Context-Driven QA Guide

Introduction

Purpose & Goals

This guide is designed for QA professionals, project managers, and teams looking to implement flexible, effective testing strategies. It provides a framework for implementing context-driven testing strategies that adapt to your project's unique circumstances. Rather than prescribing one-size-fits-all solutions, we'll equip you with the thinking tools and heuristics needed to design effective testing approaches for any context.

Scope

What This Guide Covers:

Test strategy development for project teams
Context analysis and risk assessment techniques
Adaptive testing approaches and tool selection
Test design and execution methodologies
Evaluation and continuous improvement practices

What This Guide Does NOT Cover:

Developer-focused unit testing practices
Specific tool tutorials or vendor comparisons
Organizational process management

Note: For unit testing strategies, refer to the Automated Testing Playbook.

Guiding Principles

Context-Driven Testing Foundation

"The value of any practice depends on its context. There are good practices in context, but there are no best practices."
- James Bach & Cem Kaner

Context-driven testing recognizes that testing approaches must be tailored to the specific situation rather than following rigid methodologies. This philosophy emphasizes:

Core Principles:

Adaptive Practices: Testing strategies should evolve based on project context, constraints, and discoveries
Skilled Practitioners: The tester's judgment and expertise are central to effective testing
Continuous Learning: Testing activities should generate insights that inform future testing decisions
Mission-Driven: All testing activities should align with the project's mission and stakeholder needs
Questioning Attitude: Challenge assumptions, dig deeper, and remain skeptical of "obvious" answers

Key Insight:

Context-driven testing is not about avoiding process or structure—it's about making conscious, informed decisions about what processes and structures serve your specific testing mission.

The Four Seasons of Testing

Testing can occur throughout the development lifecycle. Understanding these different phases helps you plan when and how to apply different testing approaches.

🌱

Prospective Testing

("Shift-Left" Testing)

Testing activities performed before the product exists to prevent problems early in development.

Requirements review
Design analysis
Risk assessment
Test planning

Challenge: Predicting future problems is difficult and may not be accurate.

☀️

Primary Testing

(Current State Testing)

Testing the current version of the product to identify defects and understand its behavior.

Functional testing
Exploratory testing
Performance testing
Security testing

Advantage: Direct observation of actual product behavior.

🍂

Regression Testing

(Change Impact Testing)

Testing to ensure that changes haven't negatively impacted existing functionality.

Automated regression suites
Impact analysis
Smoke testing
Integration testing

Focus: Efficient detection of unintended side effects.

❄️

Remedial Testing

(Production Testing)

Testing in production environments to catch issues that weren't found earlier.

Production monitoring
A/B testing
User feedback analysis
Performance monitoring

Risk: Testing in production can impact real users.

Key Insight: All four seasons have their place in a comprehensive testing strategy. The key is understanding when and how to apply each approach effectively.

Understanding Context

Context Analysis Framework

Before designing any testing strategy, you must understand the context in which you're operating. This involves examining multiple dimensions of your project environment.

🎯 Mission & Stakeholder Analysis ▼

Key Questions to Answer:

Who cares about this project? Identify all stakeholders and their primary concerns
What does success look like? Define measurable success criteria
What would failure cost? Understand the consequences of different types of failures
What are our constraints? Time, budget, resources, regulatory requirements
What assumptions might be wrong? Challenge the obvious and dig deeper

Pro Tip: Schedule stakeholder interviews early in the project. Their perspectives often reveal testing priorities that aren't obvious from documentation alone.

🔍 Product Exploration ▼

Understanding the Product:

What problems does it solve? The intended purpose and value
What problems could it cause? Potential negative impacts
How do users interact with it? User journeys and workflows
What are the critical quality attributes? Performance, security, usability, etc.

Testing Tours (for existing products):

If you have a working product, conduct structured exploration sessions to build familiarity and identify areas of concern.

Resource: Learn about testing tours in Michael Bolton's Testing Tours article

Risk Assessment

"Risk-based testing focuses and justifies test effort in terms of the mission of testing itself."
- James Bach

Risk-based testing helps prioritize testing efforts by focusing on areas where failures would have the greatest impact or highest probability of occurrence.

Risk Analysis Process:

Identify Risks: What could go wrong? Consider technical, business, and user experience risks
Assess Impact: How severe would the consequences be if this risk materialized?
Estimate Likelihood: How probable is it that this risk will occur?
Prioritize: Focus testing efforts on high-impact, high-likelihood risks first
Review and Adjust: Risk assessment should be ongoing throughout the project

Resource: For detailed risk assessment techniques, see James Bach's Heuristic Risk-Based Software Testing

Planning Your Testing Strategy

Define Clear Objectives

Every testing strategy should begin with clear, measurable objectives that align with the project's mission and stakeholder needs.

Objective Definition Framework:

Information Goals: What do we need to learn about the product?
Quality Goals: What quality attributes are most important?
Coverage Goals: What areas of the product need testing attention?
Confidence Goals: What level of confidence do stakeholders need?

The Heuristic Test Strategy Model (HTSM)

The HTSM provides a framework for thinking about different aspects of testing. See page 19 of this document as an example of a test strategy.

🗺️ Some HTSM Categories ▼

Product Elements

Structure (code, architecture)
Function (what it does)
Data (inputs, outputs)
Interfaces (APIs, UIs)
Platform (OS, browsers)
Operations (install, config)

Quality Criteria

Capability (functional correctness)
Reliability (consistent performance)
Usability (user experience)
Security (protection from threats)
Performance (speed, efficiency)
Compatibility (works with others)

Tool Selection

"Tools should serve the testing strategy, not drive it. The best tool is the one that helps you accomplish your testing mission most effectively in your specific context."
- Context-Driven Testing Community

When considering automation, remember that its value depends on how well it supports your testing mission. For a deeper discussion of what automation can and cannot do, see the Execution section on ‘Testing vs. Checking’.

Tool Selection Heuristics:

Versatility Over Specialization: Tools that support multiple purposes are usually preferable
Learning Curve vs. Benefit: Consider time investment versus value delivered
Team Skills: Choose tools that align with your team's capabilities
Integration: How well does it fit into existing workflows?

Test Design Process

🎨 From Exploration to Formalization ▼

Five-Step Process:

Explore: Interact with the system to understand behavior
Model: Create mental/visual models of how it works
Question: Generate questions about edge cases and failures
Design: Create specific tests to answer your questions
Formalize: Document tests that provide ongoing value

Modeling and Data Generation

Start with Exploration: Begin your test design by exploring the product. Use your curiosity and domain knowledge to interact with the system, trying out different features and workflows. This helps you discover how the product really works, what’s important, and where problems might hide.
From Exploration to Formalization: As you explore, take notes on what you learn. Some behaviors and risks will become clear and repeatable—these are good candidates for formal test cases or automated checks. Other areas may remain uncertain or complex; keep these for further exploratory testing.
Identify Relevant Data: Think about what kinds of data are most important for your testing. Consider typical user data, edge cases (unusual or extreme values), invalid or unexpected inputs, and data that reflects real-world usage.
Use Tools for Data Generation: Generating the right test data can be challenging. Look for tools that can help you create large sets of data, randomize inputs, or simulate real-world scenarios. The key is to choose tools that fit your context—not just the most popular ones. For more on this, see A Context-Driven Approach to Automation in Testing.

Guiding Principles:
– Let your understanding of the product and its risks guide your test design.
– Don’t try to formalize everything—some testing is best left exploratory.
– Use automation and data generation tools to support, not replace, your thinking.
– Continuously adapt your approach as you learn more about the product and its context.

Execution and Automation

As discussed in the Planning section, automation should be chosen and designed to fit your specific context and objectives. Here, we clarify the distinction between automated checking and the broader, human-centered process of testing.

Testing vs. Checking

"Testing is a cognitive process of learning, questioning, and investigating. Checking is a process of verification against known, specific criteria."
- Michael Bolton

🧠

Testing

Requires human judgment
Involves learning and discovery
Adapts based on findings
Asks "what else might be wrong?"
Cannot be fully automated

✅

Checking

Verifies against known criteria
Follows predetermined steps
Provides pass/fail results
Asks "does this match expectations?"
Can be automated

Automation Strategy

Broaden Your View of Automation:
Automation in QA is often narrowly associated with API and end-to-end (E2E) tests. However, automation can (and should) include much more—such as data generation, environment setup, log analysis, and supporting exploratory testing. Think broadly about how automation can help your testing mission, not just what is most commonly automated.

Automation Goes Beyond API and E2E Tests: While automation in QA is often associated with API and end-to-end (E2E) tests, it can encompass much more—such as data generation, environment setup, log analysis, and supporting exploratory testing. Think broadly about how automation can help your testing mission.
Automate Checks, Empower Testers: Use automation for repeatable, algorithmic checks with clear expected outcomes. This allows human testers to focus on exploration, learning, and risk investigation—areas where creativity and judgment are essential.
Let Automation Support, Not Replace, Human Judgment: Automation is best used for repetitive tasks like data setup, environment configuration, and information gathering. Human testers should interpret results, investigate failures, and adapt tests as the product evolves.
Context-Driven Automation: Choose what to automate based on your project’s unique needs, risks, and constraints. There are no universal rules—what’s valuable in one context may not be in another.
Avoid Automation for Its Own Sake: Don’t automate just because you can. Automation should serve your testing mission, not drive it. Be skeptical of “full automation” claims.
Continuously Re-evaluate: As your product and context change, regularly review your automation strategy to ensure it continues to add value.

For a deeper discussion, see A Context-Driven Approach to Automation in Testing.

Cost Consideration: Automated checks require ongoing maintenance. Factor this into your automation decisions.

Evaluation and Reporting

Analysis and Documentation

Effective evaluation goes beyond simple pass/fail reporting to provide actionable insights about product quality and risk.

Analysis Tools and Techniques:

Data Sorting and Filtering: Organize findings by severity, area, or type
Trend Analysis: Look for patterns over time
Root Cause Analysis: Understand underlying causes of issues
Risk Assessment: Evaluate the business impact of findings

Communicating Results

Bug Reports

Bug reports are a crucial communication tool used by QA engineers to inform the development team about bugs or issues discovered during testing. It provides detailed information about the problem, helping developers understand, reproduce, and ultimately fix the bug. A well-written bug report increases the chances of a bug being resolved efficiently.

🪲 How to Report a Bug (Click to expand) ▼

What is a Bug?

A bug is anything that threatens value for an important person involved. When we write a bug report, we are suggesting that the product could be improved. Bugs can cause the software to behave differently from what was intended or fail to perform its functions correctly. As a Quality Assurance engineer, one of your responsibilities is to identify and report these bugs so that they can be fixed by the development team.

What do you do when you think you’ve found a bug?

Reproduce: Make sure the bug can be consistently reproduced. Provide clear steps or note if it’s intermittent or configuration-dependent.
Isolate: Minimize the steps to the critical conditions needed to reproduce the bug. Keep it to one failure per report.
Maximize: Try to find the most severe version of the bug by varying actions, settings, and data.
Generalize: Investigate if the problem affects more people or situations than initially thought. Try broader scenarios.
Externalize: Consider who is affected and why. Gather information about the impact and who cares about the issue.

Once you’ve done these, you’re ready to write the official bug report!

What is a Bug Report?

A bug report is a crucial communication tool used by QA engineers to inform the development team about bugs or issues discovered during testing. It provides detailed information about the problem, helping developers understand, reproduce, and ultimately fix the bug. A well-written bug report increases the chances of a bug being resolved efficiently. Keep a neutral and non-blaming tone.

The point of bug reporting is bug advocacy: presenting a bug in a way that connects with the people who can fix it and advocating for that fix. Communicate clearly, show the impact, and help your team make good decisions.

Components of a Bug Report

Title/Summary: Concise, descriptive, and follows a “FAILURE-WHEN” structure.
Example: Incorrect Error Message Displayed on Login Page When Entering Invalid Username or Password
Steps to Reproduce: Simple, focused steps for one failure per report.
🪲 Steps to Reproduce:
1. Open the application.
2. Navigate to the login page.
3. Enter an invalid username and password.
4. Click on the "Login" button.
Observed Behavior: What happened?
🪲 Observed Behavior: The error message "Invalid username or password" is not displayed when attempting to log in with incorrect credentials. Instead, the system remains on the login page without any error feedback.
Expected Behavior: What should have happened?
🪲 Expected Behavior: When providing incorrect credentials and clicking on the "Login" button, the system should display an error message indicating "Invalid username or password."
Environment/Version: OS, browser, device, and any special configuration.
🪲 Environment/Version:
- Operating System: Windows 10
- Browser: Google Chrome (Version 92.0.4515.107)
- Device: Dell Inspiron 15
- Screen Resolution: 1920x1080
- Zoom Level: 100%
- JavaScript Enabled: Yes
- Additional Configuration: Windows 10 Display Scaling set to 125%
Reproducing this bug requires a Windows 10 machine with Google Chrome version 92.0.4515.107 and the specific display scaling set to 125%. Please note that this issue is not observed on other browsers or operating systems.
Screenshots/Attachments: Include supporting visuals whenever possible.

Further Reading: RST Bug Reporting Guide (PDF)

Team Communication

Tailor your communication to your audience's needs and concerns. Different stakeholders care about different aspects of testing results.

👨‍💻

Developers

Detailed technical findings
Clear reproduction steps
Root cause analysis
Code-level implications

📊

Project Managers

Risk assessment and impact
Timeline implications
Resource requirements
Progress against objectives

💼

Business Stakeholders

User impact and experience
Business risk assessment
Competitive implications
Go/no-go recommendations

🔧

QA Team

Testing methodology and coverage
Lessons learned
Process improvements
Tool effectiveness

Continuous Improvement

Learning and Adaptation

Improvement Practices:

Regular Retrospectives: What worked? What didn't? What would we do differently?
Feedback Integration: Incorporate insights from stakeholders and team members
Process Refinement: Continuously improve your testing approach
Skill Development: Invest in learning new techniques and tools
Knowledge Sharing: Share lessons learned with the broader team

Resources and Further Reading

Books

"Lessons Learned in Software Testing" by Cem Kaner, James Bach, and Bret Pettichord
"Rapid Software Testing" by James Bach and Michael Bolton
"Exploratory Software Testing" by James Whittaker
"Perfect Software and Other Illusions" by Gerald Weinberg

Introduction

Purpose & Goals

Scope

What This Guide Covers:

What This Guide Does NOT Cover:

Guiding Principles

Context-Driven Testing Foundation

Core Principles:

Key Insight:

The Four Seasons of Testing

Prospective Testing

Primary Testing

Regression Testing

Remedial Testing

Understanding Context

Context Analysis Framework

Key Questions to Answer:

Understanding the Product:

Testing Tours (for existing products):

Risk Assessment

Risk Analysis Process:

Planning Your Testing Strategy

Define Clear Objectives

Objective Definition Framework:

The Heuristic Test Strategy Model (HTSM)

Tool Selection

Tool Selection Heuristics:

Test Design Process

Five-Step Process:

Modeling and Data Generation

Execution and Automation

Testing vs. Checking

Automation Strategy

Evaluation and Reporting

Analysis and Documentation

Analysis Tools and Techniques:

Communicating Results

Bug Reports

What is a Bug?

What do you do when you think you’ve found a bug?

What is a Bug Report?

Components of a Bug Report

Team Communication

Continuous Improvement

Learning and Adaptation

Improvement Practices:

Resources and Further Reading

Books

Online Resources

Key Papers

Training and Classes