Chapter 5: risks and testing Flashcards
What is a product risk?
Product risk involves the possibility that a work product (e.g., a specification, component, system, or test) may fail to satisfy the legitimate needs of its users and/or stakeholders
What is the level of risk?
The level of risk is that likelihood and impact of the event
What is a risk?
Risk involves the possibility of an event in the future which has negative consequences
When do quality risks arise?
When the project risks are associated with specific quality characteristics of a product (e.g., functional suitability, reliability, performance efficiency, usability, security, compatibility, maintainability, and portability), product risks are also called quality risks
Give examples of product risks
- Software might not perform its intended functions according to the specification
- Software might not perform its intended functions according to user, customer, and/or stakeholder needs
- A system architecture may not adequately support some non-functional requirement(s)
- A particular computation may be performed incorrectly in some circumstances
- A loop control structure may be coded incorrectly
- Response-times may be inadequate for a high-performance transaction processing system
User experience (UX) feedback might not meet product expectations
What kind of project risk issue is this?
Delays may occur in delivery, task completion, or satisfaction of exit criteria or definition
of done
Project risk
What kind of project risk issue is this?
Inaccurate estimates, reallocation of funds to higher priority projects, or general costcutting across the organization may result in inadequate funding
Project risk
What kind of project risk issue is this?
Late changes may result in substantial re-work
Project risk
What kind of project risk issue is this?
Skills, training, and staff may not be sufficient
Organisational risk
What kind of project risk issue is this?
Personnel issues may cause conflict and problems
Organisational risk
What kind of project risk issue is this?
Users, business staff, or subject matter experts may not be available due to conflicting
business priorities
Political risk
What kind of project risk issue is this?
Testers may not communicate their needs and/or the test results adequately
Political risk
What kind of project risk issue is this?
Developers and/or testers may fail to follow up on information found in testing and
reviews (e.g., not improving development and testing practices)
Political risk
What kind of project risk issue is this?
There may be an improper attitude toward, or expectations of, testing (e.g., not
appreciating the value of finding defects during testing)
Political risk
What kind of project risk issue is this?
Requirements may not be defined well enough
Technical issue
What kind of project risk issue is this?
The requirements may not be met, given existing constraints
Technical issue
What kind of project risk issue is this?
The test environment may not be ready on time
Technical issue
What kind of project risk issue is this?
Data conversion, migration planning, and their tool support may be late
Technical issue
What kind of project risk issue is this?
Weaknesses in the development process may impact the consistency or quality of project
work products such as design, code, configuration, test data, and test cases
Technical issue
What kind of project risk issue is this?
Poor defect management and similar problems may result in accumulated defects and
other technical debt
Technical issue
What kind of project risk issue is this?
A third party may fail to deliver a necessary product or service, or go bankrupt
Supplier issue
What kind of project risk issue is this?
Contractual issues may cause problems to the project
Supplier issue
Who is responsible for project risks?
Project risks may affect both development activities and test activities. In some cases, project managers
are responsible for handling all project risks, but it is not unusual for test managers to have responsibility
for test-related project risks
What might project risks effect?
Project risks may affect both development activities and test activities
How is risk used in testing?
- To find where to focus effort durring testing
- where and when to start testing
- find the areas that need more attention
Explain a risk based approach to testing
- proactive opportunities to reduce the levels of product risk
- It involves product risk analysis, which includes the identification of product risks and the assessment of each risk’s likelihood and impact.
-The resulting product risk information is used to guide test planning, the specification, preparation and execution of test cases, and test monitoring and control.
-Analysing product risks early contributes to the success of a project. - In addition, testing may identify new risks, help to determine what risks should be mitigated, and lower uncertainty about risks.
Summary:
find product risks, their likelihood & impact -> let this guide you in planning, executing and testing monitoring & control -> contribute to success
In addition, testing may identify new risks, help to determine what risks should be mitigated, and lower uncertainty about risks.
What are the advantages of testing when it comes to risk?
- A risk based approach to testing means risks can be analysed early which contributes to success
- testing may identify new risks, help to determine what risks should be mitigated, and lower uncertainty about risks.
- Testing is used to reduce the probability of an adverse even occurring or reducing it’s impact
- It is a risk mitigation activity, to provide information about identified risks, as well as providing information on residual (unresolved) risks
In risk based testing, what are the results of product risk analysis?
- Determine the test techniques to be employed
- Determine the particular levels and types of testing to be performed (e.g., security testing, accessibility testing)
- Determine the extent of testing to be carried out
- Prioritize testing in an attempt to find the critical defects as early as possible
-Determine whether any activities in addition to testing could be employed to reduce risk (e.g., providing training to inexperienced designers)
Risk management activities provide a disciplined approach to?
- Analyze (and re-evaluate on a regular basis) what can go wrong (risks)
- Determine which risks are important to deal with
- Implement actions to mitigate those risks
- Make contingency plans to deal with the risks should they become actual events
