ISTQB Foundation Level

Chapter 3 Static Techniques

Agenda

1. 2. 3.

Static and Dynamic techniques. Review process Static analysis by tools

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

Static and Dynamic techniques

Static and Dynamic testing

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

Static and Dynamic techniques

Static testing Manual Examination & Automated analysis of Project Documentation or code itself Find causes of failure Dynamic testing Requires the execution of software Find Failures Same Objective Both Static testing and Dynamic testing have the same objective identifying defects Both are complementary to each other

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

Static and Dynamic techniques.

Typical Defects found in static testing are: deviations from standards, requirement defects, design defects, insufficient maintainability and incorrect interface specifications Documents generally examined during Static Testing are Source Code Requirement Specification Design Specification Test Plan Test Case Test Scripts

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

Reviews

Review

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

Review Definition

IEEE Standard Glossary of SE Terminology:

A process or meeting during which a work product, or a set of work products, is presented to project personnel, managers, users, customers, or other interested parties for comment or approval.

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

Phases of Reviews
1. Planning: Selecting & Allocating the roles; defining the entry and exit criteria. 2. Kick-off: Distributing process documents with its objectives to the participants; and checking entry criteria. 3. Individual preparation: Work done by each of the participants on their own before the review meeting, noting potential defects, questions and comments.

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

Phases of Reviews
4. Review meeting: Discussion or logging, with documented results or minutes. The meeting participants may note defects, make recommendations for handling the defects, or make decisions about the defects. 5. Rework: Fixing defects found (Ideally done by the author). 6. Follow-up: Checking that defects have been addressed, gathering metrics and checking on exit criteria of the meeting

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

The Players of Review Meeting

Manager Reviewers Reviewers

Recorder Author

Moderator

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

Roles & Responsibilities

Manager: Decides on the execution of reviews, allocates time in project schedules and determines if the review objectives have been met. Moderator: The person who leads the review of the document, including planning the review, running the meeting, and follow-up after the meeting. The moderator may mediate between the various points of view Author: The writer or person with chief responsibility for the document to be reviewed. Reviewers: Individuals with a specific technical or business background identify and describe findings (e.g. defects) (also called checkers or inspectors) Scribe (or recorder): Documents all the issues, problems and open points that were identified during the meeting.

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

10

Types of Reviews

Informal review Walkthrough Technical review Inspection

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

11

Informal review

Key characteristics: No formal process; There may be pair programming or a technical lead reviewing designs and code; Optionally may be documented; May vary in usefulness depending on the reviewer; Main purpose: inexpensive way to get some benefit.

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

12

Walkthrough

Key characteristics: Meeting led by author; Scenarios, dry runs, peer group; Optionally a pre-meeting preparation of reviewers, review report, list of findings and scribe (who is not the author) May vary in practice from quite informal to very formal; Main purposes: learning, gaining understanding, defect finding.

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

13

Technical review
Key characteristics: Ideally led by trained moderator (not the author); Pre-meeting preparation; Optionally the use of checklists, review report, list of findings and management participation; May vary in practice from quite informal to very formal; Main purposes: discuss, make decisions, evaluate alternatives, find defects, solve technical problems and check conformance to specifications and standards.

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

14

Inspection

Key characteristics: Led by trained moderator (not the author); Usually peer examination; Defined roles; Formal process based on rules and checklists with entry and exit criteria; Pre-meeting preparation; Inspection report, list of findings; Formal follow-up process; Optionally, process improvement and reader; Main purpose: find defects.

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

15

Reviews

Clear predefined objective. Right people for the review objectives are involved. Defects found are welcomed, and expressed objectively. People issues and psychological aspects are dealt with (e.g. making it a positive experience for the author). Review techniques are applied that are suitable to the type and level of software work products and reviewers. Checklists or roles are used if appropriate to increase effectiveness of defect identification. Emphasis on learning and process improvement. Management supports a good review process

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

16

Static analysis

Static analysis by tools

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

17

Static analysis
Key Characteristics To find defects in software source code and software models, Is performed without actually executing the software being examined by the tool; It can locate defects that are hard to find in dynamic testing, Typically used by developers, They analyze program code (e.g. control flow and data flow), as well as generated output such as HTML and XML, Compilers may offer some support for static analysis, including the calculation of metrics.

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

18

Value of Static analysis

Main value of static analysis is: Early detection of defects prior to test execution. Early warning about suspicious aspects of the code or design Identification of defects not easily found by dynamic testing. Detecting dependencies and inconsistencies in software models, such as links. Prevention of defects, if lessons are learned in development.

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

19

Defects Discovered by Static analysis Tools

Main value of static analysis is: referencing a variable with an undefined value; inconsistent interface between modules and components; variables that are never used; unreachable (dead) code; programming standards violations; security vulnerabilities; syntax violations of code and software models.

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

20

Summary
Walkthrough Inspection Review
Planning Kick off Review Meeting Rework Follow-up The Players of Review Meeting

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

21

Class Room Work

Case Study

Static Testing| ISTQB Foundation Level

2011 Capgemini - All rights reserved

22

In collaboration with

Client or Partner logo

Questions?