Reassuring the Quality and Security of Web-Mobile based POS System

Since creating a high-performing web-mobile based PoS system is demanding, check out the case study to learn how we implemented a fool-proof QA plan to meet the agile goals of a leading software service provider.

About Client

The client is a leading software service provider in UK who provides powerful web-based POS Systems (Point of Sale Systems). In addition to their web-based policy, they have launched native and web-based mobile applications. As per the client requirements, proper performance and security testing procedures were adopted for ensuring adequate standards as per the market regulations.

Product Overview

The basic idea of the product is to provide the best in class online shopping experience along with security of online payments through a deployed payment gateway .

The developed product covered the following functionalities:

User Authentication – Unique Login For Each User
Add Product To Cart And Check Out (Via Citrus)
Send Gifts To Your Family And Friends
Hassle-Free Ordering

Eliminating Waiting Time In Queues
Flexible Payment Options
Secured Payment
Linking With Users On Facebook

Product Challenges

The Major Issue That The Testing Team Witnessed While Performing Diverse Testing Procedures Was The Availability Of More Than 18K Mobile Devices.
These Devices Differ In Screen Size, Performance Levels, Shapes And Sizes, And Hardware Capabilities.
Device Fragmentation Was A Big Challenge During This Application Testing.

The Different Standard For Mobile Data Connection (Edge, 3G, 4G) As Well As For Wi-Fi Caused Several Glitches.
Sometimes There Might Be No Connection Or Network Available At All Or The Device Is In Flight Mode.
Different Mobile Data Connection Coverage Was Also A Major Challenge For Us To Make The Application Compatible.

Continuous Changes In The App Based On Reviews & Feedbacks To Deliver Rich User Experience.
These Are Big Challenges In Mobile Application Development For Both Developers & Testers.
Our Client Was So Frequent About The Change In Application After Getting Reviews And Suggestion By Users.

Application Delivery Was Pushing Traditional Delivery Approaches To The Breaking Point.
The Team Was Being Asked To Produce Value In Weeks Instead Of Months.
Agile Methodologies Need Fast Iterations But Testing Delays Were Becoming A Bottleneck.

Security of a mobile app is required to check the encryption/ decryption techniques used for the critical data communication over the app. Recent research from Arxan(An American technology company specialize in anti-tamper and digital rights management (DRM) for IoT, mobile, and other applications.) says:

100% Of The Top 100 Paid Apps On The Google Android Platform Had Been Hacked.
56% Of The Top 100 Paid Apps For Apple IOS Had Been Hacked
73% Of Popular Free Apps On Android Had Been Hacked
53% Of Popular Free Apps On Apple IOS Had Been Hacked

Ensuring security of the mobile application was also a crucial part of our job in this project.

Our Offerings For The Case

Security Testing Services

Web Testing Services

Product Solutions

01

Used Wide Variety of Mobile Devices Via Labs

We Used Our Innovative Device Lab As Well As We Used Device Lab Of Other Service Providers To Cover Maximum Variety Of Devices.
Since software testers can access devices from different locations, device sharing always more practical and return output as intended.

02

Efficiently Used Different Mobile Data Connections

With The Use Of Device Emulators Plus An Operator’s Web Or Test Proxy That Avoids Airtime Charges And Continues The Testing Procedure With An Instrumented Test Stack.
Cloud-based network test services provide us the most realistic testing scenarios. We involved many cloud-based device testing services including remote carrier coverage.

03

Smoothly Tackled Frequent Changes

Firstly We Identified And Collect The Detailed Client Needs With Thorough Requirement Analysis
After That Freeze The Scope Of New Change Requests And A Borderline To Limit These Unexpected Changes, Mutually Agreeing With The Client.

04

Milestone Delivery Schedule For Tight Deadlines

To Overcome This Challenge We Decided To Break The Deliverables Into Parts And The Milestones Were Divided Into Small Internal Sprints.
The Reason For The Same Is, If The Time Comes To Deliver Then We Have Something In Hand Completed To Deliver To The Client, And Pendency Could Be Covered Before Next Sprint Delivery.

05

Secure Data With Quick Sight

Preventing Data Theft And Leakage: For Security Check, We Kept Quick-Sight On All The Input And The Data That Is Being Posted On To The Server In The Application.
When Mobile Applications Access Insecure Data, Documents And Unstructured Information Stored On The Device Then The Potential For Data Loss Is Heightened.
To Decrease This Risk We Identified All Loopholes Of The Application By Deeply Scanning Functional Process.

Tool and Technology We Used

Cucumber

For acceptance tests for functional validation

Appium

For testing iOS hybrid mobile application testing

Selendroid

For testing android native and hybrid applications

Different iOS & Android OS versions and devices

A number of iOS and Android devices with different operating system versions were used for testing.

Security

Adequate tests were performed to analyze any security breach in the application.

Client Benefits

The Products Were Delivered Before Time Within The Budget Allocated.
The Client Was Fully Satisfied With The Services, Proactive Communication And Effective Documentation Process Of Our Company And Also Promised To Work On Another Project In The Future.

The following are the key attainments we added to our quality services:

Launched On Multiple OS Within Time And Budget.
Savings Of Costs By 60% Due To The Extensive Use Of Automation Tools.
The Bugraptors Team Worked Like A Product Partner With The Client To Ensure The Quality Of The Product And Increased The Quality Expectations Of The Client.
Delivered The High-Quality Application With Dedicated Mobile Testing Lab.
Performed Testing On Various Platforms Made The Client Assured Of Application's Robust Performance.