Presentation is loading. Please wait.

Presentation is loading. Please wait.

Verification and Validation

Published byAusten Robinson Modified over 6 years ago

Similar presentations

Presentation on theme: "Verification and Validation"— Presentation transcript:

1 Verification and Validation
CSE 403, Winter 2003 Software Engineering 24-February-2003 cse V&V © 2003 University of Washington

2 Readings and References
If You Didn’t Test It, It Doesn’t Work, Bob Colwell, IEEE Computer Acknowledgment much of the content of this lecture is derived from a similar lecture by G. Kimura in an earlier instance of CSE 403 24-February-2003 cse V&V © 2003 University of Washington

3 Verification and Validation
Verification: “Did we build the system right?” Design and Implementation verification Does the system do specific tasks correctly? Developer / Tester has the knowledge Validation: “Did we build the right system?” Requirements validation Does the system do the required set of tasks? Customer / Integrator has the knowledge 24-February-2003 cse V&V © 2003 University of Washington

4 Some Approaches to Verification
Process Improving the likelihood that code is correct Testing A dynamic approach Proof of correctness Use formal analysis to show an equivalence between a specification and a program 24-February-2003 cse V&V © 2003 University of Washington

5 cse403-14-V&V © 2003 University of Washington
Process Process includes a broad set of ideas and approaches Software inspections, walkthroughs, reviews Capability maturity model, ISO 9000 etc Software correctness depends on thousands and thousands of details being correct Good processes help you avoid making mistakes Processes are not magic 24-February-2003 cse V&V © 2003 University of Washington

6 cse403-14-V&V © 2003 University of Washington
The proof is in the pudding Testing vs. Proving Dynamic Testing Builds confidence (not certainty) Can only show the presence of bugs, not their absence Used widely in practice Costly Static Proving Proofs are human processes - mistakes are possible! Applicability is limited in practice Extremely costly 24-February-2003 cse V&V © 2003 University of Washington

7 Engineering: intelligent compromise
Dynamic techniques are unattractive because they are unsound you can believe something is true when it’s not Static techniques are unattractive because they are often very costly and can overlook fundamental problems The truth is that they should be considered to be complementary, not competitive 24-February-2003 cse V&V © 2003 University of Washington

8 cse403-14-V&V © 2003 University of Washington
Testing Testing is by far the dominant approach to demonstrating that code does what it supposed to (whatever that means!) Testing is a lot like the weather everybody complains about it but nobody seems to do much about it However, unlike the weather, you can actually do something about it! 24-February-2003 cse V&V © 2003 University of Washington

9 cse403-14-V&V © 2003 University of Washington
Terminology An error mistake the programmer made in design or implementation leads to a defect inappropriate code that leads to a fault when a program's internal state is inconsistent with what is expected that causes a failure. when the program doesn't satisfy its specification 24-February-2003 cse V&V © 2003 University of Washington

10 cse403-14-V&V © 2003 University of Washington
Root cause analysis Track a failure back to an error Failures are precious information because an error has finally become visible Identifying errors is important because it can help identify and remove other related defects other defects might not cause visible failures yet help a programmer (and perhaps a team) avoid making the same or a similar error again If an error is made once, it is very likely made twice 24-February-2003 cse V&V © 2003 University of Washington

11 cse403-14-V&V © 2003 University of Washington
Discreteness Testing software is different from testing widgets In general, physical widgets can be analyzed in terms of continuous mathematics Software is based on discrete mathematics Why does this matter? In continuous math, a small change in an input corresponds to a small change in the output This allows safety factors to be built in In discrete math, a small change in an input can correspond to a huge change in the output 24-February-2003 cse V&V © 2003 University of Washington

12 cse403-14-V&V © 2003 University of Washington
Kinds of testing Unit White-box Black-box Gray-box Bottom-up Top-down Boundary condition Syntax-driven Big bang Integration Acceptance Stress Regression Alpha Beta etc 24-February-2003 cse V&V © 2003 University of Washington

13 cse403-14-V&V © 2003 University of Washington
Picking Test Cases A goal of picking a test case is that it be characteristic of a class of other tests That is, one case builds confidence in how other cases will perform 24-February-2003 cse V&V © 2003 University of Washington

14 Cover the behavior space
The overall objective is to cover as much of the behavior space as possible It’s an infinite space ... In general, it’s useful to distinguish the notions of common vs. unusual cases for testing 24-February-2003 cse V&V © 2003 University of Washington

15 cse403-14-V&V © 2003 University of Washington
Black box testing Treat the unit under test as a black box You can hypothesize about the way it is built, but you can’t see inside it Depend on a specification, formal or informal, for determining whether it behaves properly How to pick cases that cover the space of behaviors for the unit? equivalence partitioning, boundary values, etc independent testers 24-February-2003 cse V&V © 2003 University of Washington

16 Equivalence partitioning
Based on input conditions If input conditions are specified as a range, you have one valid class (in the range) and two invalid classes (outside the range on each side) If specified as a set, then you can be valid (in the set) or invalid (outside the set) Etc. 24-February-2003 cse V&V © 2003 University of Washington

17 cse403-14-V&V © 2003 University of Washington
Boundary values Problems tend to arise on the boundaries of input domains than in the middle So, extending equivalence partitioning, make sure to pick added test cases that exercise inputs near the boundaries of valid and invalid ranges 24-February-2003 cse V&V © 2003 University of Washington

18 cse403-14-V&V © 2003 University of Washington
Off-the-wall testing Real life and real people are not interested in what you thought the specification said Life takes strange turns Users are not focused on treating your program with kid gloves When your program is released in the wild, it will get knocked around welcome the comments of the tester who pushes your program to its limits, don’t shout them down 24-February-2003 cse V&V © 2003 University of Washington

19 cse403-14-V&V © 2003 University of Washington
White box testing In this approach, the tester has access to the actual software They needn’t guess at the structure of the code, since they can see it The focus tends to shift from how the system behaves to what parts of the code are exercised this can be very useful, and very misleading The tester’s challenge: Can you find a defect that leads to a fault that causes a failure? 24-February-2003 cse V&V © 2003 University of Washington

20 cse403-14-V&V © 2003 University of Washington
White box coverage In black box, the tests are usually intended to cover the space of behavior In white box, the tests are usually intended to cover the space of parts of the program 24-February-2003 cse V&V © 2003 University of Washington

21 cse403-14-V&V © 2003 University of Washington
Statement coverage One approach is to cover all statements Develop a test suite that exercises all of a program’s statements What’s a statement? max = (x > y) ? x : b; if x > y then max := x else max :=y endif 24-February-2003 cse V&V © 2003 University of Washington

22 cse403-14-V&V © 2003 University of Washington
Weakness Coverage may miss some obvious issues In this example (due to Ghezzi et al.) a single test (any negative number for x) covers all statements But it’s not satisfying with respect to input condition coverage, for example if x < 0 then x := -x; endif; z := x; 24-February-2003 cse V&V © 2003 University of Washington

23 cse403-14-V&V © 2003 University of Washington
More Coverage Edge coverage Use control flow graph (CFG) representation of a program Ensure that the suite covers all edges in the CFG Condition coverage Complex conditions can confound edge coverage if ((p != NULL) && (p->left < p->right)) … Is this a single conditional statement in the CFG? How are short-circuit conditionals handled? Path coverage Edge coverage is in some sense very static Edges can be covered without covering paths (sequences of edges) Paths are better models of the actual execution 24-February-2003 cse V&V © 2003 University of Washington

24 Path Coverage and Loops
In general, we can’t bound the number of times a loop executes So there are an unbounded number of paths in general We resort to heuristics like those from black box testing to exercise these loops 24-February-2003 cse V&V © 2003 University of Washington

25 Some more practical aspects
Who tests the tests, especially a large complicated test? If your test program generates random data, who confirms the results? Another example is testing trig functions. Testing the error cases can be a wider set of inputs. You have two problems Making sure you have proper test coverage and Making sure the results are correct. Fault injection is another way of testing systems. For example, injecting I/O failures in a disk controller can test the error cases for the disk driver and file system. Another example is injecting memory allocation errors, to see how programs behave when they run out of memory. 24-February-2003 cse V&V © 2003 University of Washington

26 cse403-14-V&V © 2003 University of Washington
Final note on testing It’s unsound and based on heuristics It’s extremely useful and important Good testing requires a special mindset “I’m going to find a way to make that system fail!” “My test case is a success - it found a system problem.” Good coding requires a special mindset “Nobody’s going to break my code!” “Good thing we found the failure now, not in real life.” 24-February-2003 cse V&V © 2003 University of Washington

Download ppt "Verification and Validation"

Similar presentations

Testing Coverage Test case

Testing Coverage Test case
Testing and Quality Assurance

Testing and Quality Assurance
SOFTWARE TESTING. INTRODUCTION  Software Testing is the process of executing a program or system with the intent of finding errors.  It involves any.

SOFTWARE TESTING. INTRODUCTION  Software Testing is the process of executing a program or system with the intent of finding errors.  It involves any.
Annoucements  Next labs 9 and 10 are paired for everyone. So don’t miss the lab.  There is a review session for the quiz on Monday, November 4, at 8:00.

Annoucements  Next labs 9 and 10 are paired for everyone. So don’t miss the lab.  There is a review session for the quiz on Monday, November 4, at 8:00.
CMSC 345, Version 11/07 SD Vick from S. Mitchell Software Testing.

CMSC 345, Version 11/07 SD Vick from S. Mitchell Software Testing.
Testing an individual module

Testing an individual module
Software Testing. “Software and Cathedrals are much the same: First we build them, then we pray!!!” -Sam Redwine, Jr.

Software Testing. “Software and Cathedrals are much the same: First we build them, then we pray!!!” -Sam Redwine, Jr.
Chapter 11: Testing The dynamic verification of the behavior of a program on a finite set of test cases, suitable selected from the usually infinite execution.

Chapter 11: Testing The dynamic verification of the behavior of a program on a finite set of test cases, suitable selected from the usually infinite execution.
Chapter 13 & 14 Software Testing Strategies and Techniques

Chapter 13 & 14 Software Testing Strategies and Techniques
1 Functional Testing Motivation Example Basic Methods Timing: 30 minutes.

1 Functional Testing Motivation Example Basic Methods Timing: 30 minutes.
Software Testing Verification and validation planning Software inspections Software Inspection vs. Testing Automated static analysis Cleanroom software.

Software Testing Verification and validation planning Software inspections Software Inspection vs. Testing Automated static analysis Cleanroom software.
BY: GARIMA GUPTA MCA FINAL YEAR 0803314403. WHAT IS SOFTWARE TESTING ? SOFTWARE TESTING IS THE PROCESS OF EXECUTING PROGRAMS OR SYSTEM WITH THE INTENT.

BY: GARIMA GUPTA MCA FINAL YEAR WHAT IS SOFTWARE TESTING ? SOFTWARE TESTING IS THE PROCESS OF EXECUTING PROGRAMS OR SYSTEM WITH THE INTENT.
System/Software Testing

System/Software Testing
Software Quality Assurance Lecture #8 By: Faraz Ahmed.

Software Quality Assurance Lecture #8 By: Faraz Ahmed.
CMSC 345 Fall 2000 Unit Testing. The testing process.

CMSC 345 Fall 2000 Unit Testing. The testing process.
Prof. Mohamed Batouche Software Testing.

Prof. Mohamed Batouche Software Testing.
CS4311 Spring 2011 Unit Testing Dr. Guoqiang Hu Department of Computer Science UTEP.

CS4311 Spring 2011 Unit Testing Dr. Guoqiang Hu Department of Computer Science UTEP.
Chapter 8 – Software Testing Lecture 1 1Chapter 8 Software testing The bearing of a child takes nine months, no matter how many women are assigned. Many.

Chapter 8 – Software Testing Lecture 1 1Chapter 8 Software testing The bearing of a child takes nine months, no matter how many women are assigned. Many.
Testing Basics of Testing Presented by: Vijay.C.G – Glister Tech.

Testing Basics of Testing Presented by: Vijay.C.G – Glister Tech.
Software Testing The process of operating a system or component under specified conditions, observing and recording the results, and making an evaluation.

Software Testing The process of operating a system or component under specified conditions, observing and recording the results, and making an evaluation.

Similar presentations

Ads by Google