The document provides an overview of the ISTQB Certified Tester Foundation Level certification. It discusses the ISTQB organization and its global network of national testing boards. The benefits of ISTQB certification are presented, including becoming an internationally recognized qualification for testing professionals. The six modules that make up the Foundation Level certification are introduced.
In this chapter, we will introduce you to the fundamentals of testing: why testing is needed; its limitations, objectives and purpose; the principles behind testing; the process that testers follow; and some of the psychological factors that testers must consider in their work. By reading this chapter you'll gain an understanding of the fundamentals of testing and be able to describe those fundamentals.
Here are the preparation slides for chapter 1 from ISTQB Foundation Level Certification syllabus. Hope it is useful.
Here is link to my complete course ISTQB - Foundation Level Certification (CTFL) Training Udemy with 40% discount.
https://www.udemy.com/istqb-foundation-level-certification-ctfl-training/?couponCode=SAGARREF
Coupon code: SAGARREF
In this chapter, we will introduce you to the fundamentals of testing: why testing is needed; its limitations, objectives and purpose; the principles behind testing; the process that testers follow; and some of the psychological factors that testers must consider in their work. By reading this chapter you'll gain an understanding of the fundamentals of testing and be able to describe those fundamentals.
Here are the preparation slides for chapter 1 from ISTQB Foundation Level Certification syllabus. Hope it is useful.
Here is link to my complete course ISTQB - Foundation Level Certification (CTFL) Training Udemy with 40% discount.
https://www.udemy.com/istqb-foundation-level-certification-ctfl-training/?couponCode=SAGARREF
Coupon code: SAGARREF
Testing- Fundamentals of Testing-Mazenet solutionMazenetsolution
For Youtube Videos: bit.do/sevents
Why testing is necessary,Fundamental test process, Psychology of testing, Re-testing and regression testing,
Expected results,Prioritisation of tests
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
Testing- Fundamentals of Testing-Mazenet solutionMazenetsolution
For Youtube Videos: bit.do/sevents
Why testing is necessary,Fundamental test process, Psychology of testing, Re-testing and regression testing,
Expected results,Prioritisation of tests
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
Elevating Tactical DDD Patterns Through Object CalisthenicsDorra BARTAGUIZ
After immersing yourself in the blue book and its red counterpart, attending DDD-focused conferences, and applying tactical patterns, you're left with a crucial question: How do I ensure my design is effective? Tactical patterns within Domain-Driven Design (DDD) serve as guiding principles for creating clear and manageable domain models. However, achieving success with these patterns requires additional guidance. Interestingly, we've observed that a set of constraints initially designed for training purposes remarkably aligns with effective pattern implementation, offering a more ‘mechanical’ approach. Let's explore together how Object Calisthenics can elevate the design of your tactical DDD patterns, offering concrete help for those venturing into DDD for the first time!
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Tobias Schneck
As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other?
Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Albert Hoitingh
In this session I delve into the encryption technology used in Microsoft 365 and Microsoft Purview. Including the concepts of Customer Key and Double Key Encryption.
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
2. 2
Introduction (1/5) : About the ISTQB
International Software Testing Qualifications Board (ISTQB)
• Non-profit organization with voluntary contributions to syllabi and exams from
Testing experts across the globe
• 47 national Testing Boards
▪ Including the <Indian Board>
• More than 145,000 certified Testers across the world
▪ Over 9,000 Foundation Level certified in <INDIA>
• ZenQ is an affiliate member of Indian Testing Board.
ISTQB Vision:
“Enabling Test Professionals, through Globally accepted Software Testing Certification
standards to support their career development, built on solid professional foundations and
exemplary organizational culture. ”
3. Introduction(2/5) : Benefits of ISTQB Certification
3
• Internationally recognized qualification
• Becoming the standard for Testing Professionals
• Promotes a common language for testers
• Promotes consistent and good testing practices
• Enables professionally qualified testers to be recognized
• Provides a framework for the development of tester’ careers
5. Introduction(5/5) : Study Sessions
5
These study packs are intended as sessions directly from the chapters in the syllabus
There are 6 main modules
1. Fundamentals of Testing
2. Testing Throughout the Software Life Cycle
3. Static Techniques
4. Test Design Techniques
5. Test Management
6. Tool Support for Testing
7. Covered in this lesson...
7
1.1 Why is Testing Necessary?
1.2 What is Testing?
1.3 The 7 Testing Principles
1.4 The Fundamental Test Process
1.5 The Psychology of Testing
1.6 The Code of Ethics
9. Software Systems(1/4)
9
Software is an integral part of life
▪ Business applications (eg. banking, factory machines)
▪ Consumer products (eg. cars, washing machines)
Software is everywhere!
Example where software didn’t work correctly…
In 2010 the Toyota Prius was dogged by software
bugs that caused uneven braking in the car’s antilock
brake system (ABS). Toyota had to recall nearly half a
million of these hybrid cars.
What bugs
have you
found?
10. Software Systems(2/4)
Loss of Money
Example :
A company
gets sued
because an
advertised
business
listing didn’t
display
correctly
Loss of Time
Example :
A defect
caused a
delay in a call
center, so
that not as
many calls
could be
answered
Loss of
Reputation
Example :
Brand was
damaged by
ongoing
performance
issues of a
major airline,
so customers
went
elsewhere
Injury or Loss
of Life
Example:
Malfunction
of switching
in a railway
line caused
trains to
collide
10
What are some of the consequences of faulty software?
11. A human makes a
mistake (error)
Which produces a
defect (fault, flaw
or bug) in code or
document
If executed, may
cause a failure
11
Software Systems (3/4): Causes of Software
Defects
12. Software Systems(4/4) : Root cause
12
• Humans are fallible
• Time pressure
• Complexity – code, infrastructure, many system interactions
• Changing technologies
• Environmental conditions – radiation, pollution, magnetism
13. Role of Testing
13
• Testing of systems and documentation can help reduce the risk of problems and
contribute to quality – if defects are found and corrected before the system is released for
operational use.
• Testing may be required for contractual, legal or industry-specific standards
▪ Eg. Sarbanes-Oxley Act (SoX) requires compliance for governance, accounting and
reporting standards for companies trading with US companies.
• Testing can give confidence in the quality of the software
14. Quality Assurance
14
• Testing is only one part of Quality Assurance!
• Other Quality Assurance activities should occur in the
organization
▪ Requirements and documentation
▪ Development standards
▪ Training
▪ Defect analysis
▪ Lessons learnt can help contribute
15. How much testing is enough?
How much testing is enough?
Sufficient information to stakeholders to make informed
decisions
Project
Constraints
Level of
Business
Risk
Level of
Technical
Risk
15
17. What is Testing? (1/3)
• Testing isn’t just execution
• Test activities exist before and after test execution
▪ Planning and control
▪ Static testing and reviewing of documents and source code
▪ Choosing test conditions
▪ Designing and execution
▪ Checking results
▪ Evaluate exit criteria
▪ Reporting on the test process and system under test
▪ Closure activities after the test phase has completed
17
18. What is Testing?(2/3) : Test Objectives
• Testing can have the following objectives:
• Finding defects
✓Eg. Developer testing, component, integration and system testing
• Gaining confidence about the level of quality
✓Eg. Acceptance testing
• Providing information for decision-making
✓Eg. Assess quality with no intention of fixing defects
✓Eg. Information on risk of releasing for decision making
• Preventing defects
✓Eg. early testing by reviewing requirements
18
19. What is Testing?(3/3) : Debugging and Testing are
different
• Dynamic testing where the software is running shows failures (an anomaly or
unexpected event) caused by defects (flaws or faults)
• Debugging is a development activity that finds, analyses and removes the cause of the
failure.
19
Tip: Be sure of terminology used by checking
the ISTQB glossary at the back of your notes.
Defect = Flaw = Bug
Failure = Deviation = Anomaly = Incident
21. Seven Testing Principles(1/4) : ISTQB
Testing Principles
The syllabus tells us…
“A number of testing principles have been suggested over the past 40 years
and offer general guidelines common for all testing.”
21
22. Seven Testing Principles(2/4)
1 – Testing shows a presence of defects
• Testing shows that defects are present
• But cannot prove that there are no defects
2 – Exhaustive testing is impossible
• Can’t test all combinations of inputs and preconditions
• Instead do risk analysis and prioritize to focus testing efforts
3 – Early Testing
• Start testing early to find defects as early as possible
• Focus on test objectives
22
23. Seven Testing Principles(3/4)
4 – Defect Clustering
• A small number of modules usually contain most of the
defects
• Testing effort should be focused proportionally to the
defect density
5 – Pesticide Paradox
• If the same tests are repeated over and over, eventually the
same set of tests will no longer find any new defects
• Test cases need to be regularly reviewed, revised and
updated – consider data, order of execution, etc to exercise
different paths
23
24. Seven Testing Principles(4/4)
6 – Testing is context dependent
• Not all testing has the same thoroughness
• We test differently in different contexts
• Eg. Safety critical vs. informational website
7 – Absence-of-errors fallacy
• Finding and fixing defects doesn’t help if the system is
unusable or does not meet users’ needs and expectations
• Eg. If the requirement is wrong to begin with
24
26. Fundamental Test Process(1/6) : 5 STEPS
26
1. Planning
and Control
2. Analysis
and Design
3.
Implementat
ion and
Execution
4. Evaluate
exit criteria
and
reporting
5. Test
Closure
Activities
Monitoring and Control activities happen throughout
27. Fundamental Test Process(2/6) : Step 1
• Planning
• Define objectives of testing
• Specify test activities in order to meet the objectives and
mission
• Control
• Is the ongoing activity of comparing actual progress with plan
• Report the status, including deviations from plan
• Take action necessary to meet objectives
• You can’t control testing without monitoring
• Planning takes into account feedback from monitoring and control
27
Planning and
Control
28. Fundamental Test Process(3/6) : Step 2
• The general testing objectives are transformed
into tangible test conditions and test cases
• Review the test basis (such as requirements, architecture,
design and interface specifications)
• Evaluate testability
• Identify and prioritise Test conditions
• Design high level test cases and prioritise
• Identify test data
• Design test environment and required infrastructure and tools
• Create bi-directional traceability between test basis and test cases
28
Analysis and
Design
29. Fundamental Test Process(4/6) : Step 3
• Test procedures and scripts are created by specifying
the order of test cases and any other information
required to run the test
• Finalise tests cases including data
• Develop test procedures
• Create test data (optionally create test harness or automated scripts)
• Create test suite from test procedures for efficient testing
• Verify test environment has been set up correctly
• Verify and update traceability
• Execute test procedures
• Log outcomes and compare actual with expected results
• Report discrepancies as incidents and analyse to establish if likely cause is defect in
code, test data, test document or mistake
• Repeat test activities to confirm a fix (confirmation) or regression testing
29
Implementat
ion and
Execution
30. Fundamental Test Process(5/6) : Step 4
• Assess test activity against defined objectives
• Check test logs against exit criteria specified in
test planning
• Assess if more tests are needed or if the exit criteria
should be changed
• Write a test summary report for stakeholders
30
Evaluate exit
criteria and
Reporting
31. Step 5 of Fundamental Test Process
• Collect data from completed test activities and consolidate
experience, test ware, facts and numbers.
• Check which planned deliverables have been delivered
• Close incident reports or raise change records for any that remain open
• Document acceptance of the system
• Finalise and archive test ware, test environment and infrastructure for later re-use
• Hand over test ware to maintenance team
• Analyse lessons learnt to determine changes needed for future releases and projects
• Use information gathered to improve test maturity
31
Test Closure
33. The psychology of testing (1/4) :
Should developers test their own code?
33
YES!
34. The psychology of testing (2/4) : The
testing mindset
• The mindset used to create something is different to the one used to review.
With the right mindset developers are able to test their own code, but
independence brings additional benefits
34
• People and projects are driven by objectives
– therefore it is important to clearly state
the objectives of testing
• Identifying failures during testing may be
perceived as criticism, as a result testing is
often seen as a destructive activity
35. The psychology of testing (3/4):
Communication
• Errors, defects or failures need to be communicated in a constructive way to avoid bad
feelings between testers, analysts and developers
• Testers need good interpersonal skills
to communicate factual information
• To improve communication:
• Collaborate rather than have battles
(common goal of better quality systems)
• Communicate in a neutral, fact-focused way without criticising
• Try to understand how the other person feels
• Confirm that the other person has understood
35
36. The psychology of testing (4/4) :
Independence
• Independence makes the tester more effective at finding defects and failures
• However – it does not replace familiarity and developers can efficiently find many defects in their
own code
• Levels of Independence (from low to high)
• Tests designed by person that wrote software
• Tests designed by another person (from the dev team)
• Tests designed by someone from another group ( e.g.. An independent test team) or test
specialists (eg. Usability or performance)
• Tests designed by someone from a different organization or company (i.e.. Outsourcing or
certification by an external body)
36
38. Code of Ethics(1/4) : Why do we need a
Code of Ethics?
• Involvement in software testing enables testers to learn confidential and privileged
information
38
• ISTQB recognises the ACM and IEEE code of ethics for engineers and states
the following code of ethics:
40. Code of Ethics(3/4) : ISTQB Code of Ethics
• Test managers and leaders shall subscribe to and
promote an ethical approach
5. MANAGEMENT
• Advance the integrity and reputation of the
profession consistent with public interest
6. PROFESSION
• Be fair to and supportive of their colleagues and
promote co-operation with the public interest
7. COLLEAGUES
• Participate in lifelong learning regarding the practice
of their profession and promote an ethical approach
8. SELF
40
42. End of Module Learning Check - 1
42
To avoid or reduce risk of loss of money, time, reputation, injury or death
To find defects, gain confidence , to provide information
Failure is an anomaly, unexpected event. Defect is a fault in code or doc
Mistakes caused by time pressures, project constraints and complexity
Test early, Testing shows a presence of defects,
Exhaustive testing is impossible, Defect cluster,
Pesticide Paradox, Absence-of-errors fallacy,
Testing is context dependent
43. End of Module Learning Check - 2
6. What is the fundamental test process?
6. What activities are in Test Closure?
6. Which step of the Fundamental Test Process does “identifying test data” fall in to?
9. What is the code of ethics for testers?
43
Planning and Control, Analysis and Design, Implementation and Execution, Evaluate Exit Criteria and Reporting
Test Closure
Check deliverables have been delivered, close incident reports,
raise change requests, document acceptance, finalise and archive
testware, hand over to maintenance, lessons learned, improve test maturity
Analysis and Design
Public, Client and Employer, Self, Product, Management, Profession
Colleagues, Judgement
44. ISQTB Sample Exam Practice Question 1
Which one of the following describes best the difference between testing and debugging?
A. Testing shows failures that are caused by defects.
Debugging finds, analyzes, and removes the causes of failures in the software.
B. Testing pinpoints the defects. Debugging analyzes the faults and proposes preventing
activities.
C. Testing removes faults. Debugging identifies the causes of failures.
D. Dynamic testing prevents causes of failures. Debugging removes the failures.
44
45. ISQTB Sample Exam Practice Question 2
Below you find a list of descriptions of problems that can be observed during testing or
operation. Which is most likely a failure?
A. The product crashed when the user selected an option in a dialog box.
B. One source code file included in the build was the wrong version
C. The computation algorithm used the wrong input variables.
D. The developer misinterpreted the computational requirement for that algorithm.
45
46. Reference
46
1. ISTQB Certified Tester Foundation Level Syllabus,
Version 2010, pp10-19
2. http://gizmodo.com/5467388/software-bug-causes-toyota-
recall-of-almost-half-a-million-new-hybrid-cars
3. www.istqb.org
4. http://www.istqb.org/display/ISTQB/Downloads?atl_token=9v
oKHV6hij
5. www.anztb.org
6. All images without reference are provided by Microsoft
7. ISTQB Practice exam questions
-LO-1.1.5-Q1-K2
-LO-1.2.3_Q1_K2
47. Software Systems(1/4)
47
Software is an integral part of life
▪ Business applications (eg. banking, factory machines)
▪ Consumer products (eg. cars, washing machines)
Software is everywhere!
Example where software didn’t work correctly…
In 2010 the Toyota Prius was dogged by software
bugs that caused uneven braking in the car’s antilock
brake system (ABS). Toyota had to recall nearly half a
million of these hybrid cars.
What bugs
have you
found?
48. Software Systems(2/4)
Loss of Money
Example :
A company
gets sued
because an
advertised
business
listing didn’t
display
correctly
Loss of Time
Example :
A defect
caused a
delay in a call
center, so
that not as
many calls
could be
answered
Loss of
Reputation
Example :
Brand was
damaged by
ongoing
performance
issues of a
major airline,
so customers
went
elsewhere
Injury or Loss
of Life
Example:
Malfunction
of switching
in a railway
line caused
trains to
collide
48
What are some of the consequences of faulty software?