Software Quality News Archive |
 |
| 11 Nov 2008 |
|
| |
Critical SAP flaw leaves systems vulnerable to attack
(SearchSecurity.com)
A flaw in SAP's graphical user interface could be exploited by an attacker to gain user privileges and access data and files. |
|
|
| |
Microsoft patches critical XML Core Services flaw
(SearchSecurity.com)
The critical Microsoft flaw could be exploited by an attacker to remotely execute code and gain access to critical data. |
|
|
| |
Stop testing so much
(TheServerSide.com)
Clover 2.4 has a new test optimization feature that can reduce build times by selectively running only the tests relevant to a particular change, according to the company. |
|
|
| |
Visual Studio 2010 to include virtual test lab management
(SD Times)
Microsoft revealed several code-focused features and a lab management edition for Visual Studio 2010. |
|
|
| |
Partial test automation: Keeping humans in the loop
(Google Testing Blog)
Rather than trying to achieve complete automation, invest in ways to make the most out of the automated test and the human time. |
|
|
| |
Complex requirements on an agile project
(Dr. Dobb's Portal)
With a bit of discipline, you can address the inherent challenges of complex requirements in an agile manner without resorting to documentation-heavy practices. |
|
|
| |
Effective agile testing: Asking the right questions
(Agile Journal)
Because they tend to ask questions no one else thinks of, testers can add considerable value to agile projects. |
|
|
| |
Don't let bad website performance ruin e-commerce sales
EXCLUSIVE!
To prepare for holiday sales, e-commerce retailers need to address some key website issues: responsiveness/speed, capacity, and the worst-case scenario -- catastrophic failure. |
|
|
| 07 Nov 2008 |
|
| |
Software testing is an activity, not a phase or a department
EXCLUSIVE!
Treating testing as a phase rather than something that should be done continuously throughout software development is a recipe for defective software, says Kevlin Henney. |
|
|
| 06 Nov 2008 |
|
| |
Software testing: Cover or discover
(StickyMinds.com)
Excellent testing isn't just about covering the "map." It's also about exploring the territory, which is the process by which we discover things that the map doesn't cover. |
|
|
| |
Threat models improve your security process
(MSDN Magazine)
Microsoft's principal security program manager explains the benefits of threat modeling. |
|
|
| |
Working group formed to produce reusable agile contracts
(InfoQ)
A working group is collaborating on OpenPlans to develop a reusable agile contract. |
|
|
| |
DevPartner now performs static analysis for ASP.NET
(SD Times)
Compuware has shipped a new code quality solution that diagnoses defects and security problems in .NET and legacy applications, with support for the latest Microsoft platform techn... |
|
|
| |
LDRA adds CERT C standard to test tools suite
(SD Times)
Test tool provider LDRA now offers its TBrun unit test tool as a standalone product in an attempt to get more developers writing safety-critical applications for unit testing earli... |
|
|
| |
Manual vs. automated testing
(JW on Test)
James Whittaker explain when he thinks its better to use manual testing and when it's better to use automated testing. |
|
|
| |
Debugging ASP.NET Ajax applications
(ASP.NET)
Learn how Visual Studio 2008 Beta 2 and several other tools can be used to debug ASP.NET Ajax applications to quickly locate bugs and other issues. |
|
|
| 05 Nov 2008 |
|
| |
SOA application testing a combined effort
EXCLUSIVE!
Using business process testing and subject matter experts to test unchanging SOA applications complements work done by quality assurance engineers. |
|
|
| 04 Nov 2008 |
|
| |
Programming glitch led to flood of voter registration checks
(The Atlanta Journal-Constitution)
A computer programming glitch is to blame for the nation-leading number of voter registration checks Georgia ran this year through the Social Security Administration. |
|
|
| |
Microsoft: Third-party apps killing our security
(Between the Lines Blog)
Microsoft's data confirms that hackers are attacking Vista almost entirely through third-party applications. |
|
|
| |
At Mozilla, blowing the lid off security practices
(CNet)
Window Snyder, Mozilla's chief security executive, wants to bring open source practices to the security community. |
|
|
| |
Writing thread-safe code: What can go wrong with multithreaded logic?
(Jason Gorman's Blog)
Jason Gorman writes about two specific kinds of things that can go wrong when two or more threads of execution start interacting with the same data and objects. |
|
|
| |
Zephyr 2.0 offers tighter integration with JIRA defect tracking
(SD Times)
Zephyr announced a new version of its test management software, Zephyr 2.0. |
|
|
| |
Mastering Grails: Testing your Grails application
(IBM developerWorks)
Grails guru Scott Davis shows you the Grails testing ropes. |
|
|
| |
RIM brings single codebase for BlackBerry developers
(SD Times)
In an effort to ease coding for BlackBerry devices, updated tools from RIM allow developers to have a singe code base to be modified at compile time for mobile devices. |
|
|
| |
Kanban as alternative agile implementation
(InfoQ)
Dave Nicolette, an Agile coach, says its important to expand your repertoire beyond the basics of Scrum/XP and become familiar with tools such as Kanban. |
|
|
| 31 Oct 2008 |
|
| |
Ajax website security: Don't trust the client
EXCLUSIVE!
Ajax security concepts aren't new; they're just applied differently, says Web security expert Billy Hoffman. Prime concern: The client plays a bigger role, and you can't trust it. |
|
|
| 30 Oct 2008 |
|
| |
Princeton warns of e-voting machine hack
(eWeek)
A report released by Princeton University claims an e-voting machine used in New Jersey can be hacked in seven minutes. |
|
|
| |
Finnish e-voting fiasco
(Electronic Frontier Finland)
An e-voting system used in the Finnish municipal elections Oct. 26 reportedly lost 2% of the votes cast due to a usability glitch. |
|
|
| |
Student charged after alerting principal to server vulnerability
(The Register)
A 15-year-old high school student in New York State has been charged with three felonies after he allegedly accessed personnel records on his school's poorly configured computer ne... |
|
|
| |
Flaws in packaged software a serious threat
(SC Magazine)
Backdoor threats in software applications will become a more serious threat and increasingly difficult to detect in the future. |
|
|
| |
Microsoft adds runtime intelligence, anti-tampering features to VS 2010
(SD Times)
Developers who create applications using Visual Studio 2010 will have more control and visibility into what happens after their software ships. |
|
|
| |
Can test automation replace human testers?
(Software Testing Zone)
Debasis gives his pros and cons of automated software testing and manual software testing. |
|
|
| |
RubyEncoder: Obfuscation and code protection for Ruby
(InfoQ)
Alexander Belonosov RubyEncoder's lead developer talks about how the tool can protect a project. |
|
|
| 29 Oct 2008 |
|
| |
Traditional security threats coming soon to mobile device near you
(SearchMobileComputing.com)
Browser exploits, botnets and more will soon be coming to mobile devices, according to a report from the Georgia Tech Information Security Center. Knowing the key threats can help ... |
|
|
| |
The consequences of overlooking SOA testing blind spots
EXCLUSIVE!
Overlooking SOA application testing blind spots can result in unintended consequences such as buggy, insecure applications. Experts explain what you should keep your eyes open for. |
|
|
| |
SOA applications bring testing challenges
EXCLUSIVE!
The complexity of SOA applications creates testing challenges. To address those challenges, experts recommend more collaboration across project teams, earlier involvement by tester... |
|
|
| 28 Oct 2008 |
|
| |
E-voting machines in Pennsylvania pass test
(Pittsburgh Tribune-Review)
E-voting machines in Pennsylvania's Allegheny County are working as advertised, using the software their makers promised to install, according to a one-of-a-kind test completed by ... |
|
|
| |
U.K. nixes e-voting
(The Register)
There are no plans to introduce e-voting in the U.K., or even to conduct further pilots of the technology, a government minister has confirmed. |
|
|
| |
What videogames teach us about security
(Forbes)
Gary McGraw explains how the computing world can learn a lot from videogames. |
|
|
| |
Amazon adds Windows, Linux SLA into cloud service
(SD Times)
Amazon has added two of the most requested features by developers to its Elastic Compute Cloud: Windows instances and a service-level agreement for Linux users. |
|
|
| |
VersionOne adds mapping, planning features to agile manager
(SD Times)
Agile project management provider VersionOne has added new planning and mapping features to its all-in-one management product. |
|
|
| |
A new approach to unit tests
(Stefano Maestri's blog)
Stefano Maestri introduces behavior-driven development. |
|
|
| 27 Oct 2008 |
|
| |
With Azure, Microsoft clarifies its cloud-based computing plans
(SearchWinIT.com)
At Professional Developers Conference 2008, Microsoft unveils software services and cloud-based computing on the 'Azure Services Platform.' |
|
|
| |
PCI compliance falls short of assuring website security
EXCLUSIVE!
PCI standards fall short of protecting you and your customers. Tighter standards are needed to assure website security, says Greg Reber |
|
|
