Regarding The Reference

Posted On August 30, 2008

Filed under CSTE

Comments Dropped leave a response

Hello Friends,
When You go through each topic , you would find the Ref. below each topic or sub topic. the reference is given for the CSTE CBOK, which you have to follow for giving the CSTE exam.

Its for your better understanding and for your convenience I am mentioning the Page nos at the end.

Enjoy reading !

CSTE-Common Book of Knowledge-Version 6.2 – Skill Category 1

Posted On August 30, 2008

Filed under CSTE
Tags: , , , ,

Comments Dropped leave a response

Factors Affecting Software Testing:
—People relationships
—Scope of testing
—Misunderstanding life cycle testing
—Poorly developed test plans
—Testing constraints
Ref : 1.4 p 1-29
People Relationships :
—The top ten people challenges have been identified as:
—Training in testing
—Relationship building with developers
—Using tools
—Getting managers to understand testing
—Communicating with users about testing
—Making the necessary time for testing
—Testing “over the wall” software
—Trying to hit a moving target
—Fighting a lose-lose situation
—Having to say “no”
*According to the book “Surviving the Top Ten Challenges of Software Testing, A People-Oriented Approach” by William Perry and Randall Rice.
Ref : 1.4.1 p 1-29
Scope of Testing :
—Among the broader scope of software testing are these responsibilities:
—Software testing can compensate for the fact that the software development process does not identify the true needs of the user, and thus test to determine whether or not the user’s needs have been met regardless of the specifications.
—Finding defects early in the software development process when they can be corrected at significantly less cost than detected later in the software development process.
—Removing defects of all types prior to software going into a production state when it is significantly cheaper than during operation.
—Identifying weaknesses in the software development process so that those processes can be improved and thus mature the software development process.
Ref : 1.4.2 p 1-30
Misunderstanding Life Cycle Testing:
—The traditional view of the development life cycle places testing prior to operation and maintenance. See Table 1-5 on next slide
—All too often, testing after coding is the only method used to determine the adequacy of the system. When testing is constrained to a single phase and confined to the later stages of development, severe consequences can develop.
—It is not unusual to hear of testing consuming 50 percent of the development budget. All errors are costly, but the later in the life cycle that the error discovered is made, the more costly the error.
Ref : 1.4.3 p 1-31
Life Cycle Testing Activities
—Studies show the majority of system errors occur in the design phase. Approximately two-thirds of all detected system errors can be attributed to errors made during the design phase.
—The recommended test process involves testing in every phase of the life cycle.
—Requirements phase: emphasis is on validation to determine that the defined requirements meet the needs of the organization.
—Design and program phases: emphasis is on verification to ensure that the design and programs accomplish the defined requirements.
—Test and installation phases: emphasis is on inspection to determine that the implemented system meets the system specification.
—Maintenance phases: the system is retested to determine that the changes work and that the unchanged portion continues to work.
Ref : 1.4.3 p 1-32
Life Cycle Testing Activities (cont.)
—Study sections 1.4.3.1 through 1.4.3.6 starting on page 1-33 for details about the testing process for each phase of the life cycle.
—Requirements
—Design
—Program (Build/Construction)
—Test Process
—Installation
—Maintenance
ref : 1.4.3.1 p 1-33 through 1.4.3.6 p 1-34
Poorly Designed Test Planning
—Variability in test planning is a major factor affecting software testing.
—A plan should be developed that defines how testing should be performed.
—Four steps must be followed to develop a customized test plan:
1.Select and rank test objectives.
2.Identify the system development phases.
3.Identify the business risks associated with the system under development. Place risks in the matrix.
Ref : 1.4.4 p 1-35
Testing Constraints:
—Anything that inhibits the tester’s ability to fulfill their responsibilities is a constraint.
—Constraints include:
—Limited schedule and budget
—Lacking or poorly written requirements
—Changes in technology
—Limited tester skills
Ref : 1.4.5 p 1-36
Budget and Schedule Constraints
—The cost of defect identification and correction increases exponentially as the project progresses.
—A defect encountered during requirement and design is the cheapest to fix.
—Assume that it costs x to fix a defect in the requirement and design phase. Fixing that same defect during the system test phase costs 10x. A defect corrected after the system goes into production costs 100x.
Ref : 1.4.5 .1 p 1-36
Lacking or Poorly Written Requirements
—Test objectives enable the test manager and project manager to gauge testing progress and success.
—Each test objective should contain a statement of the objective, and a high-level description of the expected results stated in measurable terms. The users and project team must prioritize the test objectives.
—Usually the highest priority is assigned to objectives that validate high priority or high-risk requirements defined for the project.
—In cases where test time is cut short, test cases supporting the highest priority objectives would be executed first.
—Test objectives can be easily derived from using the system requirements documentation, the test strategy, the outcome of the risk assessment, and the test team assignments.
Ref : 1.4.5 .2 p 1-38
Changes in Technology
—Technological developments that can cause organizations to revise their testing approach:
—Integration
—System Chains
—The Domino Effect
—Reliance on Electronic Evidence
—Multiple Users
Ref : 1.4.5 .3 p 1-39
Limited Tester Skills
—Testers should be competent in all ten of the CSTE Common Body of Knowledge skill categories to be effective.
—Lack of the skills needed for a specific test assignment constrains the ability of the testers to effectively complete that assignment.
Ref : 1.4.5 .3 p 1-39
Life Cycle Testing
—Life cycle testing involves continuous testing of the solution even after software plans are complete and the tested system is implemented.
—Life cycle testing cannot occur until you formally develop your processLife cycle testing is best accomplished by forming a test team. The team is composed of project members responsible for testing the system. They must use structured methodologies when testing; they should not use the same methodology for testing that they used for developing the system.
Ref : 1.5 p 1-40
Creating S.M.A.R.T. Goals
—Specific
—Measurable
—Attainable
—Realistic
—Timely

CSTE-Common Book of Knowledge-Version 6.2 – Skill Category 1

Posted On August 30, 2008

Filed under CSTE
Tags: , ,

Comments Dropped leave a response

What is Life Cycle Testing?Why Do We Test Software? :
—The simple answer as to why we test software is that developers are unable to build defect-free software.
—If the development processes were perfect, meaning no defects were produced, testing would not be necessary.
—Testing is the process of evaluating a deliverable with the intent of finding errors.
Ref : 1.2.1 p 1-15
Developers are not Good TestersHere are some reasons…
—Misunderstandings will not be detected, because the checker will assume that what the other individual heard from him was correct.
—Improper use of the development process may not be detected because the individual may not understand the process.
—The individual may be “blinded” into accepting erroneous system specifications and coding because he falls into the same trap during testing that led to the introduction of the defect in the first place.Information services people are optimistic in their ability to do defect-free work and thus sometimes underestimate the need for extensive testing.
Ref : 1.2.2 p 1-16
What is a Defect?
—A defect is an undesirable state.
—Two types of defects: process and procedure.
—The term quality is used to define a desirable state. A defect is defined as the lack of that desirable state. In order to fully understand what a defect is we must understand quality.
Ref : 1.2.3 p 1-16
Software Process Defects :
—Ideally, the software development process should produce the same results each time the process is executed.
—Variability is the “enemy” of quality
—The concept of measuring and reducing variability is commonly called statistical process control (SPC).
—Testers need to understand process variability, because the more variance in the process the greater the need for software testing.
Ref: 1.2.4 p 1-17
What Does It Mean for a Processto be In or Out of Control?
—A process is defined as stable if its parameters (i.e., mean and standard deviation) remain constant over time; it is then said to be in a state of statistical control. Such a process is predictable.
—Special causes of variation are not typically present in the process. They occur because of special or unique circumstances. If they exist, the process is unstable or unpredictable. Special causes must be eliminated to bring a process into a state of statistical control.
Ref : 1.2.4.1 p 1-17 though p 1-21
Examples of Software Design Defects :
—Designing software with incomplete or erroneous decision-making criteria. Actions have been incorrect because the decision-making logic omitted factors that should have been included.
—Failing to program the software as intended by the customer (user), or designer, resulting in logic errors often referred to as programming errors.
—Omitting needed edit checks for determining completeness of output data. Critical data elements have been left blank on many input documents, and because no checks were included, the applications processed the transactions with incomplete data.
Ref : 1.2.5.1 p 1-23
Examples of Data Defects :
—Incomplete data used by automated decision-making applications. Some input documents prepared by people omitted entries in data elements that were critical to the application but were processed anyway. The documents were not rejected when incomplete data was being used.
—Incorrect data used in automated decision-making application processing. People unintentionally introduced incorrect data into the IT system.
—Obsolete data used in automated decision-making application processing, perhaps due to new circumstances, or the new data was available but was not put into the computer.
Ref : 1.2.5.2 p 1-23
Finding Defects :
—All testing focuses on discovering and eliminating defects or variances from what is expected.
—Testers need to identify these two types of defects:
—Variance from Specifications – A defect from the perspective of the builder of the product.
—Variance from what is Desired – A defect from a user (or customer) perspective.
Ref : 1.2.6 p 1-24
Typical Software System Defects:
—Improperly interpreted requirements
—Users specify the wrong requirements
—Requirements are incorrectly recorded
—Design specifications are incorrect
—Program specifications are incorrect
—Errors in program coding
—Data entry errors
—Testing errors
—Corrected condition causes another defect
Ref : 1.2.6 p 1-24
Reducing the Frequency of Defectsin Software Development:
—Department of Defense (DOD) undertook a study to identify the criteria that made software development more effective.
—Research was conducted by Carnegie Mellon University’s Software Engineering Institute (SEI).
—The end result was an algorithm that enabled the DOD to identify the more effective and efficient software development. This algorithm is now known as the Capability Maturity Model.
Ref : 1.3 p 1-25
The Five Levels of Maturity :
—The capability maturity model identifies five different levels of maturity. As the model moves from Level 1 to Level 5, the process variability is significantly reduced. Thus, those at Level 5 have minimal variability in their software development process, while Level 1 organizations have significant variability.
—The cost differences to produce a function point of logic between a Level 1 and Level 5 organization may vary by 100 times. In other words, what a Level 1 organization may spend on building software, for example $1,000, may only cost $10 for a Level 5 organization.
Ref : 1.3.1 p 1-25
The Five Levels of Process Maturity :
—Level 1 – Ad Hoc
—Level 2 – Control
—Level 3 – Core Competency
—Level 4 – Predictable
—Level 5 – Innovative
Ref : 1.3.1 p 1-25

CSTE-Common Book of Knowledge-Version 6.2 – Skill Category 1

Posted On August 30, 2008

Filed under CSTE
Tags: , ,

Comments Dropped leave a response

The Cost of Quality :
# The Cost of Quality is all the costs that occur beyond the cost of producing the product “right the first time.”
#Used to quantify the total cost of prevention and appraisal, and costs associated with the production of software.
# Includes all costs associated with the prevention, identification, and correction of product defects.
Ref : 1.1.2 p 1-4
Costs Associated with Producing Quality Products :
# Prevention Costs
Money required to prevent errors and to do the job right the first time. Normally requires up-front costs for benefits that will be derived months or even years later. Includes money spent on establishing methods and procedures, training workers, acquiring tools, and planning for quality. Prevention money is all spent before the product is actually built.
# Appraisal Costs
Money spent to review completed products against requirements. Includes the cost of inspections, testing, and reviews. Appraisal money is spent after the product is built but before it is shipped to the user or moved into production.
# Failure Costs
All costs associated with defective products that have been delivered to the user or moved into production. Some failure costs involve repairing products to make them meet requirements. Others are costs generated by failures such as the cost of operating faulty products, damage incurred by using them, and the costs associated with operating a Help Desk.
Ref : 1.1.2 p 1-5
Cost of Quality (cont.)
—The Cost of Quality varies from one organization to the next.
—Majority of the Cost of Quality is associated with identification and correction of defects.
—To minimize production costs, the project team must focus on defect prevention.
—The goal is to optimize the production process such that rework is eliminated and inspection is built into the production process.
—Applying the concepts of continuous testing to the systems development process can reduce the Cost of Quality.
Ref : 1.1.2 p 1-5
Software Quality Factors (SQF) :
—These are attributes of the software that, if they are wanted and not present, pose a risk to the success of the software, and thus constitute a business risk.
—The primary purpose of applying SQF in a software development program is to improve the quality of the software product.Eleven SQF were identified by McCall in 1977.
Ref : 1.1.3 p 1-5
How Quality is Defined:
—There are multiple quality philosophies, but most contain the same core components:
—Quality is based upon customer satisfaction
—Your organization must define quality before it can be achieved
—Management must lead the organization through any improvement efforts
—Peter R. Scholtes introduces the contrast between effectiveness (doing the right things) and efficiency (doing things right). Quality organizations must be both effective and efficient.
Ref : 1.1.4 p 1-12
Five Perspectives of Quality :
—Each of these perspectives must be considered as important to the customer as the others:
1.Transcendent – I know it when I see it
2.Product-Based – Possesses desired features
3.User-Based – Fitness for use
4.Development- and Manufacturing-Based – Conforms to requirements
5.Value-Based – At an acceptable cost
Ref : 1.1.4 p 1-12
Quality in Fact and Quality in Perception :
—Patrick Townsend examines quality in fact and quality in perception .
—Quality in fact is usually the supplier’s point of view, while quality in perception is the customer’s.
Ref : 1.1.4 p 1-12
Definitions of Quality :

Quality is meeting the customer’s requirements the first time and every time.
—Quality is conformance to a set of customer requirements that, if met, result in a product that is fit for its intended use.
—Quality is much more than the absence of defects.
—Quality can only be seen through the eyes of the customers.
—Exceeding customer expectations assures meeting all the definitions of quality.
Ref : 1.1.5 p 1-13

What is Quality Software? :

—The producer’s view of quality software means meeting requirements.
—The customer’s/user’s view of software quality software means fit for use.
—These two definitions are not inconsistent.
—Meeting requirements is the producer’s definition of quality; it means that the person building the software builds it in accordance with requirements.
—The fit for use definition is a user’s definition of software quality; it means that the software developed by the producer meets the user’s need regardless of the software requirements.
Ref : 1.1.6 p 1-13

CSTE-Common Book of Knowledge-Version 6.2 – Skill Category 1

Posted On August 30, 2008

Filed under CSTE
Tags:

Comments Dropped leave a response

Skill Category 1 (Part 1)Software Testing Principles and Concepts :
Preview of Software Testing and Principles :
1.1 Vocabulary
1.2 What is Life Cycle Testing?
1.3 Reducing the Frequency of Defects in Software Development
1.4 Factors Affecting Software Testing
1.5 Life Cycle Testing
Testing is a Quality Control Activity.
# There is often confusion regarding the difference between quality control (QC) and quality assurance (QA).
# Quality methods can be segmented into two categories: preventive methods and detective methods.
# Quality has two working definitions:
# Producer’s Viewpoint – The quality of the product meets the requirements.
# Customer’s Viewpoint – The quality of the product is “fit for use” or meets the customer’s needs.
# Both quality assurance and quality control are necessary.
REF : 1.1.1 page 1-2 (CSTE CBOK)
Quality Assurance (QA) vs. Quality Control (QC)
# Quality Assurance- a planned and systematic set of activities necessary to provide adequate confidence that products and services will conform to specified requirements and meet user needs. Quality assurance is a staff function.
# Quality Control- the process by which product quality is compared with applicable standards, and the action taken when nonconformance is detected. Quality control is a line function.
Ref : 1.1.1.1 p 1-2 & 1.1.1.2 p 1-3 (CSTE CBOK)
Quality Control (QC)
—QC relates to a specific product or service.
—QC verifies whether specific attributes are in, or are not in, a specific product or service.
—QC identifies defects for the primary purpose of correcting defects.
—QC is the responsibility of the team/worker.
—QC is concerned with a specific product.
Ref : 1.1.1.2 p 1-3 (CSTE CBOK)
Quality Assurance (QA)
—QA helps establish processes.
—QA sets up measurement programs to evaluate processes.
—QA identifies weaknesses in processes and improves them.
—QA is a management responsibility, frequently performed by a staff function.
—QA is concerned with all of the products that will ever be produced by a process.
—QA is sometimes called QC over QC because it evaluates whether QC control is working.
—QA personnel should never perform QC unless it is to validate QC.
Ref : 1.1.1.2 p 1-4 (CSTE CBOK)

Information regarding the CSTE Exam

Posted On August 30, 2008

Filed under CSTE

Comments Dropped leave a response

Information shared in this document is gathered from my understanding. The information could change from time to time.
Pls. Visit http://www.softwarecertifications.org/ for up-to-date information.
Exam Passing Criteria is 77 %
Exam Pattern :
Four parts are there :
1. Objective Questions 50 nos.
2. Subjective Questions 10 nos
3. Objective Questions 50 nos
4. Subjective Questions 10 nos
5-10 break time is allowed and u can sit there and relax.
Total 4 1/2 hours exam is there.
Regarding the centre , plz visit the website.
- Examination is to be written with pencil only , both the subjective and the objective papers.
- Total you have to bring more than 77 % to get the status pass. Passing in each paper is not necessary.
- Attempt all the questions, no negative marking is there.- For the objective types of questions, read the CBOK thoroughly 3-4 times.
- Subjective types questions are quite easy, those having the experience in the QA/Testing field would be ablt to answer them.
- For subjective types dont write the answer in details as less space is there , after the question only u have to write the answer with pencil there. Use bulleted forms, diagrams, it would help the examiner to ensure that u know the subject matter quite well.
- The exam is conducted quaterly .All the best for those who are appearing for the Sep 2008 exam.

Examination Schedule for India

Posted On August 30, 2008

Filed under CSTE

Comments Dropped leave a response

SEPTEMBER ~ 2008 Saturday, September 20th, 2008 -

[Application / Scheduling Deadline ~ July 21st, 2008] – [Deferral Deadline: August 21st, 2008]

89010 ~ Bangalore, India
89015 ~ Chennai, India
89035 ~ Hyderabad, India
89030 ~ Kolkata, India
89005 ~ Mumbai, India
89025 ~ New Delhi, India
89020 ~ Pune, India

Note: Examination schedule is subject to change.

Kindly visit regularly the site http://www.softwarecertifications.org/

Additional Books for CSTE Exam

Posted On August 30, 2008

Filed under CSTE

Comments Dropped leave a response

Additional books that might be helpful apart from the CSTE CBOK :

Managing the Testing Process: Practical Tools and Techniques for Managing Hardware and Software Testing by Rex Black. Microsoft Press, 1999.

Surviving the Top Ten Challenges of Software Testing by William E. Perry and Randall Rice. Dorset House, 1997.

Effective Methods of Software Testing , Second Edition by William E. Perry. Wiley, 2000.

Software Test AutomationTesting Computer Software, Second Edition by Cem Kaner, Jack Falk, Hung Quoc Nguyen. Van Nostrand Reinhold, 1993.

Black Box Testing Techniqueses

A Guide to Software Package Evaluation and Selection by Nathan Hollander. AMACOM, 2000A

Manager’s Guide to Software Engineering g by Roger S. Pressman. McGraw Hill, 1993.

CSTE Body of Knowledge – Knowledge Category 10

Posted On August 30, 2008

Filed under CSTE

Comments Dropped leave a response

Testing New Technologies
Testers require skills in their organization’s current technology, as well as a general understanding of the new information technology that might be acquired by their organization.
This knowledge category addresses:
An Understanding of the New Testing Challenges with These Technologies:
1. New application architecture including:
a. web based applications
b. PDA’s
2. New application business models including:
a. e-commerceb. e-business
3. New communication methods including:
a. wireless
4. New testing tools including:
a. test automation software
Evaluating New Technologies to Fit into the Organization’s Policies and Procedures
Assessing the adequacy of the controls within the technology and the changes to existing policies and procedures that will be needed before the new technology can be implemented effectively
This would include:
1. Testing new technology to evaluate actual performance versus supplier’s stated performance.
2. Determine whether current policies and procedures are adequate to control the operation of the new technology and modify to bring in currency.
3. Assess the need to acquire new staff skills to effectively implement the new technology

CSTE Body of Knowledge – Knowledge Category 9

Posted On August 30, 2008

Filed under CSTE

Comments Dropped leave a response

Testing Software Controls and the adequacy of Security Procedures
The software system of internal control includes the totality of the means developed to ensure the integrity of the software system and the products created by the software. Controls are employed to control the processing components of software, assure that software processing is in accordance with the organization’s policies and procedures, and according to applicable laws and regulations. Software systems are divided into two parts, the part that performs the processing and the part that controls processing. The control part includes a system of controls as well as the means employed to assure processing cannot be penetrated by outside sources. This category addresses all the components of the software system of internal control and security procedures.
Principles and Concepts of a Software System of Internal Control and Security:
1. Vocabulary of Internal Control and Security – the vocabulary of internal control and security which includes terms such as risk, threat, control, exposure, vulnerability and penetration.
2. Internal Control and Security Models – includes internal control and security models. The current model that is most accepted is the COSO model. (Committee of Sponsoring Organizations, COSO, is comprised of five major U.S. accounting associations.)
Testing the System of Internal ControlsThe test process for testing the system of internal controls in software is:
1. Perform risk analysis – determine the risks faced by the transactions/events processed by the software.
2. Determine the controls for each of the processing segments for transactions processing including:
a. transaction origination
b. transaction entry
c. transaction processing
d. data base controle. transaction results
3. Determine whether the identified controls are adequate to reduce the risks to an acceptable level.
4. When all components of the control system are present and functioning effectively, the internal control process can be deemed “effective.”
Testing the Adequacy of Security for a Software System
Testers need to evaluate the security for an individual software system.
The tests should include:
1. Evaluate the adequacy of management’s security environment.
2. Security Risk Assessment – determining the types of risk requiring security controls.
3. Identify the most probable points where the software would be penetrated.
4. Determine the controls at those points of penetration.
5. Test/assess whether those controls are adequate to reduce the security risks to an acceptable level.
These tests should include:
a. Security awareness of the software stakeholders
b. Adequacy of management’s security environment.
Next Page »

    Categories

    Find more posts by selecting categories.

    Search

    Search through our entire archives, and find the articles of your dreams. Use keywords, tags, or the post title if you happen to know it or parts of it. Chances are, we’ll find something for you.

    About this blog

    CSTE – CERTIFIED SOFTWARE TEST ENGINEER . This blog is dedicated to all the information related to the CSTE examination conducted by QAI throughout the world. Its a feather in knowledge of being in software testing field. Recognized by all leading companies in the world.

Follow

Get every new post delivered to your Inbox.