Difference between Bug, Defect, Error, Fault & Failure
In this section, we are going to discuss the difference between the Bug, Defect, Error, Fault & Failure as we
understood that all the terms are used whenever the system or an application act abnormally.
Sometimes we call it an error and sometimes a bug or a defect and so on. In software testing, many of the new test
engineers have confusion in using these terminologies.
Generally, we used these terms in the Software Development Life Cycle (SDLC) based on the phases. But there is a
conflict in the usage of these terms.
In other words, we can say that in the era of software testing, the terms bugs, defects, error, fault, and failure come
across every second of the day.
But for a beginner or the inexperienced in this field, all these terminologies may seem synonyms. It became essential to
understand each of these terms independently if the software doesn't work as expected.
What is a bug?
In software testing, a bug is the informal name of defects, which means that software or application is not working as per
the requirement.
When we have some coding error, it leads a program to its breakdown, which is known as a bug. The test engineers use
the terminology Bug.
If a QA (Quality Analyst) detect a bug, they can reproduce the bug and record it with the help of the bug report
template.
What is a Defect?
When the application is not working as per the requirement is knows as defects. It is specified as the aberration from
the actual and expected result of the application or software.
In other words, we can say that the bug announced by the programmer and inside the code is called a Defect.
What is Error?
The Problem in code leads to errors, which means that a mistake can occur due to the developer's coding error as the
developer misunderstood the requirement or the requirement was not defined correctly. The developers use the
term error.
AD
What is Fault?
The fault may occur in software because it has not added the code for fault tolerance, making an application act up.
A fault may happen in a program because of the following reasons:
o Lack of resources
o An invalid step
o Inappropriate data definition
What is Failure?
Many defects lead to the software's failure, which means that a loss specifies a fatal issue in software/ application or in
its module, which makes the system unresponsive or broken.
In other words, we can say that if an end-user detects an issue in the product, then that particular issue is called a failure.
Possibilities are there one defect that might lead to one failure or several failures.
For example, in a bank application if the Amount Transfer module is not working for end-users when the end-user tries
to transfer money, submit button is not working. Hence, this is a failure.
The flow of the above terminologies are shown in the following image:
Bug Vs. Defect Vs. Error Vs. Fault Vs. Failure
We have listed some of the vital differences between bug, defect, error, fault, and failure in the below table.
Comparison Bug Defect Error Fault Failure
basis
Definition It is an The Defect is the An Error is a mistake The Fault is a state that If the
informal name difference between made in the code; that's causes the software to software has
specified to the the actual outcomes why we cannot execute fail to accomplish its lots of
defect. and expected or compile code. essential function. defects, it
outputs. leads to
failure or
causes failure.
Raised by The Test The Testers identify The Developers and Human mistakes cause The failure
Engineers sub the defect. And it automation test fault. finds by the
mit the bug. was also solved by engineers raise the manual test
the developer in the error. engineer
development phase through
or stage. the developm
ent cycle.
Different Different type Different type of Different type of Error Different type of Fault -----
types of bugs are as Defects are as is as below: are as follows:
follows: follows: o Syntactic Error o Business Logic
o Logic Based on priority:
o User interface Faults
bugs o High
error o Functional and
o Algorit o Medium
o Flow control Logical Faults
hmic o Low
error o Faulty GUI
bugs
And based on the o Error handling o Performance
o Resour
severity: error Faults
ce bugs
o Critical o Calculation o Security Faults
o Major error o Software/
o Minor o Hardware error hardware fault
o Trivial o Testing Error
Reasons Following are The below reason The reasons for having The reasons behind Following are
behind reasons which leads to the defects: an error are as the fault are as follows: some of the
may cause Giving incorrect and follows: A Fault may occur by an most
the bugs: wrong inputs. Errors in the code. improper step in the important
Missing coding Dilemmas and The Mistake of some initial stage, process, or reasons
Wrong coding errors in the outside values. data definition. behind
Extra coding behavior and inside If a developer is Inconsistency or issue in the failure:
structure and unable to compile or the program. Environmenta
design. run a program An irregularity or l condition
An error in coding successfully. loophole in the software System usage
or logic affects the Confusions and issues that leads the software to Users
software and causes in programming. perform improperly. Human error
it to breakdown or Invalid login, loop, and
the failure. syntax.
Inconsistency between
actual and expected
outcomes.
Blunders in design or
requirement actions.
Misperception in
understanding the
requirements of the
application.
Way to Following are With the help of the
prevent the the way to stop following, we can
reasons the bugs: prevent the Defects:
Test-driven Implementing
development. several innovative
Offer programming
programming methods.
language Use of primary and
support. correct software
Adjusting, development
advanced, and techniques.
operative Peer review
development It is executing
procedures. consistent code
Evaluating the reviews to evaluate
code its quality and
systematically. correctness.
What is Verification in Software Testing?
Verification in Software Testing is a process of checking documents, design, code, and program in order to
check if the software has been built according to the requirements or not.
The main goal of verification process is to ensure quality of software application, design, architecture etc.
The verification process involves activities like reviews, walk-throughs and inspection.
What is Validation in Software Testing?
Validation in Software Engineering is a dynamic mechanism of testing and validating if the software product
actually meets the exact needs of the customer or not.
The process helps to ensure that the software fulfills the desired use in an appropriate environment.
The validation process involves activities like unit testing, integration testing, system testing and user
acceptance testing.
Difference Between Verification and Validation in Software Testing
Here is the main difference between Verification and Validation in Software Testing:
Verification Validation
The verifying process includes checking documents, It is a dynamic mechanism of testing
design, code, and program and validating the actual product
It does not involve executing the code It always involves executing the code
Verification uses methods like reviews, walkthroughs, It uses methods like Black Box Testing, White
inspections, and desk- checking etc. Box Testing, and non-functional testing
Whether the software conforms to specification is It checks whether the software meets the
checked requirements and expectations of a customer
It can find bugs that the verification process can
It finds bugs early in the development cycle
not catch
Target is application and software architecture,
specification, complete design, high level, and Target is an actual product
database design etc.
QA team does verification and make sure that the
With the involvement of testing team validation is
software is as per the requirement in the SRS
executed on software code.
document.
It comes before validation It comes after verification
Example of verification and validation
Now, let’s take an example to explain verification and validation planning:
In Software Engineering, consider the following specification for verification testing and validation
testing,
A clickable button with name Submet
Verification would check the design doc and correcting the spelling mistake.
Otherwise, the development team will create a button like
Example of Verification
So new specification is
A clickable button with name Submit
Once the code is ready, Validation is done. A Validation test found –
Example of Validation
Owing to Validation testing, the development team will make the submit button clickable
What is Black Box testing?
In Black-box testing, a tester doesn’t have any information about the internal working of the software system.
Black box testing is a high level of testing that focuses on the behavior of the software.
It involves testing from an external or end-user perspective.
Black box testing can be applied to virtually every level of software testing: unit, integration, system, and
acceptance.
What is White Box testing?
White-box testing is a testing technique which checks the internal functioning of the system. In this method,
testing is based on coverage of code statements, branches, paths or conditions. White-Box testing is considered
as low-level testing. It is also called glass box, transparent box, clear box or code base testing. The white-box
Testing method assumes that the path of the logic in a unit or program is known.
White Box Testing
What is White Box Testing
White box testing is an approach that allows testers to inspect and verify the inner workings of a software
system—its code, infrastructure, and integrations with external systems. White box testing is an essential part
of automated build processes in a modern Continuous Integration/Continuous Delivery (CI/CD) development
pipeline.
White box testing is often referenced in the context of Static Application Security Testing (SAST), an
approach that checks source code or binaries automatically and provides feedback on bugs and possible
vulnerabilities.
White box testing provides inputs and examines outputs, considering the inner workings of the code
White Box Testing Pros and Cons
Pros Cons
1 Ability to achieve complete code coverage Requires a large effort to automate
.
2 Easy to automate Sensitive to changes in code base, automation
. requires expensive maintenance
3 Reduces communication overhead between Cannot test expected functionality that does
. testers and developers not exist in the codebase
4 Allows for continuous improvement of code Cannot test from the user’s perspective
. and development practices
Types of White Box Testing
White box testing can take several forms:
Unit testing — tests written as part of the application code, which test that each component is working as
expected.
Mutation testing — a type of unit testing that checks the robustness and consistency of the code by defining
tests, making small, random changes to the code and seeing if the tests still pass.
Integration testing — tests specifically designed to check integration points between internal components in a
software system, or integrations with external systems.
White box penetration testing — an ethical hacker acts as a knowledgeable insider, attempting to attack an
application based on intimate knowledge of its code and environment.
Static code analysis — automatically identifying vulnerabilities or coding errors in static code, using
predefined patterns or machine learning analysis.
What Does White Box Testing Focus On?
White box tests can focus on discovering any of the following problems with an application’s code:
Security gaps and vulnerabilities — checking to see if security best practices were applied when coding the
application, and if the code is vulnerable to known security threats and exploits.
Broken or poorly structured paths — identifying conditional logic that is redundant, broken or inefficient.
Expected output — executing all possible inputs to a function to see if it always returns the expected result.
Loop testing — checking single loops, concatenated loops and nested loops for efficiency, conditional logic,
and correct handling of local and global variables.
Data Flow Testing (DFT) — tracking variables and their values as they pass through the code to find
variables that are not correctly initialized, declared but never used, or incorrectly manipulated.
What is Code coverage?
Code coverage is a measure which describes the degree of which the source code of the program has been tested. It
is one form of white box testing which finds the areas of the program not exercised by a set of test cases. It also
creates some test cases to increase coverage and determining a quantitative measure of code coverage.
In most cases, code coverage system gathers information about the running program. It also combines that with
source code information to generate a report about the test suite’s code coverage.
Why use Code Coverage?
Here, are some prime reasons for using code coverage:
It helps you to measure the efficiency of test implementation
It offers a quantitative measurement.
It defines the degree to which the source code has been tested.
Code Coverage Methods
Following are major code coverage methods
Statement Coverage
Decision Coverage
Branch Coverage
Toggle Coverage
FSM Coverage
Statement Coverage
Statement Coverage is a white box testing technique in which all the executable statements in the source code are
executed at least once. It is used for calculation of the number of statements in source code which have been
executed. The main purpose of Statement Coverage is to cover all the possible paths, lines and statements in source
code.
Statement coverage is used to derive scenario based upon the structure of the code under test.
In White Box Testing, the tester is concentrating on how the software works. In other words, the tester will be
concentrating on the internal working of source code concerning control flow graphs or flow charts.
Generally in any software, if we look at the source code, there will be a wide variety of elements like operators,
functions, looping, exceptional handlers, etc. Based on the input to the program, some of the code statements may
not be executed. The goal of Statement coverage is to cover all the possible path’s, line, and statement in the code.
Let’s understand this with an example, how to calculate statement coverage.
Scenario to calculate Statement Coverage for given source code. Here we are taking two different scenarios to
check the percentage of statement coverage for each scenario.
Source Code:
Prints (int a, int b) { ------------ Printsum is a function
int result = a+ b;
If (result> 0)
Print ("Positive", result)
Else
Print ("Negative", result)
} ----------- End of the source code
Scenario 1:
If A = 3, B = 9
The statements marked in yellow color are those which are executed as per the scenario
Number of executed statements = 5, Total number of statements = 7
Statement Coverage: 5/7 = 71%
Likewise we will see scenario 2,
Scenario 2:
If A = -3, B = -9
The statements marked in yellow color are those which are executed as per the scenario.
Number of executed statements = 6
Total number of statements = 7
Statement Coverage: 6/7 = 85%
But overall if you see, all the statements are being covered by both scenarios. So we can conclude that overall
statement coverage is 100%.
What is covered by Statement Coverage?
1. Unused Statements
2. Dead Code
3. Unused Branches
4. Missing Statements
Decision Coverage
Decision Coverage is a white box testing technique which reports the true or false outcomes of each boolean
expression of the source code. The goal of decision coverage testing is to cover and validate all the accessible
source code by checking and ensuring that each branch of every possible decision point is executed at least once.
In this coverage, expressions can sometimes get complicated. Therefore, it is very hard to achieve 100% coverage.
That’s why there are many different methods of reporting this metric. All these methods focus on covering the most
important combinations. It is very much similar to decision coverage, but it offers better sensitivity to control flow.
Example of decision coverage
Consider the following code-
Demo(int a) {
If (a> 5)
a=a*3
Print (a)
}
Scenario 1:
Value of a is 2
The code highlighted in yellow will be executed. Here the “No” outcome of the decision If (a>5) is checked.
Decision Coverage = 50%
Scenario 2:
Value of a is 6
The code highlighted in yellow will be executed. Here the “Yes” outcome of the decision If (a>5) is checked.
Decision Coverage = 50%
Test Case Value of A Output Decision Coverage
1 2 2 50%
2 6 18 50%
Branch Coverage
Branch Coverage is a white box testing method in which every outcome from a code module(statement or loop) is
tested. The purpose of branch coverage is to ensure that each decision condition from every branch is executed at
least once. It helps to measure fractions of independent code segments and to find out sections having no branches.
For example, if the outcomes are binary, you need to test both True and False outcomes.
The formula to calculate Branch Coverage:
Example of Branch Coverage
To learn branch coverage, let’s consider the same example used earlier
Consider the following code
Demo(int a) {
If (a> 5)
a=a*3
Print (a)
}
Branch Coverage will consider unconditional branch as well
Test Case Value of A Output Decision Coverage Branch Coverage
1 2 2 50% 33%
2 6 18 50% 67%
Advantages of Branch coverage:
Branch coverage Testing offers the following advantages:
Allows you to validate-all the branches in the code
Helps you to ensure that no branched lead to any abnormality of the program’s operation
Branch coverage method removes issues which happen because of statement coverage testing
Allows you to find those areas which are not tested by other testing methods
It allows you to find a quantitative measure of code coverage
Branch coverage ignores branches inside the Boolean expressions
Condition Coverage
Condition Coverage or expression coverage is a testing method used to test and evaluate the variables or sub-
expressions in the conditional statement. The goal of condition coverage is to check individual outcomes for each
logical condition. Condition coverage offers better sensitivity to the control flow than decision coverage. In this
coverage, expressions with logical operands are only considered.
For example, if an expression has Boolean operations like AND, OR, XOR, which indicates total possibilities.
Condition coverage does not give a guarantee about full decision coverage.
The formula to calculate Condition Coverage:
Example:
For the above expression, we have 4 possible combinations
TT
FF
TF
FT
Consider the following input
X=3
(x<y) TRUE
Y=4 Condition Coverage is ¼ = 25%
A=3
(a>b) FALSE
B=4
Finite State Machine Coverage
Finite state machine coverage is certainly the most complex type of code coverage method. This is because it works
on the behavior of the design. In this coverage method, you need to look for how many time-specific states are
visited, transited. It also checks how many sequences are included in a finite state machine.
Which Type of Code Coverage to Choose
This is certainly the most difficult answer to give. In order to select a coverage method, the tester needs to check
that the
code under test has single or multiple undiscovered defects
cost of the potential penalty
cost of lost reputation
cost of lost sale, etc.
The higher the probability that defects will cause costly production failures, the more severe the level of coverage
you need to choose.
Code Coverage vs. Functional Coverage
Code Coverage Functional Coverage
Code coverage tells you how well the source code Functional coverage measures how well the functionality of
has been exercised by your test bench. the design has been covered by your test bench.
Never use a design specification Use design specification
Done by developers Done by Testers
Code Coverage Tools
Here, is a list of Important code coverage Tools:
Tool Name Description
It is an open source code coverage tool. It measures test coverage by instrumenting a code base
Cobertura and analyze which lines of code are executing and which are not executed when the test suite
runs.
Clover also reduces testng time by only running the tests which cover the application code which
Clover
was modified since the previous build.
DevPartner DevPartner enables developers to analyze Java code for Code Quality and Complexity.
EMMA supports class, method, line, and base block coverage, aggregated source file, class, and
Emma
method levels.
Kalistick Kalistick is a third party application which analyzes the codes with different perspectives.
CoView and Coding Software is a code coverage tool for metrics, mock object creation, code testability, path
CoAnt & branch coverage, etc.
Bullseye for
BulseyeCoverage is a code coverage tool for C++and C.
C++
Sonar Sonar is an open code coverage tool which helps you to manage code quality.
Advantages of Using Code Coverage
Helpful to evaluate a quantitative measure of code coverage
It allows you to create extra test cases to increase coverage
It allows you to find the areas of a program which is not exercised by a set of test cases
Disadvantages of Using Code Coverage
Even when any specific feature is not implemented in design, code coverage still report 100% coverage.
It is not possible to determine whether we tested all possible values of a feature with the help of code
coverage
Code coverage is also not telling how much and how well you have covered your logic
In the case when the specified function hasn’t implemented, or a not included from the specification, then
structure-based techniques cannot find that issue.