Tips

Tips

• Tactics for software testing in the cloud

  In this tip, Matt Heusser and Catherine Powell describe challenges associated with deploying to the cloud and how those should be addressed.  Continue Reading

• Differences between Agile and conventional portfolio management

  In this tip, Kay Diller spells out ten differences between Agile portfolio management and conventional portfolio management.  Continue Reading

• CIOs and software quality assurance: Five hurdles for QA managers

  Director of QA and instructor John Scarpino has provided tips for overcoming five hurdles associated with CIO expectations.  Continue Reading

• Testing in the cloud: Considering the risks

  In this tip, SSQ contributor Matt Heusser talks about the risks of cloud computing, giving the tester some strategies for questions that can be asked of cloud vendors and IT.  Continue Reading

• Automated change management in Agile development

  Software consultant Nari Kannan offers a number of ways that change management can be automated in Agile software development.  Continue Reading

• Embedded software: Testing for the most common defects

  By researching the types of bugs found in embedded software systems, Invision consultant Jon Hagar has created an embedded software error taxonomy of the most common defects in four different embedded software domain areas.  Continue Reading

• Application security: Testing for insecure file references

  Insecure file references are considered a significant security risk of Web applications. In this tip, security expert John Overbaugh explains this attack and gives instructions on how you can test for and detect this vulnerability.  Continue Reading

• Defining configuration management

  In this tip, Heusser explains that configuration management is a context-specific term, but that it ultimately means reducing the risk of failure due to change.  Continue Reading

• Configuration management: Does your development team have enough?

  SSQ contributor Matt Heusser, describing techniques such as push-button build, continuous integration and push-button deploy, gives tips to help you decide just how much configuration management is right for your team.  Continue Reading

• Are managers needed in Agile development, or do they get in the way?

  In Agile development, teams are self-directed. Are managers even needed or do they just get in the way?  Continue Reading

• Change notifications: Think big. Think social media.

  In this tip, SSQ contributor Kay Diller suggests the use of firewall-protected social media to inform your organization of changes.  Continue Reading

• Global application testing: Internationalization and localization

  In this tip, SSQ contributor Matt Heusser explains how to test for internationalization and localization, including techniques, tools and quick attacks to weed out hard-to-find bugs.  Continue Reading

• The cloud: Does it fit into your business model?

  In this tip, SSQ contributor David W. Johnson discusses four factors that will help you determine whether investing in cloud computing is appropriate for your business.  Continue Reading

• The role of continuous integration in embedded software development -- better, faster and cheaper

  In this second part of a two-part series, consultant Howard Deiner talks about the benefits of CI, specifically when used for embedded software development.  Continue Reading

• The motivation behind continuous integration in embedded software development

  This tip, the first of a two-part series, speaks to the role that continuous integration plays to help you create better releases and reduce the workload in embedded software development.  Continue Reading

• Embedded software quality: To simulate, or emulate? That is the question

  Understanding the differences between simulator and emulator embedded software development tools is critical to effectively using them. This article dives into the issue and provides some suggestions to follow.  Continue Reading

• Estimation approaches in Agile development

  In Agile environments, estimating is done using "story points." In this tip, SSQ contributor Chris McMahon describes how story points are used on Agile teams and how story size, velocity and iterations can play a part in estimating Agile efforts.  Continue Reading

• Agile development for embedded software: The fallacy of one size fits all

  In this tip, Agile consultant Howard Deiner describes how Agile software development can and should be done with the iteration cycles using emulators or virtualized hardware so that the benefits of Agile will still be obtained, regardless of the ...  Continue Reading

• Test automation: Three approaches to browser testing

  Test automation when working with Web browsers can present challenges, such as slowly-loading pages, checking for sorted data, and testing static data. In this tip, SSQ contributor Chris McMahon describes these problems and how they can be addressed...  Continue Reading

• The seven deadly sins of embedded software development and testing

  In "The Divine Comedy," Dante probably wasn't talking about embedded software development, yet developers may be guilty of committing the seven deadly sins. In this tip, consultant Howard Deiner looks at how sins might be committed in embedded ...  Continue Reading

• STAREAST: Agile testing and defect tracking

  Defect tracking systems (DTS's) are often used in application lifecycle management (ALM) to keep track of the bugs found during software development. In this tip, Agile expert Lisa Crispin talks about the pros and cons of using a DTS and ...  Continue Reading

• Overcoming the challenges of cross-site scripting testing

  Cross-site scripting (XSS) is the most common security vulnerability in the Internet today. In this tip, security expert John Overbaugh will explain what XSS is and will show techniques to test for these types of attacks. By using a combination of ...  Continue Reading

• Application development: Security that won't weaken performance

  Security is important, but what happens when adding code to address security affects performance or usability? In this tip, SSQ contributor Crystal Bedell gives three best practices experts recommend for ensuring your application is secure, while ...  Continue Reading

• Application security: Testing for injection vulnerabilities

  A top security vulnerability in Web applications is an injection attack -- one in which the Web application is tricked into treating input as if it were code, allowing a hacker to gain control of an application. In this tip, security expert John ...  Continue Reading

• Adopting Agile: Eight traction tips to make Agile development stick

  Agile transition isn't easy. The tendency may be to revert back to traditional methods once the going gets tough, though experts encourage organizations to stick with it. In this tip, we learn eight tips for Agile traction recommended by Howard ...  Continue Reading

• Early days of Agile development: Lessons for small projects

  In 2003, QA professional Chris McMahon was one of a team of two implementing a small project using Agile techniques. Though the methodology was new, the guidelines of the Agile Manifesto were taken into account in determining how to best proceed. In...  Continue Reading

• Tips for application testing on mobile devices

  Mobile and touch screen devices promise new directions of features, and, along with that, new failure modes and risks. How then, should we test? Matt Heusser shares his experience and some reminders about important considerations when testing mobile...  Continue Reading

• Defining a strategy for testing mobile devices

  Stuck with a requirement to run your app on an iPad when you don't have an iPad? What about the plethora of other mobile devices out there? How can you possibly test? In this tip, Matt Heusser gives some advice on a mobility test strategy that will ...  Continue Reading

• Application security: Protecting application availability, data confidentiality and integrity

  Network security and application security are both important in keeping your applications safe from hackers. In this tip, security engineer John Overbaugh focuses on application security, which is needed to protect the confidentiality, availability ...  Continue Reading

• Managing change requests to your application

  In this tip, we look at end user requests, and the process to prioritize the requests for IT, so they know where to focus their work efforts.  Continue Reading

• Project management and change management: Establishing a strong partnership

  In this tip, long-time project manager Susan Oasheim describes the relationship between project management and change management. In order for the change introduced by a new project to be accepted, change management techniques should be followed. ...  Continue Reading

• Boost network security using firewalls, encryption and logging

  Which is more important, network or application security? Well, the answer, of course, is both. In this first part of a two-part series, security engineer John Overbaugh starts by describing the differences between network and application security, ...  Continue Reading

• Effective test-driven development and continuous integration

  Units tests were born in small programs with fast feedback loops -- yet as programs grow in size and scope, the time it takes to execute every unit test with each continuous integration build can be tedious. In this tip, Matt Heusser explains ...  Continue Reading

• Scripted testing vs. exploratory testing

  The merits of scripted testing vs. exploratory testing are often debated among software quality gurus. In this tip, Vasudeva Naidu does a deep dive into both. While automation of scripted tests is certainly becoming more prevalent in the industry, ...  Continue Reading

• Getting on the same page: How testers can help clarify requirements

  Gathering accurate requirements is one of the biggest challenges of software development. There can be a big disconnect between what the users want and the software that gets developed. In this tip, Agile expert Lisa Crispin gives some helpful ...  Continue Reading

• Requirements tips for data-centric projects

  Gathering requirements for data-centric projects presents a challenge. Business users may have trouble articulating the type of data needed to build a proper system and asking for changes late in the game can cause major project delays. In this tip,...  Continue Reading

• The value of visible requirements

  Have you ever been in a situation where the project team is saying they're almost done, but there's no visibility into the status of the requirements? That's what SSQ contributor Chris McMahon was once up against. In this tip he describes the ...  Continue Reading

• When testing embedded software, think outside the box

  Testing embedded software requires creative testing techniques, according to Jon Hagar at SQuAD Conference 2011. Learn techniques for testing embedded software in this tip.  Continue Reading

• Embedded software test: Attack of the killer robots

  Embedded software can be found in all devices from planes to pacemakers, but how do we test this kind of software? What are the differences between testing embedded software and traditional application software? In this tip, site editor Yvette ...  Continue Reading

• Attracting the right Agile software developers

  A lot of software development job candidates will claim to have Agile skills, but are they just throwing around buzzwords? In this tip, consultant Catherine Powell will help you find the qualified candidates who live out the values and practices of ...  Continue Reading

• Seven steps for tracking business requirements throughout a software release

  In traditional software development, it can be easy for the business folks to think that their role is to define the requirements and their involvement is not needed again until UAT. However, in order to ensure requirements are implemented as ...  Continue Reading

• Business requirements: Five steps to exceed business expectations

  Regardless of the methodology being used, it is imperative that the development team and the business collaborate throughout the software development lifecycle. In this tip by software expert Kay Diller, we look at ways to maintain a strong ...  Continue Reading

• Debunking myths of application lifecycle management

  In this tip, we expose three myths of Application Lifecycle Management (ALM) which continue to quietly impede successful software development and delivery across industries. Understanding that best-in-class isn’t always the best option, that there ...  Continue Reading

• Embedded software testing: Five messaging event styles

  In testing embedded systems, timing can often cause trouble. In this tip, consultant Scott Allman describes the five different types of event styles that can occur when two events are executed. A good test plan will cover each of those event styles ...  Continue Reading

• Testing-as-a-Service: Outsourcing your specialized software testing

  Testing-as-a-Service (TaaS) solutions are cropping up in the software industry, allowing clients the ability to take advantage of paying for what they need, when they need it, rather than investing in expensive tool sets and experts. In this tip, ...  Continue Reading

• Manual testing vs. automated testing: A decision point

  Automation in a test environment can be expensive and doesn’t always yield a high return. In fact, a high percentage of automation efforts fail. In this tip, Vasudeva Naidu gives advice on key factors that will lead to success in your automation ...  Continue Reading

• Waterfall vs. Agile development: A case study

  Two projects very similar in scope were executed by the same project team for the same users. The first project used a waterfall methodology and resulted in missed deadlines and failure to deliver user requirements. The second used an Agile ...  Continue Reading

• Is automated testing replacing the software tester?

  As automation becomes more popular in software development, testers are wondering if their skills are becoming obsolete. Managers may question how to staff their organizations. In this tip, senior test architect David W. Johnson describes the ...  Continue Reading

• Designing automated tests for the user interface

  If you only had a limited amount of time, how would you design your user interface automated tests? SSQ contributor Chris McMahon explains the concept of "useful paths" to help design the tests that will maximize efficiency. Rather than testing ...  Continue Reading

• Test automation: Investing in performance testing

  Performance test automation can require special tools and skills. Often organizations don't know where to start. In this tip by Agile Testing co-author Lisa Crispin, you'll learn the steps to analyze your needs, evaluate solutions, build the ...  Continue Reading

• A case study in the use of automation

  Employers are looking for testers with automation skills, but what exactly does that mean? Agile expert and co-author of Agile Testing Lisa Crispin describes real-life examples of the use of tools to automate test scripts. Crispin describes how her ...  Continue Reading

• Automated test scripts: The Smartphones of testing

  From test-driven development to GUI automation, author and Agile expert Lisa Crispin describes the many uses for automation in software testing. By using tools and programming techniques to automate tedious and repetitive processes or test steps, a ...  Continue Reading

• Six tips for selecting automated test tools for Agile development

  Software consultant Nari Kannan describes the differences in selecting automated test tools for Agile methodologies as opposed to waterfall/SDLC and Agile ones. The nature of Agile development methodologies and the typical time available between ...  Continue Reading

• Real world Agile: Gaining internal acceptance of Agile methodologies

  Gaining buy-in for an Agile transition can be a challenge. People are naturally resistant to change. Without a united team, Scrum Masters have difficulty maintaining the discipline needed for a successful project. Learn about some of the challenges ...  Continue Reading

• Testing the user interface: Automated and exploratory testing

  Should user interface (UI) testing be automated or exploratory? In this tip, SSQ contributor Chris McMahon answers that both automated and exploratory testing can be used for UI testing, and what is most effective is using them together. McMahon ...  Continue Reading

• Test automation: When, how and how much

  Test automation has often been touted as an important part of an organization's quality strategy. However, it's not a silver bullet. In this tip, consultant David Johnson describes important considerations in determining when to invest in test ...  Continue Reading

• Agile ALM tools: How they differ from traditional lifecycle management tools

  Software consultant Nari Kannan describes the differences between agile application lifecycle management (ALM) tools and traditional lifecycle management software. Agile ALM tools are more tightly integrated, easier to use, supportive to distributed...  Continue Reading

• Optimizing your mobile website for all devices

  When your Web application goes mobile, your users may see some strange results if you’re not careful. In this tip, consultant Judith Myerson discusses four strategies that will help you make sure your Web application is optimized for use on mobile ...  Continue Reading

• Large-scale Agile: Making the transition to Scrum

  Transitioning to Scrum does not happen overnight, particularly with a large team. In this tip, software consultant Matt Heusser defines a strategy for an incremental transition rather than a "big bang" approach. Heusser describes the benefits of ...  Continue Reading

• Application security hardening for mobile and embedded software

  With the increasing number of mobile devices and application downloads by consumers, application security is becoming more important than ever. In this tip, application hardening tools and the use of obfuscation is discussed. Industry analysts talk ...  Continue Reading

• Specialized testing for your enterprise application

  In this tip, Judith Myerson describes examples of five types of testing for your enterprise applications: cloud testing, user acceptance testing, modular testing, agile testing and incremental testing. Myerson gives a brief overview of each type of ...  Continue Reading

• Transitioning to distributed Agile: A study from Pace University

  A study done at Pace University produced a report outlining an application development effort of five students in three countries. The development team used Scrum in a distributed fashion to develop a mobile application used by first graders in ...  Continue Reading

• Best practices for mixing Agile and outsourcing

  Software consultant Nari Kannan describes how to mix Agile practices with outsourcing. Some of the best practices that can be adopted to make this effort successful are reducing risks up front with hybrid Agile models, organizing work in special ...  Continue Reading

• Agile testing on large-scale projects

  What are key factors to success in agile testing efforts on large-scale projects? Consultant David Johnson suggests they are experience, your agile approach, the size and complexity of your non-agile code base and the long-term ownership of the ...  Continue Reading

• Managing large Agile application lifecycle projects

  Index cards and sticky notes might work for small teams, but for large projects, your tool set is going to need more sophistication. In this tip, contributor Chris McMahon explains the importance of flexibility, transparency and breaking down silos ...  Continue Reading

• Keys for Agile development: Planning and team collaboration on large or small projects

  Whether a small Web application or a large-scale enterprise application, planning is essential. Agile expert Lisa Crispin describes the balance between "big design up front" and diving in without a design by using "just enough" planning to ensure ...  Continue Reading

• Eight steps for a successful software release

  Have you done everything to prepare for a successful software release? Software project manager Kay Diller describes eight things you can do to ensure your deployment will go smoothly. From creating your team to being prepared with a back-out plan, ...  Continue Reading

• Software iteration deployment: The importance of retrospectives, feedback and celebration

  The end of a software iteration marks a time when there should be retrospectives, feedback from customers and celebration. SSQ Contributor Chris McMahon describes his end-of-iteration experiences in Agile environments. McMahon explains his somewhat ...  Continue Reading

• Software test management: Reporting for business success

  Test managers are often at a loss for creating a report that will be most useful for business users. Software consultant Catherine Powell gives step-by-step advice to test managers on how to identify relevant business needs, translate data into ...  Continue Reading

• Best practices for building high-performing application development teams

  How do development organizations stay competitive? A recent Forrester report has shown that the three best practices for building a high-performing application development team are 1) recruit the right players, 2) create an intrinsically motivated ...  Continue Reading

• Performance testing tips from the greats

  Ever wondered how major organizations such as Facebook handle performance testing? To find out, Matt Heusser took the performance testing tutorial at STPCon in Las Vegas, Nevada-- and shares five tips he learned from prominent experts in the field.  Continue Reading

• Collaboration tools: Communication trends in ALM

  Geographically dispersed teams are common in today’s software industry, making strong communication and collaboration tools essential in carrying out real-time communication throughout the application lifecycle. This tip discusses collaborative ...  Continue Reading

• Achieving higher CMMI maturity levels in Agile organizations

  Paul McMahon, author of Integrating CMMI and Agile Development, McMahon talks more about the integration of CMMI and agile techniques, explaining that, while met with initial resistance, agile organizations are finding benefit from CMMI process ...  Continue Reading

• Agile development methods for CMMI-mature organizations

  Paul McMahon, author of Integrating CMMI and Agile Development, explains some of the fallacies associated with CMMI and how CMMI-mature organizations can add more agility to their organizations.  Continue Reading

• Understanding application lifecycle management's complex identity

  Application lifecycle management seems to take a cue from a "Scooby Doo" villain. Once you think you know what it is, it pulls off its mask and reveals itself as something else. Is ALM a development process? A project management tool? A bunch of ...  Continue Reading

• Choosing Agile-true application lifecycle management (ALM)

  Using agile methodologies and tools can help streamline processes and bring flexibility to end-to-end software management. This tip delves into why ALM can only be effective if truly-agile tools are used. Get advice on choosing ALM tools that don’t ...  Continue Reading

• Test management: Measuring the performance of testing-- who tests the testers?

  By answering three questions, software test organizations can improve their effectiveness and the value of their services. In this tip with Software Quality Systems' director Ivan Ericsson, you'll learn the metrics needed to ensure an effective and ...  Continue Reading

• Agile methodology techniques: Unit test, automation and test-driven development

  Yvette Francino explains the basics of unit test, automation and test-driven development. Test-driven development (TDD) is a form of unit testing, originating from the agile methodology XP. The tests are written and executed using short iterations, ...  Continue Reading

• CMMI for development: An overview of a process improvement model

  SEI has released CMMI for Development, v1.3 in October, 2010. This tip provides an overview of the Capability Maturity Model for Integration, explaining some of the basic terminology, including process areas, components and levels of this popular ...  Continue Reading

• DevOps: Fostering collaboration in software development

  Departmental silos are breaking down and development and operations are collaborating more closely. In this tip, SSQ contributor Chris McMahon gives advice on how the relationship between development and operations can be fostered and how closer ...  Continue Reading

• Eleven steps to kickoff application lifecycle management

  Regardless of the methodology or process that your organization uses, it's important that you define your application lifecycle. Director of QA John Scarpino shares 11 important steps you can follow to ensure you carry out application lifecycle ...  Continue Reading

• Security ALM: Testing throughout the software application lifecycle

  One of the most important aspects of software development today is writing secure software. Yet, for most IT organizations, security testing is introduced too late in the cycle to be of any help. Security expert John Overbaugh shares his experiences...  Continue Reading

• One hundred percent distributed Agile teams: Communication and workflow

  What is the key to success for a distributed agile team? SSQ contributor Chris McMahon explains the importance of communication and workflow and discusses technologies to help distributed teams collaborate effectively. Wikis and defect tracking ...  Continue Reading

• Pair programming: Two people, one computer

  Pair programming, the technique where two programmers use one computer to develop software code, is a practice which has been shown to improve software quality when done well. In this tip, SSQ site editor explores the pros and cons of pair ...  Continue Reading

• Applying lean concepts to software testing

  If we're going to use a factory analogy for software development, shouldn't we at least study the techniques modern factories use? In this tip, software quality expert Matt Heusser describes concepts used first for lean manufacturing, which are now ...  Continue Reading

• Waterfall or Agile? Differences between predictive and adaptive software methodologies

  Is your organization trying to decide whether to use a predictive methodology such as waterfall or an adaptive methodology such as scrum? Senior consultant David Johnson describes the history of software methodologies and the differences between ...  Continue Reading

• How to alleviate software test design bottlenecks in Agile environments

  Senior test architect David Johnson describes two different design challenges: testing the current release and regression testing in agile environments. Johnson discusses the use of exploratory testing and keyword test design, explaining when each ...  Continue Reading

• Software developers and testers: Can't we all just get along?

  The relationship between developers and testers has often been strained, but it doesn't have to be. In this tip, site editor Yvette Francino talks about how this contention can develop and discusses ways to combat it. Regardless of methodology, by ...  Continue Reading

• Scaling Agile software development: Challenges and solutions

  Software consultant Nari Kannan describes how agile practices and work can be scaled appropriately for success in large organizations. Using lean thinking, reduction of waste, and appropriately organizing work and people, agile can be successfully ...  Continue Reading

• Breaking the bug reporting rules

  Software test expert Chris McMahon talks about three rules for bug reporting, but then explains that there are times when breaking these rules are necessary for even better bug reporting. Intermittent problems and other special cases require skill ...  Continue Reading

• The perfect storm: Multiple mishaps lead to disaster

  A series of mistakes, due to a series of software errors and lapses in judgment, result in a situation that could mean the difference between life and death for customers. Find out lessons that test expert Chris McMahon learned from experiencing a ...  Continue Reading

• Happy customers through high-performing service level agreements (SLAs)

  Software pro Kay Diller describes how to set up an effective system to ensure high-performing SLAs. By using automated monitoring systems, operating level agreements (OLAs) and staying informed as an SLA manager, your customers will know their ...  Continue Reading

• Hacking For Dummies: Hacking Methodologies, Chapter 4

  Kevin Beaver teaches the steps for successful ethical hacking, gleaning information about your organization from the Internet, scanning your network and how to look for vulnerabilities. Tools and techniques for ethical hacking are described ...  Continue Reading

• What is a test case? What is a requirement?

  After exploring the definition of a test case by surveying test experts, authors and students, consultant Robin Goldsmith learns that interpretations remain ambiguous and varied. Similarly, the level of detail thought to be needed to define ...  Continue Reading

• Automating software development: The Big Red Button

  Seasoned tester Chris McMahon talks about using automation in all phases and aspects of the software development cycle. Continuous integration, test environments, test data, regression testing, performance testing and deployment are candidates for ...  Continue Reading

• Self-organizing teams exposed

  Software expert Chris McMahon describes how self-organizing teams can work well, even in a distributed environment, by tuning team roles and team workflow. Silos are being broken down so that the team operates with less distinction between roles, ...  Continue Reading

• The distinction between functional versus performance requirements

  Senior test architect David Johnson describes the distinction between functional and performance requirements and the benefits from keeping these two test efforts separate. Examining differences in test investment, test ROI and risk, Johnson makes ...  Continue Reading

• Daily Scrum meetings: Must we really stand up?

  Often called the daily stand-up, must everyone at the Daily Scrum meeting literally stand? Which rules are inflexible? How are the rules enforced? Find out the objectives of the Daily Scrum and how agile teams are operating to meet these objectives.  Continue Reading

• Test design focused on expediting functional test automation

  Senior test architect David Johnson describes test design paradigms such as keyword-based test design, which can be leveraged for functional test automation. Johnson addresses both commercial and open source solutions in both agile and predictive ...  Continue Reading

• Inadequate requirements and what to do about them

  Software requirements are often subjective and poorly written resulting in inadequate requirements documentation. In this tip, QA Director John Scarpino describes some of the reasons behind poor requirements and ways that this can be addressed.  Continue Reading