SlideShare ist ein Scribd-Unternehmen logo

How to become a testing expert

Als PPT, PDF herunterladen
G
gaoliang641
Technologie
1 von 33
How to Become A Testing Expert Liang Gao
Typical Interview Question • Do you know programming • Answer: Yes, a little • Which language do you know the best • Answer: I know C a little • How many lines of code have you written • Answer : Umm.., about 300 lines • Do you know Java or .NET, • Answer : No • Do you know Linux • Answer : No • Do you know networking • Answer : I installed Windows XP on my PC…. • Ok, you can work for us as testing engineer
Tester’s Dilemma • Testing is not cool • Tester is second class when compared with developer • Developer using me as servant • I don’t see I can make difference in our company • Testers are keep coming, they are young and better than me. • 我在吃青春饭, I don’t know where my career path is • OK , I need to be a developer and write code!
Top Management's Dilemma 也知道, 在招到好的 工程 是有多你 现 测试 师 难 - 北京研究所副所华为 长 2008 It took Juniper 6 month plus to find a new QA director
Career Story of Ting • Graduate at 1990, only job found is the tester at Sun • Join Cisco as tester in 1993, then test automation engineer (design Cisco’s automation framework) • Cisco grows from 2000 to 40000 from 1993 to 1998 • Join Netscreen as the 1st testing engineer at 1998 • NetScreen went to Nasdaq on 2001 • Grow with NetScreen as testing lead, testing manager, testing senior manager and testing director • Found Sigma at 2004, served as CEO as today
Lesson • You may have to stay long enough to be competitive.
What is a testing expert? • Ability to find critical bugs in given time frame (hot gun) • Ability to build a comprehensive testing strategy in given time frame (expert) • Ability to manage the release process (top expert)
What is a testing expert Looks like? • Play the video of James Bach
Find Bug that could make News
Bugs in the News • A Cisco Secure Access Control Server (ACS) that is configured to use Extensible Authentication Protocol-Transport Layer Security (EAP-TLS) to authenticate users to the network will allow access to any user that uses a cryptographically correct certificate which can be expired, or come from an untrusted Certificate Authority (CA) and still be cryptographically correct. • CSCse58195. The WLC contains a bug when processing WLAN ACLs that causes the WLANvACL configuration to be saved with an invalid checksum. When the configuration is subsequently reloaded at boot time, the checksum fails and the WLAN ACLs are not installed.
Bugs in the News • CSCdv24925 It is possible to read stored configuration file from the Storage Router without any authorization. • CSCdu45417 It is possible to halt the Storage Router by sending a fragmented packet over the Gigabit interface. • CSCdv24925 An unauthorized person may read the configuration of the Storage Router. That may lead to unauthorized access of a storage space.
Bugs in the News • Versions of the Cisco ACE 4710 Application Control Engine appliance prior to software version A1(8a) use default administrator, web management, and device management account credentials. The appliance and module do not prompt users to modify system account passwords during the initial configuration process. • Crafted SSH Packet Vulnerability • Crafted SNMPv2c Packet Vulnerability
2 Factors of a hot gun • Technical Expertise • Thinking methodology
Hot Gun’s Bug Percentage P4 P2 P1 P3 Cosmetic Functionality Major Functionality Critical Functionality, Crash, Hang 10% 30% 40% 20%
Thinking Methodology
Thinking Methodology • Customers • Information • Developer revelations • Team • Equipment & Tools • Schedule • Test Items • Deliverables  Structures Functions  Data  Platform  Operation  Time  Capability  Reliability  Usability  Security  Scalability  Performance  Installability  Compatiabilty  Supportability  Testabilty  Measurability  Portability  Localizations  Function testing  Domain testing  Stress testing  Flow testing  Scenario testing  Claims testing  User testing  Automatic testing
Thinking Methodology • Customers • 客服 • 售前 • 售后 • 市场
Thinking Methodology 发布 升级 / 安装 配置 入网 运营 维护 发布流程测试 Installation/Upgrade 测试 HA 你知道客户典型配置么? 你知道客户跑什么业务?你知道客户跑什么业务? 你知道客户典型应用场景么? 客户 1-2 年运营的 可能遇到情况 可维护性测试 兼容性?
Thinking Methodology Negative Stress Boundary Features Interaction Security Feature Point 1 Feature Point 2 Feature Point 3 Feature Point 4 Feature Point 5
Develop Testing Strategy • Be the review person • 知其然也知其所以然
Develop Testing Strategy • What is your goal first? – Find more bugs? – Find more critical bugs? – Ensure product or feature has no critical defects – Ensure customers will be ok after the release? • The strategy – Bug oriented? – Coverage oriented? – Customer oriented?
What is Coverage Strategy? • How to thoroughly test OSPF Hello protocol? – Function points? (tester) – User Scenarios? (test expert) – Scalability? (test expert) – Performance? – Security? (test expert) – ………
What is Coverage Strategy? • 7 platforms • 6 different line cards • 2 modes (main/aggressive) • AH/ESP • CA/No CA • HA/No HA • Hub Spoke/Partial Mesh/Full Mesh 7x6x2x2x2x3 = 1088
Types of Testing Covered on Different Release Major Release Minor Release Patch Release Platform Release SFR CSP New Feature Test Full Full TBD Full Regression Test Full Partial Partial Partial Partial System Test Full Full Full Full Interoperability Test Full TBD TBD TBD Performance Test Full TBD Full TBD Capacity Test Full Full TBD Security Test Full Full Full Full Full Automation Test (partial regression) Full Full Full Full Full Full SFR – Special Feature Release CSP – Customer Specific Patch
Advise to the New Expert • Practice, Practice, Practice • Don’t confuse experience with Expertise • Don’t trust the folklore – but learn it anyway • Take nothing on faith, own your methodology • Drive your own education, no one else will • Reputation = Money: Build and protect your reputation • Relentlessly gather resources, materials and tools. • Associate with demanding colleagues. • Write, speak
An Expert’s Vision • An Expert’s Vision – I can test anything – Under any condition – On any given time frame.
An Expert’s Vision
Top Expert • Release process • Testing organization management
Release process
Release Process • Start from the MRD • End with the FCS (first customer ship)
敏捷开发与持续集成 – 迭代中的持续集成
Test Organization management
Thank you!

Empfohlen

Continuous inspection with Sonar
Continuous inspection with SonarContinuous inspection with Sonar
Continuous inspection with Sonargaudol
 
Sonar Review
Sonar ReviewSonar Review
Sonar ReviewKate Semizhon
 
Test parallelization using Jenkins
Test parallelization using JenkinsTest parallelization using Jenkins
Test parallelization using JenkinsRogue Wave Software
 
Fault tolerance - look, it's simple!
Fault tolerance - look, it's simple!Fault tolerance - look, it's simple!
Fault tolerance - look, it's simple!Izzet Mustafaiev
 
Code Review with Sonar
Code Review with SonarCode Review with Sonar
Code Review with SonarMax Kleiner
 
How To Improve Quality With Static Code Analysis
How To Improve Quality With Static Code Analysis How To Improve Quality With Static Code Analysis
How To Improve Quality With Static Code Analysis Perforce
 
Rapid software testing and conformance with static code analysis
Rapid software testing and conformance with static code analysisRapid software testing and conformance with static code analysis
Rapid software testing and conformance with static code analysisRogue Wave Software
 
Software Quality via Unit Testing
Software Quality via Unit TestingSoftware Quality via Unit Testing
Software Quality via Unit TestingShaun Abram
 

Empfohlen

Continuous inspection with Sonar
Continuous inspection with SonarContinuous inspection with Sonar
Continuous inspection with Sonargaudol
 
Sonar Review
Sonar ReviewSonar Review
Sonar ReviewKate Semizhon
 
Test parallelization using Jenkins
Test parallelization using JenkinsTest parallelization using Jenkins
Test parallelization using JenkinsRogue Wave Software
 
Fault tolerance - look, it's simple!
Fault tolerance - look, it's simple!Fault tolerance - look, it's simple!
Fault tolerance - look, it's simple!Izzet Mustafaiev
 
Code Review with Sonar
Code Review with SonarCode Review with Sonar
Code Review with SonarMax Kleiner
 
How To Improve Quality With Static Code Analysis
How To Improve Quality With Static Code Analysis How To Improve Quality With Static Code Analysis
How To Improve Quality With Static Code Analysis Perforce
 
Rapid software testing and conformance with static code analysis
Rapid software testing and conformance with static code analysisRapid software testing and conformance with static code analysis
Rapid software testing and conformance with static code analysisRogue Wave Software
 
Software Quality via Unit Testing
Software Quality via Unit TestingSoftware Quality via Unit Testing
Software Quality via Unit TestingShaun Abram
 
Agile Engineering Sparker GLASScon 2015
Agile Engineering Sparker GLASScon 2015Agile Engineering Sparker GLASScon 2015
Agile Engineering Sparker GLASScon 2015Stephen Ritchie
 
Topic production code
Topic production codeTopic production code
Topic production codeKavi Kumar
 
RESTful Microservices
RESTful MicroservicesRESTful Microservices
RESTful MicroservicesShaun Abram
 
Unit Testing in Action - C#, NUnit, and Moq
Unit Testing in Action - C#, NUnit, and MoqUnit Testing in Action - C#, NUnit, and Moq
Unit Testing in Action - C#, NUnit, and MoqXPDays
 
Agile Engineering Best Practices by Richard Cheng
Agile Engineering Best Practices by Richard ChengAgile Engineering Best Practices by Richard Cheng
Agile Engineering Best Practices by Richard ChengExcella
 
Strickland dvclub
Strickland dvclubStrickland dvclub
Strickland dvclubObsidian Software
 
The Art of Testing Less without Sacrificing Quality @ ICSE 2015
The Art of Testing Less without Sacrificing Quality @ ICSE 2015The Art of Testing Less without Sacrificing Quality @ ICSE 2015
The Art of Testing Less without Sacrificing Quality @ ICSE 2015Kim Herzig
 
Static Code Analysis
Static Code AnalysisStatic Code Analysis
Static Code AnalysisGeneva, Switzerland
 
Sonar qube to impove code quality
Sonar qube to impove code qualitySonar qube to impove code quality
Sonar qube to impove code qualityMani Sarkar
 
Bypassing Secure Boot using Fault Injection
Bypassing Secure Boot using Fault InjectionBypassing Secure Boot using Fault Injection
Bypassing Secure Boot using Fault InjectionRiscure
 
Test Driven Development - Tulsa TechFest 2009
Test Driven Development - Tulsa TechFest 2009Test Driven Development - Tulsa TechFest 2009
Test Driven Development - Tulsa TechFest 2009Jason Ragsdale
 
Test Driven Development
Test Driven DevelopmentTest Driven Development
Test Driven DevelopmentJason Ragsdale
 
Static Code Analysis
Static Code AnalysisStatic Code Analysis
Static Code AnalysisObika Gellineau
 
Best Practices of Static Code Analysis in the SDLC
Best Practices of Static Code Analysis in the SDLCBest Practices of Static Code Analysis in the SDLC
Best Practices of Static Code Analysis in the SDLCParasoft_Mitchell
 
Practical unit testing in c & c++
Practical unit testing in c & c++Practical unit testing in c & c++
Practical unit testing in c & c++Matt Hargett
 
Ubiquitous Testing
Ubiquitous TestingUbiquitous Testing
Ubiquitous TestingAlistair McKinnell
 
SonarQube: Continuous Code Inspection
SonarQube: Continuous Code InspectionSonarQube: Continuous Code Inspection
SonarQube: Continuous Code InspectionMichael Jesse
 
Unit Testing
Unit TestingUnit Testing
Unit TestingFrançois Camus
 
Legal and Practical Concerns with Software Development
Legal and Practical Concerns with Software DevelopmentLegal and Practical Concerns with Software Development
Legal and Practical Concerns with Software DevelopmentRogue Wave Software
 
BlueHat v18 || Go build a tool - best practices for building a robust & e...
BlueHat v18 || Go build a tool - best practices for building a robust & e...BlueHat v18 || Go build a tool - best practices for building a robust & e...
BlueHat v18 || Go build a tool - best practices for building a robust & e...BlueHat Security Conference
 
Agile Testing Days
Agile Testing DaysAgile Testing Days
Agile Testing DaysMarcin Czenko
 
Code Quality - Security
Code Quality - SecurityCode Quality - Security
Code Quality - Securitysedukull
 

Weitere ähnliche Inhalte

Was ist angesagt?

Agile Engineering Sparker GLASScon 2015
Agile Engineering Sparker GLASScon 2015Agile Engineering Sparker GLASScon 2015
Agile Engineering Sparker GLASScon 2015Stephen Ritchie
 
Topic production code
Topic production codeTopic production code
Topic production codeKavi Kumar
 
RESTful Microservices
RESTful MicroservicesRESTful Microservices
RESTful MicroservicesShaun Abram
 
Unit Testing in Action - C#, NUnit, and Moq
Unit Testing in Action - C#, NUnit, and MoqUnit Testing in Action - C#, NUnit, and Moq
Unit Testing in Action - C#, NUnit, and MoqXPDays
 
Agile Engineering Best Practices by Richard Cheng
Agile Engineering Best Practices by Richard ChengAgile Engineering Best Practices by Richard Cheng
Agile Engineering Best Practices by Richard ChengExcella
 
The Art of Testing Less without Sacrificing Quality @ ICSE 2015
The Art of Testing Less without Sacrificing Quality @ ICSE 2015The Art of Testing Less without Sacrificing Quality @ ICSE 2015
The Art of Testing Less without Sacrificing Quality @ ICSE 2015Kim Herzig
 
Sonar qube to impove code quality
Sonar qube to impove code qualitySonar qube to impove code quality
Sonar qube to impove code qualityMani Sarkar
 
Bypassing Secure Boot using Fault Injection
Bypassing Secure Boot using Fault InjectionBypassing Secure Boot using Fault Injection
Bypassing Secure Boot using Fault InjectionRiscure
 
Test Driven Development - Tulsa TechFest 2009
Test Driven Development - Tulsa TechFest 2009Test Driven Development - Tulsa TechFest 2009
Test Driven Development - Tulsa TechFest 2009Jason Ragsdale
 
Test Driven Development
Test Driven DevelopmentTest Driven Development
Test Driven DevelopmentJason Ragsdale
 
Best Practices of Static Code Analysis in the SDLC
Best Practices of Static Code Analysis in the SDLCBest Practices of Static Code Analysis in the SDLC
Best Practices of Static Code Analysis in the SDLCParasoft_Mitchell
 
Practical unit testing in c & c++
Practical unit testing in c & c++Practical unit testing in c & c++
Practical unit testing in c & c++Matt Hargett
 
SonarQube: Continuous Code Inspection
SonarQube: Continuous Code InspectionSonarQube: Continuous Code Inspection
SonarQube: Continuous Code InspectionMichael Jesse
 
Legal and Practical Concerns with Software Development
Legal and Practical Concerns with Software DevelopmentLegal and Practical Concerns with Software Development
Legal and Practical Concerns with Software DevelopmentRogue Wave Software
 
BlueHat v18 || Go build a tool - best practices for building a robust & e...
BlueHat v18 || Go build a tool - best practices for building a robust & e...BlueHat v18 || Go build a tool - best practices for building a robust & e...
BlueHat v18 || Go build a tool - best practices for building a robust & e...BlueHat Security Conference
 

Was ist angesagt? (20)

Agile Engineering Sparker GLASScon 2015
Agile Engineering Sparker GLASScon 2015Agile Engineering Sparker GLASScon 2015
Agile Engineering Sparker GLASScon 2015
 
Topic production code
Topic production codeTopic production code
Topic production code
 
RESTful Microservices
RESTful MicroservicesRESTful Microservices
RESTful Microservices
 
Unit Testing in Action - C#, NUnit, and Moq
Unit Testing in Action - C#, NUnit, and MoqUnit Testing in Action - C#, NUnit, and Moq
Unit Testing in Action - C#, NUnit, and Moq
 
Agile Engineering Best Practices by Richard Cheng
Agile Engineering Best Practices by Richard ChengAgile Engineering Best Practices by Richard Cheng
Agile Engineering Best Practices by Richard Cheng
 
Strickland dvclub
Strickland dvclubStrickland dvclub
Strickland dvclub
 
The Art of Testing Less without Sacrificing Quality @ ICSE 2015
The Art of Testing Less without Sacrificing Quality @ ICSE 2015The Art of Testing Less without Sacrificing Quality @ ICSE 2015
The Art of Testing Less without Sacrificing Quality @ ICSE 2015
 
Static Code Analysis
Static Code AnalysisStatic Code Analysis
Static Code Analysis
 
Sonar qube to impove code quality
Sonar qube to impove code qualitySonar qube to impove code quality
Sonar qube to impove code quality
 
Bypassing Secure Boot using Fault Injection
Bypassing Secure Boot using Fault InjectionBypassing Secure Boot using Fault Injection
Bypassing Secure Boot using Fault Injection
 
Test Driven Development - Tulsa TechFest 2009
Test Driven Development - Tulsa TechFest 2009Test Driven Development - Tulsa TechFest 2009
Test Driven Development - Tulsa TechFest 2009
 
Test Driven Development
Test Driven DevelopmentTest Driven Development
Test Driven Development
 
Static Code Analysis
Static Code AnalysisStatic Code Analysis
Static Code Analysis
 
Best Practices of Static Code Analysis in the SDLC
Best Practices of Static Code Analysis in the SDLCBest Practices of Static Code Analysis in the SDLC
Best Practices of Static Code Analysis in the SDLC
 
Practical unit testing in c & c++
Practical unit testing in c & c++Practical unit testing in c & c++
Practical unit testing in c & c++
 
Ubiquitous Testing
Ubiquitous TestingUbiquitous Testing
Ubiquitous Testing
 
SonarQube: Continuous Code Inspection
SonarQube: Continuous Code InspectionSonarQube: Continuous Code Inspection
SonarQube: Continuous Code Inspection
 
Unit Testing
Unit TestingUnit Testing
Unit Testing
 
Legal and Practical Concerns with Software Development
Legal and Practical Concerns with Software DevelopmentLegal and Practical Concerns with Software Development
Legal and Practical Concerns with Software Development
 
BlueHat v18 || Go build a tool - best practices for building a robust & e...
BlueHat v18 || Go build a tool - best practices for building a robust & e...BlueHat v18 || Go build a tool - best practices for building a robust & e...
BlueHat v18 || Go build a tool - best practices for building a robust & e...
 

Ähnlich wie How to become a testing expert

Code Quality - Security
Code Quality - SecurityCode Quality - Security
Code Quality - Securitysedukull
 
Improving Batch-Process Testing Techniques with a Domain-Specific Language
Improving Batch-Process Testing Techniques with a Domain-Specific LanguageImproving Batch-Process Testing Techniques with a Domain-Specific Language
Improving Batch-Process Testing Techniques with a Domain-Specific LanguageDr. Spock
 
Постоянное тестирование интеграции
Постоянное тестирование интеграцииПостоянное тестирование интеграции
Постоянное тестирование интеграцииSQALab
 
Resume_Thoota_Phani (2)
Resume_Thoota_Phani (2)Resume_Thoota_Phani (2)
Resume_Thoota_Phani (2)Phani Thoota
 
Understand release engineering
Understand release engineeringUnderstand release engineering
Understand release engineeringgaoliang641
 
Developers Testing - Girl Code at bloomon
Developers Testing - Girl Code at bloomonDevelopers Testing - Girl Code at bloomon
Developers Testing - Girl Code at bloomonIneke Scheffers
 
QUALITY ASSURANCE and VALIDATION ENGINEER
QUALITY ASSURANCE and VALIDATION ENGINEER QUALITY ASSURANCE and VALIDATION ENGINEER
QUALITY ASSURANCE and VALIDATION ENGINEER Piyush Prakash
 
Testing As A Bottleneck - How Testing Slows Down Modern Development Processes...
Testing As A Bottleneck - How Testing Slows Down Modern Development Processes...Testing As A Bottleneck - How Testing Slows Down Modern Development Processes...
Testing As A Bottleneck - How Testing Slows Down Modern Development Processes...TEST Huddle
 
Deliver Faster with BDD/TDD - Designing Automated Tests That Don't Suck
Deliver Faster with BDD/TDD - Designing Automated Tests That Don't SuckDeliver Faster with BDD/TDD - Designing Automated Tests That Don't Suck
Deliver Faster with BDD/TDD - Designing Automated Tests That Don't SuckKevin Brockhoff
 
verification_planning_systemverilog_uvm_2020
verification_planning_systemverilog_uvm_2020verification_planning_systemverilog_uvm_2020
verification_planning_systemverilog_uvm_2020Sameh El-Ashry
 
TLC2018 Thomas Haver: The Automation Firehose - Be Strategic and Tactical
TLC2018 Thomas Haver: The Automation Firehose - Be Strategic and TacticalTLC2018 Thomas Haver: The Automation Firehose - Be Strategic and Tactical
TLC2018 Thomas Haver: The Automation Firehose - Be Strategic and TacticalAnna Royzman
 
Validation and-design-in-a-small-team-environment
Validation and-design-in-a-small-team-environmentValidation and-design-in-a-small-team-environment
Validation and-design-in-a-small-team-environmentObsidian Software
 
Validation and Design in a Small Team Environment
Validation and Design in a Small Team EnvironmentValidation and Design in a Small Team Environment
Validation and Design in a Small Team EnvironmentDVClub
 
Tester career path
Tester career pathTester career path
Tester career pathgaoliang641
 
The art of system and solution testing
The art of system and solution testingThe art of system and solution testing
The art of system and solution testinggaoliang641
 
MyHeritage - End 2 End testing Infra
MyHeritage - End 2 End testing InfraMyHeritage - End 2 End testing Infra
MyHeritage - End 2 End testing InfraMatanGoren
 

Ähnlich wie How to become a testing expert (20)

Agile Testing Days
Agile Testing DaysAgile Testing Days
Agile Testing Days
 
Code Quality - Security
Code Quality - SecurityCode Quality - Security
Code Quality - Security
 
Improving Batch-Process Testing Techniques with a Domain-Specific Language
Improving Batch-Process Testing Techniques with a Domain-Specific LanguageImproving Batch-Process Testing Techniques with a Domain-Specific Language
Improving Batch-Process Testing Techniques with a Domain-Specific Language
 
Постоянное тестирование интеграции
Постоянное тестирование интеграцииПостоянное тестирование интеграции
Постоянное тестирование интеграции
 
Resume_Thoota_Phani (2)
Resume_Thoota_Phani (2)Resume_Thoota_Phani (2)
Resume_Thoota_Phani (2)
 
Resume_Trupti
Resume_TruptiResume_Trupti
Resume_Trupti
 
Understand release engineering
Understand release engineeringUnderstand release engineering
Understand release engineering
 
Developers Testing - Girl Code at bloomon
Developers Testing - Girl Code at bloomonDevelopers Testing - Girl Code at bloomon
Developers Testing - Girl Code at bloomon
 
QUALITY ASSURANCE and VALIDATION ENGINEER
QUALITY ASSURANCE and VALIDATION ENGINEER QUALITY ASSURANCE and VALIDATION ENGINEER
QUALITY ASSURANCE and VALIDATION ENGINEER
 
Testing As A Bottleneck - How Testing Slows Down Modern Development Processes...
Testing As A Bottleneck - How Testing Slows Down Modern Development Processes...Testing As A Bottleneck - How Testing Slows Down Modern Development Processes...
Testing As A Bottleneck - How Testing Slows Down Modern Development Processes...
 
Deliver Faster with BDD/TDD - Designing Automated Tests That Don't Suck
Deliver Faster with BDD/TDD - Designing Automated Tests That Don't SuckDeliver Faster with BDD/TDD - Designing Automated Tests That Don't Suck
Deliver Faster with BDD/TDD - Designing Automated Tests That Don't Suck
 
verification_planning_systemverilog_uvm_2020
verification_planning_systemverilog_uvm_2020verification_planning_systemverilog_uvm_2020
verification_planning_systemverilog_uvm_2020
 
Resume
ResumeResume
Resume
 
TLC2018 Thomas Haver: The Automation Firehose - Be Strategic and Tactical
TLC2018 Thomas Haver: The Automation Firehose - Be Strategic and TacticalTLC2018 Thomas Haver: The Automation Firehose - Be Strategic and Tactical
TLC2018 Thomas Haver: The Automation Firehose - Be Strategic and Tactical
 
Validation and-design-in-a-small-team-environment
Validation and-design-in-a-small-team-environmentValidation and-design-in-a-small-team-environment
Validation and-design-in-a-small-team-environment
 
Validation and Design in a Small Team Environment
Validation and Design in a Small Team EnvironmentValidation and Design in a Small Team Environment
Validation and Design in a Small Team Environment
 
Tester career path
Tester career pathTester career path
Tester career path
 
Tdd
TddTdd
Tdd
 
The art of system and solution testing
The art of system and solution testingThe art of system and solution testing
The art of system and solution testing
 
MyHeritage - End 2 End testing Infra
MyHeritage - End 2 End testing InfraMyHeritage - End 2 End testing Infra
MyHeritage - End 2 End testing Infra
 

Mehr von gaoliang641

Why we didn't catch that
Why we didn't catch thatWhy we didn't catch that
Why we didn't catch thatgaoliang641
 
Why we didn't catch that application bugs
Why we didn't catch that application bugsWhy we didn't catch that application bugs
Why we didn't catch that application bugsgaoliang641
 
Understand regression testing
Understand regression testingUnderstand regression testing
Understand regression testinggaoliang641
 
Tester performance evaluation
Tester performance evaluationTester performance evaluation
Tester performance evaluationgaoliang641
 
Tester developer interaction
Tester developer interactionTester developer interaction
Tester developer interactiongaoliang641
 
Agile testing for large projects
Agile testing for large projectsAgile testing for large projects
Agile testing for large projectsgaoliang641
 
Project management for qa manager
Project management for qa managerProject management for qa manager
Project management for qa managergaoliang641
 
Make good use of explortary testing
Make good use of explortary testingMake good use of explortary testing
Make good use of explortary testinggaoliang641
 
Bug best practice
Bug best practiceBug best practice
Bug best practicegaoliang641
 
Lessons learned on localization testing
Lessons learned on localization testingLessons learned on localization testing
Lessons learned on localization testinggaoliang641
 
Lessons learned on software testing automation
Lessons learned on software testing automationLessons learned on software testing automation
Lessons learned on software testing automationgaoliang641
 
Functionality testing techniqu
Functionality testing techniquFunctionality testing techniqu
Functionality testing techniqugaoliang641
 
Protocol Security Testing best practice
Protocol Security Testing best practiceProtocol Security Testing best practice
Protocol Security Testing best practicegaoliang641
 
Backward thinking design qa system for quality goals
Backward thinking design qa system for quality goalsBackward thinking design qa system for quality goals
Backward thinking design qa system for quality goalsgaoliang641
 
Automation framework design and implementation
Automation framework design and implementationAutomation framework design and implementation
Automation framework design and implementationgaoliang641
 
Automation from start to finish
Automation from start to finishAutomation from start to finish
Automation from start to finishgaoliang641
 
Agile testing for large projects
Agile testing for large projectsAgile testing for large projects
Agile testing for large projectsgaoliang641
 

Mehr von gaoliang641 (17)

Why we didn't catch that
Why we didn't catch thatWhy we didn't catch that
Why we didn't catch that
 
Why we didn't catch that application bugs
Why we didn't catch that application bugsWhy we didn't catch that application bugs
Why we didn't catch that application bugs
 
Understand regression testing
Understand regression testingUnderstand regression testing
Understand regression testing
 
Tester performance evaluation
Tester performance evaluationTester performance evaluation
Tester performance evaluation
 
Tester developer interaction
Tester developer interactionTester developer interaction
Tester developer interaction
 
Agile testing for large projects
Agile testing for large projectsAgile testing for large projects
Agile testing for large projects
 
Project management for qa manager
Project management for qa managerProject management for qa manager
Project management for qa manager
 
Make good use of explortary testing
Make good use of explortary testingMake good use of explortary testing
Make good use of explortary testing
 
Bug best practice
Bug best practiceBug best practice
Bug best practice
 
Lessons learned on localization testing
Lessons learned on localization testingLessons learned on localization testing
Lessons learned on localization testing
 
Lessons learned on software testing automation
Lessons learned on software testing automationLessons learned on software testing automation
Lessons learned on software testing automation
 
Functionality testing techniqu
Functionality testing techniquFunctionality testing techniqu
Functionality testing techniqu
 
Protocol Security Testing best practice
Protocol Security Testing best practiceProtocol Security Testing best practice
Protocol Security Testing best practice
 
Backward thinking design qa system for quality goals
Backward thinking design qa system for quality goalsBackward thinking design qa system for quality goals
Backward thinking design qa system for quality goals
 
Automation framework design and implementation
Automation framework design and implementationAutomation framework design and implementation
Automation framework design and implementation
 
Automation from start to finish
Automation from start to finishAutomation from start to finish
Automation from start to finish
 
Agile testing for large projects
Agile testing for large projectsAgile testing for large projects
Agile testing for large projects
 

Kürzlich hochgeladen

The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxLoriGlavin3
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii SoldatenkoFwdays
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfAlex Barbosa Coqueiro
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
A Journey Into the Emotions of Software Developers
A Journey Into the Emotions of Software DevelopersA Journey Into the Emotions of Software Developers
A Journey Into the Emotions of Software DevelopersNicole Novielli
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Mark Simos
 
The State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxThe State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxLoriGlavin3
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxLoriGlavin3
 
What is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfWhat is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfMounikaPolabathina
 
Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rick Flair
 
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024BookNet Canada
 
Take control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteTake control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteDianaGray10
 
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxThe Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxLoriGlavin3
 
From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .Alan Dix
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024Lonnie McRorey
 
DSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningDSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningLars Bell
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity PlanDatabarracks
 
What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024Stephanie Beckett
 

Kürzlich hochgeladen (20)

The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdf
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
A Journey Into the Emotions of Software Developers
A Journey Into the Emotions of Software DevelopersA Journey Into the Emotions of Software Developers
A Journey Into the Emotions of Software Developers
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
 
The State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxThe State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptx
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
 
What is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfWhat is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdf
 
Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...
 
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
 
Take control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteTake control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test Suite
 
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxThe Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
 
From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024
 
DSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningDSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine Tuning
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity Plan
 
What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024
 

How to become a testing expert

  • 1. How to Become A Testing Expert Liang Gao
  • 2. Typical Interview Question • Do you know programming • Answer: Yes, a little • Which language do you know the best • Answer: I know C a little • How many lines of code have you written • Answer : Umm.., about 300 lines • Do you know Java or .NET, • Answer : No • Do you know Linux • Answer : No • Do you know networking • Answer : I installed Windows XP on my PC…. • Ok, you can work for us as testing engineer
  • 3. Tester’s Dilemma • Testing is not cool • Tester is second class when compared with developer • Developer using me as servant • I don’t see I can make difference in our company • Testers are keep coming, they are young and better than me. • 我在吃青春饭, I don’t know where my career path is • OK , I need to be a developer and write code!
  • 4. Top Management's Dilemma 也知道, 在招到好的 工程 是有多你 现 测试 师 难 - 北京研究所副所华为 长 2008 It took Juniper 6 month plus to find a new QA director
  • 5. Career Story of Ting • Graduate at 1990, only job found is the tester at Sun • Join Cisco as tester in 1993, then test automation engineer (design Cisco’s automation framework) • Cisco grows from 2000 to 40000 from 1993 to 1998 • Join Netscreen as the 1st testing engineer at 1998 • NetScreen went to Nasdaq on 2001 • Grow with NetScreen as testing lead, testing manager, testing senior manager and testing director • Found Sigma at 2004, served as CEO as today
  • 6. Lesson • You may have to stay long enough to be competitive.
  • 7. What is a testing expert? • Ability to find critical bugs in given time frame (hot gun) • Ability to build a comprehensive testing strategy in given time frame (expert) • Ability to manage the release process (top expert)
  • 8. What is a testing expert Looks like? • Play the video of James Bach
  • 9. Find Bug that could make News
  • 10. Bugs in the News • A Cisco Secure Access Control Server (ACS) that is configured to use Extensible Authentication Protocol-Transport Layer Security (EAP-TLS) to authenticate users to the network will allow access to any user that uses a cryptographically correct certificate which can be expired, or come from an untrusted Certificate Authority (CA) and still be cryptographically correct. • CSCse58195. The WLC contains a bug when processing WLAN ACLs that causes the WLANvACL configuration to be saved with an invalid checksum. When the configuration is subsequently reloaded at boot time, the checksum fails and the WLAN ACLs are not installed.
  • 11. Bugs in the News • CSCdv24925 It is possible to read stored configuration file from the Storage Router without any authorization. • CSCdu45417 It is possible to halt the Storage Router by sending a fragmented packet over the Gigabit interface. • CSCdv24925 An unauthorized person may read the configuration of the Storage Router. That may lead to unauthorized access of a storage space.
  • 12. Bugs in the News • Versions of the Cisco ACE 4710 Application Control Engine appliance prior to software version A1(8a) use default administrator, web management, and device management account credentials. The appliance and module do not prompt users to modify system account passwords during the initial configuration process. • Crafted SSH Packet Vulnerability • Crafted SNMPv2c Packet Vulnerability
  • 13. 2 Factors of a hot gun • Technical Expertise • Thinking methodology
  • 14. Hot Gun’s Bug Percentage P4 P2 P1 P3 Cosmetic Functionality Major Functionality Critical Functionality, Crash, Hang 10% 30% 40% 20%
  • 16. Thinking Methodology • Customers • Information • Developer revelations • Team • Equipment & Tools • Schedule • Test Items • Deliverables  Structures Functions  Data  Platform  Operation  Time  Capability  Reliability  Usability  Security  Scalability  Performance  Installability  Compatiabilty  Supportability  Testabilty  Measurability  Portability  Localizations  Function testing  Domain testing  Stress testing  Flow testing  Scenario testing  Claims testing  User testing  Automatic testing
  • 17. Thinking Methodology • Customers • 客服 • 售前 • 售后 • 市场
  • 18. Thinking Methodology 发布 升级 / 安装 配置 入网 运营 维护 发布流程测试 Installation/Upgrade 测试 HA 你知道客户典型配置么? 你知道客户跑什么业务?你知道客户跑什么业务? 你知道客户典型应用场景么? 客户 1-2 年运营的 可能遇到情况 可维护性测试 兼容性?
  • 19. Thinking Methodology Negative Stress Boundary Features Interaction Security Feature Point 1 Feature Point 2 Feature Point 3 Feature Point 4 Feature Point 5
  • 20. Develop Testing Strategy • Be the review person • 知其然也知其所以然
  • 21. Develop Testing Strategy • What is your goal first? – Find more bugs? – Find more critical bugs? – Ensure product or feature has no critical defects – Ensure customers will be ok after the release? • The strategy – Bug oriented? – Coverage oriented? – Customer oriented?
  • 22. What is Coverage Strategy? • How to thoroughly test OSPF Hello protocol? – Function points? (tester) – User Scenarios? (test expert) – Scalability? (test expert) – Performance? – Security? (test expert) – ………
  • 23. What is Coverage Strategy? • 7 platforms • 6 different line cards • 2 modes (main/aggressive) • AH/ESP • CA/No CA • HA/No HA • Hub Spoke/Partial Mesh/Full Mesh 7x6x2x2x2x3 = 1088
  • 24. Types of Testing Covered on Different Release Major Release Minor Release Patch Release Platform Release SFR CSP New Feature Test Full Full TBD Full Regression Test Full Partial Partial Partial Partial System Test Full Full Full Full Interoperability Test Full TBD TBD TBD Performance Test Full TBD Full TBD Capacity Test Full Full TBD Security Test Full Full Full Full Full Automation Test (partial regression) Full Full Full Full Full Full SFR – Special Feature Release CSP – Customer Specific Patch
  • 25. Advise to the New Expert • Practice, Practice, Practice • Don’t confuse experience with Expertise • Don’t trust the folklore – but learn it anyway • Take nothing on faith, own your methodology • Drive your own education, no one else will • Reputation = Money: Build and protect your reputation • Relentlessly gather resources, materials and tools. • Associate with demanding colleagues. • Write, speak
  • 26. An Expert’s Vision • An Expert’s Vision – I can test anything – Under any condition – On any given time frame.
  • 28. Top Expert • Release process • Testing organization management
  • 30. Release Process • Start from the MRD • End with the FCS (first customer ship)

Hinweis der Redaktion

  1. 陈胜吴广为什么不能如期到达目的地。 为什么没有 IPv5 为什么 TCP 是三次握手