Security/QA/TestPlans/Web Authentication: Difference between revisions
< Security
Jump to navigation
Jump to search
Mwobensmith (talk | contribs) m (OK) |
Mwobensmith (talk | contribs) m (ratings) |
||
| Line 107: | Line 107: | ||
! ID !! Description / Threat Description !! Covered by Test Objective !! Magnitude !! Probability !! Priority !! Impact Score | ! ID !! Description / Threat Description !! Covered by Test Objective !! Magnitude !! Probability !! Priority !! Impact Score | ||
|- | |- | ||
| RAC-1 || Incorrect authentication allows security bypass || TO-1, TO-2, TO-3 || | | RAC-1 || Incorrect authentication allows security bypass || TO-1, TO-2, TO-3 || 3-High || 1-Unlikely || 2-Moderate || 6 | ||
|- | |- | ||
| RAC-2 || XSS/information leak || TO-1, TO-3 || 3-High || | | RAC-2 || XSS/information leak || TO-1, TO-3 || 3-High || 1-Almost Certain || 1-Low || 3 | ||
|- | |- | ||
| RAC-3 || Confined to secure context || TO-1, TO-3 || 2-Moderate || 2-Possible || | | RAC-3 || Confined to secure context || TO-1, TO-3 || 2-Moderate || 2-Possible || 1-Low || 4 | ||
|- | |- | ||
| RAC-4 || Incorrectly functioning JS API || TO-1 || | | RAC-4 || Incorrectly functioning JS API || TO-1 || 3-High || 2-Possible || 2-Moderate || 12 | ||
|- | |- | ||
| RAC-5 || Stability for entire feature || TO-1, TO-2 || | | RAC-5 || Stability for entire feature || TO-1, TO-2 || 3-High || 2-Possible || 3-High || 18 | ||
|- | |- | ||
| RAC-6 || Interaction with other aspects of normal Firefox usage || TO-1, TO-2 || | | RAC-6 || Interaction with other aspects of normal Firefox usage || TO-1, TO-2 || 3-Moderate || 3-Almost Certain || 3-High || 27 | ||
|- | |- | ||
| RAC-7 || Memory issues in JS API and hardware support code || TO-3 || | | RAC-7 || Memory issues in JS API and hardware support code || TO-3 || 3-High || 1-Unlikely || 2-Moderate || 6 | ||
|- | |- | ||
| RAC-8 || Incorrectly functioning hardware || TO-2 || 2-Moderate || | | RAC-8 || Incorrectly functioning hardware || TO-2 || 2-Moderate || 1-Unlikely || 1-Low || 2 | ||
|} | |} | ||
Revision as of 22:46, 17 August 2017
Approvals Required / Received
The following individuals are required to/have approved this Test Plan:
| Name | Title | Department | Approval Date | Method |
|---|---|---|---|---|
| QA Manager | Product Integrity | Date | ||
| JC Jones | Software Engineer | Engineering | Date | |
| EPM | Product Management | Date |
Revision History
This section describes the modifications that have been made to this wiki page. A new row has been completed each time the content of this document is updated (small corrections for typographical errors do not need to be recorded). The description of the modification contains the differences from the prior version, in terms of what sections were updated and to what extent.
| Date | Version | Author | Description |
|---|---|---|---|
| 2017-08-16 | 1.0 | Matt Wobensmith | Created first draft |
Overview
Purpose
Detail the purpose of this document. For example:
- The test scope, focus areas and objectives
- The test responsibilities
- The test strategy for the levels and types of test for this release
- The entry and exit criteria
- The basis of the test estimates
- Any risks, issues, assumptions and test dependencies
- The test schedule and major milestones
- The test deliverables
Scope
This wiki details the testing that will be performed by the project team for the <project name> project. It defines the overall testing requirements and provides an integrated view of the project test activities. Its purpose is to document:
- What will be tested
- How testing will be performed
Ownership
This feature is being tested by both Mozilla and one or more third parties.
- Yubico is performing smoke tests using hardware keys across a range of hardware and software
- JC Jones and Tim Taubert have created unit tests for both JS API and hardware interaction
- The Fuzzing team has been enlisted, initially to test USB interaction, time frame unknown
- The PI Security team has been requested to perform a security review between now and mid-September 2017.
- Matt Wobensmith (QA) is responsible for the entire process, as well as creating manual scenario tests
- Mozilla's QA - most likely SoftVision - will use the manual tests for ongoing build certification post-feature-signoff
Testing summary
Scope of Testing
In Scope
- Web Authentication, as well as U2F (both soft token and hardware) if we decide to ship it
- All JS APIs
- Fuzzing wherever possible
- A range of scenario tests that mirror user interaction, including boundary and error cases
Out of Scope
- Yubico has provided us with some USB keys to test with, but the full range of keys plus hardware is not something we have available to us. We are relying on their help but will not be able to replicate their coverage, and will run passes using existing hardware in our possession.
Requirements for testing
Environments
We support the same OS and hardware configurations that Firefox supports.
- TBD: What is the behavior on Fennec?
Channel dependent settings (configs) and environment setups
The feature is controlled by prefs that are gated to channels at the moment. To control this feature, set the following prefs to true:
security.webauth.u2f; security.webauth.u2f_enable_softtoken; security.webauth.u2f_enable_usbtoken; security.webauth.webauthn; security.webauth.webauthn_enable_softtoken; security.webauth.webauthn_enable_usbtoken;
Nightly
Currently set to false.
Beta
Currently set to false.
Post Beta / Release
Depending on ship decisions, will be set to true.
Test Strategy
Risk Assessment and Coverage
| ID | Description / Threat Description | Covered by Test Objective | Magnitude | Probability | Priority | Impact Score |
|---|---|---|---|---|---|---|
| RAC-1 | Incorrect authentication allows security bypass | TO-1, TO-2, TO-3 | 3-High | 1-Unlikely | 2-Moderate | 6 |
| RAC-2 | XSS/information leak | TO-1, TO-3 | 3-High | 1-Almost Certain | 1-Low | 3 |
| RAC-3 | Confined to secure context | TO-1, TO-3 | 2-Moderate | 2-Possible | 1-Low | 4 |
| RAC-4 | Incorrectly functioning JS API | TO-1 | 3-High | 2-Possible | 2-Moderate | 12 |
| RAC-5 | Stability for entire feature | TO-1, TO-2 | 3-High | 2-Possible | 3-High | 18 |
| RAC-6 | Interaction with other aspects of normal Firefox usage | TO-1, TO-2 | 3-Moderate | 3-Almost Certain | 3-High | 27 |
| RAC-7 | Memory issues in JS API and hardware support code | TO-3 | 3-High | 1-Unlikely | 2-Moderate | 6 |
| RAC-8 | Incorrectly functioning hardware | TO-2 | 2-Moderate | 1-Unlikely | 1-Low | 2 |
Values:
- Magnitude: 1- Low , 2-Moderate, 3-High
- Probability: 1-Unlikely, 2-Possible, 3-Almost Certain
- Priority: 1 - Low, 2-Medium, 3-High
Impact Score Breakdown:
- An impact value of 1, 2, 3, 4 would describe an area which although should be covered there aren't expected any discoveries of critical issues.
- An impact value of 6, 8, 9, 12 would describe an area in which we expect to find issues but those issues are not expected to be critical.
- An impact value of 18 or 27 would describe an area on which it is likely to find issues and those issues to be critical or blockers.
Test Objectives
This section details the progression test objectives that will be covered. Please note that this is at a high level. For large projects, a suite of test cases would be created which would reference directly back to this master. This could be documented in bullet form or in a table similar to the one below.
| Ref | Function | Test Objective | Evaluation Criteria | Test Type | RAC | Owners |
|---|---|---|---|---|---|---|
| TO1 | JS API | Verify functionality | All tests indicate stable, functional API for using Web Authentication and/or U2F with both hardware and software tokens | Manual/ Automation / Usability | RAC-1, RAC-2, RAC-3, RAC-4, RAC-5, RAC-6 | Eng Team, QA |
| TO2 | Hardware support via USB token | Verify functionality | All tests indicate stable, functional support of USB hardware keys, as above | Manual/ Automation / Usability | RAC-1, RAC-5, RAC-6, RAC-8 | Eng Team, QA |
| TO3 | Stable, secure code | Fuzzing and security review | All testing and inspection surfaces known security issues | Manual/ Security | RAC-1, RAC-2, RAC-3, RAC-7 | Eng Team, QA, PI Fuzzing + Sec Review |
Builds
This section should contain links for builds with the feature -
- Links for Nightly builds
- Links for Beta builds
Test Execution Schedule
The following table identifies the anticipated testing period available for test execution.
| Project phase | Start Date | End Date |
|---|---|---|
| Start project | ||
| Study documentation/specs received from developers | ||
| QA - Test plan creation | ||
| QA - Test cases/Env preparation | ||
| QA - Nightly Testing | ||
| QA - Beta Testing | ||
| Release Date |
Testing Tools
Detail the tools to be used for testing, for example see the following table:
| Process | Tool |
|---|---|
| Test plan creation | Mozilla wiki |
| Test case creation | TestRail/ Google docs |
| Test case execution | TestRail |
| Bugs management | Bugzilla |
Status
Overview
Track the dates and build number where feature was released to Nightly Track the dates and build number where feature was merged to Release/Beta
References
- List and links for specs
List and links for available specs - documents, user stories, specifications
- Meta bug
Testcases
Test Areas
| Test Areas | Covered | Details |
|---|---|---|
| Private Window | ||
| Multi-Process Enabled | ||
| Multi-process Disabled | ||
| Theme (high contrast) | ||
| UI | ||
| Mouse-only operation | ||
| Keyboard-only operation | ||
| Display (HiDPI) | ||
| Interaction (scroll, zoom) | ||
| Usable with a screen reader | e.g. with NVDA | |
| Usability and/or discoverability testing | Is this feature user friendly | |
| RTL build testing | ||
| Help/Support | ||
| Help/support interface required | Make sure link to support/help page exist and is easy reachable. | |
| Support documents planned(written) | Make sure support documents are written and are correct. | |
| Install/Upgrade | ||
| Feature upgrades/downgrades data as expected | ||
| Does sync work across upgrades | ||
| Requires install testing | separate feature/application installation needed (not only Firefox) | |
| Affects first-run or onboarding | Florin/Lawrence are investigating if there is a dedicated QA for this, or we should test? Should be an yes/no and if is yes should add in detail column the team/person assigned. | |
| Does this affect partner builds? Partner build testing | yes/no options, add comment with details about who will lead testing | |
| Enterprise | Raise up the topic to developers to see if they are expecting to work different on ESR builds | |
| Enterprise administration | ||
| Network proxies/autoconfig | ||
| ESR behavior changes | ||
| Locked preferences | ||
| Data Monitoring | ||
| Temporary or permanent telemetry monitoring | List of error conditions to monitor | |
| Telemetry correctness testing | ||
| Server integration testing | ||
| Offline and server failure testing | ||
| Load testing | ||
| Add-ons | If add-ons are available for testing feature, or is current feature will affect some add-ons, then API testing should be done for the add-on. | |
| Addon API required? | ||
| Comprehensive API testing | ||
| Permissions | ||
| Testing with existing/popular addons | ||
| Security | Security is in charge of Matt Wobensmith. We should contact his team to see if security testing is necessary for current feature. | |
| 3rd-party security review | ||
| Privilege escalation testing | ||
| Fuzzing | ||
| Web Compatibility | depends on the feature | |
| Testing against target sites | ||
| Survey of many sites for compatibility | ||
| Interoperability | depends on the feature | |
| Common protocol/data format with other software: specification available. Interop testing with other common clients or servers. | ||
| Coordinated testing/interop across the Firefoxes: Desktop, Android, iOS | ||
| Interaction of this feature with other browser features |
Test suite
Full Test suite - Link to test rail - testcases should be added under Firefox Desktop project link Smoke Test suite - Link with the tests - if available/needed. Regression Test suite - Link with the tests - if available/needed.
Bug Work
Meta bug: 12345 - bug summary
Logged bugs ( blocking 12345 )
| ID | Priority | Component | Assigned to | Summary | Status | Target milestone |
|---|---|---|---|---|---|---|
| 15069 | P3 | Networking | jefft | File type url not correctly parsed and created | VERIFIED | M13 |
1 Total; 0 Open (0%); 0 Resolved (0%); 1 Verified (100%);
Bug fix verification
| ID | Priority | Component | Assigned to | Summary | Status | Resolution | Target milestone |
|---|---|---|---|---|---|---|---|
| 15069 | P3 | Networking | jefft | File type url not correctly parsed and created | VERIFIED | FIXED | M13 |
1 Total; 0 Open (0%); 0 Resolved (0%); 1 Verified (100%);
Sign off
Criteria
Checklist
- All test cases should be executed
- Has sufficient automated test coverage (as measured by code coverage tools) - coordinate with RelMan
- All blockers, criticals must be fixed and verified or have an agreed-upon timeline for being fixed (as determined by engineering/RelMan/QA)
Results
Nightly testing
List of OSes that will be covered by testing
- Link for the tests run
- Full Test suite, link to TestRail - Tests Runs and Results link
- Daily Smoke, if needed/available
- Regression Test suite, if needed/available
Merge to Beta Sign-off
List of OSes that will be covered by testing
- Link for the tests run
- Full Test suite
Checklist
| Exit Criteria | Status | Notes/Details |
|---|---|---|
| Testing Prerequisites (specs, use cases) | ||
| Testing Infrastructure setup | ||
| Test Plan Creation | ||
| Test Cases Creation | ||
| Automation Coverage | ||
| Performance Testing | ||
| All Defects Logged | ||
| Critical/Blockers Fixed and Verified | ||
| Metrics/Telemetry | ||
| Basic/Core functionality Nightly testing | ||
| QA mid-Nightly Signoff | Email to be sent | |
| QA Nightly - Full Testing | ||
| QA pre-Beta Signoff | Email to be sent | |
| QA Beta - Full Testing | ||
| QA pre-Release Signoff | Email to be sent |