STAREAST 2002 - Software Testing Conference


STAREAST 2002: Testing Web Site Security

The Internet can be a less-than-secure place to conduct business. So how do you make sure your Web site is secure from attack? Is a firewall the only line of defense you need? This presentation provides insight into the different attack points that a hacker could seek to exploit. It teaches you what to look for when testing the security of a Web site and delivers a simple, ten-step process for testing the security of a Web site.

Steve Splaine, Splaine & Associates
STAREAST 2002: Writing Better Defect Reports

Why is it some testers get a better response from developers than others? Part of the answer lies in their defect reports. But following a few simple guidelines can smooth the way for a much more productive environment. That's because the objective shouldn't be to write the perfect defect report, but to write an effective defect report that conveys the proper message, gets the job done, and simplifies the process for everyone. It's important that you use this report to ask and answer the right questions.

Kelly Whitmill, IBM
Teach Your Automation Tool To Be As Smart As You

Teach your automation tool to speak your language instead of the other way around. This presentation demonstrates how test professionals can write automated scripts-without knowing coding-while providing a full complement of management reports that identify project progress, script status, and error tracking. You'll learn to fully integrate requirements, project management, and testing automation. Don't just use an automation tool, get it to do what you need it to do.

Bonnie Bayly, Anteon Corporation
Test Automation of Distributed Transactional Services

Distributed transactions are being implemented everywhere. Web services, EAI, and B2B are just a few examples. Testing these transactions across disparate systems-sometimes even across organizations and firewalls-is difficult, yet vital. But automating the testing is impossible without the right tools. Manish Mathuria offers you a test automation framework built specifically for transactional and component-based implementations. He addresses the practical problems of testing such systems, and suggests solutions for many of them.

Manish Mathuria, Arsin Corporation

Test Automation with Pure Data

While Web-based GUI testing is all the rage, lots of us still operate in a world of UNIX shells, command lines, and scripts. Automated testing in this world traditionally consists of executing the command being tested, then running a series of additional commands that perform validation. But how do you automate the test when the command being run expects answers? The solution: an Intelligent, Interactive Testing Tool (IITT).

Brian Brumfield, Hewlett-Packard Openview
Test Management in Turbulent Times

In uncertain circumstances, the challenges facing test managers are numerous and, at times, daunting. Layoffs, reorganizations, restricted resources, and job concerns can contribute to the disruption of the status quo at any given time. So what's a test manager to do? This presentation identifies test management issues and describes tips and techniques on how to better manage yourself and others.

Lauri MacKinnon, Phase Forward Inc and Eric Patel, VeriTest Inc/Lionbridge Technologies
Testing In A Squeezed, Squeezed World

All things are possible in the face of adversity, even an under-resourced testing project with an immovable deadline. Many testing projects start out with high ideals then descend into a mad panic when the realities begin to set in. However, usually by this stage it's too late to back out of commitments made to the business, and the risk of delivering a product that doesn't meet expectations may not be an option. This is especially true in the case of a project driven by legislative changes totally beyond your control.

Geoff Horne, Integrity Software Testing & Quality

Testing in the .NET Maze

.NET is a multi-tiered approach to developing applications for Windows OS and Web applications. While these are new development tools, many testing requirements remain the same, yet require additional emphasis by a QA organization. Plus, with .NET's extra layers of abstraction, even more developers enter the programming arena with fewer technical skills than previously needed for standard Windows development. For instance, if a bug is found "in the depths" there's now more likely to be a work-around to the issue instead of a true fix.

Thomas Arnold, Xtend Development, Inc.
Testing Mission Critical Software Changes

This paper is based on a recent experience implementing and testing a large new software capability in a
maintenance organization which had not dealt with a large change in some time. The capability was called
GPC Payload Command Filter (GPCF). While the task was completed successfully, it was not without
cost in terms of schedule slips and personal angst.
The purpose of this paper will be to help the verifier learn from what was done right and what was done

Alan Ogletree, United Space Alliance
Testing The Chain: End-to-End Integration Test

When processes include several applications, the testing process is complicated in many ways. Possible complications include: organizational issues because of the multitude of test teams and their interdependencies; processes and transactions that span the chain which require new test scenarios; integral design, information analysis, and process design documents that aren't fit for the purpose of chain testing; and test execution that demands integral knowledge of the chain.

Gerard Numan, POLTEQ, B.V.


CMCrossroads is a TechWell community.

Through conferences, training, consulting, and online resources, TechWell helps you develop and deliver great software every day.