THE QUALITY ASSURANCE PLAN OF CMO-ICTD
The CMO-ICTD started its quality assurance testing in 2013 during the creation of the division based on City Ordinance No. 14 of 2012. Percival Pasuelo (IT Officer II) and Anna Lou Buyco (Computer Programmer) initiated the functional QA testing based on various sources with the objective of identifying errors encountered by users during navigation. Any programming bug is then reported to the coder or system analyst. With the audit results, all systems for implementation are assured of full functionality of features with minimal errors making the life of the programmer easier. On the other hand, the end users are capacitated to use the system with minimal to no error at all.
In July 2022, Darly Gorra (Computer Programmer), developed the second version of the QA testing tools. The CMO-ICTD called it the System Development QA Test which includes the following: unit testing, integration texting, system testing, and acceptance testing. The difference between the functional and the system development QA testing is that the former is done externally while the latter is done internally or within the code level.
In 2023, two more testings are included as part of the pre-implementation: firstly is the W3C’s Web Content Accessibility Guidelines (WCAG). This accessibility tool is adopted to guide the developers how to make web applications more accessible to persons with disabilities. Secondly, the CMO-ICTD adopted Google's Core Web Vitals* to quantifiably measure real-world user experience for loading performance, interactivity, and visual stability of the page.
The CMO-ICTD also implemented the 10 vulnerabilities under The Open Web Application Security Project (OWASP) to ensure security of the system. It includes: Broken Access Control; Cryptographic Failures; Injection; Insecure Design; Security Misconfiguration; Vulnerable and Outdated Components; Identification and Authentication Failures; Software and Data Integrity Failures; Security Logging and Monitoring Failures; and Server-Side Request Forgery.