Activity 1: ISO 9001 and ISO 9126 clauses suitable for this case study:
Clause 4: Quality Management System
- The company must define its processes and show the sequence and interaction of these processes. (This can be done using process mapping or process flow charts.)
- Determine the testing and documentation needed.
- Documentation is less restrictive and the company can determine most of the documentation they require.
Clause 6: Resource Management
- The organization must determine basic competence for employees, hire to meet the competencies, provide training, and determine effectiveness of training.
- The organization must identify, provide and maintain the facilities it needs to achieve conformity of product including: workspace and associated facilities; equipment, hardware and software; and supporting services.
- The organization must identify and manage the work environment with consideration of the human and physical factors needed to achieve conformity of product.
Clause 7: Product Realization
- Planning: The organization needs to plan the activities leading to your product.
- The organization must determine customer requirements including those product requirements not specified by the customer but necessary for intended product use and regulatory and legal requirements.
- Must determine and keep records of the review of contracts or orders.
- The organization must plan and implement customer communications processes including product information, inquiries, order handling/contracts and amendments and customer feedback.
- Design and Development
- There are very specific requirements and records required for design and development planning, inputs, outputs, review, verification, validation and changes.
- The organization must determine criteria for evaluation, selection and re-evaluation of suppliers.
- There are requirements for purchasing information and requirements for verification of purchased product.
- Production and Service Provision: Determine the controls necessary to provide your product including any process validation, identification and traceability, customer property, and preservation of product.
- Control of measuring devices: Determine measuring devices and calibrate according to the standard requirements.
Clause 8: Measurement, Analysis and Improvement
- Collect data to provide information on customer satisfaction and dissatisfaction and conformance to customer requirements. These methods shall confirm the continuing ability of each process to satisfy its intended purpose.
- Audit your quality management system according to the requirements.
- Monitor your processes to ensure they are operating effectively.
- At appropriate stages of the product realization process, the organization must measure and monitor the characteristics of the product to verify that requirements are met.
- Collect and analyze data in order to provide a consistent product and improve the effectiveness of your quality management system.
- The organization must facilitate the continuous improvement of the quality management system through the use of the quality policies, objectives, audit results, data analysis, corrective and preventive actions, and management review.
- Fix your problems. Establish corrective and preventive action processes to determine and fix problems and potential problems. Determine root cause, fix the problem and check that the fix was appropriate and successful.
Activity 2: Software Configuration Management:
Software Configuration Management (SCM) provides a mechanism for identifying, controlling and tracking the versions of each software item. In many cases earlier versions still in use must also be maintained and controlled.
The procedures involved in SCM are
- Configuration Identification
- Configuration Control
- Configuration Status Accounting
- Configuration auditing
- Build Management
- Process Management
- Environment Management
- Defect Tracking
The procedures used in this case study are:
System building: System building involves assembling a large amount of information about the software and its operating environment.
Change Management: CM involves assessing proposals for changes from system customers and other stakeholders and deciding if it is cost-effective to implement these in a new version of a system.
Process Management: PM ensures the carrying out of the organization’s procedures, policies and life cycle model.
Status Accounting: Recording and reporting all the necessary information on the status of the development process.
Auditing: Ensuring that configurations contain all their intended parts and are sound with respect to their specifying documents, including requirements, architectural specifications and user manuals.
Release Management: RM involves preparing software for external release and keeping track of the system versions that have been released for customer use.
Version Management: VM is the process of keeping track of different versions of software components or configuration items and the systems in which these components are used
Activity 3: Testing- reliability, compatibility, maintainability, usability, affordability
Reliability: For reliability we need to test for consistency, accuracy and error tolerance.
Maintainability: For maintainability we need to test for simplicity, conciseness, Instrumentation, self-descriptiveness.
Usability: For usability we need to test for simplicity and how easy it is for users to access it and perform some activities on it without much prior knowledge about the system.
Compatibility: for compatibility we need to test for machine independence like the memory usage limit, generality, modularity.
Affordability: For affordability we need to check how much does it cost to recover from a failure in terms of cost for system downtime, cost for repair.
Description of Test cases:
While testing a web application you need to consider following Cases:
• Functionality: In testing the functionality of the web sites the following should be tested:
i. Internal Links
ii. External Links
iii. Mail Links
iv. Broken Links
i. Field validation
ii. Error message for wrong input
iii. Optional and Mandatory fields
• Database: * Testing will be done on the database integrity.
• Cookies: * Testing will be done on the client system side, on the temporary Internet files.
Performance : Performance testing can be applied to understand the web site’s scalability, or to benchmark the performance in the environment of third party products such as servers and middleware for potential purchase.
• Connection Speed:Tested over various networks like Dial Up, ISDN etc
i. What is the no. of users per time?
ii. Check for peak loads and how system behaves
iii. Large amount of data accessed by user
i. Continuous Load
ii. Performance of memory, CPU, file handling etc..
Usability: Usability testing is the process by which the human-computer interaction characteristics of a system are measured, and weaknesses are identified for correction.
• Ease of learning
• Subjective user satisfaction
• General appearance
Server Side Interface: In web testing the server side interface should be tested. This is done by verify that communication is done properly. Compatibility of server with software, hardware, network and database should be tested.
Client Side Compatibility:
The client side compatibility is also tested in various platforms, using various browsers etc.
Security: The primary reason for testing the security of a web is to identify potential vulnerabilities and subsequently repair them.
• Network Scanning
• Vulnerability Scanning
• Password Cracking
• Log Review
• Integrity Checkers
• Virus Detection