Beruflich Dokumente
Kultur Dokumente
Applications
Robert Sabourin
President
AmiBug.Com, Inc.
Montreal, Canada
rsabourin@amibug.com
www.amibug.com
© Robert Sabourin, 2003 Slide 1
AmiBug.Com, Inc.
Testing Web and E-Commerce
Applications
Module 2
What Can Break?
Any Combination
• User-provided content
• Interactive
• File sharing
• Transaction oriented
• Application service provider
• Database access
• Document access
• Workflow oriented
• Automatic content generator
• Brochureware sites
• Present information
Characteristics
• Kiosks
• Wrong, incorrect or
outdated information
Bug Potential
• Invalid or incorrect links
• Graphic user interface
problems
• Download of content
• FTP sites
Characteristics
• Applications
• Special portal
• Customized
Characteristics
• End user preferences
• Functional bugs
Bug Potential • Wrong URLs in portal
• Invalid or incorrect links
• Registration forms
• Requests for information
Characteristics
• Functional bugs
Bug Potential • GUI problems
• Invalid or incorrect links
• Functional bugs
Bug Potential • Security
• Scalability
• Database of information
which a user can query
Characteristics
• Access to on-line
information libraries and
Characteristics documentation
• Functional errors
Bug Potential • Incorrect or Wrong content
• Invalid or incorrect links
Serviceability
Accessibility
Functionality
Adaptability
Re-usability
Auditability
Operability
Availability
Scalability
Testability
Continuity
Portability
Reliability
Usability
Security
Integrity
Application service provider
Automatic content generator
Customized access
Database access
Delivery
Document access
File sharing
Informational
Interactive
Transaction oriented
User-provided content
Workflow oriented
High Focus
Medium Focus Quality Factors Importance For
Low Focus Different Web Application Types
© Robert Sabourin, 2003 Slide 18
AmiBug.Com, Inc.
Basic Web Architecture
W o r k s ta tio n W o r k s ta tio n
D a ta
S e rv e r
P ro x y S e rv e r
W o r k s ta tio n W o r k s ta tio n
In te rn e t
M odem
Hom e PC
In te r n e t S e r v ic e P r o v id e r W e b S e rv e r A p p lic a tio n S e r v e r
P ro x y S e rv e r
W o r k s ta tio n W o r k s ta tio n
In te rn e t
M odem
Hom e PC
In te r n e t S e r v ic e P r o v id e r W e b S e rv e r A p p lic a tio n S e r v e r
User
W o r k s ta tio n W o r k s ta tio n Components
D a ta
S e rv e r
P ro x y S e rv e r
W o r k s ta tio n W o r k s ta tio n
PC via modem to
Internet Service Provider
In te rn e t
M odem
Hom e PC
In te r n e t S e r v ic e P r o v id e r W e b S e rv e r A p p lic a tio n S e r v e r
P ro x y S e rv e r
W o r k s ta tio n W o r k s ta tio n
Process Application
HTTP Dependent
Requests Code
In te rn e t
M odem
Hom e PC
In te r n e t S e r v ic e P r o v id e r W e b S e rv e r A p p lic a tio n S e r v e r
W o r k s ta tio n W o r k s ta tio n
D a ta
S e rv e r
P ro x y S e rv e r
Various
W o r k s ta tio n W o r k s ta tio n
Routers,
Servers &
Switches
In te rn e t
M odem
Hom e PC
In te r n e t S e r v ic e P r o v id e r W e b S e rv e r A p p lic a tio n S e r v e r
W o r k s ta tio n W o r k s ta tio n
WORKSTATIONS
Browser D a ta
Operating System S e rv e r
Plug-Ins
Media Players
Viewers
M odem Display depth In te rn e t
Hom e PC
Display resolution
Resident applications
In te r n e t S e r v ic e P r o v id e r W e b S e rv e r A p p lic a tio n S e r v e r
W o r k s ta tio n W o r k s ta tio n
Typical Office
W o r k s ta tio n W o r k s ta tio n
P ro x y S e rv e r
- Local Area Network
- Several computers share a High, to Very High
Speed Access
- Via a proxy server, which redirects requests to
In te rn e t
M odem
and from ISP servers to appropriate local
Hom e PC workstation
In te r n e t S e r v ic e P r o v id e r W e b S e rv e r A p p lic a tio n S e r v e r
In te rn e t
M odem
Hom e PC
In te r n e t S e r v ic e P r o v id e r W e b S e rv e r A p p lic a tio n S e r v e r
In te rn e t
M odem
Hom e PC
In te r n e t S e r v ic e P r o v id e r W e b S e rv e r A p p lic a tio n S e r v e r
W o r k s ta tio n W o r k s ta tio n
- Network
- Servers D a ta
- Switches S e rv e r
- Networks
W o r k s ta tio n W o r k s ta tio n
P ro x y S e rv e r
- Routers
In te rn e t
M odem
Hom e PC
In te r n e t S e r v ic e P r o v id e r W e b S e rv e r A p p lic a tio n S e r v e r
Hom e PC
In te r n e t S e r v ic e P r o v id e r W e b S e rv e r A p p lic a tio n S e r v e r
W o r k s ta tio n W o r k s ta tio n
D a ta
S e rv e r
Data Server
P ro x y S e rv e r
- Data layer
W o r k s ta tio n W o r k s ta tio n
- Authentication D a ta
- Authorization S e rv e r
P ro x y S e rv e r
W o r k s ta tio n W o r k s ta tio n
In te rn e t
M odem
Hom e PC
In te r n e t S e r v ic e P r o v id e r W e b S e rv e r A p p lic a tio n S e r v e r
2 3
D a ta
S e rv e r
10
W o r k s ta tio n W o r k s ta tio n 4 P ro x y S e rv e r
16
7 12 11
6
5
M odem
In te rn e t
9
15 14 8
Hom e PC
13
In te r n e t S e r v ic e P r o v id e r W e b S e rv e r A p p lic a tio n S e r v e r
resources. S e rv e r
Developers Direct S e rv e r
Direct Control
W o r k s ta tio n W o r k s ta tio n
P ro x y S e rv e r
Control
In te rn e t
M odem
Hom e PC
In te r n e t S e r v ic e P r o v id e r W e b S e rv e r A p p lic a tio n S e r v e r
User
Missing or wrong version of Third
Application
W o r k s ta tio n W o r k s ta tio n
Party Plug-In or Object
D a ta
S e rv e r
Incompatible or Missing JAVA
Runtime environment and engine
P ro x y S e rv e r
W o r k s ta tio n W o r k s ta tio n
Incompatible or Missing
JAVASCRIPT interpreter
Screen resolution ©
and color
Robert support
Sabourin, 2003 Slide 45
not match application AmiBug.Com, Inc.
Proxy Server Bugs
Does not allow access to URL for
any workstation. Configuration.
User Application
Does not allow response to request
W o r k s ta tio n W o r k s ta tio n
to be routed to requester.
D a ta
S e rv e r
Adds considerable processing time
to the transaction - drop connection
P ro x y S e rv e r
W o r k s ta tio n W o r k s ta tio n
Misidentifies embedded object as
unacceptable file type if unknown
Performs
In te rn e t
virus scans on some
M odem
binary objects
Hom e PC
Content block and restriction based
In te r n e t S e r v ic e P r o v id e r
on user access rights W e b S e r v e r A p p lic a tio n S e r v e r
Defective
© Robert Sabourin, file
2003or object caching Slide 46
mechanisms miss most recent fileAmiBug.Com, Inc.
Modem Bugs
User Application
W o r k s ta tio n W o r k s ta tio n
many retries.
Hom e PC
In te r n e t S e r v ic e P r o v id e r W e b S e rv e r A p p lic a tio n S e r v e r
User Application
Bandwidth is limited, as regards
W o r k s ta tio n W o r k s ta tio n
connection to internet vs total load.
D a ta
S e rv e r
CPU and Resource capacity
insufficient to handle traffic.
P ro x y S e rv e r
W o r k s ta tio n W o r k s ta tio n
ISP experiencing hardware related
communications problems (switch)
Restrictions
In te rn e t
to amount of content
M odem
users can download
Hom e PC
Restrictions to amount of time a
In te r n e t S e r v ic e P r o v id e r
user can be connectedW e b S e r v e r A p p lic a tio n S e r v e r
Defective
© Robert Sabourin, Software
2003 on any of the ISP Slide 48
servers AmiBug.Com, Inc.
Internet Bugs
Defective intermediate routers,
switches or servers.
User Application
Too much traffic causes bottlenecks
Too much traffic causes bottlenecks
W o r k s ta tio n W o r k s ta tio n
on some routes.
D a ta
S e rv e r
Hardware failure on network
infrastructure.
P ro x y S e rv e r
W o r k s ta tio n W o r k s ta tio n
Local government imposed
regulations and content limits
In te rn e t
Various firewalls in path can block
M odem
transaction due to authorization
Hom e PC
Denial of service attacks to different
In te r n e t S e r v ic e P r o v id e r
critical intermediate
W e b S e rv e r
servers
A p p lic a tio n S e r v e r
Hom e PC
Pirates, Vandals, Hackers,
Snoopers,I n t eBad Guys redirections
r n e t S e r v ic e P r o v id e r W e b S e rv e r A p p lic a tio n S e r v e r
Hom e PC
Access failure communicating with
Application Server
In te r n e t S e r v ic e P r o v id e r W e b S e rv e r A p p lic a tio n S e r v e r
© Robert
Cannot Sabourin,
handle 2003
transaction volume Slide 52
AmiBug.Com, Inc.
Application Server Bugs too
Communication failure with Data
server
Application
User
Communication failure with Web
W o r k s ta tio n W o r k s ta tio n
Server
D a ta
S e rv e r
Logic error in implementation of
error handling code
P ro x y S e rv e r
W o r k s ta tio n W o r k s ta tio n
M odem
Failure of third
I n t e r n epart
t components
Hom e PC
Design errors
© Robert in implementation
Sabourin, 2003 of Slide 53
business logic
AmiBug.Com, Inc.
Data Server Bugs
Performance delays due to amount
of data or system load
• Questions?