Penetration Testing With Periodic QA Checks Eliminated The Vulnerabilities In A Real Estate Blockchain Application

Expertise: Manual Testing System Testing Regression Testing Unit Testing Integration Testing
Verticals: Real Estate
Technologies: PostmanAzure DevOps
Home > Portfolio > Penetration Testing With Periodic QA Checks Eliminated The Vulnerabilities In A Real Estate Blockchain Application
Client Overview
A real estate technology provider wanted to test its decentralized realty application or DApp to help investors use blockchain for diversifying their portfolios. With a vision to tokenize real estate, the client's property token exchange lowers the investment thresholds for conservative investors. As a technology growth partner, we helped the client design its real estate DApp on BNB Chain and performed regular QA checks to maximize product performance.
Business Needs
The client wanted to test its website. Since the website was powered by blockchain, the client could not do with traditional twisting services. Instead, the client wanted a team of testers with deep expertise in testing different website components: a blockchain, crypto wallets, KYC verification, token trading, and investment mechanism. Here are the requirements that the client had in mind before the start of the engagement.

  • Testing the blockchain framework to make sure creating and validating blocks were done properly
  • Evaluating the user's crypto wallets against different benchmarks, including levying a justified transaction fee
  • Ensuring that the KYC verification was done to make sure the users could get their accounts verified fast and start using KeyCalm assets
  • Checking the site's trading functionality to make sure that the purchased and sold tokens were getting credited or debited from a trader's account
  • Examining that the website's investment functions were working correctly
Strategy & Solution
We became the client's go-to testing partner owing to our excellent track record of checking different web assets—web apps, websites, etc. We even have extensive experience in examining the performance of blockchain networks and related assets such as crypto wallets. To begin with, we analyzed key project requirements and created a comprehensive test strategy.

After evaluating the requirements of the project, we included system testing, unit testing, penetration testing, and integration testing in our test strategy. Once our test strategy was finalized, we defined the roles and responsibilities of each team member. Our team consisted of a test leader, individual testers, and a dedicated project manager. Once the roles and responsibilities were confirmed, we started checking the environmental requirements. Running an environmental check was necessary to finalize the operating system used for testing different elements of the website.

Based on our project analysis, we zeroed in on manual testing. We also focused on doing penetration testing to make sure the blockchain application could withstand possible cyberattacks. Besides doing manual testing and penetration testing, we even used different tools to test the assets. These tools included Postman for testing that every API was functioning as intended. Besides, we used Microsoft TFS (Team Foundation Server) -- which is now called Azure DevOps Server -- to build a centralized repository of the artifacts or source files associated with the KeyCalm project.

As testing involves massive risks, we documented all the probable risk factors. By documenting these risks, we predicted their occurrences well ahead of time. We created exhaustive test schedules to give the client a detailed road map of different testing phases. This road map even defined which test cases will be executed by which tester and when.

Since the scope of the project was wide, we restored to regression testing to make sure the site remained bug-free. Whenever a bug was found while we carried out regression testing, we debugged the affected parts of the site. To ensure that the fix was effective, we retested the website against the same criterion.

The success of our testing strategy rested on our test groups. We defined test groups based on a variety of factors, such as traceability matrix requirements, test records maintenance, test priorities, test reporting, and status collection.

Based on our strategy, we tested every asset of the website -- investment portal, crypto wallets, KYC verification, and the underlying blockchain. As we strictly followed regression testing, we retested the affected assets again until they functioned correctly.

Our Testing Process

We followed a robust software testing life cycle that has helped us plan different test schedules seamlessly. In the past, too, our testing process has helped us deliver debugged assets with confidence. We follow the testing process to deliver high-quality software assets, including websites, mobile applications, and web apps. Now, here is a rundown of the different steps our testing process has.

  • We started with analyzing the requirements of the client.
  • After gathering the requirements, we created a holistic strategy that included several testing phases.
  • We created multiple test-case designs.
  • Afterward, we established a robust test environment.
  • Our team started executing different test cases.
  • Last, we followed a test cycle closure where we built different exit criteria and checked the assets against each of them.
Business Outcomes
Once we successfully carried out different test cases, we gave the client a fully functional and bug-free website. The client's debugged website helped it increase its credibility among its users and prospects. Here are some of the key benefits that the client reaped once we successfully tested the deliverables against a range of factors.

  • The overall functionality of the website became smoother and more intuitive than ever.
  • Owing to a bug-free website, the client saw an uptick in the number of sign-ups.
  • The safety of the website increased tremendously; the end-users could now carry out transactions and invest in featured properties and other real estate assets with peace of mind.
Client's Speak
We are thankful to our technology partner, Flexsin, for helping us get a fully debugged website whose every function performs perfectly. I would recommend Flexsin's testing and QA team on any given day.
Blake Kilbury
Chief Executive Officer, KeyCalm
Let's collaborate and discover propositions that unlock business opportunities.
  • attach_file Attach File
  • Please Validate Captcha