Black vs Clear Box

Testing with and without access or knowledge of software internals to find different problems

Static vs Dynamic

Testing with and without executing the software’s code to find different types of problems

Loss vs Harm

Risk/threat modelling 1: Problems occur when value isn’t deliver or when additional harm occurs

Something vs Nothing

Risk/threat modelling 2: Problems occur when nothing happens when expected but also something happened when unexpected

Left vs Right

Continuous, parallel testing in throughout the software DevOps lifecycle

Idea & Artefact

Software starts with an idea which is communicated and refined through artefacts tested with heuristics and imaginations


Coverage mindmaps, requirements/risk, charters/questions, designs, environmental/personnel, journaling/noting results