The BBST course series is open source — anyone can download the materials. Anyone can teach the courses.

Dr. Rebecca L. Fiedler designed the BBST Instructors Course to teach people who had taken BBST how to teach it. Over several years, we’ve been working on an Instructors’ Manual to support the course, publishing several drafts for review.

Dr. Fiedler, Doug Hoffman and I have finally finished the manual, a 357-page book. You can find it here, at the web page for the BBST Instructors Course. (Like BBST, the BBST instructors course materials are available to the world for free. Enjoy!)

As with all of the BBST work, we thank the National Science Foundation, for its support: grants EIA-0113539 ITR/SY+PE Improving the Education of Software Testers and CCLI-0717613 Adaptation & Implementation of an Activity-Based Online or Hybrid Course in Software Testing. (The views expressed in BBST and this blog reflect the opinions of the authors and not NSF.)

When I first studied testing, I learned that a test involved comparison of the test result to an expected result. The expected result was the oracle: the thing that would tell you whether the program passed or failed the test. We generalized this a bit, especially for automated testing–we would look to a reference program as our oracle. The reference program is a program that generates the expected results, rather than the results themselves. But the idea was the same: testing involved comparison with a known result.

The Oracle Problem

Oracle is an interesting choice of terminology, because the oracles of Greece (the original “oracles”) were mythological. And Greek tragedies are full of stories of people who misinterpreted what an oracle told them, and behaved (on the basis of their understanding) in ways that brought disaster on them.

If we define a software testing oracle as a tool that tells you whether the program passed your test, we are describing a myth–something that doesn’t exist. Relying on the oracle, you might make either of the classic mistakes of decision theory:

• The miss: you believe the program has passed even though it did something wrong.
• The false alarm: you believe the program has failed even though it has behaved appropriately.

So we soften the definition: a software testing oracle is a tool that helps you decide whether the program passed your test.

Seen this way, oracles are heuristic devices: they are useful tools that help us make decisions, but sometimes they point us to the wrong decision.

If you don’t have authoritative oracles (“authoritative” = an oracle that is always correct), then how can you test? How can you specify a test in a way that a junior tester or a computer can run the test and correctly tell you whether the program passed it?

The Instructional Problem

I’ve been emphasizing the oracle problem in my testing courses for about a dozen years. I see this as one of the defining problems of software testing: one of the reasons that skilled testing is a complex cognitive activity rather than a routine activity. Most of the time, I start my courses with a survey of the fundamental challenges of software testing, including an extended discussion of the oracle problem.

If you’ve seen the BBST-Foundations courses (for example, the Association for Software Testing teaches a version of this course), you’ve seen my introduction to the oracle problem and to heuristic oracles. Students typically work through one or more theoretical and/or practical labs in BBST. Once they understand the oracle problem, the course presents two approaches for using oracles:

• One approach, that I associate with James Bach and Michael Bolton, lists 8 general types of expectations. For example, we expect a product to operate consistently across all of its features. We expect it to operate consistently from version to version, etc. (I’ll list the set of consistencies later.)
• A different approach, that I associate with Doug Hoffman (but I think it’s been independently developed and followed by lots of people), lists specific heuristics. None of them is complete. Each focuses on a specific prediction about the results of a test and ignores other aspects of the test. For example, if we are testing a program that does calculations, checking whether it says 2+3=5 (5 is the expectation) is not complete, but it is useful. Testing whether we can invert an operation (take the square root of a square of a number) isn’t a complete test of a square-a-number function, but it is useful. (More examples below…)

Bach and Bolton have done a good job of explaining their approach. Mike Kelly provides a great summary of it. I follow an explanatory approach that I learned from an early version of Bach’s RST course in my lectures and it works well. Students understand the consistencies and (generally) find them compelling. The list feels complete–any specific oracle you can think of can be classified as an example of one of their consistencies.

I think there are three problems with Bach and Bolton’s consistencies:

1. These provide a useful way to think about a bug after you find it and try to report it. The list of consistencies can structure your thinking as you try to figure out how to explain to someone else why a particular program behavior feels wrong (what feels wrong about it?). However, even though I do find them helpful for evaluating test results, I don’t find them helpful for designing tests.
2. I think they are particularly worthless for designing automated tests. Automated testing depends on oracles–the automated-testing-program that runs a zillion tests has to decide whether the software under test passed each test or not. The consistencies don’t guide testers (not me, not the testers I know, not the students I teach) toward oracle ideas that are specific enough to be programmed and used by an automaton.
3. In my courses, the consistencies capture my students’ imagination and interfere with their thinking about oracles that would be useful for designing tests, especially automated tests.

It is the third problem that I have been wrestling with for several years and that will cause me to rewrite the BBST-Foundations course.

In exam after exam, when I give students a specific scenario that clearly involves automated testing and ask them to suggest oracles they would use to support their automated testing and how they would use them, they ramble through a memorized list of consistency heuristics and don’t come up with ideas–some students don’t come up with any ideas–for oracles that support the automation.

• I tried to correct this problem by raising the problem in supplementary lectures. It didn’t work.
• I went even further, telling students that this was a classic problem in this course and they needed to answer questions about oracles in test design with specific oracles. It didn’t work.
• I went even further, telling students as part of the exam question itself that this question called for specific ideas about the oracles they would design into specific tests and they shouldn’t rely on general descriptions of consistencies. It didn’t work.
• Even when I give a set of exam questions to students in advance, and they draft an answer in advance with full benefit of time, course notes, lecture notes and videos, discussions with each other, and anything they can find on the web–even when these questions have cautionary notes about this being a question about test automation and they shouldn’t just present a consistency oracle–it still didn’t work.

They just keep giving back worthless ideas about test design and flunk that part of the exam.

Feh!

An Important Instructional Heuristic

When a few students give bad answers on an exam, the problem is in the students. They don’t understand the material well enough.

When a lot of students give bad answers on the exam, the problem is in the instruction. It’s the responsibility of the teacher to troubleshoot and fix this.

When a lot of students give bad answers that are weak in a consistent way, something specific in the instruction leads them down that path. In my experience, that something is often something the instructor is particularly attached to.

I like the consistencies a lot. But I think that in the Foundations course, they are an attractive nuisance (an almost-irresistable invitation to take a hazardous or counterproductive path).

Therefore

• In the next generation of the Foundations course, I will probably drop the oracle consistencies approach altogether.
• In the next generation of the Bug Advocacy course, I will probably add the oracle consistencies as a useful tool for persuasive bug report writing.

---

Appendix: More Details on Oracles

1. The underlying problem: Oracles are necessarily incomplete
2. Oracles are heuristics
3. Bach and Bolton’s consistencies
4. Hoffman’s approach
5. Applying this to test automation

Oracles are Necessarily Incomplete

Back when dinosaurs roamed the earth, some testasauruses theorized that a properly designed software test involves:

• a set of preconditions that specify the state of the software and system when you start the test
• a set of procedures that specify what you do when you do the test
• comparison of what the software under test does with a set of postconditions: the predicted state of the system under test after you run the test. This set of postconditions make up the expected results of the test.

We can call the postconditions the oracle or we can say that a program that generates the expected results is the oracle, but in either case, the testasauruses said, good testing involves comparing the program’s test behavior to expected results, and to do good testing, you need an oracle. (Fossils from this era have been preserved in IEEE Standard 829 on software test documentation.)

Elaine Weyuker’s (1980) On Testing Nontestable Programs shattered that view. Weyuker argued that “it is unusual for … an oracle to be pragmatically attainable or even to exist” (p. 3). Instead, she said, testers rely on partial oracles. For example:

• A tester might recognize a result of a calculation as impossibly large even though she doesn’t know what the exact result should be. (You might not know offhand what 1.465732 x 2.74312 is, but if a program said 7,000,000 you could reject that as obviously wrong without doing any calculations.)
• A tester might recognize behavior as inappropriate, even if she doesn’t know exactly how the program should behave.

Weyuker’s paper wasn’t widely noticed in the practitioner community. I don’t think we appreciated the extent of this problem until the Quality Week conference in 1998, when Doug Hoffman (A Taxonomy for Test Oracles) explained this problem and its implications this way:

Suppose that we specify a test by describing

• the starting state of the system under test
• the test inputs (the data and operations you use to carry out the test)
• the expected test outputs

We can still make mistakes in interpreting the test results.

• We might incorrectly decide that the program passed the test because its outputs matched the expected outputs but it misbehaved in some other way. For example, a program that adds 2+2 might get 4, but it is clearly broken in some way if it takes 10 hours to get that result of 4.
• We might incorrectly decide that the program failed the test because its outputs did not match the expected results, but on more careful examination, we might realize that it did the right thing. For example, imagine testing to a network printer with the expectation that the printer will page a specific page within 1 minute–but during the test, another computer sent a long document to the printer and so it didn’t actually get to the test document for a long time. This might be the exactly correct behavior under the circumstances, but it doesn’t match the expectation.

Most testers, doing manual testing, would probably not make either mistake. But an automated test would make both mistakes. So would a manual tester who was trying to exactly follow a fully-detailed script.

Doug argued that both types of mistakes were inevitable in testing because no one could fully specify the starting state of the system and no one could fully specify the ending state of the system. There are too many potentially-relevant variables. For example, suppose in your 2+2 test, you do specify the expected time for the test to complete:

• Did you specify the contents of the stack? What if the program adds stuff to the stack but doesn’t remove it, or corrupts the stack in some other way?
• Did you specify the contents of memory? Memory leaks are common bugs. And buffer overflows are a common example of a class of bug that corrupts memory.
• Did you specify the contents of the hard disk? What if the program saves something or deletes something?
• Did you specify what the printer would do during the test? What if the program sends something to the printer, even though it is not supposed to, or sends unauthorized email, etc.?

If you don’t have experience thinking about the diversity of ways that something can go wrong, but you have a bit of technical savvy, the Hewlett-Packard printer diagnostics can be eye-opening. You can find documentation of these in Management Information Bases (MIB’s) published by HP. I find these at https://spp.austin.hp.com/SPP/Public/Sdk/SdkPublicDownload.aspx but if this source goes away, you can find third party sites like OiDView. For example, the MIB file for the LaserJet 9250c runs 8506 lines, documenting 176 commands, many of them with many possible parameters. A program can go wrong in hundreds (or thousands) of different ways.

From a diagnostic point of view, imagine running a test and checking the state of the printer. For example, you might check how much free memory there is, or how long the last command took to execute, or the most recent internal error code. Each diagnostic command that you run changes the state of the machine, and so the results of the next diagnostic are no longer looking at the system as it was right after the test completed.

So in practical terms, even if you could fully specify the state of the system after a test (you can’t, but pretend that you could), you still couldn’t check whether the system actually reached that state after the test because each of the diagnostics that you would run to check the state of the system would change the state. The next diagnostic tests the machine that is now in a different state. In practical terms, you can only run a few diagnostics as part of a test (maybe just one) before the diagnostics stop being informative. If  these diagnostics don’t look for a problem in the right places, you won’t see it. This is sometimes called the Heisenbug problem, in honor of the Heisenberg Uncertainty Principle.

Oracles are Heuristics

Hoffman argued that no oracle can fully specify the postcondition state of the system under test and therefore no oracle is complete. Given that an oracle is incomplete, you might use the oracle and incorrectly conclude that the program failed the test when it didn’t or passed the test when it didn’t. Either way, reliance on an oracle can lead you to the wrong conclusion.

A decision rule that is useful but not always correct is called a heuristic.

My favorite presentations of the ideas underlying Heuristics were written by Billy V. Koen. See his book (I prefer the shorter and simpler ASEE early edition used in introductory engineering courses, but the current version is good too) and a wonderful historical article that he wrote for BBST.

The Bach / Bolton Consistency Heuristics

Imagine running a test. The program misbehaves. The tester notices the behavior and recognizes that something is wrong. What is it that makes the tester decide this is wrong behavior?

In Bach’s view (as I understand it from talking with him and teaching about this with him), what happens is that the tester makes a comparison between the behavior and some expectations about the ways the program should (or should not) behave. These comparisons might be conscious or unconscious, but Bach posits that they must happen because every explanation of why a program’s behavior has been evaluated as a misbehavior can be mapped to one of these types of consistency.

Here’s the list:

• Consistent within product: Function behavior consistent with behavior of comparable functions or functional patterns within the product.
• Consistent with comparable products: Function behavior consistent with that of similar functions in comparable products.
• Consistent with history: Present behavior consistent with past behavior.
• Consistent with our image: Behavior consistent with an image the organization wants to project.
• Consistent with claims: Behavior consistent with documentation, specifications, or ads.
• Consistent with standards or regulations: Behavior consistent with externally-imposed requirements.
• Consistent with user’s expectations: Behavior consistent with what we think users want.
• Consistent with purpose: Behavior consistent with product or function’s apparent purpose.

(If you reorder the list, you can use a mnemonic abbreviation to memorize it: HICCUPPS.)

For example, imagine that there is a program specification and that the program behaves differently from what you would predict from the specification. The behavior might be reasonable, but if it contradicts the specification, you should probably write a bug report. Your explanation of the problem in the report wouldn’t be “this is bad”. It would be “this is bad because it is inconsistent with the specification.”

The list is designed to cover every type of consistency-expectation that testers rely on. If they realize the list is incomplete, they add a new type.

For the sake of argument, I will assume that this list is complete, i.e. that every rationale that a tester provides for why a program is misbehaving can be mapped to one of these 8 types of consistency.

I have seen it argued (mainly on Twitter) that this is the “right” list. That every other oracle can be mapped to this list (this oracle tests for this type of inconsistency) and therefore they are all special cases. If you know this list, the argument goes, you can derive (or imagine) (or something) all the oracles from it.

As far as I know, there is no empirical research to support the claim that testers in fact always rely on comparisons to expectations or that these particular categories of expectations map to the comparisons that go on in testers’ heads.

• That assertion does not match my subjective impression of what happens in my head when I test. It seems to me that misbehaviors often strike me as obvious without any reference to an alternative expectation. One could counter this by saying that the comparison is implicit (unconscious) and maybe it is. But there is no empirical evidence of this, and until there is, I get to group the assertion with Santa Claus and the Tooth Fairy. Interesting, useful, but not necessarily true.
• The assertion also does not match my biases about the nature of concept formation and categorical reasoning. As a graduate student, I studied cognition with Professor Lee R. Brooks. Some of his most famous work was on nonanalytic concept formation (see his 1978 chapter In Rosch & Lloyd’s classic Cognition & Categorization or his paper with Larry Jacoby (1984) on Nonanalytic cognition. A traditional view of cognition holds that we make many types of judgment on the basis of rules that put things into categories–something is this or that because of a set of rules that we consult either consciously or unconsciously. Bach and Bolton’s consistencies are examples of the kinds of categories that I think of when I think of this tradition. A very different view holds that we make judgments on the basis of similarity to exemplars. (An exemplar is a memorable example.) A person can learn arbitrarily many exemplars. Experts have probably learned many more than nonexperts and so they make better evaluations. One of the most interesting experiments in Lee’s lab required the experimental subject to make a judgment (saying which category something belonged to) and explain the judgment. The subjects in the experiments described what they said were their decision rules to explain each choice. But over a long series of decisions, you can ask whether these rules actually describe the judgments being made. The answer was negative. The subject would describe a rule that recently he hadn’t followed and that he would again not follow later. Instead, the more accurate predictor of his decisions was the similarity of the thing he was categorizing to other things he had previously categorized. It appeared that unconscious processing was going on, but it was  nonanalytic (similarity-based), not analytic (rule-based). I found, and still find, this line of results persuasive.

A list can be useful as a heuristic device, as a tool that helps you consciously think about a problem, whether the list describes the actual underlying psychology of testing or not.

But if it is to be a good heuristic device, it has to be more useful than not. As a tool for teaching oracles as part of test design, my experience is that the consistency list fails the utility criterion.

I don’t have any scientific research to back up my conclusion, just a lot of personal experience. But when dealing with a heuristic device that is not backed up by any scientific research (just a lot of personal experience), I get to rely on what I’ve got.

Doug Hoffman’s Approach

I first saw Doug talk about oracles in 1998, at Quality Week. That was the start of a long series of publications on oracles and the use of oracles in test automation. Along with the papers, I have the benefit of having taught courses on test automation with Doug and having talked at length with him while he struggled to get his ideas on paper.

Doug made two key points in 1998:

• All oracles are heuristic (we’ve already covered that ground)
• There are a lot of incomplete oracles available. Given that we have to rely on incomplete oracles (because no oracles are complete), we should think about what combinations of oracles we can use to learn interesting things about the software.

Doug’s work was so striking that we opened the Fifth Los Altos Workshop on Software Testing with it. That meeting became an intense, 2-day long, moderated debate between Doug and James Bach. We learned so much about managing difficult debates in that meeting that we were able to create what I think of as the current structure of LAWST, adopted in LAWST 6.

Doug has published several lists of specific types of oracles. Unfortunately, each of the ones I’ve read has its own idiosyncrasies that can be confusing, so I won’t try to restate them. Instead, I’ll work from BBST-Foundations-2013 (in preparation), which refines a list that I prepared for the current BBST Foundations with Doug’s coaching.

• We use the constraint oracle to check for impossible values or impossible relationships. For example an American ZIP code must be 5 or 9 digits. If you see something that is non-numeric or some other number of digits, it cannot be a ZIP code. A program that produces such a thing as a ZIP code has a bug.
• We use the regression oracle to check results of the current test against results of execution of the same test on a previous version of the product.
• We use self-verifying data as an oracle. In this case, we embed the correct answer in the test data. For example, if a protocol specifies that when a program sends a message to another program, the other one will return a specific response (or one of a few possible responses), the test could include the acceptable responses. An automated test would generate the message, then check whether the response was in the list or was the specific one in the list that is expected for this message under this circumstance.
• We use a physical model as an oracle when we test a software simulation of a physical process. For example, does the movement of a character or object in a game violate the laws of gravity?
• We use a business model the same way we use a physical model. If we have a model of a system, we can make predictions about what will happen when events X take place. The model makes predictions. If the software emulates the business process as we intend, it should give us behavior that is consistent with those predictions. Of course, as with all heuristics, if the program “fails” the test, it might be the model that is wrong.
• We use a statistical model to tell us that a certain behavior or sequence of behaviors is very unlikely, or very unlikely in response to a specific action. The behavior is not impossible, but it is suspicious. We can test whether the actual behavior in the test is within the tolerance limits predicted by the model. This is often useful for looking for patterns in larger sets of data (longer sequences of tests). For example, suppose we expect an eCommerce website to get 80% of its customers from the local area, but in beta trials of its customer-analysis software, the software reports that 70% of the transactions that day were from far away. Maybe this was a special day, but probably this software has a bug. If we can predict a statistical pattern (correlations among variables, for example), we can check for it.
• Another type of statistical oracle starts with an input stream that has known statistical characteristics and then check the output stream to see if it has the same characteristics. For example, send a stream of random packets, compute statistics of the set, and then have the target system send back the statistics of the data it received. If this is a large data set, this can save a lot of transmission time. Testing transmission using checksums is an example of this approach. (Of course, if a message has a checksum built into the message, that is self-verifying data.)
• We use a state model to specify what the program does in response to an input that happens when it is in a known state. A full state model specifies, for every state the program can be in, how the program will respond (what state it will transition to) for every input.
• We can build an interaction model to help us test the interaction between this program and another one. The model specifies how that program will behave in response to events in (actions of) this program and how this program will behave in response to actions of the other program. The automaton triggers the action, then checks the expected behavior.
• We use calculation oracles to check the calculations of a program. For example, if the program adds 5 numbers, we can use some other program to add the 5 numbers and see what we get. Or we can add the numbers and then successively subtract one at a time to see if we get a zero.
• The inverse oracle is often a special case of a calculation oracle (the square of the square root of 2 should be 2) but not always. For example, imagine taking a list that is sorted low to high, sorting it high to low and then sorting it low to high. Do we get back the same list?
• The reference program generates the same responses to a set of inputs as the software under test. Of course, the behavior of the reference program will differ from the software under test in some ways (they would be identical in all ways only if they were the same program). For example, the time it takes to add 1000 numbers might be different in the reference program versus the software under test, but if they ultimately yield the same sum, we can say that the software under test passed the test.

You can probably imagine lots of other possibilities for this list.

Applying This to Automation

What is special about these oracles is that they are programmable. You can create automated tests that will check the behavior of the program against the result predicted by (or predicted against by) any of these oracles or by any (well, probably, almost any) combination of these oracles.

Given a programmable oracle you can do high volume automated testing. Have the test-design-and-execution program randomly generate inputs to the software under test and check whether the software responds the way the oracle predicts. You might use some type of model to drive the random number generator (making some events more likely than others). You might randomly create a long random sequence of tests (e.g. regression tests) by randomly selecting which test to run next from a pool of already-built tests (each of which has an expected result that you can check against). Given an oracle, you can detect whatever failures that oracle can expose. For example, you might test with several oracles:

• one oracle predicts how long an operation should take (or a range of possibility). If the program takes substantially more or less time, that’s a problem.
• another oracle can predict the calculation result of the operation (or the functional result if you’re doing something else, like sorting, that isn’t exactly a calculation)
• another oracle might predict the amount of free memory, or at least might tell you whether a large data set (or memory-intensive calculation) should fit in memory. If so, you can detect memory leaks this way.

No matter what combination you choose, you will miss some types of errors. You cannot test all the dimensions of the result of a test with any oracle or any combination of oracles. But if you test a feature by machine using some oracles, then when you test that feature with a human painstakingly designing and running each test individually, that person will know that she doesn’t have to waste time checking whether certain types of bugs are there or not, because if they were there, the automaton would already have exposed them.

An Exam Question

Here’s an exam question (that students in the current version of BBST Foundations have often handled poorly):

Suppose you have written a test tool that allows you to feed commands and data to Microsoft Excel and to Open Office Calc and to see the results. The test tool is complete, and it works correctly. You have been asked to test a new version of Calc and told to automate all of your testing. What oracles would you use to help you find bugs? What types of information would you expect to get with each oracle?

Note: Don’t just echo back a consistency heuristic. Be specific in your description of a relevant oracle and of the types of information or bugs that you expect.

Look back at the Hoffman list and think of what oracles you could use for this test, to facilitate extensive automated testing.

Now look further back to the Bach / Bolton list and think of what oracles their lists suggests, that would work well for designing extensive automated testing.

For me, the Hoffman list works better. (And if I thought about additional oracles that were specific enough to support automation, I would add them to the Hoffman list, growing it into something that gets longer and longer the more I use it.) What about for you?

This post is partially based on work supported by NSF research grant CCLI-0717613 ―Adaptation & Implementation of an Activity-Based Online or Hybrid Course in Software Testing. Any opinions, findings and conclusions or recommendations expressed in this post are those of the author and do not necessarily reflect the views of the National Science Foundation.

 

This week, Florida Tech’s Center for Software Testing Education & Research (my lab) published a bibliography of dissertations and theses focused on software testing (http://www.zotero.org/groups/cster_dissertations). To use the bibliography, you need an open source (free) tool called Zotero (http://www.zotero.org/)

What are these documents?

Theses are research reports written by graduate students as a final requirement for graduation. Doctoral theses are also called dissertations.

The typical thesis includes:

• a literature review that describes a significant set of related research published by others
• an idea (for example, an idea about how to improve testing, or how to create and assess a testing tool, or how to study how testing is really done, or how to teach it more effectively, or how to prove that some other idea about testing is wrong)
• a description of the thesis methodology and technology (for example, how a test tool was designed, implemented, and studied)
• a description of the results of the study.

Theses are evaluated by professors who are experts in the discipline and at least one who is not. For example, the supervisory committee for a doctoral student in Computer Science might include three professors of Computer Science, one professor of Biology and one of Business Administration. Of the three computer scientists, one (or two) would typically be expert in the subject matter of the thesis (e.g. software testing) and the others would probably be experts in other areas of computing that the work depends on. for example, a dissertation focused on testing databases might be supervised by an expert in testing, an expert in databases and an expert in research design.

Why I recommend them

Theses are designed to be read by someone who is not an expert in the field. Therefore, a thesis will typically organize a testing problem–including the most relevant research papers–in a way that a student or a mid-level testing practitioner can understand.

Of course, theses vary in quality. Some are written poorly. Some are researched poorly. Many present half-baked ideas (this is student work, not the work of an experienced practitioner or a professional researcher). But overall, I have found them good starting points when I start working in a new area or when I assign a student to an area that is new to her.

What’s in the bibliography

We have over 700 references, most before 2007.

Each reference includes the basic bibliographic information (author, title, etc.). It also includes:

• a URL.
  • If we found a free copy of the thesis online, we point to that.
  • If not, then if the thesis is listed in WorldCat, we point to that. WorldCat indexes many of the world’s public libraries. If your public or university library is on the Interlibrary Loan system, WorldCat will tell your reference librarian what library has a copy of the thesis, so you can borrow it. Interlibrary Loans are often free to the borrower. It’s not as convenient as free-on-the-web, but it’s still free.
  • If it’s not listed on WorldCat, we point to ProQuest (we often point to ProQuest in the notes as well). You might know this branch of ProQuest as University Microfilms. You can order dissertations from ProQuest but this is not always free (PQDT Open and ProQuest with Google Scholar publish some dissertations for free, possibly including some that we thought were available only commercially). Prices vary. I think $39 is a typical number. Because theses are of variable quality, I strongly suggest that you preview as much as you can (you can often download a chapter for free from ProQuest) or read an article that summarizes the thesis (see next section) before paying $39.
• a related reference
  • Students often publish an academic paper that summarizes their thesis. For example, Computer Science theses are often summarized in papers published through the Association for Computing Machinery, or the Institute of Electrical and Electronics Engineers, the Human Factors and Ergonomics Society, or the American Society for Quality. If we found a paper that appears to be based on a thesis, we point to it in the thesis’ Notes in Zotero.
• an abstract (a short summary of the thesis)
  • We chose not to copy abstracts from Dissertations Abstracts (ProQuest) because we don’t want to risk a copyright fight. If we found a copy of a thesis online or if an author posted a copy of their thesis abstract online, we copied that abstract into the bibliographic record for the thesis.

Digging up this extra information takes a lot of time and painstaking work. We’re continuing to add more recent work, and expect to grow the collection significantly over the summer.

Acknowledgments

This bibliography was created primarily by Karishma Bhatia, Casey Doran, Pat McGee, Kasey Powers, Andy Tinkham, and Patricia Terol Tolsa.

This bibliography is a product of research that was supported by NSF Grants EIA-0113539 ITR/SY+PE: “Improving the Education of Software Testers” and CCLI-0717613 “Adaptation & Implementation of an Activity-Based Online or Hybrid Course in Software Testing.” Any opinions, findings and conclusions or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of the National Science Foundation.

Juha Itkonen will be defending his dissertation on “Empirical Studies on Exploratory Software Testing” this Friday. I haven’t read the entire document, but what I have read looks very interesting.

Juha has been studying real-world approaches to software testing for about a decade (maybe longer–when I met him almost a decade ago, his knowledge of the field was quite sophisticated). I’m delighted to see this quality of academic work and wish him well in his final oral exam.

For a list of soon-to-be-Dr. Itkonen’s publications, see https://wiki.aalto.fi/display/~jitkonen@aalto.fi/Full+list+of+publications.

Becky and I are getting closer to rolling out Test Design. Here’s our current summary of the course:

Learning Objectives for Test Design

This is an introductory survey of test design. The course introduces students to:

• Many (over 100) test techniques at a superficial level (what the technique is).
• A detailed-level of familiarity with a few techniques:
  • function testing
  • testing tours
  • risk-based testing
  • specification-based testing
  • scenario testing
  • domain testing
  • combination testing.
• Ways to compare strengths of different techniques and select complementary techniques to form an effective testing strategy
• Using the Heuristic Test Strategy Model for specification analysis and risk analysis
• Using concept mapping tools for test planning.

I’m still spending about 6 hours per night on video edits, but our most important work is on the assessments. To a very large degree, my course designs are driven by my assessments. That’s because there’s such a strong conviction in the education community–which I share–that students learn much more from the assessments (from all the activities that demand that they generate stuff and get feedback on it) than from lectures or informal discussions. The lectures and slides are an enabling backdrop for the students’ activities, rather than the core of the course.

In terms of design decisions, deciding what I will hold my students accountable for knowing requires me to decide what I will hold myself accountable for teaching well.

If you’re intrigued by that way of thinking about course design, check out:

• Angelo & Cross (1993, 2nd Ed.), Classroom Assessment Techniques: A Handbook for College Teachers. Josey-Bass.
• Wiggins & McTighe (2005, 2nd Ed.), Understanding by Design. Prentice Hall

I tested the course’s two main assignments in university classrooms several times before starting on the course slides (and wrote 104 first-draft multiple-quess questions and maybe 200 essay questions). But now that the course content is almost complete, we’re revisiting (and of course rewriting) these materials. In the process, we’ve been gaining perspective.

I think the most striking feature of the new course is its emphasis on content.

Let me draw the contrast with a chart that compares the BBST courses (Foundations, Bug Advocacy, and Test Design) and some other courses still on the drawing boards:

A few definitions:

• Course Skills: How to be an effective student. Working effectively in online courses. Taking tests. Managing your time.
• Social Skills: Working together in groups. Peer reviews. Using collaboration tools (e.g. wikis).
• Learning Skills: How to gather, understand, organize and be able to apply new information. Using lectures, slides, and readings effectively. Searching for supplementary information. Using these materials to form and defend your own opinion.
• Testing Knowledge: Definitions. Facts and concepts of testing. Structures for organizing testing knowledge.
• Testing Skills: How to actually do things. Getting better (through practice and feedback) at actually doing them.
• Computing Fundamentals: Facts and concepts of computer science and computing-relevant discrete mathematics.

As we designed the early courses, Becky Fiedler and I placed a high emphasis on course skills and learning skills. Students needed to (re)learn how to get value from online video instruction, how to take tests, how to give peer-to-peer feedback, etc.

The second course, Bug Advocacy, emphasizes specific testing skills–but the specific skills are the ones involved in bug investigation and reporting. Even though these critical thinking, research, and communication skill have strong application to testing, they are foundational for knowledge-related work.

Test Design is much more about the content (testing knowledge). We survey (depends on how you count) 70 to 150 test techniques. We look for ways to compare and contrast them. We consider how to organize projects around combinations of a few techniques that complement each other (make up for each other’s weaknesses and blindnesses). The learning skills component is active reading–This is certainly generally useful, but its context and application is specification analysis.

Test Design is more like the traditional Software Testing Course firehose. Way too much material in way too little time, with lots of reference material to help students explore the underemphasized parts of the course when they need it on the job.

The difference is that we are relying on the students’ improved learning skills. The assignments are challenging. The labs are still works-in-progress and might not be polished until the third iteration of the course, but labs-plus-assignments being home a bunch of lessons.

Whether the students’ skills are advanced enough to process over 500 slides efficiently, integrate material across sections, integrate required readings, and apply them to software — all within the course’s 4-week timeframe — remains to be seen.

This post is partially based on work supported by NSF research grant CCLI-0717613 ―Adaptation & Implementation of an Activity-Based Online or Hybrid Course in Software Testing. Any opinions, findings and conclusions or recommendations expressed in this post are those of the author and do not necessarily reflect the views of the National Science Foundation.

As I finish up the post-production and assessment-design for the Test Design course, I’m writing these articles as a set of retrospectives on the instructional design of the series.

For me, this is a transition point. The planned BBST series is complete with lessons to harvest as we create courseware on software metrics, development of skills with specific test techniques, computer-related law/ethics (in progress), cybersecurity, research methods and instrumentation applied to quantitative finance, qualitative research methods, and analysis of requirements.

Instructional Design

I think course design is a multidimensional challenge, focused around seven core questions:

1. Content: What information, or types of information do I want the students to learn?
2. Skills: What skills do I want the students to develop?
3. Level of Learning: What level of depth do I want to students to learn this material at?
4. Learning activities: How will the course’s activities (including the assessments, such as assignments and exams) that I use support the students’ learning?
5. Instructional Technologies: What technologies will I use to support the course?
6. Assessment: How will I assess the course: How will I find out what the students have learned, and at what level?
7. Improvement: How will I use the assessment results to guide my improvement of the course?

This collection of articles will probably skip around in these questions as I take inventory of my last 7 years of notes on online and hybrid course development.

Objectives of the BBST Courses

The changing nature of the objectives of the BBST courses.

Courses differ in more than content. They differ in the other things you hope students learn along with the content.

The BBST courses include a variety of types of assessment: quizzes, labs, assignments and exams. For instructional designers, the advantage of assessments is that we can find out what the students know (and don’t know) and what they can apply.

The BBST courses have gone through several iterations. Becky Fiedler and I used the performance data to guide the evolutions.

Based on what we learned, we place a higher emphasis in the early courses on course skills and learning skills and a greater emphasis in the later courses on testing skills.

A few definitions:

• Course Skills: How to be an effective student. Working effectively in online courses. Taking tests. Managing your time.
• Social Skills: Working together in groups. Peer reviews. Using collaboration tools (e.g. wikis).
• Learning Skills: How to gather, understand, organize and be able to apply new information. Using lectures, slides, and readings effectively. Searching for supplementary information. Using these materials to form and defend your own opinion.
• Testing Knowledge: Definitions. Facts and concepts of testing. Structures for organizing testing knowledge.
• Testing Skills: How to actually do things. Getting better (through practice and feedback) at actually doing them.
• Computing Fundamentals: Facts and concepts of computer science and computing-relevant discrete mathematics.

You can see the evolution of emphasis in the course’s specific learning objectives.

Learning Objectives of the 3-Course BBST Set

• Understand key testing challenges that demand thoughtful tradeoffs by test designers and managers.
• Develop skills with several test techniques.
• Choose effective techniques for a given objective under your constraints.
• Improve the critical thinking and rapid learning skills that underlie good testing.
• Communicate your findings effectively.
• Work effectively online with remote collaborators.
• Plan investments (in documentation, tools, and process improvement) to meet your actual needs.
• Create work products that you can use in job interviews to demonstrate testing skill.

Learning Objectives for the First Course (Foundations)

This is the first of the BBST series. We address:

• How to succeed in online classes
• Fundamental concepts and definitions
• Fundamental challenges in software testing

Improve academic skills

• Work with online collaboration tools
  • Forums
  • Wikis
• Improve students’ precision in reading
• Create clear, well-structured communication
• Provide (and accept) effective peer reviews
• Cope calmly and effectively with formative assessments (such as tests designed to help students learn).

Learn about testing

• Key challenges of testing
  • Information objectives drive the testing mission and strategy
  • Oracles are heuristic
  • Coverage is multidimensional
  • Complete testing is impossible
  • Measurement is important, but hard
• Introduce you to:Basic vocabulary of the field
  • Basic facts of data storage and manipulation in computing
  • Diversity of viewpoints
  • Viewpoints drive vocabulary

Learning Objectives for the Second Course (Bug Advocacy)

Bug reports are not just neutral technical reports. They are persuasive documents. The key goal of the bug report author is to provide high-quality information, well written, to help stakeholders make wise decisions about which bugs to fix.

Key aspects of the content of this course include:

• Defining key concepts (such as software error, quality, and the bug processing workflow)
• The scope of bug reporting (what to report as bugs, and what information to include)
• Bug reporting as persuasive writing
• Bug investigation to discover harsher failures and simpler replication conditions
• Excuses and reasons for not fixing bugs
• Making bugs reproducible
• Lessons from the psychology of decision-making: bug-handling as a multiple-decision process dominated by heuristics and biases.
• Style and structure of well-written reports

Our learning objectives include this content, plus improving your abilities / skills to:

• Evaluate bug reports written by others
• Revise / strengthen reports written by others
• Write more persuasively (considering the interests and concerns of your audience)
• Participate effectively in distributed, multinational workgroup projects that are slightly more complex than the one in Foundations

Learning Objectives for the Third Course (Test Design)

This is an introductory survey of test design. The course introduces students to:

• Many (nearly 200) test techniques at a superficial level (what the technique is).
• A detailed-level of familiarity with a few techniques:
  • function testing
  • testing tours
  • risk-based testing
  • specification-based testing
  • scenario testing
  • domain testing
  • combination testing.
• Ways to compare strengths of different techniques and select complementary techniques to form an effective testing strategy
• Using the Heuristic Test Strategy Model for specification analysis and risk analysis
• Using concept mapping tools for test planning.

 
This post is partially based on work supported by NSF research grant CCLI-0717613 ―Adaptation & Implementation of an Activity-Based Online or Hybrid Course in Software Testing. Any opinions, findings and conclusions or recommendations expressed in this post are those of the author and do not necessarily reflect the views of the National Science Foundation.

Back in 2004, I started developing course videos on software testing and computer-related law/ethics. Originally, these were for my courses at Florida Tech, but I published them under a Creative Commons license so that people could incorporate the materials in their own courses.

Soon after that, a group of us (mainly, I think, Scott Barber, Doug Hoffman, Mike Kelly, Pat McGee, Hung Nguyen, Andy Tinkham, and Ben Simo) started planning the repurposing of the academic course videos for professional development. I put together some (failing) prototypes and Becky Fiedler took over the instructional design.

• We published the first version of BBST-Foundations and taught the courses through AST (Association for Software Testing). It had a lot of rough edges, but people liked it at lot.
• So Becky and I created course #2, Bug Advocacy, with a lot of help from Scott Barber (and many other colleagues). This was new material, a more professional effort than Foundations, but it took a lot of time.

That took us to a fork in the road.

• I was working with students on developing skills with specific techniques (I worked with Giri Vijayaraghavan and Ajay Jha on risk-based testing; Sowmya Padmanabhan on domain testing; and several students with not-quite-successful efforts on scenario testing). Sowmya and I proved (not that we were trying to) that developing students’ testing skills was more complex than I’d been thinking. So, Becky and I were rethinking our skills-development-course designs.
• On the other hand, AST’s Board wanted to pull together a “complete” introductory series in black box testing. Ultimately, we went that way.

The goal was a three-part series:

1. A reworked Foundations that fixed many of the weaknesses of Version 1. We completed that one about a year ago (Becky and Doug Hoffman were my main co-creators, with a lot of design guidance from Scott Barber).
2. Bug Advocacy, and
3. a new course in Test Design.

Test Design is (finally) almost done (many thanks to Michael Bolton and Doug Hoffman). I’ll publish the lectures as we finish post-production on the videos. Lecture 1 should be up around Saturday.

Test Design is a survey course. We cover a lot of ground. And we rely heavily on references, because we sure don’t know everything there is to know about all these techniques.

To support the release of the videos, I’m publishing our references now. (The final course slides will have the references too, but those won’t be done until we complete editing the last video.):

• As always, it has been tremendously valuable reading books and papers suggested by colleagues and rereading stuff I’ve read before. A lot of careful thinking has gone into the development and analysis of these techniques.
• As always, I’ve learned a lot from people whose views differ strongly from my own. Looking for the correctness in their views–what makes them right, within their perspective and analysis, even if I disagree with that perspective–is something I see as a basic professional skill.
• And as always, I’ve not only learned new things: I’ve discovered that several things I thought I knew were outdated or wrong. I can be confident that the video is packed with errors–but plenty fewer than there would have been a year ago and none that I know about now.

So… here’s the reference list. Video editing will take a few weeks to complete–if you think we should include some other sources, please let me know. I’ll read them and, if appropriate, I’ll gladly include them in the list.

Active reading (see also Specification-based testing and Concept mapping)

• Adler, M. (1940). How to mark a book. http://academics.keene.edu/tmendham/documents/AdlerMortimerHowToMarkABook_20060802.pdf
• Adler, M., & Van Doren, C. (1972). How to Read a Book. Touchstone.
• Beacon Learning Center. (Undated). Just Read Now. http://www.justreadnow.com/strategies/active.htm
• Active reading (summarizing Bean, J. Engaging Ideas). (Undated). http://titan.iwu.edu/~writcent/Active_Reading.htm
• Gause, D.C., & Weinberg, G.M. (1989). Exploring Requirements: Quality Before Design. Dorset House.
• W.D. Hurley (1989) “A generative taxonomy of application domains based on interaction semantics” at http://dl.acm.org/citation.cfm?id=75960. (see also Jha’s and Vijayaraghavan’s writing on generative taxonomy in the section on Failure Mode Analysis.)
• PLAN: Predict/Locate/Add/Note. (Undated). http://www.somers.k12.ny.us/intranet/reading/PLAN.html
• MindTools. (Undated). Essential skills for an excellent career. http://www.mindtools.com
• Penn State University Learning Centers. (Undated). Active Reading. http://istudy.psu.edu/FirstYearModules/Reading/Materials.html
• Weill, P. (Undated). Reading Strategies for Content Areas: Part 1 After Reading. http://www.douglasesd.k12.or.us/LinkClick.aspx?fileticket=6FrvrocjBnk%3d&​tabid=1573

All-pairs testing

See http://www.pairwise.org/ for more references generally and http://www.pairwise.org/tools.asp for a list of tools.

• Bach, J., & Schroeder, P. (2004). Pairwise Testing: A Best Practice that Isn’t. Proceedings of the 22nd Pacific Northwest Software Quality Conference, 180–196. http://www.testingeducation.org/wtst5/​PairwisePNSQC2004.pdf. For Bach’s tool, see http://www.satisfice.com/tools/pairs.zip
• Bolton, M. (2007). Pairwise testing. http://www.developsense.com/pairwiseTesting.html
• Chateauneuf, M. (2000). Covering Arrays. Ph.D. Dissertation (Mathematics). Michigan Technological University.
• Cohen, D. M., Dalal, S. R., Fredman, M. L., & Patton, G. C. (1997). The AETG system: An approach to testing based on combinatorial design. IEEE Transactions on Software Engineering, 23(7). http://aetgweb.argreenhouse.com/papers/1997-tse.html. For more references, see http://aetgweb.argreenhouse.com/papers.shtml
• Czerwonka, J. (2008). Pairwise testing in the real world: Practical extensions to test-case scenarios. http://msdn.microsoft.com/en-us/library/cc150619.aspx. Microsoft’s PICT tool is at http://download.microsoft.com/download/f/5/5/f55484df-8494-48fa-8dbd-8c6f76cc014b/pict33.msi
• Jorgensen, P. (2008, 3rd Ed.). Software Testing: A Craftsman’s Approach. Auerbach Publications.
• Kuhn, D. R. & Okun, V. (2006). Pseudo-exhaustive testing for software. 30th Annual IEEE/NASA Software Engineering Workshop. http://csrc.nist.gov/acts/PID258305.pdf
• Zimmerer, P. (2004). Combinatorial testing experiences, tools, and solutions. International Conference on Software Testing, Analysis & Review (STAR West). http://www.stickyminds.com

Alpha testing

See references on tests by programmers of their own code, or on relatively early testing by development groups. For a good overview from the viewpoint of the test group, see Schultz, C.P., Bryant, R., & Langdell, T. (2005). Game Testing All in One. Thomson Press

Ambiguity analysis (See also specification-based testing)

• Bender, R. (Undated). The Ambiguity Review Process, http://benderrbt.com/Ambiguityprocess.pdf
• Berry, D.M., Kamisties, E., & Krieger, M.M. (2003) From contract drafting to software specification: Linguistic sources of ambiguity. http://se.uwaterloo.ca/~dberry/handbook/ambiguityHandbook.pdf
• Fabbrini, F., Fusani, M., Gnesi, S., & Lami, G. (2000) Quality evaluation of software requirements specifications. Thirteenth International Software & Internet .Quality Week. http://citeseerx.ist.psu.edu/viewdoc/download?doi=10.1.1.98.4333&rep=rep1&type=pdf
• Spector, C.C. (1997) Saying One Thing, Meaning Another, Eau Claire, WI: Thinking Publications (reprint at http://www.superduperinc.com/products/view.aspx?pid=tpx12901)
• Spector, C.C. (2001). As Far As Words Go: Activities for Understanding Ambiguous Language and Humor, Baltimore: Brookes Publishing.

Best representative testing (See domain testing)

Beta testing

• Bolton, M. (2001). Effective beta testing. http://www.developsense.com/EffectiveBetaTesting.html
• Fine, M.R. (2002). Beta Testing for Better Software. Wiley.
• Schultz, C.P., Bryant, R., & Langdell, T. (2005). Game Testing All in One. Thomson Press.
• Spolsky, J. (2004). Top twelve tips for running a beta test. http://www.joelonsoftware.com/articles/BetaTest.html
• Wilson, R. (2005). Expert user validation testing. Unpublished manuscript.

Boundary testing (See domain testing)

Bug bashes

• Berkun, S. (2008). How to run a bug bash. http://www.scottberkun.com/blog/2008/how-to-run-a-bug-bash/
• Powell, C. (2009). Bug bash. http://blog.abakas.com/2009/01/bug-bash.html
• Schroeder, P.J. & Rothe, D. (2007). Lessons learned at the stomp. Conference of the Association for Software Testing, http://www.associationforsoftwaretesting.org/?dl_name=Lessons_Learned_at_the_Stomp.pdf

Build verification

• Guckenheimer, S. & Perez, J. (2006). Software Engineering with Microsoft Visual Studio Team System. Addison Wesley.
• Page, A., Johnston, K., & Rollison, B.J. (2009). How We Test Software at Microsoft. Microsoft Press.
• Raj, S. (2009). Maximize your investment in automation tools. Software Testing Analysis & Review. http://www.stickyminds.com

Calculations

Note: There is a significant, relevant field: Numerical Analysis. The list here merely points you to a few sources I have personally found helpful, not necessarily to the top references in the field.

• Arsham, H. (2010) Solving system of linear equations with application to matrix inversion. http://home.ubalt.edu/ntsbarsh/business-stat/otherapplets/SysEq.htm
• Boisvert, R.F., Pozo, R., Remington, K., Barrett , R.F., & Dongarra, J.J. (1997) Matrix Market: A web resource for test matrix collections. In Boisvert, R.F. (1997) (Ed.) Quality of Numerical Software: Assessment and Enhancement. Chapman & Hall.
• Einarsson, B. (2005). Accuracy and Reliability in Scientific Computing. Society for Industrial and Applied Mathematics (SIAM).
• Gregory, R.T. & Karney, D.L. (1969). A Collection of Matrices for Testing Computational Algorithms. Wiley.
• Kaw, A.K. (2008), Introduction to Matrix Algebra. Available from http://www.lulu.com/browse/preview.php?fCID=2143570. Chapter 9, Adequacy of Solutions, http://numericalmethods.eng.usf.edu/mws/gen/04sle/mws_gen_sle_spe_adequacy.pdf

Combinatorial testing. See All-Pairs Testing

Concept mapping

• Hyerle, D.N. (2008, 2nd Ed.). Visual Tools for Transforming Information into Knowledge, Corwin.
• Margulies, N., & Maal, N. (2001, 2nd Ed.) Mapping Inner Space: Learning and Teaching Visual Mapping. Corwin.
• McMillan, D. (2010). Tales from the trenches: Lean test case design. http://www.bettertesting.co.uk/content/?p=253
• McMillan, D. (2011). Mind Mapping 101. http://www.bettertesting.co.uk/content/?p=956
• Moon, B.M., Hoffman, R.R., Novak, J.D., & Canas, A.J. (Eds., 2011). Applied Concept Mapping: Capturing, Analyzing, and Organizing Knowledge. CRC Press.
• Nast, J. (2006). Idea Mapping: How to Access Your Hidden Brain Power, Learn Faster, Remember More, and Achieve Success in Business. Wiley.
• Sabourin, R. (2006). X marks the test case: Using mind maps for software design. Better Software. http://www.stickyminds.com/BetterSoftware/magazine.asp?fn=cifea&id=90

Concept mapping tools:

• http://www.graphic.org/
• http://www.innovationtools.com/resources/mindmapping.asp

• http://www.inspiration.com

• http://www.mindjet.com

• http://www.mindtools.com/mindmaps.html

• http://www.novamind.com

• http://users.edte.utwente.nl/lanzing/cm_bibli.htm

• http://www.xmind.net

• http://en.wikipedia.org/wiki/List_of_concept_mapping_and_mind_mapping_software

Configuration coverage

• Black, R. (2002, 2nd Ed.). Managing the Testing Process. Wiley.
• Kaner, C. (1996). Software negligence and testing coverage. Software Testing, Analysis & Review Conference (STAR). http://www.kaner.com/pdfs/negligence_and_testing_coverage.pdf
• Pawson, M. (2001). The test matrix. Software Testing & Quality Engineering, 3(6). http://www.stickyminds.com/getfile.asp?ot=XML&id=5005&fn=Smzr1XDD3339filelistfilename1%2Epdf

Configuration / compatibility testing

• Frye, C. (2009). Configuration testing: QA pros discuss 10 things you may not know. http://searchsoftwarequality.techtarget.com/news/1361051/Configuration-testing-QA-pros-discuss-10-things-you-may-not-know
• Kaner, C., Falk, J., & Nguyen, H.Q. (2nd Edition, 2000). Testing Computer Software. Wiley.
• McCaffrey, J., & Despe, P. (2008). Configuration testing with virtual server, part 2. MSDN Magazine. December. http://msdn.microsoft.com/en-us/magazine/dd252952.aspx
• Patton, Ron. (2006, 2nd Ed.). Software Testing. SAMS.

Constraint checks

See our notes in BBST Foundation’s presentation of Hoffman’s collection of oracles.

• Hoffman, D. (1999). Heuristic test oracles. Software Testing & Quality Engineering, 1(2), 29-32. http://www.softwarequalitymethods.com/Papers/STQE%20Heuristic.pdf

Constraints

• Jorgensen, A.A. (1999). Software Design Based on Operational Modes. Doctoral Dissertation, Florida Institute of Technology. https://cs.fit.edu/Projects/tech_reports/cs-2002-10.pdf
• Whittaker, J.A. (2002) How to Break Software, Addison Wesley.

Diagnostics-based testing

• Al-Yami, A.M. (1996). Fault-Oriented Automated Test Data Generation. Ph.D. Dissertation, Illinois Institute of Technology.
• Kaner, C., Bond, W.P., & McGee, P.(2004). High volume test automation. Keynote address: International Conference on Software Testing Analysis & Review (STAR East 2004). Orlando. http://www.kaner.com/pdfs/HVAT_STAR.pdf (The Telenova and Mentsville cases are both examples of diagnostics-based testing.)

Domain testing

• Abramowitz & Stegun (1964), Handbook of Mathematical Functions. http://people.math.sfu.ca/~cbm/aands/frameindex.htm
• Beizer, B. (1990). Software Testing Techniques (2nd Ed.). Van Nostrand Reinhold.
• Beizer, B. (1995). Black-Box Testing. Wiley.
• Binder, R. (2000). Testing Object-Oriented Systems: Addison-Wesley.
• Black, R. (2009). Using domain analysis for testing. Quality Matters, Q3, 16-20. http://www.rbcs-us.com/images/documents/quality-matters-q3-2009-rb-article.pdf
• Copeland, L. (2004). A Practitioner’s Guide to Software Test Design. Artech House.
• Clarke, L.A. (1976). A system to generate test data and symbolically execute programs. IEEE Transactions on Software Engineering, 2, 208-215.
• Clarke, L. A. Hassel, J., & Richardson, D. J. (1982). A close look at domain testing. IEEE Transactions on Software Engineering, 2, 380-390.
• Craig, R. D., & Jaskiel, S. P. (2002). Systematic Software Testing. Artech House.
• Hamlet, D. & Taylor, R. (1990). Partition testing does not inspire confidence. IEEE Transactions on Software Engineering, 16(12), 1402-1411.
• Hayes, J.H. (1999). Input Validation Testing: A System-Level, Early Lifecycle Technique. Ph.D. Dissertation (Computer Science), George Mason University.
• Howden, W. E. (1980). Functional testing and design abstractions. Journal of Systems & Software, 1, 307-313.
• Jeng, B. & Weyuker, E.J. (1994). A simplified domain-testing strategy. ACM Transactions on Software Engineering, 3(3), 254-270.
• Jorgensen, P. C. (2008). Software Testing: A Craftsman’s Approach (3rd ed.). Taylor & Francis.
• Kaner, C. (2004a). Teaching domain testing: A status report. Paper presented at the Conference on Software Engineering Education & Training. http://www.kaner.com/pdfs/teaching_sw_testing.pdf
• Kaner, C., Padmanabhan, S., & Hoffman, D. (2012) Domain Testing: A Workbook, in preparation.
• Myers, G. J. (1979). The Art of Software Testing. Wiley.
• Ostrand, T. J., & Balcer, M. J. (1988). The category-partition method for specifying and generating functional tests. Communications of the ACM, 31(6), 676-686.
• Padmanabhan, S. (2004). Domain Testing: Divide and Conquer. M.Sc. Thesis, Florida Institute of Technology. http://www.testingeducation.org/a/DTD&C.pdf
• Schroeder, P.J. (2001). Black-box test reduction using input-output analysis. Ph.D. Dissertation (Computer Science). Illinois Institute of Technology.
• Weyuker, E. J., & Jeng, B. (1991). Analyzing partition testing strategies. IEEE Transactions on Software Engineering, 17(7), 703-711.
• Weyuker, E.J., & Ostrand, T.J. (1980). Theories of program testing and the application of revealing subdomains. IEEE Transactions on Software Engineering, 6(3), 236-245.
• White, L. J., Cohen, E.I., & Zeil, S.J. (1981). A domain strategy for computer program testing. In Chandrasekaran, B., & Radicchi, S. (Ed.), Computer Program Testing (pp. 103-112). North Holland Publishing.
• http://www.wikipedia.org/wiki/Stratified_sampling

Dumb monkey testing

• Arnold, T. (1998), Visual Test 6. Wiley.
• Nyman, N. (1998). Application testing with dumb monkeys. International Conference on Software Testing Analysis & Review (STAR West).
• Nyman, N. (2000), Using monkey test tools. Software Testing & Quality Engineering, 2(1), 18-20
• Nyman, N. (2004). In defense of monkey testing. http://www.softtest.org/sigs/material/nnyman2.htm

Eating your own dogfood

• Page, A., Johnston, K., & Rollison, B.J. (2009). How We Test Software at Microsoft. Microsoft Press.

Equivalence class analysis (see Domain testing)

Experimental design

• Popper, K.R. (2002, 2nd Ed.). Conjectures and Refutations: The Growth of Scientific Knowledge. Routledge.
• Shadish, W.R., Cook, T.D., & Campbell, D.T. (2002). Experimental and Quasi-Experimental Designs for Generalized Causal Inference, 2nd Ed. Wadsworth.

Exploratory testing

• Bach, J. (1999). General functionality and stability test procedure. http://www.satisfice.com/tools/procedure.pdf
• Bach, J. (2000). Session-based test management. Software Testing & Quality Engineering. http://www.satisfice.com/articles/sbtm.pdf
• Bach, J. (2007). Exploratory testing explained. In Ryber,. T. (2007). Essential Software Test Design. Fearless Consulting. http://www.satisfice.com/articles/et-article.pdf 
• Bach, J., Bach, J. & Bolton, M. (2009). Exploratory testing dynamics (version 2.2). http://www.satisfice.com/blog/wp-content/uploads/2009/10/et-dynamics22.pdf
• Bolton, M. (2011). Resources on Exploratory Testing, Metrics and Other Stuff. http://www.developsense.com/resources.html#exploratory
• Cox, R., Duisters, P., & van de Laar (2011). Testing in the medical domain. Testing Experience, (March),6-9. http://www.improveqs.nl/files/testingexperience13_03_11_Cox_Duisters_Laar.pdf
• Hendrickson, E. (2011). Exploratory Testing in an Agile Context. http://www.agilistry.com/downloads/ETinAgile-agile2011-final.pdf
• Kaner, C. (2006). Exploratory testing after 23 years. Conference of the Association for Software Testing. http://www.kaner.com/pdfs/ETat23.pdf
• Kaner, C. & Hoffman, D. (2010). Introduction to exploratory test automation. http://kaner.com/pdfs/VISTACONexploratoryTestAutmation.pdf
• Kohl, J. (2007). Getting started with exploratory testing –Parts 1-4. http://www.kohl.ca/blog/archives/000185.html
• Kohl, J. (2007). Getting started with exploratory testing –Part 2. http://www.kohl.ca/blog/archives/000186.html
• Kohl, J. (2007). Getting started with exploratory testing –Part 3. http://www.kohl.ca/blog/archives/000187.html
• Kohl, J. (2007). Getting started with exploratory testing –Part 4. http://www.kohl.ca/blog/archives/000188.html
• Kohl, J. (2007). Man and machine: Combining the power of the human mind with automation tools. Better Software, December, 20-25. http://www.kohl.ca/articles/ManandMachine_BetterSoftware_Dec2007.pdf
• Kohl, J. (2011). Documenting exploratory testing. Better Software, May/June, 22-25. http://www.nxtbook.com/nxtbooks/sqe/bettersoftware_0511/#/23/OnePage
• Robinson, H. (2010). Exploratory test automation. Conference of the Association for Software Testing. http://www.harryrobinson.net/ExploratoryTestAutomation-CAST.pdf

Failure mode analysis: see also Guidewords and Risk-Based Testing.

• Cheit, R.E. (1990). Setting Safety Standards: Regulation in the Public and Private Sectors. University of California Press. http://ark.cdlib.org/ark:/13030/ft8f59p27j/
• Department of Defense (1980). Procedures for Performing a Failure Mode, Effects and Criticality Analysis: MIL-STD-1629A. http://sre.org/pubs/Mil-Std-1629A.pdf
• Department of Defense Patient Safety Center (2004). Failure mode and effects analysis (FMEA): An advisor’s guide. AF Patient Safety Program. http://www.fmeainfocentre.com/handbooks/FMEA_Guide_V1.pdf
• FMEA Info Center (undated). FMEA Info Center: Everything You Want to Know About Failure Mode and Effect Analysis. http://www.fmeainfocentre.com/index.htm (this is a large collection of resources on FMEA).
• FMEA-FMECA.COM (undated). FMEA Examples. http://fmea-fmeca.com/fmea-examples.html
• Goddard, P.L. (2000). Software FMEA techniques. Proceedings of the Reliability and Maintainability Symposium, 118-123.
• W.D. Hurley (1989) “A generative taxonomy of application domains based on interaction semantics” at http://dl.acm.org/citation.cfm?id=75960
• Jha, A. (2007). A Risk Catalog for Mobile Applications. (Master’s Thesis in Software Engineering) Department of Computer Sciences at Florida Institute of Technology. http://www.testingeducation.org/articles/AjayJha_Thesis.pdf
• Kaner, C., Falk, J., & Nguyen, H.Q. (2nd Edition, 2000b). Bug Taxonomy (Appendix) in Testing Computer Software. Wiley. http://www.logigear.com/logi_media_dir/Documents/whitepapers/Common_Software_Errors.pdf
• Pentti, H. & Atte, H. (2002). Failure mode and effects analysis of software-based automation systems. http://www.fmeainfocentre.com/handbooks/softwarefmea.pdf
• SoftRel (undated) Software FMEA service. http://www.softrel.com/fmea.htm
• Vijayaraghavan, G. (2002). A Taxonomy of E-Commerce Risks and Failures. (Master’s Thesis) Department of Computer Sciences at Florida Institute of Technology. http://www.testingeducation.org/a/tecrf.pdf
• Vijayaraghavan, G., & Kaner, C. (2002). Bugs in your shopping cart: A taxonomy. 15th International Software Quality Conference (Quality Week). San Francisco, CA. (Best Paper Award.) http://www.testingeducation.org/a/bsct.pdf
• Vijayaraghavan, G., & Kaner, C.(2003). Bug taxonomies: Use them to generate better tests. Software Testing, Analysis & Review Conference (Star East). Orlando, FL. (Best Paper Award). http://www.testingeducation.org/a/bugtax.pdf
• http://en.wikipedia.org/wiki/Taxonomy
• http://en.wikipedia.org/wiki/Folk_taxonomy

Feature integration testing

• Overbaugh, J. (2007). How to do integration testing. http://searchsoftwarequality.techtarget.com/answer/How-to-do-integration-testing
• Van Tongeren, T. (2001). Functional integration test planning. http://www.stickyminds.com/getfile.asp?ot=XML&id=3693&fn=XUS2004669file1%2Epdf

Function testing

• Bolton, M. (2006). The factors of function testing. Better Software. http://www.developsense.com/articles/2006-07-TheFactorsOfFunctionTesting.pdf
• Craig, R.D., & Jaskiel, S.P. (2002). Systematic Software Testing. See Chapter 5, Test Design (the discussion of inventories). Artech House.

Function equivalence testing

• Hoffman, D. (2003). Exhausting your test options. Software Testing & Quality Engineering, 5(4), 10-11
• Kaner, C., Falk, J., & Nguyen, H.Q. (2nd Edition, 2000). Testing Computer Software. Wiley.

Functional testing below the GUI

• Marick, B. (2002). Bypassing the GUI. Software Testing & Quality Engineering, Sept/Oct. 41-47. http://www.exampler.com/testing-com/writings/bypassing-the-gui.pdf

Guerilla testing

• Kaner, C., Falk, J., & Nguyen, H.Q. (2nd Edition, 2000). Testing Computer Software. Wiley.

Guidewords

• Bach, J. (2006). Heuristic test strategy model, Version 4.8. http://www.satisfice.com/tools/satisfice-tsm-4p.pdf
• Broomfield, E.J. & Chung, P.W.H. (1994). Hazard identification in programmable systems: A methodology and case study. ACM SIGAPP Applied Computing Review, 2(1), 7-14.
• Falla, M. (Ed.) (1997). Advances in Safety Critical Systems: Results and Achievements from the DTI/EPSRC R&D Programme in Safety Critical Systems. Chapter 3: Hazard Analysis. http://www.comp.lancs.ac.uk/computing/resources/scs/
• Fenelon, P. & Hebbron, B. (1994). Applying HAZOP to software engineering models. Risk Management and Critical Protective Systems: Proceedings of SARSS 1994. http://citeseerx.ist.psu.edu/viewdoc/download?doi=10.1.1.56.6073&rep=rep1&type=pdf
• Fenelon, P., McDermid, J.A., Nicholson, M. & Pumfrey, D.J. (1994). Towards integrated safety analysis and design. ACM SIGAPP Applied Computing Review, 2(1), 21-32. http://www-users.cs.york.ac.uk/~djp/publications/djp-acm.pdf
• Fields, R. Paterno, F., Santoro, C. & Tahmassebi, S. (1999). Comparing design options for allocating communication media in cooperative safety-critical contexts: A method and a case study. ACM Transactions on Computer-Human Interaction, 6(4), 370–398.
• Gagnat, A.K. & Jansen, V. (2006). Incorporating human factors and interface design into safety-critical systems development. M.Sc. Thesis, Østfold University College, Faculty of Computer Science, http://www.hiof.no/neted/upload/attachment/site/group12/Ann_Katrin_Gagnat_&_Vegar_Jansen_Incorporating_human_factors_and_interface_design_into_safety_critical_systems_development.pdf
• HAZOP Guidelines (2008). Hazardous Industry Planning Advisory Paper No. 8, NSW Government Department of Planning. http://www.planning.nsw.gov.au/plansforaction/pdf/hazards/haz_hipap8_rev2008.pdf
• Hewitt, R. (2005). Information-based risk assessment software architecture. Proceedings of the 2005 IEEE Engineering Management Conference, 574-578.
• Lutz, R. & Nikora, A. (2005, November). Failure Assessment. 1st Int’l Forum on Integrated System Health Engineering and Management for Aerospace (ISHEM’05). http://www.cs.iastate.edu/~rlutz/publications/ishem05.pdf
• Reinhardt, D. (2006). Certification criteria for emulation technology in the Australian Defence Force Military Avionics Context. 11th Australian Workshop on Safety Related Programmable Systems (SCS’06). Conferences in Research and Practice in Information Technology. 69, 79-92. http://crpit.com/confpapers/CRPITV69Reinhardt.pdf
• Stone, G.R. (2005). On arguing the safety of large systems. 10th Australian Workshop on Safety related Programmable Systems. Conferences in Research and Practice in Information Technology, 55, 69-75. http://crpit.com/confpapers/CRPITV55Stone.pdf
• Ye, F. & Kelly, T. (1994). Contract-based justification for COTS component within safety-critical applications. 9th Australian Workshop on Safety Related Programmable Systems (SCS’ 04). Conferences in Research & Practice in Information Technology, 47, 13-22. http://crpit.com/confpapers/CRPITV47Ye.pdf

Installation testing

• Agruss, C. (2000). Software installation testing: How to automate tests for smooth system installation. Software Testing & Quality Engineering, 2 (4). http://www.stickyminds.com/getfile.asp?ot=XML&id=5001&fn=Smzr1XDD1806filelistfilename1%2Epdf
• Bach, J. (1999), Heuristic risk-based testing, Software Testing & Quality Engineering, 1 (6), 22-29. http://www.satisfice.com/articles/hrbt.pdf
• Kumar, P. (2010). Installation testing – why and how? Testing Circus, 1(2), 7-11. http://testingcircus.com/OctoberNovember2010.aspx
• Noggle, B.J. (2011). Testing the installer. The Testing Planet. March, http://wiki.softwaretestingclub.com/w/file/fetch/39449474/TheTestingPlanet-Issue4-March2011.pdf
• Shinde, V. (2007). Software installation/uninstallation testing. http://www.softwaretestinghelp.com/software-installationuninstallation-testing

Interoperability testing

• European Telecommunications Standards Institute (undated). Interoperability test specification. http://portal.etsi.org/mbs/testing/interop/interop.htm
• Simulations Interoperability Standards Organization (2010). Commercial Off-the-Shelf (COTS) Simulation Package Interoperability (CSPI) Reference Mode. http://www.sisostds.org/DigitalLibrary.aspx?Command=Core_Download&EntryId=30829

Load testing

• Asbock, S. (2000). Load Testing for eConfidence. Segue.
• Barber, S. (2006). Remember yesterday. Software Test & Performance Magazine. January, 42-43. http://www.perftestplus.com/resources/016PeakPerf.pdf
• Savoia, A. (2000). The science and art of web site load testing. International Conference on Software Testing Analysis & Review (STAR East), Orlando. www.stickyminds.com/getfile.asp?ot=XML&id=1939&​fn=XDD1939filelistfilename1.pdf 
• Savoia, A. (2001). Three web load testing blunders and how to avoid them. Software Testing & Quality Engineering, 3(3), 54-59. http://www.stickyminds.com/s.asp?F=S5034_MAGAZINE_2

Localization testing

• Bolton, M. (2006, April). Where in the world? Better Software. http://www.developsense.com/articles/2006-04-WhereInTheWorld.pdf
• Chandler, H.M. & Deming, S.O (2nd Ed. in press). The Game Localization Handbook. Jones & Bartlett Learning.
• Ratzmann, M., & De Young, C. (2003). Galileo Computing: Software Testing and Internationalization. Lemoine International and the Localization Industry Standards Association. http://www.automation.org.uk/downloads/documentation/galileo_computing-software_testing.pdf
• Savourel, Y. (2001). XML Internationalization and Localization. Sams Press.
• Singh, N. & Pereira, A. (2005). The Culturally Customized Web Site: Customizing Web Sites for the Global Marketplace. Butterworth-Heinemann.
• Smith-Ferrier, G. (2006). .NET Internationalization: The Developer’s Guide to Building Global Windows and Web Applications. Addison-Wesley Professional.
• Uren, E., Howard, R. & Perinotti, T. (1993). Software Internationalization and Localization. Van Nostrand Reinhold.

Logical expression testing

• Amman, P., & Offutt, J. (2008). Introduction to Software Testing. Cambridge University Press.
• Beizer, B. (1990). Software Testing Techniques (2nd Ed.). Van Nostrand Reinhold.
• Copeland, L. (2004). A Practitioner’s Guide to Software Test Design. Artech House (see Chapter 5 on decision tables).
• Jorgensen, P. (2008, 3rd Ed.). Software Testing: A Craftsman’s Approach. Auerbach Publications (see Chapter 7 on decision tables).
• Brian Marick (2000) modeled testing of logical expressions by considering common mistakes in designing/coding a series of related decisions. Testing for Programmers. http://www.exampler.com/testing-com/writings/half-day-programmer.pdf.
• MULTI. Marick implemented his approach to testing logical expressions in a program, MULTI. Tim Coulter and his colleagues extended MULTI and published it (with Marick’s permission) at http://sourceforge.net/projects/multi/

Long-sequence testing

• Claessen, K. (undated). QuickCheck 2.4.0.1: Automatic testing of Haskell programs. http://hackage.haskell.org/cgi-bin/hackage-scripts/package/QuickCheck
• Koopman, P. (undated). The Ballista ® Project: COTS software robustness testing. http://www.cs.cmu.edu/afs/cs/project/edrc-ballista/www/
• McGee, P. & Kaner, C. (2004). Experiments with high volume test automation.” Workshop on Empirical Research in Software Testing, International Symposium on Software Testing and Analysis. http://www.kaner.com/pdfs/MentsvillePM-CK.pdf

Mathematical oracle

See our notes in BBST Foundation’s presentation of Hoffman’s collection of oracles.

• Abramowitz & Stegun (1964), Handbook of Mathematical Functions. http://people.math.sfu.ca/~cbm/aands/frameindex.htm
• Hoffman, D. (1999). Heuristic test oracles. Software Testing & Quality Engineering, 1(2), 29-32. http://www.softwarequalitymethods.com/Papers/STQE%20Heuristic.pdf

Numerical analysis (see Calculations)

Paired testing

• Kaner, C. & Bach, J. (2001). Exploratory testing in pairs. Software Testing Analysis & Review (STAR West). http://www.kaner.com/pdfs/exptest.pdf
• Kohl, J. (2004). Pair testing: How I brought developers into the test lab. Better Software, 6 (January), 14-16. http://www.kohl.ca/articles/pairtesting.html
• Lambert, R. (2009). Pair testing. http://www.softwaretestingclub.com/forum/topics/pair-testing

Pairwise testing (see All-Pairs testing)

Performance testing

• Barber, S. (2010) PerfTestPlus website, http://www.perftestplus.com/pubs.htm
• du Plessis, J. (2009). Resource monitoring during performance testing. http://www.stickyminds.com/getfile.asp?ot=XML&id=14959&fn=XUS231346159file1%2Epdf
• Meier, J.D., Farre, C., Bansode, P., Barber, S., & Rea, D. (2007). Performance Testing Guidance for Web Applications. Redmond: Microsoft Press.

Programming or software design

• Roberts, E. (2005, 20th Ed.). Thinking Recursively with Java. Wiley.

Psychological considerations

• Bendor, J. (2005). The perfect is the enemy of the best: Adaptive versus optimal organizational reliability. Journal of Theoretical Politics. 17(1), 5-39.
• Rohlman, D.S. (1992). The Role of Problem Representation and Expertise in Hypothesis Testing: A Software Testing Analogue. Ph.D. Dissertation, Bowling Green State University.
• Teasley, B.E., Leventhal, L.M., Mynatt, C.R., & Rohlman, D.S. (1994). Why software testing is sometimes ineffective: Two applied studies of positive test strategy. Journal of Applied Psychology, 79(1), 142-155.
• Whittaker, J.A. (2000). What is software testing? And why is it so hard? IEEE Software, Jan-Feb. 70-79.

Quicktests

• Andrews, M., & Whittaker, J.A. (2006), How to Break Web Software, Addison Wesley.
• Hendrickson, E. (2006), Test heuristics cheat sheet. http://testobsessed.com/wp-content/uploads/2011/04/testheuristicscheatsheetv1.pdf
• Hunter, M. J. (2010). You are not done yet. http://www.thebraidytester.com/downloads/YouAreNotDoneYet.pdf
• Jorgensen, A.A. (1999). Software Design Based on Operational Modes. Doctoral Dissertation, Florida Institute of Technology. https://cs.fit.edu/Projects/tech_reports/cs-2002-10.pdf
• Jorgensen, A.A. (2003). Testing with hostile data streams. ACM SIGSOFT Software Engineering Notes, 28(2). http://cs.fit.edu/media/TechnicalReports/cs-2003-03.pdf
• Kaner, C. (1988), Testing Computer Software, McGraw-Hill, presented a list of 480 common software problems. http://logigear.com/articles-by-logigear-staff/445-common-software-errors.html
• Kaner, C. & Johnson, B. (1999) Styles of exploration, 7th Los Altos Workshop on Software Testing. http://www.kaner.com/pdfs/LAWST7StylesOfExploration.pdf
• Nguyen, H.Q., Johnson, B., & Hackett, M. (2003, 2nd ed), Testing Applications on the Web. Wiley.
• Whittaker, J.A. (2002) How to Break Software, Addison Wesley.
• Whittaker, J.A. & Thompson, H.H. (2004). How to Break Software Security. Addison Wesley.

Random testing

• Ciupa, I., Leitner, A., Oriol, M., & Meyer, B. (2007). Experimental Assessment of Random Testing for Object-Oriented Software. International Symposium on Software Testing and Analysis. http://staff.unak.is/not/andy/MScTesting0708/Lectures/ExpRandomTestingOOEiffel.pdf
• Hamlet, D. (2006). When only random testing will do. Proceedings of the 1st International Workshop on Random Testing. http://web.cecs.pdx.edu/~hamlet/rt.pdf
• Hamlet, D. (2002) Random testing. Encyclopedia of Software Engineering. http://web.cecs.pdx.edu/~hamlet/random.pdf
• Robinson, H. (2004). Things that find bugs in the night. http://www.stickyminds.com/s.asp?F=S7331_COL_2

Regression testing

• Bach, J. (1999). Test automation snake oil. http://www.satisfice.com/articles/test_automation_snake_oil.pdf
• Buwalda, H. (undated). Key success factors for keyword-driven testing. http://logigear.com/articles-by-logigear-staff/389–key-success-factors-for-keyword-driven-testing.html
• Engstrom, E., Skoglund, M. & Runeson, P. (2008). Empirical evaluations of regression test selection techniques: A systematic review. Conference on Empirical Software Engineering and Measurement. 22-31. http://portal.acm.org/citation.cfm?doid=1414004.1414011
• Groder, C. (1999). Building maintainable GUI tests. In Fewster, M. & Graham, D. (1999). Software Test Automation. Addison-Wesley
• Harrold, M.J. & Orso, A. (2008). Retesting software during development and maintenance. Frontiers of Software Maintenance. http://pleuma.cc.gatech.edu/aristotle/pdffiles/harrold_orso_fosm08.pdf
• Hoffman, D. (2007). Avoiding the “test and test again” syndrome. Conference of the Association for Software Testing. http://www.softwarequalitymethods.com/H-Papers.html#TestTest2
• Kaner, C. (1997). Improving the maintainability of automated test suites. Software QA, (4)(4). http://www.kaner.com/pdfs/autosqa.pdf
• Kaner, C. (1998). Avoiding shelfware: A manager’s view of automated GUI testing.” Software Testing Analysis & Review (STAR East). http://www.kaner.com/pdfs/shelfwar.pdf
• Kaner, C. (2009). The value of checklists and the danger of scripts: What legal training suggests for testers. Conference of the Association for Software Testing. http://www.kaner.com/pdfs/ValueOfChecklists.pdf
• Leung, H.K.N. & White, L.J. (1989(. Insights into regression testing. Proceedings of the International Conference on Software Maintenance. 60-69.
• Marick, B.M. (1999). When should a test be automated? International Conference on Software Testing Analysis and Review (STAR East). http://www.exampler.com/testing-com/writings/automate.pdf
• Marick, B.M. (2005). Working your way out of the automated GUI testing tarpit (parts 1, 2, 3). http://www.testingreflections.com/node/view/3059
• Marick, B.M. (undated). How many bugs do regression tests find? http://www.sqa.fyicenter.com/art/How_Many_Bugs_Do_Regression_Tests_Find.html
• Memon, A.M. & Xie, Q. (2004) Empirical evaluation of the fault-detection effectiveness of smoke regression test cases for GUI-based software. Proceedings of the International Conference on Software Maintenance. http://www.cs.umd.edu/~atif/papers/MemonICSM2004.pdf
• Mugridge, R. & Cunningham. W. (2005) Fit for Developing Software: Framework for Integrated Tests. Prentice Hall.
• Nguyen, H.Q., Hackett, M., & Whitlock, B.K. (2006). Happy About Global Test Automation. Happy About books.
• Onoma, A.K., Tsai, W.T., Poonawala, M.H., & Sugunama, H. (1998). Regression testing in an industrial environment. Communications of the ACM. 41(5), 81-86
• Pettichord, B. (2001a). Seven steps to test automation success. http://www.io.com/~wazmo/papers/seven_steps.html
• Pettichord, B. (2001b). Success with test automation. http://www.io.com/~wazmo/succpap.htm
• Rothermel, G. & Harrold, M. (1997). Experience with regression test selection. Empirical Software Engineering, 2(2), 178-188. http://www.cc.gatech.edu/aristotle/Publications/Papers/wess96.ps

Requirements-based testing

• Bach, J. (1999). Risk and requirements-based testing. IEEE Computer, June, 113-114. http://www.satisfice.com/articles/requirements_based_testing.pdf
• Bender, R. (2009). Requirements Based Testing Process Overview. http://benderrbt.com/Bender-Requirements%20Based%20Testing%20Process%20Overview.pdf
• Culbertson, R., Brown, C., & Cobb, G. (2002). Rapid Testing. Prentice Hall.

Requirements-based testing (continued)

• Whalen, M.W., Rajan, A., Heimdahl, M.P.E., & Miller, S.P. )2006). Coverage metrics for requirements-based testing. Proceedings of the 2006 International Symposium on Software Testing and Analysis. http://portal.acm.org/citation.cfm?id=1146242
• Wiegers, K.E. (1999). Software Requirements. Microsoft Press.

Risk-based testing

• Bach, J. (1999). Heuristic risk-based testing. Software Testing & Quality Engineering. http://www.satisfice.com/articles/hrbt.pdf
• Bach, J. (2000a). Heuristic test planning: Context model. http://www.satisfice.com/tools/satisfice-cm.pdf
• Bach, J. (2000b). SQA for new technology projects. http://www.satisfice.com/articles/sqafnt.pdf
• Bach, J. (2003). Troubleshooting risk-based testing. Software Testing & Quality Engineering, May/June, 28-32. http://www.satisfice.com/articles/rbt-trouble.pdf
• Becker, S.A. & Berkemeyer, A. (1999). The application of a software testing technique to uncover data errors in a database system. Proceedings of the 20th Annual Pacific Northwest Software Quality Conference, 173-183.
• Berkovich, Y. (2000). Software quality prediction using case-based reasoning. M.Sc. Thesis (Computer Science). Florida Atlantic University.
• Bernstein, P.L. (1998). Against the Gods: The Remarkable Story of Risk. Wiley.
• Black, R. (2007). Pragmatic Software Testing: Becoming an Effective and Efficient Test Professional. Wiley.
• Clemen, R.T. (1996, 2nd ed.) Making Hard Decisions: An Introduction to Decision Analysis. Cengage Learning.
• Copeland, L. (2004). A Practitioner’s Guide to Software Test Design. Artech House.
• DeMarco, T. & Lister, T. (2003). Waltzing with Bears. Managing Risk on Software Projects. Dorset House.
• Dorner, D. (1997). The Logic of Failure. Basic Books.
• Gerrard, P. & Thompson, N. (2002). Risk-Based E-Business Testing. Artech House.
• HAZOP Guidelines (2008). Hazardous Industry Planning Advisory Paper No. 8, NSW Government Department of Planning. http://www.planning.nsw.gov.au/plansforaction/pdf/hazards/haz_hipap8_rev2008.pdf
• Hillson, D. & Murray-Webster, R. (2007). Understanding and Managing Risk Attitude. (2nd Ed.). Gower. http://www.risk-attitude.com/
• Hubbard, D.W. (2009). The Failure of Risk Management: Why It’s Broken and How to Fix It. Wiley.
• Jorgensen, A.A. (2003). Testing with hostile data streams. ACM SIGSOFT Software Engineering Notes, 28(2). http://cs.fit.edu/media/TechnicalReports/cs-2003-03.pdf
• Jorgensen, A.A. & Tilley, S.R. (2003). On the security risks of not adopting hostile data stream testing techniques. 3rd International Workshop on Adoption-Centric Software Engineering (ACSE 2003), p. 99-103. http://www.sei.cmu.edu/reports/03sr004.pdf
• Kaner, C. (2008). Improve the power of your tests with risk-based test design. Quality Assurance Institute QUEST conference. http://www.kaner.com/pdfs/QAIriskKeynote2008.pdf
• Kaner, C., Falk, J., & Nguyen, H.Q. (2nd Edition, 2000a). Testing Computer Software. Wiley.
• Neumann, P.G. (undated). The Risks Digest: Forum on Risks to the Public in Computers and Related Systems. http://catless.ncl.ac.uk/risks
• Perrow, C. (1999). Normal Accidents: Living with High-Risk Technologies. Princeton University Press (but read this in conjunction with Robert Hedges’ review of the book on Amazon.com).
• Petroski, H. (1992). To Engineer is Human: The Role of Failure in Successful Design. Vintage.
• Petroski, H. (2004). Small Things Considered: Why There is No Perfect Design. Vintage.
• Petroski, H. (2008). Success Through Failure: The Paradox of Design. Princeton University Press.
• Pettichord, B. (2001). The role of information in risk-based testing. International Conference on Software Testing Analysis & Review (STAR East). http://www.stickyminds.com
• Reason, J. T.  (1997). Managing the Risks of Organizational Accident. Ashgate Publishing.
• Schultz, C.P., Bryant, R., & Langdell, T. (2005). Game Testing All in One. Thomson Press (discussion of defect triggers).
• Software Engineering Institute’s collection of papers on project management, with extensive discussion of project risks. https://seir.sei.cmu.edu/seir/
• Weinberg, G. (1993). Quality Software Management. Volume 2: First Order Measurement. Dorset House.

Rounding errors (see Calculations)

Scenario testing (See also Use-case-based testing)

• Anggreeni, I., & van der Voort, M. (2007) Tracing the scenarios in scenario-based product design: A study to support scenario generation. Technical Report TR-CTIT-07-70, Centre for Telematics and Information Technology, University of Twente, Enschede. ISSN 1381-3625. http://eprints.eemcs.utwente.nl/11231/01/TR-CTIT-07-70.pdf
• Alexander, D. (2000). Scenario methodology for teaching principles of emergency management. Disaster Prevention & Management, Vol. 9(2), pp. 89-97.
• Alexander, I., & Maiden, N. (2004). Scenarios, Stories, Use Cases: Through the Systems Development Life-Cycle. Wiley.
• Bolton, M. (2007). Users we don’t like. Developsense.com. http://www.developsense.com/articles/2007-08-UsersWeDontLike.pdf
• Bolton, M. (2007). Why we do scenario testing. Developsense.com. http://www.developsense.com/blog/2010/05/why-we-do-scenario-testing/
• Buwalda, H. (2000a). The three holy grails of test development. presented at EuroSTAR conference.
• Buwalda, H. (2000b). Soap Opera Testing. International Software Quality Week Europe conference, Brussels. http://www.logigear.com/resource-center/software-testing-articles-by-logigear-staff/246-soap-opera-testing.html
• Buwalda, H. (2007a). Key principles of test design. http://www.logigear.com/newsletter-2007/304-key-principles-of-test-design.html
• Buwalda, H. (2007b). The first holy grail of test design. http://www.logigear.com/newsletter-2007/305-the-first-holy-grail-of-test-design.html
• Buwalda, H. (2007c). The second holy grail of test design. http://www.logigear.com/newsletter-2007/306-the-second-holy-grail-of-test-design.html
• Buwalda H. (2007d). The third holy grail of test design. http://www.logigear.com/newsletter-2007/307-the-third-holy-grail-of-test-design.html
• Buwalda, H. (2008). The potential and risks of keyword based testing. http://logigear.com/newsletter-2008/342-the-potential-and-risks-of-keyword-based-testing.html
• Buwalda, H. (undated). Key success factors for keyword-driven testing. http://logigear.com/articles-by-logigear-staff/389–key-success-factors-for-keyword-driven-testing.html
• Buwalda, H., Janssen, D. & Pinkster, I. (2002). Integrated Test Design and Automation: Using the TestFrame Method. Addison-Wesley.
• Carroll, J.M. (ed.) (1995). Scenario-Based Design. Wiley.
• Carroll, J.M. (1995). Development, Scenario-Based Design: Envisioning Work and Technology in System. Wiley.
• Carroll, J.M. (1999). Five reasons for scenario-based design. Proceedings of the 32nd Hawaii International Conference on System Sciences, http://www.massey.ac.nz/~hryu/157.757/Scenario.pdf
• Guckenheimer, S. & Perez, J. (2006). Software Engineering with Microsoft Visual Studio Team System. Addison Wesley.
• Heijden, Kes van der (1996). Scenarios: The Art of Strategic Conversation. Wiley.
• Kahn, H. (1967). The use of scenarios. In Kahn, Herman & Wiener, Anthony (1967). The Year 2000: A Framework for Speculation on the Next Thirty-Three Years, pp. 262-264. http://www.hudson.org/index.cfm?fuseaction=publication_details&id=2214
• Kaner, C. (2003). An introduction to scenario testing. http://www.kaner.com/pdfs/ScenarioIntroVer4.pdf
• Memon, A.M., Pollack, M.E., & Soffa, M.L. (2000). A planning-based approach to GUI testing. International Software Quality Week, San Francisco. http://www.cs.umd.edu/~atif/papers/MemonSQW2000.pdf; http://www.cs.umd.edu/~atif/presentations/SQW2000.pdf
• Ringland, G. (1998). Scenario Planning: Managing for the Future. Wiley.
• Rippel, M. & Teply, P. (2009). Operational Risk — Scenario Analysis. Working Papers IES 2008/15, Charles University Prague, Faculty of Social Sciences, Institute of Economic Studies, revised Sep 2008. http://ideas.repec.org/p/fau/wpaper/wp2008_15.html
• Rosson, M.B., & Carroll, J.M. (2002). Usability Engineering: Morgan Kaufmann.
• Rothman, J., & Lawrence, B. (1999). Testing in the dark. Software Quality & Design Engineering, 1(2). Pp. 34-39 http://www.jrothman.com/Papers/Pragmaticstrategies.html
• Wack, P. (1985a). Scenarios: Uncharted waters ahead. Harvard Business Review 63(5), 74-89. http://tuvalu.santafe.edu/events/workshops/images/d/d9/Wack.pdf
• Wack, P. (1985b). Scenarios: Shooting the rapids. Harvard Business Review 63(6), 139-150. http://www.scribd.com/doc/4489875/Wack-Shooting-the-rapids
• Walker, W.E. (1994). The use of scenarios and gaming in crisis management planning and training. Presented at the conference, The Use of Scenarios for Crisis Management, Netherlands Ministry of Home Affairs, at the Netherlands Institute for Fire Service & Disaster Mgmt, Arnhem, November,16-18.
• Weber, B. (2008) Information Commerce 1997 – Scenario Mapping Changes Beliefs. http://www.strategykinetics.com/scenario_planning/

Self-verifying data

• Nyman, N. (1999). Self-verifying data: Testing without an oracle. International Conference on Software Testing Analysis & Research (STAR East), Orlando. http://www.stickyminds.com/getfile.asp?ot=XML&id=2918&fn=XDD2918filelistfilename1%2Epdf
• Knaus, R. Aougab, H., & Bentahar, N. (2004). Software Reliability: A Preliminary Handbook. McLean, VA: United States Department of Transportation: Federal Highway Administration (see the discussions of wrapping, especially Chapter 6). http://www.fhwa.dot.gov/publications/research/safety/04080/04080.pdf
• Romero, G. & Gauvin, C. (1998). Self-verifying communications testing. United States Patent US7409618, http://www.patents.com/self-verifying-communications-testing-7409618.html

Specification-based testing (See also active reading; See also ambiguity analysis)

• Bach, J. (1999). Reframing requirements analysis. IEEE Computer, 32(2), 120-122. http://www.satisfice.com/articles/reframing_requirements.pdf
• Bach, J. (2006). Heuristic test strategy model, Version 4.8. http://www.satisfice.com/tools/satisfice-tsm-4p.pdf
• Black, R. (2007). Pragmatic Software Testing: Becoming an Effective and Efficient Test Professional. Wiley.
• Donat, M. R. (1998). A Discipline of Specification-Based Test Derivation, Ph.D. Dissertation (Computer Science). University of British Columbia. http://www.nlc-bnc.ca/obj/s4/f2/dsk2/ftp02/NQ34519.pdf
• Hayes, J.H. (1999). Input Validation Testing: A System-Level, Early Lifecycle Technique. Ph.D. Dissertation (Computer Science), George Mason University.
• Jacky, J., Veanes, M., Campbell, C. & Schulte, W. (2008). Model-Based Software Testing and Analysis with C#. Cambridge University Press.
• Kaner, C. (1998). Liability for product incompatibility. Software QA, 5(4), p. 33ff. http://www.kaner.com/pdfs/liability.pdf
• Kaner, C. (2003). Liability for defective documentation. Conference of the ACM SIGDOC. http://www.kaner.com/pdfs/liability_sigdoc.pdf
• Lawrence, B. (undated). http://www.coyotevalley.com/tools.htm

State-model-based testing

• Auer, A.J. (1997). State Testing of Embedded Software. Ph.D. Dissertation (Computer Science). Oulun Yliopisto (Finland).
• Becker, S.A. & Whittaker, J.A. (1997). Cleanroom Software Engineering Practices. IDEA Group Publishing.
• Buwalda, H. (2003). Action figures. Software Testing & Quality Engineering. March/April 42-27. http://www.logigear.com/articles-by-logigear-staff/245-action-figures.html
• El-Far, I. K. (1999), Automated Construction of Software Behavior Models, Masters Thesis, Florida Institute of Technology, 1999.
• El-Far, I. K. & Whittaker, J.A. (2001), Model-based software testing, in Marciniak, J.J. (2001). Encyclopedia of Software Engineering, Wiley. http://testoptimal.com/ref/Model-based Software Testing.pdf
• Jorgensen, A.A. (1999). Software Design Based on Operational Modes. Doctoral Dissertation, Florida Institute of Technology. https://cs.fit.edu/Projects/tech_reports/cs-2002-10.pdf
• Katara, M., Kervinen, A., Maunumaa, M., Paakkonen, T., & Jaaskelainen, A. (2007). Can I have some model-based GUI tests please? Providing a model-based testing service through a web interface. Conference of the Association for Software Testing. http://practise.cs.tut.fi/files/publications/TEMA/cast07-final.pdf
• Mallery, C.J. (2005). On the Feasibility of Using FSM Approaches to Test Large Web Applications. M.Sc. Thesis (EECS). Washington State University.
• Page, A., Johnston, K., & Rollison, B.J. (2009). How We Test Software at Microsoft. Microsoft Press.
• Robinson, H. (1999a). Finite state model-based testing on a shoestring. http://www.stickyminds.com/getfile.asp?ot=XML&id=2156&fn=XDD2156filelistfilename1%2Epdf
• Robinson, H. (1999b). Graph theory techniques in model-based testing. International Conference on Testing Computer Software. http://sqa.fyicenter.com/art/Graph-Theory-Techniques-in-Model-Based-Testing.html
• Robinson, H. Model-Based Testing Home Page. http://www.geocities.com/model_based_testing/
• Rosaria, S., & Robinson, H. (2000). Applying models in your testing process. Information & Software Technology, 42(12), 815-24. http://www.harryrobinson.net/ApplyingModels.pdf
• Schultz, C.P., Bryant, R., & Langdell, T. (2005). Game Testing All in One. Thomson Press.
• Utting, M., & Legeard, B. (2007). Practical Model-Based Testing: A Tools Approach. Morgan Kaufmann.
• Vagoun, T. (1994). State-Based Software Testing. Ph.D. Dissertation (Computer Science). University of Maryland College Park.
• Whittaker, J.A. (1992). Markov Chain Techniques for Software Testing and Reliability Analysis. Ph.D. Dissertation (Computer Science). University of Tennessee.
• Whittaker, J.A. (1997). Stochastic software testing. Annals of Software Engineering, 4, 115-131.

Stress testing

• http://en.wikipedia.org/wiki/Stress_testing
• Beizer, B. (1984). Software System Testing and Quality Assurance. Van Nostrand. See also: http://www.faqs.org/faqs/software-eng/testing-faq/section-15.html

Task analysis (see also Scenario testing and Use-case-based testing)

• Crandall, B., Klein, G., & Hoffman, R.B. (2006). Working Minds: A Practitioner’s Guide to Cognitive Task Analysis. MIT Press.
• Draper, D. & Stanton, N. (2004). The Handbook of Task Analysis for Human-Computer Interaction. Lawrence Erlbaum.
• Ericsson, K.A. & Simon, H.A. (1993). Protocol Analysis: Verbal Reports as Data (Revised Edition). MIT Press.
• Gause, D.C., & Weinberg, G.M. (1989). Exploring Requirements: Quality Before Design. Dorset House.
• Hackos, J.T. & Redish, J.C. (1998). User and Task Analysis for Interface Design. Wiley.
• Jonassen, D.H., Tessmer, M., & Hannum, W.H. (1999). Task Analysis Methods for Instructional Design.
• Robertson, S. & Robertson, J. C. (2006, 2nd Ed.). Mastering the Requirements Process. Addison-Wesley Professional.
• Schraagen, J.M., Chipman, S.F., & Shalin, V.I. (2000). Cognitive Task Analysis. Lawrence Erlbaum.
• Shepard, A. (2001). Hierarchical Task Analysis. Taylor & Francis.

Test design / test techniques (in general)

• Bach, J. (2000). Heuristic Test Planning: Context Model. http://www.satisfice.com/tools/satisfice-cm.pdf
• Bach, J. (2006). Heuristic test strategy model. Version 4.8. http://www.satisfice.com/tools/satisfice-tsm-4p.pdf
• Black, R. (2007). Pragmatic Software Testing: Becoming an Effective and Efficient Test Professional. Wiley.
• Buwalda, H. (2007). Key principles of test design. http://logigear.com/newsletter-2007/304-key-principles-of-test-design.html
• Copeland, L. (2004). A Practitioner’s Guide to Software Test Design. Artech House.
• Collard, R. (2001). Test Design Fundamentals. International Conference on Software Testing Analysis & Review. (STAR West)
• Desikan, S. & Gopalaswamy, R. (2006). Software Testing: Principles and Practices. Pearson Education.
• Edgren, R. (2011). The Little Black Book on Test Design. http://thetesteye.com/blog/2011/09/the-little-black-book-on-test-design/ 
• Edgren, R. (2010). Review of properties in Kaner’s What is a Good Test Case? http://thetesteye.com/blog/2010/05/review-of-properties-in-kaners-what-is-a-good-test-case/
• Emilsson, H., Jansson, M., Edgren, R. (2010). Software Quality Characteristics 1.0. http://thetesteye.com/posters/TheTestEye_SoftwareQualityCharacteristics.pdf
• Jorgensen, P. (2008, 3rd Ed.). Software Testing: A Craftsman’s Approach. Auerbach Publications.
• Kaner, C. (2003). What is a good test case? http://www.kaner.com/pdfs/GoodTest.pdf
• Kaner, C. (2004b). The ongoing revolution in software testing. Software Test & Performance conference. http://www.kaner.com/pdfs/TheOngoingRevolution.pdf
• Kaner, C., Bach, J., & Pettichord, B. (2001). Lessons Learned in Software Testing: Chapter 3: Test Techniques. http://media.techtarget.com/searchSoftwareQuality/downloads/Lessons_Learned_in_SW_testingCh3.pdf
• Test design / test techniques (in general)
• Kelly, M.D. (2007). Specialists and other myths: Because you aren’t a specialist doesn’t mean you can’t do it. Conference of the Association for Software Testing. http://www.michaeldkelly.com/pdfs/CAST2007_​SpecialistsAndOtherMyths.pdf
• Kelly, M.D. (2009). Software testing: Assessing risk and scope. http://searchsoftwarequality.techtarget.com/podcast/Software-Testing-Assessing-risk-and-scope
• Loveland, S., Miller, G. Prewitt, R., & Shannon, M. (2005). Software Testing Techniques: Finding the Techniques that Matter. Charles River Media.
• Nguyen, H.Q., Johnson, B., & Hackett, M. (2003). Testing Applications on the Web, 2nd Ed. Wiley.
• Page, A., Johnston, K., & Rollison, B.J. (2009). How We Test Software at Microsoft. Microsoft Press.
• Perry, W.E. (2006). Effective Methods for Software Testing. Wiley.
• Rajani, R., & Oak, P. (2004). Software Testing: Effective Methods, Tools & Techniques. Tata McGraw-Hill.
• Ryber,. T. (2007). Essential Software Test Design. Fearless Consulting.
• Schultz, C.P., Bryant, R., & Langdell, T. (2005). Game Testing All in One. Thomson Press.
• Sutton, M., Greene, A., & Amini, P. (2007). Fuzzing: Brute Force Vulnerability Discovery. Addison Wesley.
• Takanen, A., DeMott, J., & Miller, C. (2008). Fuzzing for Software Security Testing and Quality Assurance. Artech House.
• Whittaker, J.A. (2002). How to Break Software. Addison Wesley.

Test idea catalogs

• Edgren, R. (2009). More and better test ideas. EuroSTAR. http://www.thetesteye.com/papers/redgren_moreandbettertestideas.pdf
• Edgren, R. (2011). The Little Black Book on Test Design. http://thetesteye.com/blog/2011/09/the-little-black-book-on-test-design/
• Hendrickson, E. (2006). Test Heuristics Cheat Sheet. http://testobsessed.com/wp-content/uploads/2011/04/testheuristicscheatsheetv1.pdf
• Hunter, M. J. (2010). You are not done yet. http://www.thebraidytester.com/downloads/YouAreNotDoneYet.pdf
• Kaner, C., Padmanabhan, S., & Hoffman, D. (2012) Domain Testing: A Workbook, in press.
• Marick, B.M. (1994). The Craft of Software Testing: Subsystems Testing Including Object-Based and Object-Oriented Testing. Prentice-Hall. Updated catalog: http://www.exampler.com/testing-com/writings/catalog.pdf
• Marick, B.M. (undated). A short catalog of test ideas for… http://www.exampler.com/testing-com/writings/short-catalog.pdf
• Nguyen, H.Q., Johnson, B., & Hackett, M. (2003, 2nd ed), Testing Applications on the Web. Wiley (Appendices D through H).
• Sabourin, R. (2008). Ten things you might not know about sources of testing ideas. Better Software, April, 46. http://www.amibugshare.com/articles/Article_10_Sources_of_Testing_Ideas.pdf

Testing skill

Many of the references in this collection are about the development of testing skill. However, a few papers stand out, to me, as exemplars of papers that focus on activities or structures designed to help testers improve their day-to-day testing skills. We need more of these.

• Bach, J. (2006). Heuristic test strategy model, Version 4.8. http://www.satisfice.com/tools/satisfice-tsm-4p.pdf
• Gärtner, M. (2011) Testing Dojos: Craftsmanship in Software Testing: Blog at http://www.testingdojo.org/tiki-index.php. Expanded from Gaertner, M. (2010, Winter). Testing dojos: Another way to gain software testing experience. Methods & Tools. http://www.methodsandtools.com/mt/download.php?winter10
• Hendrickson, E. (2006), Test heuristics cheat sheet. http://testobsessed.com/wp-content/uploads/2011/04/testheuristicscheatsheetv1.pdf
• Hunter, M. J. (2010). You are not done yet. http://www.thebraidytester.com/downloads/YouAreNotDoneYet.pdf

Tours

• Bolton, M. (2009). Of testing tours and dashboards. http://www.developsense.com/blog/2009/04/of-testing-tours-and-dashboards
• Craig, R. D., & Jaskiel, S. P. (2002). Systematic Software Testing. Artech House. (see their discussions of inventories)
• Goucher, A. (2009). ‘Exploratory Software Testing’ – a cheat of a book. http://adam.goucher.ca/?p=1225
• Kaner, C. (2011). Testing tours: Research for best practices? http://kaner.com/?p=96
• Kelly, M.D. (2005). Touring Heuristic. http://www.michaeldkelly.com/archives/50
• Kelly, M.D. (2006). Taking a tour through test country. A guide to tours to take on your next test project. Software Test and Performance Magazine, February, 20-25. http://michaeldkelly.com/pdfs/Taking%20a%20Tour%20Through%20Test%20Country.pdf; http://www.softwaretestpro.com/Item/2752/Taking-a-Tour-Through-Test-Country/Test-and-QA-Video-Exploratory-Strategy-Performance-Functional-Software-Testing-Unit-User-Web
• Kohl, J. (2006). Modeling test heuristics. http://www.kohl.ca/blog/archives/000179.html
• Laplante, P. (2009). Exploratory testing for mission critical, real-time, and embedded systems. Part of the IEEE Reliability Society 2009 Annual Technology Report. http://paris.utdallas.edu/IEEE-RS-ATR/document/2009/2009-08.pdf
• Whittaker, J.A. (2009). Exploratory Software Testing: Tips, Tricks, Tours, and Techniques to Guide Test Design. Addison-Wesley.

Usability testing

• Cooper, A. (2004). The Inmates are Running the Asylum: Why High Tech Products Drive Us Crazy and How to Restore the Sanity. Pearson Education.
• Cooper, A., Reimann, R. & Cronin, D. (2007). About Face 3: The Essentials of Interaction Design. Wiley.
• Dumas, J.S. & Loring, B.A. (2008). Moderating Usability Tests: Principles and Practices for Interacting. Morgan Kaufmann.
• Fiedler, R.L., & Kaner, C. (2009). “Putting the context in context-driven testing (an application of Cultural Historical Activity Theory).” Conference of the Association for Software Testing. http://www.kaner.com/pdfs/FiedlerKanerCast2009.pdf
• Ives, B., Olson, M.H., & Baroudi, J.J. (1983). The measurement of user information systems. Communications of the ACM, 26(10), 785-793. http://portal.acm.org/citation.cfm?id=358430
• Krug, S. (2005, 2nd Ed.). Don’t Make Me Think: A Common Sense Approach to Web Usability. New Riders Press.
• Kuniavsky, M. (2003). Observing the User Experience: A Practitioner’s Guide to User Research. Morgan Kaufmann.
• Lazar, J., Fend, J.H., & Hochheiser, H. (2010). Research Methods in Human-Computer Interaction. Wiley.
• Nielsen, J. (1994). Guerrilla HCI: Using discount usability engineering to penetrate the intimidation barrier. http://www.useit.com/papers/guerrilla_hci.html
• Nielsen, J. (1999). Designing Web Usability. Peachpit Press.
• Nielson, J. & Loranger, H. (2006). Prioritize Web Usability. MIT Press.
• Norman, D.A. (2010). Living with Complexity. MIT Press.
• Norman, D.A. (1994). Things that Make Us Smart: Defending Human Attributes in the Age of the Machine. Basic Books.
• Norman, D.A. & Draper, S.W. (1986). User Centered System Design: New Perspectives on Human-Computer Interaction. CRC Press.
• Patel, M. & Loring, B. (2001). Handling awkward usability testing situations. Proceedings of the Human Factors and Ergonomics Society 45th Annual Meeting. 1772-1776.
• Platt, D.S. (2006). Why Software Sucks. Addison-Wesley.
• Rubin, J., Chisnell, D. & Spool, J. (2008). Handbook of Usability Testing: How to Plan, Design, and Conduct Effective Tests. Wiley.
• Smilowitz, E.D., Darnell, M.J., & Benson, A.E. (1993). Are we overlooking some usability testing methods? A comparison of lab, beta, and forum tests. Proceedings of the Human Factors and Ergonomics Society 37th Annual Meeting, 300-303.
• Stone, D., Jarrett, C., Woodroffe, M. & Minocha, S. (2005). User Interface Design and Evaluation. Morgan Kaufmann.
• Tullis, T. & Albert, W. (2008). Measuring the User Experience: Collecting, Analyzing, and Presenting Usability Metrics (Interactive Technologies). Morgan Kaufmann.

Use-case based testing (see also Scenario testing and Task analysis)

• Adolph, S. & Bramble, P. (2003). Patterns for Effective Use Cases. Addison-Wesley.
• Alexander, Ian & Maiden, Neil. Scenarios, Stories, Use Cases: Through the Systems Development Life-Cycle.
• Alsumait, A. (2004). User Interface Requirements Engineering: A scenario-based framework. Ph.D. dissertation (Computer Science), Concordia University.
• Berger, Bernie (2001) “The dangers of use cases employed as test cases,” STAR West conference, San Jose, CA. http://www.testassured.com/docs/Dangers.htm
• Charles, F.A. (2009). Modeling scenarios using data. STP Magazine. http://www.quality-intelligence.com/articles/Modelling%20Scenarios%20Using%20Data_Paper_Fiona%20Charles_CAST%202009_Final.pdf
• Cockburn, A.(2001). Writing Effective Use Cases. Addison-Wesley.
• Cohn, M. (2004). User Stories Applied: For Agile Software Development. Pearson Education.
• Collard, R. (July/August 1999). Test design: Developing test cases from use cases. Software Testing & Quality Engineering, 31-36.
• Hsia, P., Samuel, J. Gao, J. Kung, D., Toyoshima, Y. & Chen, C. (1994). Formal approach to scenario analysis. IEEE Software, 11(2), 33-41.
• Jacobson, I. (1995). The use-case construct in object-oriented software engineering. In John Carroll (ed.) (1995). Scenario-Based Design. Wiley.
• Jacobson, I., Booch, G. & Rumbaugh, J. (1999). The Unified Software Development Process. Addison-Wesley.
• Jacobson, I. & Bylund, S. (2000) The Road to the Unified Software Development Process. Cambridge University Press.
• Kim, Y. C. (2000). A Use Case Approach to Test Plan Generation During Design. Ph.D. Dissertation (Computer Science). Illinois Institute of Technology.
• Kruchten, P. (2003, 3rd Ed.). The Rational Unified Process: An Introduction. Addison-Wesley.
• Samuel, J. (1994). Scenario analysis in requirements elicitation and software testing. M.Sc. Thesis (Computer Science), University of Texas at Arlington.
• Utting, M., & Legeard, B. (2007). Practical Model-Based Testing: A Tools Approach. Morgan Kaufmann.
• Van der Poll, J.A., Kotze, P., Seffah, A., Radhakrishnan, T., & Alsumait, A. (2003). Combining UCMs and formal methods for representing and checking the validity of scenarios as user requirements. Proceedings of the South African Institute of Computer Scientists and Information Technologists on Enablement Through Technology. http://dl.acm.org/citation.cfm?id=954014.954021
• Zielczynski, P. (2006). Traceability from use cases to test cases. http://www.ibm.com/developerworks/rational/library/04/r-3217/

User interface testing

• Adzic, G. (2007). Effective user interface testing. http://gojko.net/2007/09/25/effective-user-interface-testing/
• Apple Computer (1993). Macintosh Human Interface Guidelines. Apple.
• Apple Computer (2011). Apple Human Interface Guidelines: User Experience. http://developer.apple.com/library/mac/#documentation/UserExperience/Conceptual/AppleHIGuidelines
• Dudziak, T. (2005). How to unit test the user interface of web applications. ApacheCon US. http://floyd.openqa.org/HowToUnitTestTheUserInterfaceOfWebApplications.pdf
• McKay, E.N. (1999). Developing User Interfaces for Microsoft Windows. Microsoft Press.
• Microsoft (2010). Windows User Experience Guidelines for Windows 7 and Windows Vista. http://msdn.microsoft.com/en-us/library/aa511258.aspx
• Nielsen, J. (2001). Coordinating User Interfaces for Consistency. Morgan Kaufmann.
• Olson, D.R. (1998). Developing User Interfaces. Morgan Kaufmann.
• Olson, D.R. (2009). Building Interactive Systems: Principles for Human-Computer Interaction. Course Technology.
• Visual Studio 2010 (undated). Testing the user interface with automated UI tests. http://msdn.microsoft.com/en-us/library/dd286726%28VS.100%29.aspx

User testing (see beta testing)

• Albert, W., Tullis, T. & Tedesco, D. (2010). Beyond the Usability Lab: Conducting Large-Scale Online User Experience Studies. Morgan Kaufmann.
• Wang, E., & Caldwell, B. (2002). An empirical study of usability testing: Heuristic evaluation vs. user testing. Proceedings of the Human Factors and Ergonomics Society 46th Annual Meeting. 774-778.

This post is partially based on work supported by NSF research grant CCLI-0717613 ―Adaptation & Implementation of an Activity-Based Online or Hybrid Course in Software Testing. Any opinions, findings and conclusions or recommendations expressed in this post are those of the author and do not necessarily reflect the views of the National Science Foundation.