STAREAST 2008 - Software Testing Conference


Agile Testing: Traditional Testing Meets Agile Development

Agile development methodologies are taking center stage in many software organizations today. Testing in a highly iterative environment adds great opportunities for success but it also brings challenges. Dietmar Strasser explains how to successfully transform testing from a traditional process to a highly iterative approach that aligns testing efforts around requirements while fostering communication and collaboration among all team members in a distributed development environment.

Dietmar Strasser, Borland Software
Assuring Web Service Quality

David Fern demystifies Web services technology, explaining that Web services are loosely coupled, language independent processes that communicate following SOAP standards using XML messages. He describes how to ensure the quality and compatibility of these unique applications by addressing their specific challenges and risk mitigation test strategies.

David Fern, Social Security Administration
Avoid Preformance Testing Data Deception

Don't be fooled by your performance test results. Performance testing can easily generate an unwieldy amount of data-some relevant and some not. Testers and their tools often use statistical methods to make sense of the data, but using statistics requires sacrificing accuracy and thoroughness. The good news is that we do not need to understand all the details to make good use of test results. The challenge is to determine what information really matters and how to present it in a useful manner.

Ben Simo, Standard & Poor's

Branch Out: Using Classification Trees for Test Case Design

A structured, visual approach to identify and categorize equivalence partitions for test objects, classification trees offer a unique way for you to document test requirements so that anyone can understand them and quickly build test cases. Join Julie Gardiner to look at the fundamentals of classification trees and how they can be applied in both traditional and agile test and development environments.

Julie Gardiner, Grove Consultants

Client-Side Attacks: The New Vulnerability

Historically, we have focused on server-side security vulnerabilities rather than their client-side counterparts. As cybercrime continues to evolve, the sophistication of client-side attacks is increasing and the severity of these vulnerabilities is growing. The advent of phishing and efforts to create botnet armies have exploded in recent years due to their profit potential. Client-side issues such as vulnerabilities in Web browsers and file corruption have become the facilitators, which make these attacks possible.

Matt Fisher, Hewlett-Packard
Finding Backdoor Threats with Static Analysis

According to research from Gartner, 75% of all new security attacks are against applications and 90% of all vulnerabilities reside within software. However, enterprise IT security continues to be concentrated on the network to protect the perimeter from external attack rather than detecting vulnerabilities on the inside. In some of the world's largest businesses, there's evidence that malicious users may be deliberately leaving "backdoor" vulnerabilities to be exploited later when applications are put into full production.

Chris Wysopal, Veracode

Five Steps to Becoming a Top Tester

Have you ever wondered what top testers do that enables them to accomplish so much more than an average tester? As a tester, the key to maximizing your potential for success is taking responsibility for developing your own testing skills. Bernie Berger shares five testing tips that can help you strengthen your testing ability and set you apart from the crowd.

Bernie Berger, Liquidnet Holdings, Inc.

For Success, Build Record/Playback into Your Application

Stories about failed attempts to automate functional testing are very easy to find and have given the record/playback style test automation a black eye. Is this approach fundamentally flawed or can the business benefits of automated testing be realized through recorded tests? The flaw with most commercial record/playback tools is that they are intended for use with existing applications that have not been designed for testability.

Gerard Meszaros, ClearStream Consulting

Growing Our Industry: Cultivating Testing

Although software testing is a relatively young discipline, immaturity is not the only reason we are still developing our methods, professional qualifications, trade associations, and its position in the software industry and society. All successful professions must continuously evolve and grow. For example, horticulture has been practiced for about 8,000 years longer than software testing.

Isabel Evans, Testing Solutions Group Ltd

GUI Testing for Multi-language Applications

An analysis of defect reports on several multi-language projects demonstrated that, for localization, almost 80% of the bugs were cosmetic issues. Because of this tendency, GUI tests are always an important part of the localization testing process. However, manual GUI testing is time consuming, labor intensive, and therefore expensive. For testers, it is boring, tedious, and error prone. An automated test suite is the most efficient method to automate detection of these defects, especially for multi-language applications.

Marco Torres, Citrix Systems Japan R&D


CMCrossroads is a TechWell community.

Through conferences, training, consulting, and online resources, TechWell helps you develop and deliver great software every day.