Configuration/Compatibility Testing cont …
 The code that executes from the browser also has to be tested. ◦ There are different versions of HTML. ◦ They are similar in some ways but they have different tags which may produce different features. Configuration/Compatibility Testing cont …
◦ Some of the other codes, besides HTML, to be tested are  Java  JavaScript  ActiveX  VBScripts  Cgi-Bin Scripts  Database access ◦ Cgi-Bin Scripts have to be checked for end-to-end operations and is most essential for e-commerce sites. ◦ The same goes for database access. Configuration/Compatibility Testing cont …
 All new technologies used in the web development like graphics designs, interface calls like different API’s, may not be available in all the operating systems. ◦ Test your web application on different operating systems:  Windows,  Unix,  MAC,  Linux,  Solaris with different OS flavors. Configuration/Compatibility Testing cont …
 The most challenging issue is to protect the web applications from ◦ Hackers ◦ Crackers ◦ Spoofers ◦ virus launchers, etc. Security Testing
Security Testing cont …  Through security testing we try to ensure: ◦ Confidentiality ◦ Integrity ◦ Availability ◦ Non Repudiation  The web application must be able to nullify the external attacks
 Security testing is carried out for: ◦ Security of the infrastructure hosting the web application ◦ Vulnerabilities of the web application  Firewall and port scans can be the solutions for security infrastructure  For vulnerabilities, user authentication, restricted and encrypted use of cookies, data communication must be planned. Users should not be able to browse through the directories in Security Test Plan
 Check the interfaces of the components, because most of the security bugs lie on the interfaces only.  Prioritize the interfaces according to their level of vulnerability.  High-priority interfaces are tested thoroughly by injecting mutated data to be accessed by that interface in order to check the security. Security Test Plan cont …
Security Test Plan cont …  While performing security checking, do not modify the configuration of the system or server, services running on the server, and existing user or customer data hosted by the application.
 Unauthorized user/fake identity/password cracking ◦ check for the confidentiality of the contents/data.  Buffer overflows ◦ Due to this malicious code can be executed ◦ Check buffer overflow module and the different ways of submitting a range of lengths to the application Various Threat types and their Corresponding Test Cases
Threats and their Test Cases cont..  URL manipulation  Web application uses HTTP GET method to pass information between the client and server. The information is passed through parameters in the query string. An attacker may change some information in the query string passed from GET request so that he may get some information. Or corrupt the data. When somebody attempts to modify the data, it is known as fiddling of data.  Prevent Fiddling in the HTTP GET query string for the change or corruption of the data.  Design test cases to check that an user is trying to
 SQL injection ◦ Hackers can put some SQL statements through the web interface (inputs) to get vital information ◦ Design test cases such that the special characters from the user inputs should be handled/escaped properly. Threats and their Test Cases cont..
Threats and their Test Cases cont …  Denial of service When a service does not respond, it is known as denial of service ◦ There are several ways that can make an application fail:  Heavy load  Distorted data that may crash an application  Overloading of memory, etc. ◦ Tester should design the test cases considering all the above factors.
 Cross-Site Scripting (XSS) • When a user insert HTML/client side script in the user interface of a web application and this insertion is visible to other users, it is called cross-site scripting (XSS). • Using XSS attacker can use scripts like Java Scripts to steal user cookies and information stored in cookies. • To avoid this, tester should check web application for XSS. Threats and their Test Cases cont …
 Performance testing helps the developer to identify the bottlenecks in the web application and can be rectified.  Bottlenecks can be code, database, network, peripheral devices, etc. Performance Testing
 Resource Utilization ◦ The percentage of time a resource(CPU, memory, I/O, Peripheral, Network) is busy.  Throughput ◦ The number of event responses that have been completed over a given interval of time.  Response time ◦ The time lapsed between a request and its reply. Performance Parameters
Performance Parameters cont …  Round-Trip Time ◦ How long does the entire user-requested transaction take, including connection and processing time?  Scalability ◦ The ability of an application to handle additional workload, without adversary affecting performance, by adding resources such as processor, memory, and storage capacity.  Database load ◦ The number of times database is accessed by web
 Load Testing  Stress Testing Types of Performance Testing for web applications
• This testing is performed to check that whether the system can sustain at times of peak load. • The site should handle many simultaneous user requests, large input data from users, simultaneous connections to database, heavy load on specific pages, etc. When we test the system with these types of loads, this testing is called load testing. • It focuses on determining or validating performance characteristics of the system when subjected to workloads & load volumes expected during production operations. It refers to how much maximum load can be put on the web application & it will still serve flawlessly Load Testing
 Capacity testing ◦ Determines the maximum load the web service can handle before failing. ◦ Reveals the web services’ ultimate limit.  Scalability testing ◦ Determines how effectively the web service will expand to accommodate an increasing load. Types of load testing
Stress Testing  Stress refers to stretching the system beyond its specification limits.  Web stress testing is performed to break the site by giving stress and to know how the system reacts to the stress and how the system recovers from crashes.  It focuses on determining or validating performance characteristics of the system when subjected to conditions beyond those expected during production operations.  Tests the performance of the system under stressful conditions such as memory overflow, insufficient disk space, server failure etc.
Stress Testing cont …  These test are designed to determine under what conditions an application will fail, and how gracefully it may recover from failure.  Examples of graceful failure:  The system saves the state at the time of failure and does not crash suddenly  On restarting it, the system recovers from the last good state  The system shows meaningful error messages to the user, etc.
 Discussed some important types of testing for web-based systems. ◦ Navigation Testing ◦ Configuration / Compatibility Testing ◦ Security Testing ◦ Performance Testing Summary
References 1. N. Chauhan, Software Testing; Principles and Practices, Second Edition, (Chapter – 15), Oxford University Press, 2018.
Thank You

Recommended

28791456 web-testing
28791456 web-testing28791456 web-testing
28791456 web-testingRushikesh Bhongade
 
Web testing essentials
Web testing essentialsWeb testing essentials
Web testing essentialsbolsupport
 
Performance testing jmeter
Performance testing jmeterPerformance testing jmeter
Performance testing jmeterBhojan Rajan
 
Database Testing.pptx
Database Testing.pptxDatabase Testing.pptx
Database Testing.pptxssuser88c0fd1
 
Software Testing includes Performance testing with Load Runner and the JMeter
Software Testing includes Performance testing with Load Runner and the JMeter Software Testing includes Performance testing with Load Runner and the JMeter
Software Testing includes Performance testing with Load Runner and the JMeter Hima Bindu Kosuru
 
Performancetestingjmeter 121109061704-phpapp02
Performancetestingjmeter 121109061704-phpapp02Performancetestingjmeter 121109061704-phpapp02
Performancetestingjmeter 121109061704-phpapp02Shivakumara .
 
Glimpse and Benefits of Testing
Glimpse and Benefits of TestingGlimpse and Benefits of Testing
Glimpse and Benefits of TestingSourabh Kasliwal
 
Lecture31-Web-based-testing-I.pptx
Lecture31-Web-based-testing-I.pptxLecture31-Web-based-testing-I.pptx
Lecture31-Web-based-testing-I.pptxBalkrishanpatidar
 

Recommended

28791456 web-testing
28791456 web-testing28791456 web-testing
28791456 web-testingRushikesh Bhongade
 
Web testing essentials
Web testing essentialsWeb testing essentials
Web testing essentialsbolsupport
 
Performance testing jmeter
Performance testing jmeterPerformance testing jmeter
Performance testing jmeterBhojan Rajan
 
Database Testing.pptx
Database Testing.pptxDatabase Testing.pptx
Database Testing.pptxssuser88c0fd1
 
Software Testing includes Performance testing with Load Runner and the JMeter
Software Testing includes Performance testing with Load Runner and the JMeter Software Testing includes Performance testing with Load Runner and the JMeter
Software Testing includes Performance testing with Load Runner and the JMeter Hima Bindu Kosuru
 
Performancetestingjmeter 121109061704-phpapp02
Performancetestingjmeter 121109061704-phpapp02Performancetestingjmeter 121109061704-phpapp02
Performancetestingjmeter 121109061704-phpapp02Shivakumara .
 
Glimpse and Benefits of Testing
Glimpse and Benefits of TestingGlimpse and Benefits of Testing
Glimpse and Benefits of TestingSourabh Kasliwal
 
Lecture31-Web-based-testing-I.pptx
Lecture31-Web-based-testing-I.pptxLecture31-Web-based-testing-I.pptx
Lecture31-Web-based-testing-I.pptxBalkrishanpatidar
 
Lecture31-Web-based-testing-I.pptx
Lecture31-Web-based-testing-I.pptxLecture31-Web-based-testing-I.pptx
Lecture31-Web-based-testing-I.pptxBalkrishanpatidar
 
Lecture31-Web-based-testing-I.pptx
Lecture31-Web-based-testing-I.pptxLecture31-Web-based-testing-I.pptx
Lecture31-Web-based-testing-I.pptxBalkrishanpatidar
 
Web Engineering: A Practitioner Approach -Testing web app - Content Managemen...
Web Engineering: A Practitioner Approach -Testing web app - Content Managemen...Web Engineering: A Practitioner Approach -Testing web app - Content Managemen...
Web Engineering: A Practitioner Approach -Testing web app - Content Managemen...Esraa Farrag
 
Less11 3 e_loadmodule_1
Less11 3 e_loadmodule_1Less11 3 e_loadmodule_1
Less11 3 e_loadmodule_1Suresh Mishra
 
Performance Testing
Performance TestingPerformance Testing
Performance TestingAnu Shaji
 
QSpiders - Introduction to HP Load Runner
QSpiders - Introduction to HP Load RunnerQSpiders - Introduction to HP Load Runner
QSpiders - Introduction to HP Load RunnerQspiders - Software Testing Training Institute
 
performancetestingjmeter-121109061704-phpapp02
performancetestingjmeter-121109061704-phpapp02performancetestingjmeter-121109061704-phpapp02
performancetestingjmeter-121109061704-phpapp02Gopi Raghavendra
 
performancetestingjmeter-121109061704-phpapp02 (1)
performancetestingjmeter-121109061704-phpapp02 (1)performancetestingjmeter-121109061704-phpapp02 (1)
performancetestingjmeter-121109061704-phpapp02 (1)QA Programmer
 
What is Web Testing?
What is Web Testing? What is Web Testing?
What is Web Testing? QA InfoTech
 
Performance testing
Performance testingPerformance testing
Performance testingChalana Kahandawala
 
1,2,3 … Testing : Is this thing on(line)? with Mike Martin
1,2,3 … Testing : Is this thing on(line)? with Mike Martin1,2,3 … Testing : Is this thing on(line)? with Mike Martin
1,2,3 … Testing : Is this thing on(line)? with Mike MartinNETUserGroupBern
 
JMeter
JMeterJMeter
JMeterMd Samsul Kabir
 
PerformanceTestingWithLoadrunner
PerformanceTestingWithLoadrunnerPerformanceTestingWithLoadrunner
PerformanceTestingWithLoadrunnertechgajanan
 
Performance Testing With Loadrunner
Performance Testing With LoadrunnerPerformance Testing With Loadrunner
Performance Testing With Loadrunnervladimir zaremba
 
Chapter 3 - Performance Testing in the Software Lifecycle
Chapter 3 - Performance Testing in the Software LifecycleChapter 3 - Performance Testing in the Software Lifecycle
Chapter 3 - Performance Testing in the Software LifecycleNeeraj Kumar Singh
 
Pm 6 testing
Pm 6 testingPm 6 testing
Pm 6 testingRadiant Minds
 
Pm 6 testing
Pm 6 testingPm 6 testing
Pm 6 testingRadiant Minds
 
Manual testing real time questions by subbu
Manual testing real time questions by subbuManual testing real time questions by subbu
Manual testing real time questions by subbupalla subrahmanyam
 
Performance testing : An Overview
Performance testing : An OverviewPerformance testing : An Overview
Performance testing : An Overviewsharadkjain
 
QSpiders - Introduction to JMeter
QSpiders - Introduction to JMeterQSpiders - Introduction to JMeter
QSpiders - Introduction to JMeterQspiders - Software Testing Training Institute
 
科罗拉多大学波尔得分校毕业证学位证成绩单-可办理
科罗拉多大学波尔得分校毕业证学位证成绩单-可办理科罗拉多大学波尔得分校毕业证学位证成绩单-可办理
科罗拉多大学波尔得分校毕业证学位证成绩单-可办理e4aez8ss
 
专业一比一美国俄亥俄大学毕业证成绩单pdf电子版制作修改
专业一比一美国俄亥俄大学毕业证成绩单pdf电子版制作修改专业一比一美国俄亥俄大学毕业证成绩单pdf电子版制作修改
专业一比一美国俄亥俄大学毕业证成绩单pdf电子版制作修改yuu sss
 

More Related Content

Similar to Lecture32-Web-based-testing-II.pptx

Lecture31-Web-based-testing-I.pptx
Lecture31-Web-based-testing-I.pptxLecture31-Web-based-testing-I.pptx
Lecture31-Web-based-testing-I.pptxBalkrishanpatidar
 
Lecture31-Web-based-testing-I.pptx
Lecture31-Web-based-testing-I.pptxLecture31-Web-based-testing-I.pptx
Lecture31-Web-based-testing-I.pptxBalkrishanpatidar
 
Web Engineering: A Practitioner Approach -Testing web app - Content Managemen...
Web Engineering: A Practitioner Approach -Testing web app - Content Managemen...Web Engineering: A Practitioner Approach -Testing web app - Content Managemen...
Web Engineering: A Practitioner Approach -Testing web app - Content Managemen...Esraa Farrag
 
Less11 3 e_loadmodule_1
Less11 3 e_loadmodule_1Less11 3 e_loadmodule_1
Less11 3 e_loadmodule_1Suresh Mishra
 
Performance Testing
Performance TestingPerformance Testing
Performance TestingAnu Shaji
 
performancetestingjmeter-121109061704-phpapp02
performancetestingjmeter-121109061704-phpapp02performancetestingjmeter-121109061704-phpapp02
performancetestingjmeter-121109061704-phpapp02Gopi Raghavendra
 
performancetestingjmeter-121109061704-phpapp02 (1)
performancetestingjmeter-121109061704-phpapp02 (1)performancetestingjmeter-121109061704-phpapp02 (1)
performancetestingjmeter-121109061704-phpapp02 (1)QA Programmer
 
What is Web Testing?
What is Web Testing? What is Web Testing?
What is Web Testing? QA InfoTech
 
1,2,3 … Testing : Is this thing on(line)? with Mike Martin
1,2,3 … Testing : Is this thing on(line)? with Mike Martin1,2,3 … Testing : Is this thing on(line)? with Mike Martin
1,2,3 … Testing : Is this thing on(line)? with Mike MartinNETUserGroupBern
 
PerformanceTestingWithLoadrunner
PerformanceTestingWithLoadrunnerPerformanceTestingWithLoadrunner
PerformanceTestingWithLoadrunnertechgajanan
 
Performance Testing With Loadrunner
Performance Testing With LoadrunnerPerformance Testing With Loadrunner
Performance Testing With Loadrunnervladimir zaremba
 
Chapter 3 - Performance Testing in the Software Lifecycle
Chapter 3 - Performance Testing in the Software LifecycleChapter 3 - Performance Testing in the Software Lifecycle
Chapter 3 - Performance Testing in the Software LifecycleNeeraj Kumar Singh
 
Manual testing real time questions by subbu
Manual testing real time questions by subbuManual testing real time questions by subbu
Manual testing real time questions by subbupalla subrahmanyam
 
Performance testing : An Overview
Performance testing : An OverviewPerformance testing : An Overview
Performance testing : An Overviewsharadkjain
 

Similar to Lecture32-Web-based-testing-II.pptx (20)

Lecture31-Web-based-testing-I.pptx
Lecture31-Web-based-testing-I.pptxLecture31-Web-based-testing-I.pptx
Lecture31-Web-based-testing-I.pptx
 
Lecture31-Web-based-testing-I.pptx
Lecture31-Web-based-testing-I.pptxLecture31-Web-based-testing-I.pptx
Lecture31-Web-based-testing-I.pptx
 
Web Engineering: A Practitioner Approach -Testing web app - Content Managemen...
Web Engineering: A Practitioner Approach -Testing web app - Content Managemen...Web Engineering: A Practitioner Approach -Testing web app - Content Managemen...
Web Engineering: A Practitioner Approach -Testing web app - Content Managemen...
 
Less11 3 e_loadmodule_1
Less11 3 e_loadmodule_1Less11 3 e_loadmodule_1
Less11 3 e_loadmodule_1
 
Performance Testing
Performance TestingPerformance Testing
Performance Testing
 
QSpiders - Introduction to HP Load Runner
QSpiders - Introduction to HP Load RunnerQSpiders - Introduction to HP Load Runner
QSpiders - Introduction to HP Load Runner
 
performancetestingjmeter-121109061704-phpapp02
performancetestingjmeter-121109061704-phpapp02performancetestingjmeter-121109061704-phpapp02
performancetestingjmeter-121109061704-phpapp02
 
performancetestingjmeter-121109061704-phpapp02 (1)
performancetestingjmeter-121109061704-phpapp02 (1)performancetestingjmeter-121109061704-phpapp02 (1)
performancetestingjmeter-121109061704-phpapp02 (1)
 
What is Web Testing?
What is Web Testing? What is Web Testing?
What is Web Testing?
 
Performance testing
Performance testingPerformance testing
Performance testing
 
1,2,3 … Testing : Is this thing on(line)? with Mike Martin
1,2,3 … Testing : Is this thing on(line)? with Mike Martin1,2,3 … Testing : Is this thing on(line)? with Mike Martin
1,2,3 … Testing : Is this thing on(line)? with Mike Martin
 
JMeter
JMeterJMeter
JMeter
 
PerformanceTestingWithLoadrunner
PerformanceTestingWithLoadrunnerPerformanceTestingWithLoadrunner
PerformanceTestingWithLoadrunner
 
Performance Testing With Loadrunner
Performance Testing With LoadrunnerPerformance Testing With Loadrunner
Performance Testing With Loadrunner
 
Chapter 3 - Performance Testing in the Software Lifecycle
Chapter 3 - Performance Testing in the Software LifecycleChapter 3 - Performance Testing in the Software Lifecycle
Chapter 3 - Performance Testing in the Software Lifecycle
 
Pm 6 testing
Pm 6 testingPm 6 testing
Pm 6 testing
 
Pm 6 testing
Pm 6 testingPm 6 testing
Pm 6 testing
 
Manual testing real time questions by subbu
Manual testing real time questions by subbuManual testing real time questions by subbu
Manual testing real time questions by subbu
 
Performance testing : An Overview
Performance testing : An OverviewPerformance testing : An Overview
Performance testing : An Overview
 
QSpiders - Introduction to JMeter
QSpiders - Introduction to JMeterQSpiders - Introduction to JMeter
QSpiders - Introduction to JMeter
 

Recently uploaded

科罗拉多大学波尔得分校毕业证学位证成绩单-可办理
科罗拉多大学波尔得分校毕业证学位证成绩单-可办理科罗拉多大学波尔得分校毕业证学位证成绩单-可办理
科罗拉多大学波尔得分校毕业证学位证成绩单-可办理e4aez8ss
 
专业一比一美国俄亥俄大学毕业证成绩单pdf电子版制作修改
专业一比一美国俄亥俄大学毕业证成绩单pdf电子版制作修改专业一比一美国俄亥俄大学毕业证成绩单pdf电子版制作修改
专业一比一美国俄亥俄大学毕业证成绩单pdf电子版制作修改yuu sss
 
毕业文凭制作#回国入职#diploma#degree澳洲中央昆士兰大学毕业证成绩单pdf电子版制作修改#毕业文凭制作#回国入职#diploma#degree
毕业文凭制作#回国入职#diploma#degree澳洲中央昆士兰大学毕业证成绩单pdf电子版制作修改#毕业文凭制作#回国入职#diploma#degree毕业文凭制作#回国入职#diploma#degree澳洲中央昆士兰大学毕业证成绩单pdf电子版制作修改#毕业文凭制作#回国入职#diploma#degree
毕业文凭制作#回国入职#diploma#degree澳洲中央昆士兰大学毕业证成绩单pdf电子版制作修改#毕业文凭制作#回国入职#diploma#degreeyuu sss
 
How we prevented account sharing with MFA
How we prevented account sharing with MFAHow we prevented account sharing with MFA
How we prevented account sharing with MFAAndrei Kaleshka
 
1:1定制(UQ毕业证)昆士兰大学毕业证成绩单修改留信学历认证原版一模一样
1:1定制(UQ毕业证)昆士兰大学毕业证成绩单修改留信学历认证原版一模一样1:1定制(UQ毕业证)昆士兰大学毕业证成绩单修改留信学历认证原版一模一样
1:1定制(UQ毕业证)昆士兰大学毕业证成绩单修改留信学历认证原版一模一样vhwb25kk
 
RS 9000 Call In girls Dwarka Mor (DELHI)⇛9711147426🔝Delhi
RS 9000 Call In girls Dwarka Mor (DELHI)⇛9711147426🔝DelhiRS 9000 Call In girls Dwarka Mor (DELHI)⇛9711147426🔝Delhi
RS 9000 Call In girls Dwarka Mor (DELHI)⇛9711147426🔝Delhijennyeacort
 
RadioAdProWritingCinderellabyButleri.pdf
RadioAdProWritingCinderellabyButleri.pdfRadioAdProWritingCinderellabyButleri.pdf
RadioAdProWritingCinderellabyButleri.pdfgstagge
 
GA4 Without Cookies [Measure Camp AMS]
GA4 Without Cookies [Measure Camp AMS]GA4 Without Cookies [Measure Camp AMS]
GA4 Without Cookies [Measure Camp AMS]📊 Markus Baersch
 
Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...
Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...
Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...ThinkInnovation
 
RA-11058_IRR-COMPRESS Do 198 series of 1998
RA-11058_IRR-COMPRESS Do 198 series of 1998RA-11058_IRR-COMPRESS Do 198 series of 1998
RA-11058_IRR-COMPRESS Do 198 series of 1998YohFuh
 
PKS-TGC-1084-630 - Stage 1 Proposal.pptx
PKS-TGC-1084-630 - Stage 1 Proposal.pptxPKS-TGC-1084-630 - Stage 1 Proposal.pptx
PKS-TGC-1084-630 - Stage 1 Proposal.pptxPramod Kumar Srivastava
 
DBA Basics: Getting Started with Performance Tuning.pdf
DBA Basics: Getting Started with Performance Tuning.pdfDBA Basics: Getting Started with Performance Tuning.pdf
DBA Basics: Getting Started with Performance Tuning.pdfJohn Sterrett
 
Call Girls In Dwarka 9654467111 Escorts Service
Call Girls In Dwarka 9654467111 Escorts ServiceCall Girls In Dwarka 9654467111 Escorts Service
Call Girls In Dwarka 9654467111 Escorts ServiceSapana Sha
 
9654467111 Call Girls In Munirka Hotel And Home Service
9654467111 Call Girls In Munirka Hotel And Home Service9654467111 Call Girls In Munirka Hotel And Home Service
9654467111 Call Girls In Munirka Hotel And Home ServiceSapana Sha
 
ASML's Taxonomy Adventure by Daniel Canter
ASML's Taxonomy Adventure by Daniel CanterASML's Taxonomy Adventure by Daniel Canter
ASML's Taxonomy Adventure by Daniel Cantervoginip
 
Call Girls in Defence Colony Delhi 💯Call Us 🔝8264348440🔝
Call Girls in Defence Colony Delhi 💯Call Us 🔝8264348440🔝Call Girls in Defence Colony Delhi 💯Call Us 🔝8264348440🔝
Call Girls in Defence Colony Delhi 💯Call Us 🔝8264348440🔝soniya singh
 
Effects of Smartphone Addiction on the Academic Performances of Grades 9 to 1...
Effects of Smartphone Addiction on the Academic Performances of Grades 9 to 1...Effects of Smartphone Addiction on the Academic Performances of Grades 9 to 1...
Effects of Smartphone Addiction on the Academic Performances of Grades 9 to 1...limedy534
 
办理学位证纽约大学毕业证(NYU毕业证书)原版一比一
办理学位证纽约大学毕业证(NYU毕业证书)原版一比一办理学位证纽约大学毕业证(NYU毕业证书)原版一比一
办理学位证纽约大学毕业证(NYU毕业证书)原版一比一fhwihughh
 
Indian Call Girls in Abu Dhabi O5286O24O8 Call Girls in Abu Dhabi By Independ...
Indian Call Girls in Abu Dhabi O5286O24O8 Call Girls in Abu Dhabi By Independ...Indian Call Girls in Abu Dhabi O5286O24O8 Call Girls in Abu Dhabi By Independ...
Indian Call Girls in Abu Dhabi O5286O24O8 Call Girls in Abu Dhabi By Independ...dajasot375
 
Call Girls In Mahipalpur O9654467111 Escorts Service
Call Girls In Mahipalpur O9654467111 Escorts ServiceCall Girls In Mahipalpur O9654467111 Escorts Service
Call Girls In Mahipalpur O9654467111 Escorts ServiceSapana Sha
 

Recently uploaded (20)

科罗拉多大学波尔得分校毕业证学位证成绩单-可办理
科罗拉多大学波尔得分校毕业证学位证成绩单-可办理科罗拉多大学波尔得分校毕业证学位证成绩单-可办理
科罗拉多大学波尔得分校毕业证学位证成绩单-可办理
 
专业一比一美国俄亥俄大学毕业证成绩单pdf电子版制作修改
专业一比一美国俄亥俄大学毕业证成绩单pdf电子版制作修改专业一比一美国俄亥俄大学毕业证成绩单pdf电子版制作修改
专业一比一美国俄亥俄大学毕业证成绩单pdf电子版制作修改
 
毕业文凭制作#回国入职#diploma#degree澳洲中央昆士兰大学毕业证成绩单pdf电子版制作修改#毕业文凭制作#回国入职#diploma#degree
毕业文凭制作#回国入职#diploma#degree澳洲中央昆士兰大学毕业证成绩单pdf电子版制作修改#毕业文凭制作#回国入职#diploma#degree毕业文凭制作#回国入职#diploma#degree澳洲中央昆士兰大学毕业证成绩单pdf电子版制作修改#毕业文凭制作#回国入职#diploma#degree
毕业文凭制作#回国入职#diploma#degree澳洲中央昆士兰大学毕业证成绩单pdf电子版制作修改#毕业文凭制作#回国入职#diploma#degree
 
How we prevented account sharing with MFA
How we prevented account sharing with MFAHow we prevented account sharing with MFA
How we prevented account sharing with MFA
 
1:1定制(UQ毕业证)昆士兰大学毕业证成绩单修改留信学历认证原版一模一样
1:1定制(UQ毕业证)昆士兰大学毕业证成绩单修改留信学历认证原版一模一样1:1定制(UQ毕业证)昆士兰大学毕业证成绩单修改留信学历认证原版一模一样
1:1定制(UQ毕业证)昆士兰大学毕业证成绩单修改留信学历认证原版一模一样
 
RS 9000 Call In girls Dwarka Mor (DELHI)⇛9711147426🔝Delhi
RS 9000 Call In girls Dwarka Mor (DELHI)⇛9711147426🔝DelhiRS 9000 Call In girls Dwarka Mor (DELHI)⇛9711147426🔝Delhi
RS 9000 Call In girls Dwarka Mor (DELHI)⇛9711147426🔝Delhi
 
RadioAdProWritingCinderellabyButleri.pdf
RadioAdProWritingCinderellabyButleri.pdfRadioAdProWritingCinderellabyButleri.pdf
RadioAdProWritingCinderellabyButleri.pdf
 
GA4 Without Cookies [Measure Camp AMS]
GA4 Without Cookies [Measure Camp AMS]GA4 Without Cookies [Measure Camp AMS]
GA4 Without Cookies [Measure Camp AMS]
 
Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...
Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...
Predictive Analysis - Using Insight-informed Data to Determine Factors Drivin...
 
RA-11058_IRR-COMPRESS Do 198 series of 1998
RA-11058_IRR-COMPRESS Do 198 series of 1998RA-11058_IRR-COMPRESS Do 198 series of 1998
RA-11058_IRR-COMPRESS Do 198 series of 1998
 
PKS-TGC-1084-630 - Stage 1 Proposal.pptx
PKS-TGC-1084-630 - Stage 1 Proposal.pptxPKS-TGC-1084-630 - Stage 1 Proposal.pptx
PKS-TGC-1084-630 - Stage 1 Proposal.pptx
 
DBA Basics: Getting Started with Performance Tuning.pdf
DBA Basics: Getting Started with Performance Tuning.pdfDBA Basics: Getting Started with Performance Tuning.pdf
DBA Basics: Getting Started with Performance Tuning.pdf
 
Call Girls In Dwarka 9654467111 Escorts Service
Call Girls In Dwarka 9654467111 Escorts ServiceCall Girls In Dwarka 9654467111 Escorts Service
Call Girls In Dwarka 9654467111 Escorts Service
 
9654467111 Call Girls In Munirka Hotel And Home Service
9654467111 Call Girls In Munirka Hotel And Home Service9654467111 Call Girls In Munirka Hotel And Home Service
9654467111 Call Girls In Munirka Hotel And Home Service
 
ASML's Taxonomy Adventure by Daniel Canter
ASML's Taxonomy Adventure by Daniel CanterASML's Taxonomy Adventure by Daniel Canter
ASML's Taxonomy Adventure by Daniel Canter
 
Call Girls in Defence Colony Delhi 💯Call Us 🔝8264348440🔝
Call Girls in Defence Colony Delhi 💯Call Us 🔝8264348440🔝Call Girls in Defence Colony Delhi 💯Call Us 🔝8264348440🔝
Call Girls in Defence Colony Delhi 💯Call Us 🔝8264348440🔝
 
Effects of Smartphone Addiction on the Academic Performances of Grades 9 to 1...
Effects of Smartphone Addiction on the Academic Performances of Grades 9 to 1...Effects of Smartphone Addiction on the Academic Performances of Grades 9 to 1...
Effects of Smartphone Addiction on the Academic Performances of Grades 9 to 1...
 
办理学位证纽约大学毕业证(NYU毕业证书)原版一比一
办理学位证纽约大学毕业证(NYU毕业证书)原版一比一办理学位证纽约大学毕业证(NYU毕业证书)原版一比一
办理学位证纽约大学毕业证(NYU毕业证书)原版一比一
 
Indian Call Girls in Abu Dhabi O5286O24O8 Call Girls in Abu Dhabi By Independ...
Indian Call Girls in Abu Dhabi O5286O24O8 Call Girls in Abu Dhabi By Independ...Indian Call Girls in Abu Dhabi O5286O24O8 Call Girls in Abu Dhabi By Independ...
Indian Call Girls in Abu Dhabi O5286O24O8 Call Girls in Abu Dhabi By Independ...
 
Call Girls In Mahipalpur O9654467111 Escorts Service
Call Girls In Mahipalpur O9654467111 Escorts ServiceCall Girls In Mahipalpur O9654467111 Escorts Service
Call Girls In Mahipalpur O9654467111 Escorts Service
 

Lecture32-Web-based-testing-II.pptx

  • 1. Testing Web-based Systems cont … Prof. Durga Prasad Mohapatra Professor Dept.of CSE, NIT Rourkela
  • 2.  Navigation testing is performed on various possible paths in web applications ◦ to ensure the functioning of correct sequence of navigations  Design the test cases such that the following navigations are correctly executing: ◦ Internal links & External links ◦ Redirected links (the redirected links should be with proper messages displayed to the user) ◦ Navigation for searching inside the web application Navigation Testing
  • 3.  The errors must be checked for the followings: ◦ The broken links (the links should not be broken due to any reason). ◦ The proper redirected links with proper messages displayed ◦ Ensuring whether all possible navigation paths active and relevant or not. ◦ The navigations for the back and forward buttons, and their proper working Navigation Testing cont…
  • 4.  Diversity in configuration for web applications makes the testing of these systems very difficult.  There may be various types of : ◦ Browsers supporting different operating systems ◦ Variation in servers ◦ Networks, etc. Configuration/Compatibility Testing
  • 5.  Therefore, configuration testing becomes important so that there is compatibility between various available resources and application software.  The tester must consider these configurations and compatibility issues so that they can design the test cases incorporating all the configurations. Configuration/Compatibility Testing cont …
  • 6. Some important points for configuration testing:  There are a number of different browsers and browser options. ◦ The web application has to be designed to be compatible for majority of the browsers. Configuration/Compatibility Testing cont …
  • 7.  The graphics and other objects on a website have to be tested on multiple browsers. ◦ If more than one browser will be supported, then the graphics have to be visually checked for differences in the physical appearance. ◦ Some of the things to check are  centering of objects,  table layouts,  colours,  monitor resolution,  forms and Configuration/Compatibility Testing cont …
  • 8.  The code that executes from the browser also has to be tested. ◦ There are different versions of HTML. ◦ They are similar in some ways but they have different tags which may produce different features. Configuration/Compatibility Testing cont …
  • 9. ◦ Some of the other codes, besides HTML, to be tested are  Java  JavaScript  ActiveX  VBScripts  Cgi-Bin Scripts  Database access ◦ Cgi-Bin Scripts have to be checked for end-to-end operations and is most essential for e-commerce sites. ◦ The same goes for database access. Configuration/Compatibility Testing cont …
  • 10.  All new technologies used in the web development like graphics designs, interface calls like different API’s, may not be available in all the operating systems. ◦ Test your web application on different operating systems:  Windows,  Unix,  MAC,  Linux,  Solaris with different OS flavors. Configuration/Compatibility Testing cont …
  • 11.  The most challenging issue is to protect the web applications from ◦ Hackers ◦ Crackers ◦ Spoofers ◦ virus launchers, etc. Security Testing
  • 12. Security Testing cont …  Through security testing we try to ensure: ◦ Confidentiality ◦ Integrity ◦ Availability ◦ Non Repudiation  The web application must be able to nullify the external attacks
  • 13.  Security testing is carried out for: ◦ Security of the infrastructure hosting the web application ◦ Vulnerabilities of the web application  Firewall and port scans can be the solutions for security infrastructure  For vulnerabilities, user authentication, restricted and encrypted use of cookies, data communication must be planned. Users should not be able to browse through the directories in Security Test Plan
  • 14.  Check the interfaces of the components, because most of the security bugs lie on the interfaces only.  Prioritize the interfaces according to their level of vulnerability.  High-priority interfaces are tested thoroughly by injecting mutated data to be accessed by that interface in order to check the security. Security Test Plan cont …
  • 15. Security Test Plan cont …  While performing security checking, do not modify the configuration of the system or server, services running on the server, and existing user or customer data hosted by the application.
  • 16.  Unauthorized user/fake identity/password cracking ◦ check for the confidentiality of the contents/data.  Buffer overflows ◦ Due to this malicious code can be executed ◦ Check buffer overflow module and the different ways of submitting a range of lengths to the application Various Threat types and their Corresponding Test Cases
  • 17. Threats and their Test Cases cont..  URL manipulation  Web application uses HTTP GET method to pass information between the client and server. The information is passed through parameters in the query string. An attacker may change some information in the query string passed from GET request so that he may get some information. Or corrupt the data. When somebody attempts to modify the data, it is known as fiddling of data.  Prevent Fiddling in the HTTP GET query string for the change or corruption of the data.  Design test cases to check that an user is trying to
  • 18.  SQL injection ◦ Hackers can put some SQL statements through the web interface (inputs) to get vital information ◦ Design test cases such that the special characters from the user inputs should be handled/escaped properly. Threats and their Test Cases cont..
  • 19. Threats and their Test Cases cont …  Denial of service When a service does not respond, it is known as denial of service ◦ There are several ways that can make an application fail:  Heavy load  Distorted data that may crash an application  Overloading of memory, etc. ◦ Tester should design the test cases considering all the above factors.
  • 20.  Cross-Site Scripting (XSS) • When a user insert HTML/client side script in the user interface of a web application and this insertion is visible to other users, it is called cross-site scripting (XSS). • Using XSS attacker can use scripts like Java Scripts to steal user cookies and information stored in cookies. • To avoid this, tester should check web application for XSS. Threats and their Test Cases cont …
  • 21.  Performance testing helps the developer to identify the bottlenecks in the web application and can be rectified.  Bottlenecks can be code, database, network, peripheral devices, etc. Performance Testing
  • 22.  Resource Utilization ◦ The percentage of time a resource(CPU, memory, I/O, Peripheral, Network) is busy.  Throughput ◦ The number of event responses that have been completed over a given interval of time.  Response time ◦ The time lapsed between a request and its reply. Performance Parameters
  • 23. Performance Parameters cont …  Round-Trip Time ◦ How long does the entire user-requested transaction take, including connection and processing time?  Scalability ◦ The ability of an application to handle additional workload, without adversary affecting performance, by adding resources such as processor, memory, and storage capacity.  Database load ◦ The number of times database is accessed by web
  • 24.  Load Testing  Stress Testing Types of Performance Testing for web applications
  • 25. • This testing is performed to check that whether the system can sustain at times of peak load. • The site should handle many simultaneous user requests, large input data from users, simultaneous connections to database, heavy load on specific pages, etc. When we test the system with these types of loads, this testing is called load testing. • It focuses on determining or validating performance characteristics of the system when subjected to workloads & load volumes expected during production operations. It refers to how much maximum load can be put on the web application & it will still serve flawlessly Load Testing
  • 26.  Capacity testing ◦ Determines the maximum load the web service can handle before failing. ◦ Reveals the web services’ ultimate limit.  Scalability testing ◦ Determines how effectively the web service will expand to accommodate an increasing load. Types of load testing
  • 27. Stress Testing  Stress refers to stretching the system beyond its specification limits.  Web stress testing is performed to break the site by giving stress and to know how the system reacts to the stress and how the system recovers from crashes.  It focuses on determining or validating performance characteristics of the system when subjected to conditions beyond those expected during production operations.  Tests the performance of the system under stressful conditions such as memory overflow, insufficient disk space, server failure etc.
  • 28. Stress Testing cont …  These test are designed to determine under what conditions an application will fail, and how gracefully it may recover from failure.  Examples of graceful failure:  The system saves the state at the time of failure and does not crash suddenly  On restarting it, the system recovers from the last good state  The system shows meaningful error messages to the user, etc.
  • 29.  Discussed some important types of testing for web-based systems. ◦ Navigation Testing ◦ Configuration / Compatibility Testing ◦ Security Testing ◦ Performance Testing Summary
  • 30. References 1. N. Chauhan, Software Testing; Principles and Practices, Second Edition, (Chapter – 15), Oxford University Press, 2018.