• March 05, 2008 05 Mar'08

    The user acceptance testing (UAT) team is your ally

    When offshore testers partner with the client's user acceptance testing (UAT) team, they can be better assured that the business's needs are met and that bugs are found early.

  • March 05, 2008 05 Mar'08

    Software testing offers big ROI

    Software testing saves money and calculating the return on investment is easier than you think, Rex Black told his audience at Future Test 2008. He explained how to measure testing ROI.

  • March 04, 2008 04 Mar'08

    Measuring code quality provides unexpected benefits for Raymond James

    Using CAST's Application Intelligence Program (AIP) -- an automated code inspection system -- Raymond James Financial is able to improve its code quality as well as facilitate maintenance of that code.

  • March 04, 2008 04 Mar'08

    Continuous integration meets application performance management

    As continuous integration gains popularity, the notion of continuous performance management also gains credence. Carefully mixing performance testing with continuous builds can lead to shorter development cycles, faster triaging and greater ...

  • March 04, 2008 04 Mar'08

    CAST enhances automated code inspection system

    CAST announced the availability of Application Intelligence Platform (AIP) 6.1, its automated code inspection system. New in this release: a GUI with an underlying role-based approach.

  • March 04, 2008 04 Mar'08

    Serena Software to provide software as a service

    Serena Software's project and portfolio management tool will be one of three solutions offered via Software as a Service (SaaS) this year.

  • March 03, 2008 03 Mar'08

    Don't shrug off buggy software

    If software makers are creating software that could physically hurt someone if it has a flaw, one would hope that they're concerned about doing their jobs well.

  • February 26, 2008 26 Feb'08

    Software requirements lifecycle the focus of new forum

    The goal of the Requirements Forum and is to raise awareness of the critical need to define and manage software requirements.

  • February 21, 2008 21 Feb'08

    Poor business requirements process leads to high project costs, study finds

    A recent IAG Consulting study finds that companies that have poor business requirements processes can expect to spend 49% more money and 39% more time on a project.

  • February 21, 2008 21 Feb'08

    Software project management tool clarifies project uncertainty

    LiquidPlanner, a Web-based planning and collaboration tool for project managers, is available free to the public. The tool features an estimated range for task scheduling.

  • February 21, 2008 21 Feb'08

    AccuRev software configuration management tool links to IBM's ClearCase

    Software configuration management tool AccuRev 4.6 for ClearCase allows for collaborative development between groups using ClearCase and AccuRev via bi-directional synchronization.

  • February 19, 2008 19 Feb'08

    Fun with UML

    Think UML can't be funny? Think again. Check out the recent winners of the International Software & Productivity Engineering Institute's UML joke contest.

  • February 18, 2008 18 Feb'08

    uTest pilots on-demand software testing, QA service

    Through uTest, companies can get on-demand QA and software testing services from a global community of testers. The first pilot starts in March 2008.

  • February 14, 2008 14 Feb'08

    Application performance management today, part 2: Role of Java developer groups

    Increasingly IT teams depend on developer groups to maintain applications and solve performance problems. Fortunately, there are many testing, monitoring and management tools available to help.

  • February 11, 2008 11 Feb'08

    Application performance management today, part 1: Problems and solutions

    Application performance continues to be a critical issue, perhaps more so given the rise of complicated Web systems. Everyone involved in the development needs to play a role, and performance monitoring and testing tools can help.

  • February 06, 2008 06 Feb'08

    Agile development and Grails a dynamic duo

    By using Agile development and the Grails framework, you can better develop software that solves a customer's problem, says Venkat Subramanian. Below is an excerpt from a conversation with him at the 2007 Grails eXchange conference. Download the ...

  • February 06, 2008 06 Feb'08

    Improving problem resolution through automation

    A Forrester study found that problem resolution is inefficient at most organizations. By automating the process companies can solve problems faster and cut costs, Doug Laney says.

  • February 04, 2008 04 Feb'08

    Case study: Agile development moves at Rackspace

    At Rackspace, a managed hosting company, process innovation that enables better development is a top goal. It's through Agile development that the company strives to achieve that goal.

  • January 28, 2008 28 Jan'08

    Developers get bigger role in software quality, security

    In the continuing drive to address quality and security earlier in the software development lifecycle (SDLC), two thought leaders in the automated source code analysis market -- Klocwork and Ounce Labs -- are targeting new releases at the developer.

  • January 16, 2008 16 Jan'08

    Ajax security concerns you need to be aware of

    As developers implement Ajax and Web 2.0 applications, they need to understand security issues such as cross-site scripting (XSS), cross-site request forgery (CSRF) and JavaScript hijacking.

  • January 15, 2008 15 Jan'08

    Techniques for successful software test teams

    Challenges abound when managing a test team. Judy McKay, author of Managing the Test People, talks about those challenges, how to maintain morale, and how to break down the wall between developers and testers.

  • January 09, 2008 09 Jan'08

    Quality process first; quality testing second

    Quality is not tangible and is often considered unimportant in development. However, the odds of success are better if there's a constructive quality process and testing lifecycle.

  • January 07, 2008 07 Jan'08

    Integrated tester added to semantic development workbench

    TopQuadrant's Integrated Testing Server allows semantic Web applications to be tested without having to create a separate testing platform.

  • January 07, 2008 07 Jan'08

    Seven ways to keep your software projects in motion

    Speed and efficiency are essential for software development projects. If you find your project losing momentum, Michelle LaBrosse suggests trying these project accelerators.

  • January 02, 2008 02 Jan'08

    Agile tools for Agile development

    Agile development doesn't necessarily endorse tools. You can be agile and use just a command line interface, a unit tester and some index cards. But tools, including Rally's Release 2007.7, TargetProcess v.2, VersionOne's V1, and ThoughtWorks' ...

  • December 26, 2007 26 Dec'07

    Green computing, quality control to take center stage in 2008

    The Standish Group issued its annual predictions, which according to tradition include some wacky thoughts about future innovations. Top on its list: green computing.

  • December 26, 2007 26 Dec'07

    Software development trends in 2008: Outsourcing, agile development

    Outsourcing and the spread of agile software development will affect many in IT in 2008. In light of that, software testers and requirements engineers will need to find their places in this environment.

  • December 24, 2007 24 Dec'07

    Top software development articles from 2007

    Ready or not, 2007 is coming to a close. Here's a look at the 10 most popular articles and news Q&A's from the year.

  • December 17, 2007 17 Dec'07

    Can test-driven development drive developers to test?

    Software testing is still not afforded the respect and attention it deserves. Test-driven development is not for everyone, but it is a step in the right direction.

  • December 17, 2007 17 Dec'07

    Static code analyzer tests for dangerous race conditions

    The Coverty Prevent SQS static code analyzer helps developers identify race conditions and other concurrency defects in multi-threaded applications earlier in the development cycle.

  • December 12, 2007 12 Dec'07

    Agile development spawns requirements, management changes

    At the Agile Development Practices conference, experts discussed how the Agile movement has led to changes in how application development managers, requirement analysts and project managers do their work.

  • December 12, 2007 12 Dec'07

    Agile development can increase project ROI

    Organizations can use agile software development to increase the value of a project to its stakeholders and decrease the cost of creating software, thereby increasing ROI, said agilist James Shore, speaking at the Better Software Agile Development ...

  • December 10, 2007 10 Dec'07

    Application security testing goes virtual

    With Cenzic Hailstorm ARC 5.5, companies can continuously test production applications for security flaws in a virtual or "staging" environment without the risk of compromising the environment.

  • December 10, 2007 10 Dec'07

    Barriers remain for test-driven development

    Despite continued reports of the many benefits of test-driven development, many CTOs and IT managers do not practice TDD, according to a recent survey by Stelligent Inc. They're unwilling to implement it because of the perceived cost and the ...

  • December 05, 2007 05 Dec'07

    Scott Ambler: Agile the leading approach for software development

    Agile preacher Scott Ambler says Agile software development has become mainstream. But while some groups think they're doing Agile development, they're really just hacking -- and "giving real disciplined developers a bad name." In this Q&A Ambler ...

  • December 03, 2007 03 Dec'07

    Iterative and incremental development explained

    The terms iteration and increment are often used interchangeably. The problem is, however, they don't mean the same thing. Kevlin Henney explains the differences, as well as how to use iterative development to improve your development process and ...

  • November 28, 2007 28 Nov'07

    Parasoft's Adam Kolawa: Software quality is a continuous process

    In order for software projects to succeed, development teams need a comprehensive infrastructure and adequate processes, says Parasoft CEO Adam Kolawa.

  • November 28, 2007 28 Nov'07

    Microsoft's Michael Howard: Security must be a part of every application

    Security needs to become a way of life in application development, Microsoft's Michael Howard says. In this Q&A he explains how you need to use tools and educate people to make sure your applications aren't weak links.

  • November 26, 2007 26 Nov'07

    Want a project to succeed? Think about the big picture

    The intent of most IT projects is to improve an application, system or process, but without proper conceptualization and execution, the project will fail.

  • November 20, 2007 20 Nov'07

    BMC uses source code analysis to improve software line

    BMC Software uses Klocwork's K7 automated source code analysis tool to help it improve the quality and reliability of its enterprise software lines.

  • November 14, 2007 14 Nov'07

    Ajax performance issues: Everything old is new again

    Issues in Ajax performance can resemble issues encountered in traditional object-oriented development. Developers must understand the ramifications of using JavaScript code and think about how they write every line of code, stresses Bob Buffone, ...

  • November 13, 2007 13 Nov'07

    AppScan Web application security scanner enhanced

    The first major release since being acquired by IBM, the latest version of Watchfire's AppScan tests for more vulnerabilities and is better able to scan difficult applications such as Flash and Ajax applications.

  • November 12, 2007 12 Nov'07

    Betfair uses source code analysis tool to eliminate software bugs

    Betfair, Europe's largest ecommerce site, uses Fortify Software's source code analysis tool, Fortify SCA 5.0, to automate the mundane parts of code review and to find bugs.

  • November 12, 2007 12 Nov'07

    Experience, skills worth more than certification

    A person's experience, skills, overall education and personality are worth more than a piece of paper that says they passed a certification exam

  • November 05, 2007 05 Nov'07

    JavaScript mashups raise application security issues; require caution

    Mashups, which combine Web pages within a single view, may be cool, but they're inherently insecure and have access to confidential information.

  • November 01, 2007 01 Nov'07

    From use case diagrams to context diagrams

    It's tempting to consider use case diagrams as context diagrams because they do show context. But having one diagram for both will result in an unreadable cloud of bubbles.

  • November 01, 2007 01 Nov'07

    Agile 101: What you need to know about agile software development

    Advocates of agile development say this methodology is ideal for creating software. John Scumniotales, co-creator of Scrum, discusses in this podcast what's involved when using agile and where the methodology will be five years from now.

  • October 29, 2007 29 Oct'07

    SOA prompts changes in quality assurance

    The use of SOA means quality assurance (QA) engineers and testers must include integration, regression, business process, performance and security testing in their test plans. More than that, they need to focus on quality throughout the business ...

  • October 29, 2007 29 Oct'07

    When good projects turn bad

    On any software project, you need take the time to work things out upfront so you don't have fires to put out when the application is released.

  • October 25, 2007 25 Oct'07

    Agile development: Don't forget the documentation

    Eliminating documentation may speed software development, but it will create problems at the end as supporting groups try to figure out what the product actually does.

  • October 23, 2007 23 Oct'07

    Brief: Fortify enhances its source code analysis tool

    Fortify SCA 5.0 enhances source code analysis by improving collaboration among development team members, adding support for more languages, and allowing the tool to be customized.

  • October 19, 2007 19 Oct'07

    Modular test case design consolidates tests

    Through modularization, testers can break down applications into reusable modules. This process may reduce redundancy and increase the maintainability of test cases and pave the way to test automation.

  • October 18, 2007 18 Oct'07

    Making agile software development work for distributed teams

    Distributed agile software development may seem like an oxymoron, but is seeing success with the help of GlobalLogic and Velocity, its distributed agile development methodology.

  • October 15, 2007 15 Oct'07

    Wachovia banks on entitlement management for fine-grained application security

    Securent's Entitlement Management Solution helps Wachovia enforce fine-grained application security, restricting who can do what once inside an application. More than that, it relieves developers from having to develop and deploy custom access ...

  • October 11, 2007 11 Oct'07

    Brief: Parasoft releases new version of SOA testing tool

    Parasoft's upgraded SOA testing tool, SOAtest 5.5, offers a host of new features, including increased compatibility with Microsoft products.

  • October 08, 2007 08 Oct'07

    The importance of testing software requirements

    Bypassing requirements testing can lead to software that doesn't do what users expected, costly software changes and often project failure.

  • October 08, 2007 08 Oct'07

    UML made Jacobson's use cases state of the art. What's next?

    Milan Kratochvil, author of UML Xtra Light, explores the future of classical system use cases, Ivar Jacobson's business use cases and user queries.

  • October 03, 2007 03 Oct'07

    Web application security, development unite

    The purchase of Web application security vendors SPI Dynamics and Watchfire by HP and IBM, respectively, indicate that application security is finally being taken seriously.

  • October 01, 2007 01 Oct'07

    SmartSignal's quality assurance team leverages automated software testing

    Borland's automated testing tool, SilkTest, helps SmartSignal's quality assurance team keep pace with agile development processes -- and meet the demands of high quality for its real-time analytics software for industrial equipment.

  • September 27, 2007 27 Sep'07

    Brief: Ounce Labs extends coverage of source code analysis tool

    Ounce Labs has extended its Ounce 5 source code analysis tool to include support for Classic ASP.

  • September 27, 2007 27 Sep'07

    Specifying IT: Key UML techniques in requirements

    The Unified Modeling Language (UML) can help communicate software requirements. Learn what its benefits are, how it complements natural languages and how the various UML diagrams work.

  • September 24, 2007 24 Sep'07

    The pros and cons of use case diagrams

    Putting too much into a use case diagram can often render the otherwise useful technique of use cases almost useless. Kevlin Henney recommends a more balanced and restrained approach in order to not lose readers in a myriad of bubbles and ...

  • September 24, 2007 24 Sep'07

    Where do requirements models fit in the project lifecycle?

    Modeling should not be considered something that's done only after requirements have been gathered. Use them throughout the requirements process to elicit and clarify requirements.

  • September 20, 2007 20 Sep'07

    Alberto Savoia sings the praises of software testing

    Alberto Savoia, CTO of Agitar Software, is on a mission to get developers to successfully unit test their own code. In this interview, he talks about the effects of bad software and the benefits of testing.

  • September 19, 2007 19 Sep'07

    Software requirements tool enables collaboration

    Blueprint Requirements Center 2008 enables teams of users to collaborate on business requirements and allows geographically dispersed teams to simultaneously define requirements assets, perform highly visual requirements simulations, and blueprint ...

  • September 12, 2007 12 Sep'07

    SOA, Web services create software security challenges

    Service-oriented architecture (SOA), Web services and Web 2.0 technologies increase the attack surface of applications, creating new challenges for software testers and developers.

  • September 10, 2007 10 Sep'07

    Polarion rolls out application lifecycle management platform

    Polarion ALM for Subversion 3.0, an integrated application lifecycle management (ALM) platform built on the open source Subversion version control system, provides one interface and repository to eliminate interface problems among development groups.

  • September 06, 2007 06 Sep'07

    Ajax application security critical, experts warn

    While developers increasingly turn to Ajax to create applications, they're not including security controls, leaving those applications open to attack. Ajax experts Billy Hoffman and Bryan Sullivan explain what can be done to increase Ajax ...

  • September 03, 2007 03 Sep'07

    AgitarOne facilitates unit testing of Java code

    With the release of AgitarOne 4.2, Agitar is helping to relieve the task of unit testing Java code. Out of the box, the company says with AgitarOne development teams can generate a basic set of unit tests that provide 80% code coverage across the ...

  • August 29, 2007 29 Aug'07

    Techniques to help prevent software project failure

    By doing both prototyping and model-driven development, development groups will meet business needs, deliver projects on time and within budget and prevent project failure.

  • August 28, 2007 28 Aug'07

    PCI Security Standards Council to address application security requirements

    Application security requirements in the Payment Card Industry (PCI) Data Security Standard (DSS) will be up for discussion when the PCI Security Standards Council meets next month for its first community meeting.

  • August 22, 2007 22 Aug'07

    Six Sigma: Let the data lead you to quality software

    IT organizations are successfully using a variety of quantitative and qualitative tools in their Six Sigma initiatives to improve software quality and processes.

  • August 16, 2007 16 Aug'07

    How poor management skills jeopardize software quality

    Software quality suffers when IT managers poorly communicate with their team and make decisions based on their own self-serving interests.

  • August 14, 2007 14 Aug'07

    Six Sigma helps reduce software defects, improve quality

    IT and software development organizations such as EMC Corp. and Motorola are deriving quality and efficiency benefits from the Six Sigma process improvement methodology.

  • August 06, 2007 06 Aug'07

    Software security testing: Finding your inner evildoer

    If a software tester has a great imagination, complete knowledge of the system they are testing, and an evil streak so he can think like an attacker, he will be well on his way to becoming an exceptional security tester.

  • August 02, 2007 02 Aug'07

    Web sites vulnerable to a new generation of attacks

    Web application security faces serious hurdles, experts warn. New attacks exploit XSS and CSRF vulnerabilities rampant among Web sites.

  • August 01, 2007 01 Aug'07

    Six Sigma makes inroads in software development organizations

    While still early in the adoption curve, software development and IT groups are finding Six Sigma, often combined with other process improvement efforts such as Lean and CMMI, helps to reduce defects and improve quality.

  • July 25, 2007 25 Jul'07

    PreEmptive announces new obfuscation product, support for Silverlight

    PreEmptive Solutions recently announced Dotfuscator Gold, the first comprehensive obfuscation and instrumentation platform that protects, analyzes and monetizes .NET applications. It also announced support for Microsoft Silverlight 1.1 alpha.

  • July 25, 2007 25 Jul'07

    Unit testing critical for improving software quality

    By doing unit testing, programmers can catch bugs early before they cause significant problems or delays. It's important, however, that programmers feel comfortable testing and not be scared off by extreme testing practices. Alberto Savoia explains ...

  • July 23, 2007 23 Jul'07

    The challenge of performance testing SOA applications

    Software testing and QA groups already pushed to the limit face even more challenges with SOA applications. Automation through modeling can help monitor and test such applications.

  • July 23, 2007 23 Jul'07

    dynaTRACE upgrades software performance management tool

    dynaTRACE Diagnostics has released an upgraded version of its flagship product. Version 2.1 has several new features, including support for security measures.

  • July 23, 2007 23 Jul'07

    Testing certification in context

    Software testers are divided on the issue of certification. Are CSTE and ISQTB adequate measures of testing skill?

  • July 23, 2007 23 Jul'07

    Telelogic, BigLever integrate model-driven development and software product line technology

    The Telelogic Rhapsody/BigLever Gears Bridge solution pulls together all the benefits of model-driven development (MDD) and software product line (SPL) technology to accelerate product development, improve quality, reduce defects and increase ...

  • July 18, 2007 18 Jul'07

    How to document use cases

    Ideally use cases capture the functional requirements of a system in terms of identifiable and testable goals. The trick is writing and documenting them so that they offer value not just for requirements gathering but also for software design and ...

  • July 18, 2007 18 Jul'07

    Software requirements: Visual prototyping worth a thousand words

    Using Skyway Software's Visual Workspace, Southern States Cooperative improves its software requirements and development processes and moves into SOA application development.

  • July 18, 2007 18 Jul'07

    Cenzic enhances software security assessment tool

    Cenzic's software security assessment tool, Hailstorm Enterprise ARC 5.0, integrates with vulnerability information from other sources and is available as a managed service.

  • July 16, 2007 16 Jul'07

    All testers can do specialty software testing

    Specialty software testing does require specialists for some aspects, but that doesn't mean testers with general knowledge and skill can't also help.

  • July 16, 2007 16 Jul'07

    Watchfire enhances AppScan, offers on-demand application security service

    Watchfire has enhanced AppScan to include PHP fix recommendations and a SQL injection exploit extension. The company has also unveiled a new on-demand application security service.

  • July 12, 2007 12 Jul'07

    Borland and VMware team up for virtual software testing

    Virtual software testing gets a boost from the integration of Borland's Test Manager and VMware's Lab Manager.

  • July 12, 2007 12 Jul'07

    Web application security market shifting

    IBM and HP have made moves to scoop up niche players in the nascent Web application security market. Analysts expect further consolidation, however, with big security vendors playing a role.

  • July 03, 2007 03 Jul'07

    The struggle to create quality software

    Software quality practices have been sacrificed as a way to improve a company's bottom line. But those sacrifices unnecessarily increase the risk to clients.

  • July 02, 2007 02 Jul'07

    Application security takes on greater importance in Web 2.0

    Web 2.0 applications have the same vulnerabilities as regular applications. Security evangelist Michael Sutton explains how to use application security methods in a dynamic Web environment.

  • June 28, 2007 28 Jun'07

    Project managers' evolving role in software development

    As software development changes, project managers roles must also evolve. Project managers need to adapt to a process that values coaching over "command and control" leadership.

  • June 27, 2007 27 Jun'07

    How to build better software using lean manufacturing, continuous quality improvement practices

    Lean manufacturing models contain quality improvement practices that, when combined with modern software technology, can improve the quality of software code. Using techniques defined as Continuous Automated Quality Improvement (CAQI), development ...

  • June 25, 2007 25 Jun'07

    ThoughtWorks releases the CruiseControl continuous integration framework for large organizations

    CruiseControl, a continuous integration framework from ThoughtWorks, has been enhanced for IT departments and software teams in large organizations. New features include an enhance interface and executive-level program management dashboard.

  • June 25, 2007 25 Jun'07

    Project managers in demand

    First Forrester Research said it, and now CIOs are speaking out about it. Project managers are in demand.

  • June 25, 2007 25 Jun'07

    How continuous integration improves software quality

    Paul Duvall, co-author of a new book on continuous integration, discusses how CI has evolved and how it can improve software quality. He also offers some tips for development teams on how to do CI.

  • June 22, 2007 22 Jun'07

    Agile expert Jim Highsmith to teach Agile University courses

    Jim Highsmith, a recognized leader in the Agile project management and software development movement, will offer public courses through Agile University.

  • June 19, 2007 19 Jun'07

    HP adds Web application security to its portfolio with SPI Dynamics acquisition

    HP plans to acquire SPI Dynamics Inc., a leading provider of Web application security assessment software and services. SPI Dynamics will be integrated into the Software unit within HP's Technology Solutions Group.

  • June 13, 2007 13 Jun'07

    Jeremiah Grossman on the pervasive nature of XSS

    Jeremiah Grossman, founder and chief technology officer of WhiteHat Security, talks about his new book, Cross Site Scripting Attacks: XSS Exploits and Defense; how developers and users can defend themselves against XSS; and the state of Web ...