Uploaded byHimanshu
PPTX, PDF1,717 views

Risk based testing and random testing

The document discusses risk based testing and random testing approaches. It outlines the challenges of time and resource constraints when testing software. Risk based testing uses risk analysis and metrics to focus testing on high risk areas in order to save time and money while maintaining quality. Metrics are developed to manage and organize large test projects. Random testing involves automatically generating random inputs and scenarios to stress test software in ways not covered by nominal testing. It can be used with differential and fault injection testing against a reference implementation to automatically check test results.

Embed presentation

Downloaded 52 times
Risk Based Testing and Random Testing Dr. Himanshu Hora SRMS College of Engineering & Technology Bareilly (INDIA)
Risk Based Testing and Random Testing • Use of Risk Analysis and Metrics for Software Testing • Focus Testing to Save Time and Money while maintaining quality • How to develop metrics to manage and organise large test projects
The Challenges • • • • Time Constraints Resource Constraints Quality Requirements Risk Factors: – New technology – Lack of knowledge – Lack of experience • Take Control!
Risk Analysis and Testing Test Plan Test Item Tree Risk Strategy Risk Identification Testing, Inspection etc. Risk Assessment Matrix: Cost and Probability Risk Mitigation Test Metrics Risk Reporting Risk Prediction
Risk Based Testing - Theory • The Formula Re(f) P(f)*C(f) – Re(f) Risk Exposure of function f – P(f) - Probability of a fault in function f – C(f) - Cost related to a fault in function f
Risk Based Testing - Approach • Plan: Identify Elements to be Tested – Logical or physical Functions, Modules etc. • Identify Risk Indicators – What is important to predict the probability of faults? • Identify Cost of faults • Identify Critical Elements – I.e. functions, tasks, activities etc. based on Risk Analysis (Indicators and Cost) • Execute: Improve the Test Process and Organization: Schedule and Track
Simple Test Metrics • Test Planning – Number of test cases per function – Number of hours testing per function • Progress Tracking – – – – Number of tests planned, executed and completed Number of faults per function Number of hours used for test and fix Estimated to Complete • Probability of faults - Indicators – – – – New functionality Size Complexity Quality of previous phases and documents • Cost of Faults
Risk Based Testing - Metrics • Identify Areas with “High Risk Exposure” – Probability and Cost • All functions/modules should be tested to a “minimum level” • “Extra Testing” in areas with high risk exposure • Establish Test Plan and Schedule – Monitor Quality • Number of Faults per function and time – Monitor Progress • Number of hours in test and fix -> ETC
Risk Based Testing - Example Ranking the functions based on Risk Exposure The Probability of a Fault The Cost of a Fault C(c) C(s) Re(f) P(f)* 2 Example: Cost Func. Probability New Design Func. Quality Size 5 5 1 Risk Com- Weighted Exp. plexity Averag func. 3 f C( s ) C(c) Avr. Interest Calc. 3 3 3 2 3 3 3 37 111 Close Account 1 3 2 2 2 2 3 31 62 Cust. Profitab. 2 1 1,5 3 3 2 3 41 61,5 Other Probability Factors might include: Function Points, Frequency of Use etc.
High Probability Risk Based Testing - Reporting 1 2 3 4 TECHNICAL INTERFACE RISK 10 1 Low Low 440 Low Medium Probability High 510 439 11 2 2 370 369 5 302 Low Low Medium Medium BUSINESS RISK High High Consequence Consequence High
Risk Based Testing - Practice Prior to test execution: identify critical transactions 1 Test Execution identifies “bad” transactions “Top-20” 2 Extra Testing: - Additional testing by product specialist - Automated regression testing 3
Planning and Progress Tracking Number of Test Cases On-line Test Cases Completed Planned Executed QAed Date Started Planned Actual
Progress Indicators - “To be vs. Actual” “To be Retested” vs. “Actually Retested” To Be Fixed Actually fixed To Be Restested, Actually Retested and Rejected Number of Faults • “To be fixed” vs. “Actually fixed” Number of Faults To Be Fixed and Actually Fixed To be retested Act. retested Rejected
Progress Indicators - Hours Used Number of hours for finding one fault and for fixing one Hours per Fault for Test and Fix Hours per Fault Online Batch Fix Hours per Fault for Test and Fix Hours per Fault Number of hours for finding one fault and for fixing one Test Fix Test Date
“Estimated to Complete” • ETC for system test based on: Hours ETC – Number of hours testing per fault found – Number of hours fixing per fault – Number of faults found Calculated ETC and Actual Hours per function Actual to Complete – Number of at Time t fixes being rejected – Number of remaining tests (functions to be tested) Date Estimated to Complete at Time t
Benefits of Risk Based Testing • Improved Quality? – all critical functions tested • Reduced Time and Money in Testing – effort not wasted on non critical or low risk functions • Improved customer confidence – due to customer involvement and good reporting and progress tracking
Test Process Work Flow Risk Identification Risk Assessment Basic Test Data PD LD Case Quality Standards Test Exec. Procedure Test Case Case Build Procedure Test Completed QC / QA Good Test Exec Risk Mitigation Good/ Bad Bad PTDs Raised Risk Reporting Retest Risk Prediction Problem Mngmnt. Procedure Fix Fix Procedure CR Change Mngmnt. Procedure Regression Test ProAte
Summary • Risk Based Test Approach – Focused Testing • Reduced Resources • Improved Quality – Metrics are fundamental • Process and Organization must support the new strategy – Metrics must support the organization and process
Random testing – Start off with a practical look, and some useful ideas to get you started on the project: random testing for file systems – Then take a deeper look at the notion of feedback and why it is useful: method for testing OO systems from ICSE a couple of years • Then back out to take a look at the general idea of random testing, if time permits
A Little Background – Generate program inputs at random – Drawn from some (possibly changing) probability distribution “Throw darts at the state space, without drawing a bullseye” – May generate the same test (or equivalent tests) many times – Will perform operations no sane human would ever perform
Random Testing • Millions of operations and scenarios, automatically generated • Run on fast & inexpensive workstations • Results checked automatically by a reference oracle • Hardware simulation for fault injection and reset simulation (x 100000) A day (& night) of testing (x 100000) (x 100000) (x 100000)
The Goals • Randomize early testing (since it is not possible to be exhaustive) – We don’t know where the bugs are Nominal Scenario Tests Randomized Testing
The Goals • Make use of desktop hardware for early testing – vs. expensive (sloooow) flight hardware testbeds – Many faults can be exposed without full bit-level hardware simulation
The Goals • Automate early testing – Run tests all the time, in the background, while continuing development efforts • Automate test evaluation – Using reference systems for fault detection and diagnosis – Automated test minimization techniques to speed debugging and increase regression test effectiveness • Automate fault injection – Simulate hardware failures in a controlled test environment
Random testing • Simulated flash hardware layer allows random fault injection • Most development/early testing can be done on workstations • Lots of available compute power – can cover many system behaviors • Will stress software in ways nominal testing will not
Differential Testing • How can we tell if a test succeeds? – POSIX standard for file system operations • IEEE produced, ANSI/ISO recognized standard for file systems • Defines operations and what they should do/return, including nominal and fault behavior File system / POSIX operation Result mkdir (“/eng”, …) mkdir (“/data”, …) creat (“/data/image01”, …) creat (“/eng/fsw/code”, …) mkdir (“/data/telemetry”, …) unlink (“/data/image01”) SUCCESS SUCCESS SUCCESS ENOENT SUCCESS SUCCESS /eng /data image01 /telemetry
Differential Testing • How can we tell if a test succeeds? – The POSIX standard specifies (mostly) what correct behavior is – We have heavily tested implementations of the POSIX standard in every flavor of UNIX, readily available to us – We can use UNIX file systems (ext3fs, tmpfs, etc.) as reference systems to verify the correct behavior of flash – First differential approach (published) was McKeeman’s testing for compilers
Random Differential Testing Choose (POSIX) operation F Perform F on NVFS Perform F on Reference (if applicable) Compare return values Compare error codes Compare file systems Check invariants (inject a fault?)
Don’t Use Random Testing for Everything! • Why not test handing read a null pointer? – Because (assuming the code is correct) it guarantees some portion of test operations will not induce failure – But if the code is incorrect, it’s easier and more efficient to write a single test – The file system state doesn’t have any impact (we hope!) on whether there is a null check for the buffer passed to read • But we have to remember to actually do these non-random fixed tests, or we may miss critical, easy-to-find bugs!
Principles Used • • • • Random testing (with feedback) Test automation Hardware simulation & fault injection Use of a well-tested reference implementation as oracle (differential testing) • Automatic test minimization (delta-debugging) • Design for testability – Assertions – Downward scalability (small model property) – Preference for predictability
Synopsis • Random testing is sometimes a powerful method and could likely be applied more broadly in other missions – Already applied to four file system-related development efforts – Part or all of this approach is applicable to other critical components (esp. with better models to use as references)
Thank You Dr. Himanshu Hora SRMS College of Engineering & Technology Bareilly (INDIA)

More Related Content

PDF
Types of software testing
byPrachi Sasankar
 
PPTX
Testing strategies
bySatish Bhutawale
 
PPTX
risk based testing and regression testing
byToshi Patel
 
PDF
ST-All about Test Case-p3
byPrachi Sasankar
 
PPT
ISTQB / ISEB Foundation Exam Practice - 2
byYogindernath Gupta
 
PPT
I ntroduction to software testing part1
byPrachi Sasankar
 
PDF
Fundamentals of Software Testing
bySagar Joshi
 
PDF
Software Testing - Defect Metrics & Analysis
byOAK Systems Pvt Ltd
 
Types of software testing
byPrachi Sasankar
 
Testing strategies
bySatish Bhutawale
 
risk based testing and regression testing
byToshi Patel
 
ST-All about Test Case-p3
byPrachi Sasankar
 
ISTQB / ISEB Foundation Exam Practice - 2
byYogindernath Gupta
 
I ntroduction to software testing part1
byPrachi Sasankar
 
Fundamentals of Software Testing
bySagar Joshi
 
Software Testing - Defect Metrics & Analysis
byOAK Systems Pvt Ltd
 

What's hot

PPTX
Test planning & estimation
byLeslie Smart
 
PPT
Software Testing Process
byguest1f2740
 
PPTX
Risk-based Testing
byJohan Hoberg
 
PPT
Softwaretesting
bynazeer pasha
 
PPT
Software Testing
byEcaterina Moraru (Valica)
 
PDF
Approaches to Software Testing
byScott Barber
 
PPTX
1 testing fundamentals
byAsmaa Matar
 
PPT
Istqb chapter 5
bynstprabakaran
 
PPT
Introduction to ISTQB & ISEB Certifications
byYogindernath Gupta
 
PPT
7 steps to Software test automation success
byngowda gowda (Looking For New job in Bangalore
 
PPTX
Building a software testing environment
byHimanshu
 
PPTX
Test planning
byAliaa Monier Ismaail
 
PPT
Software Testing
byMousmi Pawar
 
PPTX
Software Testing Basics
byBelal Raslan
 
PPT
Software Testing 101
byQA Hannah
 
PPTX
ISTQB Foundation Level Basic
bySelin Gungor
 
PPTX
Software Testing - Software V&V and selection processes
byanasz3z3
 
PPTX
Regression testing
byHarsh verma
 
PPTX
What is Ad-Hoc Testing
byExforsys Inc
 
PPT
Software validation
byRobert Phe
 
Test planning & estimation
byLeslie Smart
 
Software Testing Process
byguest1f2740
 
Risk-based Testing
byJohan Hoberg
 
Softwaretesting
bynazeer pasha
 
Software Testing
byEcaterina Moraru (Valica)
 
Approaches to Software Testing
byScott Barber
 
1 testing fundamentals
byAsmaa Matar
 
Istqb chapter 5
bynstprabakaran
 
Introduction to ISTQB & ISEB Certifications
byYogindernath Gupta
 
7 steps to Software test automation success
byngowda gowda (Looking For New job in Bangalore
 
Building a software testing environment
byHimanshu
 
Test planning
byAliaa Monier Ismaail
 
Software Testing
byMousmi Pawar
 
Software Testing Basics
byBelal Raslan
 
Software Testing 101
byQA Hannah
 
ISTQB Foundation Level Basic
bySelin Gungor
 
Software Testing - Software V&V and selection processes
byanasz3z3
 
Regression testing
byHarsh verma
 
What is Ad-Hoc Testing
byExforsys Inc
 
Software validation
byRobert Phe
 

Viewers also liked

PPT
Practical Application Of Risk Based Testing Methods
byReuben Korngold
 
PDF
Test Environment Management Maturity Model
bycrawforn992
 
PPT
Environment Delivery Management Services
bydrummondrj
 
PPT
Managing Test Environments
byKevin Harvey
 
PDF
Test Environment Management KPI
byValentine Wats
 
PDF
Test Environment Strategy
byTony Barber
 
PDF
Test Environment Management
byKanoah
 
Practical Application Of Risk Based Testing Methods
byReuben Korngold
 
Test Environment Management Maturity Model
bycrawforn992
 
Environment Delivery Management Services
bydrummondrj
 
Managing Test Environments
byKevin Harvey
 
Test Environment Management KPI
byValentine Wats
 
Test Environment Strategy
byTony Barber
 
Test Environment Management
byKanoah
 

Similar to Risk based testing and random testing

PPT
prova7
bymbsoftware
 
PPT
provoora
bylmscollaborative2
 
PPT
remoto2
bylmscollaborative2
 
PPT
prova9
bymbsoftware
 
PPT
testsfw2
bylmscollaborative2
 
PPT
test
bylmscollaborative2
 
PPT
testsfw7
bylmscollaborative2
 
PPT
prova2
bymbsoftware
 
PPT
domenica1
bylmscollaborative2
 
PPT
finalelocale
bylmscollaborative2
 
PPT
prova5
bymbsoftware
 
PPT
provacompleta2
bylmscollaborative2
 
PPT
test2
bymbsoftware
 
PPT
prova4
bymbsoftware
 
PPT
domenica3
bylmscollaborative2
 
PPT
stasera1
bymbsoftware
 
PPT
provalast
bymbsoftware
 
PPT
domenica2
bylmscollaborative2
 
PPT
bylmscollaborative2
 
PPT
test2
bylmscollaborative2
 
prova7
bymbsoftware
 
provoora
bylmscollaborative2
 
remoto2
bylmscollaborative2
 
prova9
bymbsoftware
 
testsfw2
bylmscollaborative2
 
test
bylmscollaborative2
 
testsfw7
bylmscollaborative2
 
prova2
bymbsoftware
 
domenica1
bylmscollaborative2
 
finalelocale
bylmscollaborative2
 
prova5
bymbsoftware
 
provacompleta2
bylmscollaborative2
 
test2
bymbsoftware
 
prova4
bymbsoftware
 
domenica3
bylmscollaborative2
 
stasera1
bymbsoftware
 
provalast
bymbsoftware
 
domenica2
bylmscollaborative2
 
bylmscollaborative2
 
test2
bylmscollaborative2
 

More from Himanshu

PPT
Structural patterns
byHimanshu
 
PPTX
Software product line
byHimanshu
 
PPT
Shared information systems
byHimanshu
 
PPTX
Saam
byHimanshu
 
PPTX
Design Pattern
byHimanshu
 
PPTX
Creational pattern
byHimanshu
 
PPTX
Architecture Review
byHimanshu
 
PPTX
Reliability and its principals
byHimanshu
 
PPTX
Structural and functional testing
byHimanshu
 
PPTX
White box black box & gray box testing
byHimanshu
 
PPTX
Pareto analysis
byHimanshu
 
PPTX
Load runner & win runner
byHimanshu
 
PPTX
Crud and jad
byHimanshu
 
PPTX
Junit and cactus
byHimanshu
 
PPTX
Testing a data warehouses
byHimanshu
 
PPTX
Software testing tools and its taxonomy
byHimanshu
 
PPTX
Software reliability engineering process
byHimanshu
 
PPTX
Software reliability growth model
byHimanshu
 
PPTX
Software reliability tools and common software errors
byHimanshu
 
PPTX
Regression and performance testing
byHimanshu
 
Structural patterns
byHimanshu
 
Software product line
byHimanshu
 
Shared information systems
byHimanshu
 
Saam
byHimanshu
 
Design Pattern
byHimanshu
 
Creational pattern
byHimanshu
 
Architecture Review
byHimanshu
 
Reliability and its principals
byHimanshu
 
Structural and functional testing
byHimanshu
 
White box black box & gray box testing
byHimanshu
 
Pareto analysis
byHimanshu
 
Load runner & win runner
byHimanshu
 
Crud and jad
byHimanshu
 
Junit and cactus
byHimanshu
 
Testing a data warehouses
byHimanshu
 
Software testing tools and its taxonomy
byHimanshu
 
Software reliability engineering process
byHimanshu
 
Software reliability growth model
byHimanshu
 
Software reliability tools and common software errors
byHimanshu
 
Regression and performance testing
byHimanshu
 

Recently uploaded

PDF
Tetracycline Class of Antibiotics: SAR, MOA and Uses
bymominzarinamdnajeeb
 
PDF
Bones by Sadu Kassam (play) story ppt pdf
byRonnieMaeBorres
 
PDF
The Sheep and the Goat: Beckett’s Subversion of Divine Justice in Waiting for...
bysejadchokiya
 
PPTX
How to Add an Icon in Systray in Odoo 18
byCeline George
 
PDF
Chapter 05 Drugs Acting on the Central Nervous System: Anticonvulsant (Antiep...
bySandeshSul
 
PPTX
Overview of How to set priority in Odoo 19 Todo
byCeline George
 
PPTX
How to Manage Reservation Method in Odoo 18 Inventory
byCeline George
 
PPTX
Renal Physiology- Functional anatomy of Kidney.pptx
byDisha Soriya
 
PPTX
Math 8 Quarter 4 Week 4-SECONDARY DATA.pptx
byshahanieabbat3
 
PPTX
Renal Physiology- Juxtaglomerular Apparatus.pptx
byDisha Soriya
 
PPTX
How to perform product search based on a custom field from the Website Shop p...
byCeline George
 
PDF
Pharmaceutical Quality Assurance Unit 1 (BP606T)
byChetan Mali
 
PDF
Judgement Regarding Land Acquisition Act not Applicable to Encroachers.pdf
byssuser9d8e4e
 
PDF
BP502T Industrial Pharmacy I (Theory) UNIT– I (Part 1)
byRushi Mandali
 
PPTX
Greengnorance Toolkit Module 3 Shopping and Food
byKarl Donert
 
PDF
Artificial Intelligence in Research and Academic Writing, Workshop on Researc...
byProf. Vinod Kumar Kanvaria
 
PPTX
How to Track & Manage My Time Section in Odoo 18 Time Off
byCeline George
 
PPTX
MEMORY &FORGETTING. Shilpa Hotakar.Psychology pptx
bySHILPA HOTAKAR
 
PPTX
Q4_PPT MUSIC & ARTS 7 week 1-2, matatag curriculum
byZEN
 
PPTX
Greengnorance Toolkit Module1 Climate Change
byKarl Donert
 
Tetracycline Class of Antibiotics: SAR, MOA and Uses
bymominzarinamdnajeeb
 
Bones by Sadu Kassam (play) story ppt pdf
byRonnieMaeBorres
 
The Sheep and the Goat: Beckett’s Subversion of Divine Justice in Waiting for...
bysejadchokiya
 
How to Add an Icon in Systray in Odoo 18
byCeline George
 
Chapter 05 Drugs Acting on the Central Nervous System: Anticonvulsant (Antiep...
bySandeshSul
 
Overview of How to set priority in Odoo 19 Todo
byCeline George
 
How to Manage Reservation Method in Odoo 18 Inventory
byCeline George
 
Renal Physiology- Functional anatomy of Kidney.pptx
byDisha Soriya
 
Math 8 Quarter 4 Week 4-SECONDARY DATA.pptx
byshahanieabbat3
 
Renal Physiology- Juxtaglomerular Apparatus.pptx
byDisha Soriya
 
How to perform product search based on a custom field from the Website Shop p...
byCeline George
 
Pharmaceutical Quality Assurance Unit 1 (BP606T)
byChetan Mali
 
Judgement Regarding Land Acquisition Act not Applicable to Encroachers.pdf
byssuser9d8e4e
 
BP502T Industrial Pharmacy I (Theory) UNIT– I (Part 1)
byRushi Mandali
 
Greengnorance Toolkit Module 3 Shopping and Food
byKarl Donert
 
Artificial Intelligence in Research and Academic Writing, Workshop on Researc...
byProf. Vinod Kumar Kanvaria
 
How to Track & Manage My Time Section in Odoo 18 Time Off
byCeline George
 
MEMORY &FORGETTING. Shilpa Hotakar.Psychology pptx
bySHILPA HOTAKAR
 
Q4_PPT MUSIC & ARTS 7 week 1-2, matatag curriculum
byZEN
 
Greengnorance Toolkit Module1 Climate Change
byKarl Donert
 

Risk based testing and random testing

  • 1.
    Risk Based Testing and RandomTesting Dr. Himanshu Hora SRMS College of Engineering & Technology Bareilly (INDIA)
  • 2.
    Risk Based Testing and RandomTesting • Use of Risk Analysis and Metrics for Software Testing • Focus Testing to Save Time and Money while maintaining quality • How to develop metrics to manage and organise large test projects
  • 3.
    The Challenges • • • • Time Constraints ResourceConstraints Quality Requirements Risk Factors: – New technology – Lack of knowledge – Lack of experience • Take Control!
  • 4.
    Risk Analysis andTesting Test Plan Test Item Tree Risk Strategy Risk Identification Testing, Inspection etc. Risk Assessment Matrix: Cost and Probability Risk Mitigation Test Metrics Risk Reporting Risk Prediction
  • 5.
    Risk Based Testing- Theory • The Formula Re(f) P(f)*C(f) – Re(f) Risk Exposure of function f – P(f) - Probability of a fault in function f – C(f) - Cost related to a fault in function f
  • 6.
    Risk Based Testing- Approach • Plan: Identify Elements to be Tested – Logical or physical Functions, Modules etc. • Identify Risk Indicators – What is important to predict the probability of faults? • Identify Cost of faults • Identify Critical Elements – I.e. functions, tasks, activities etc. based on Risk Analysis (Indicators and Cost) • Execute: Improve the Test Process and Organization: Schedule and Track
  • 7.
    Simple Test Metrics •Test Planning – Number of test cases per function – Number of hours testing per function • Progress Tracking – – – – Number of tests planned, executed and completed Number of faults per function Number of hours used for test and fix Estimated to Complete • Probability of faults - Indicators – – – – New functionality Size Complexity Quality of previous phases and documents • Cost of Faults
  • 8.
    Risk Based Testing- Metrics • Identify Areas with “High Risk Exposure” – Probability and Cost • All functions/modules should be tested to a “minimum level” • “Extra Testing” in areas with high risk exposure • Establish Test Plan and Schedule – Monitor Quality • Number of Faults per function and time – Monitor Progress • Number of hours in test and fix -> ETC
  • 9.
    Risk Based Testing- Example Ranking the functions based on Risk Exposure The Probability of a Fault The Cost of a Fault C(c) C(s) Re(f) P(f)* 2 Example: Cost Func. Probability New Design Func. Quality Size 5 5 1 Risk Com- Weighted Exp. plexity Averag func. 3 f C( s ) C(c) Avr. Interest Calc. 3 3 3 2 3 3 3 37 111 Close Account 1 3 2 2 2 2 3 31 62 Cust. Profitab. 2 1 1,5 3 3 2 3 41 61,5 Other Probability Factors might include: Function Points, Frequency of Use etc.
  • 10.
    High Probability Risk Based Testing -Reporting 1 2 3 4 TECHNICAL INTERFACE RISK 10 1 Low Low 440 Low Medium Probability High 510 439 11 2 2 370 369 5 302 Low Low Medium Medium BUSINESS RISK High High Consequence Consequence High
  • 11.
    Risk Based Testing- Practice Prior to test execution: identify critical transactions 1 Test Execution identifies “bad” transactions “Top-20” 2 Extra Testing: - Additional testing by product specialist - Automated regression testing 3
  • 12.
    Planning and ProgressTracking Number of Test Cases On-line Test Cases Completed Planned Executed QAed Date Started Planned Actual
  • 13.
    Progress Indicators -“To be vs. Actual” “To be Retested” vs. “Actually Retested” To Be Fixed Actually fixed To Be Restested, Actually Retested and Rejected Number of Faults • “To be fixed” vs. “Actually fixed” Number of Faults To Be Fixed and Actually Fixed To be retested Act. retested Rejected
  • 14.
    Progress Indicators -Hours Used Number of hours for finding one fault and for fixing one Hours per Fault for Test and Fix Hours per Fault Online Batch Fix Hours per Fault for Test and Fix Hours per Fault Number of hours for finding one fault and for fixing one Test Fix Test Date
  • 15.
    “Estimated to Complete” •ETC for system test based on: Hours ETC – Number of hours testing per fault found – Number of hours fixing per fault – Number of faults found Calculated ETC and Actual Hours per function Actual to Complete – Number of at Time t fixes being rejected – Number of remaining tests (functions to be tested) Date Estimated to Complete at Time t
  • 16.
    Benefits of RiskBased Testing • Improved Quality? – all critical functions tested • Reduced Time and Money in Testing – effort not wasted on non critical or low risk functions • Improved customer confidence – due to customer involvement and good reporting and progress tracking
  • 17.
    Test Process WorkFlow Risk Identification Risk Assessment Basic Test Data PD LD Case Quality Standards Test Exec. Procedure Test Case Case Build Procedure Test Completed QC / QA Good Test Exec Risk Mitigation Good/ Bad Bad PTDs Raised Risk Reporting Retest Risk Prediction Problem Mngmnt. Procedure Fix Fix Procedure CR Change Mngmnt. Procedure Regression Test ProAte
  • 18.
    Summary • Risk BasedTest Approach – Focused Testing • Reduced Resources • Improved Quality – Metrics are fundamental • Process and Organization must support the new strategy – Metrics must support the organization and process
  • 19.
    Random testing – Startoff with a practical look, and some useful ideas to get you started on the project: random testing for file systems – Then take a deeper look at the notion of feedback and why it is useful: method for testing OO systems from ICSE a couple of years • Then back out to take a look at the general idea of random testing, if time permits
  • 20.
    A Little Background –Generate program inputs at random – Drawn from some (possibly changing) probability distribution “Throw darts at the state space, without drawing a bullseye” – May generate the same test (or equivalent tests) many times – Will perform operations no sane human would ever perform
  • 21.
    Random Testing • Millionsof operations and scenarios, automatically generated • Run on fast & inexpensive workstations • Results checked automatically by a reference oracle • Hardware simulation for fault injection and reset simulation (x 100000) A day (& night) of testing (x 100000) (x 100000) (x 100000)
  • 22.
    The Goals • Randomizeearly testing (since it is not possible to be exhaustive) – We don’t know where the bugs are Nominal Scenario Tests Randomized Testing
  • 23.
    The Goals • Makeuse of desktop hardware for early testing – vs. expensive (sloooow) flight hardware testbeds – Many faults can be exposed without full bit-level hardware simulation
  • 24.
    The Goals • Automateearly testing – Run tests all the time, in the background, while continuing development efforts • Automate test evaluation – Using reference systems for fault detection and diagnosis – Automated test minimization techniques to speed debugging and increase regression test effectiveness • Automate fault injection – Simulate hardware failures in a controlled test environment
  • 25.
    Random testing • Simulatedflash hardware layer allows random fault injection • Most development/early testing can be done on workstations • Lots of available compute power – can cover many system behaviors • Will stress software in ways nominal testing will not
  • 26.
    Differential Testing • Howcan we tell if a test succeeds? – POSIX standard for file system operations • IEEE produced, ANSI/ISO recognized standard for file systems • Defines operations and what they should do/return, including nominal and fault behavior File system / POSIX operation Result mkdir (“/eng”, …) mkdir (“/data”, …) creat (“/data/image01”, …) creat (“/eng/fsw/code”, …) mkdir (“/data/telemetry”, …) unlink (“/data/image01”) SUCCESS SUCCESS SUCCESS ENOENT SUCCESS SUCCESS /eng /data image01 /telemetry
  • 27.
    Differential Testing • Howcan we tell if a test succeeds? – The POSIX standard specifies (mostly) what correct behavior is – We have heavily tested implementations of the POSIX standard in every flavor of UNIX, readily available to us – We can use UNIX file systems (ext3fs, tmpfs, etc.) as reference systems to verify the correct behavior of flash – First differential approach (published) was McKeeman’s testing for compilers
  • 28.
    Random Differential Testing Choose(POSIX) operation F Perform F on NVFS Perform F on Reference (if applicable) Compare return values Compare error codes Compare file systems Check invariants (inject a fault?)
  • 29.
    Don’t Use RandomTesting for Everything! • Why not test handing read a null pointer? – Because (assuming the code is correct) it guarantees some portion of test operations will not induce failure – But if the code is incorrect, it’s easier and more efficient to write a single test – The file system state doesn’t have any impact (we hope!) on whether there is a null check for the buffer passed to read • But we have to remember to actually do these non-random fixed tests, or we may miss critical, easy-to-find bugs!
  • 30.
    Principles Used • • • • Random testing(with feedback) Test automation Hardware simulation & fault injection Use of a well-tested reference implementation as oracle (differential testing) • Automatic test minimization (delta-debugging) • Design for testability – Assertions – Downward scalability (small model property) – Preference for predictability
  • 31.
    Synopsis • Random testingis sometimes a powerful method and could likely be applied more broadly in other missions – Already applied to four file system-related development efforts – Part or all of this approach is applicable to other critical components (esp. with better models to use as references)
  • 32.
    Thank You Dr. HimanshuHora SRMS College of Engineering & Technology Bareilly (INDIA)