If you missed QA&TEST this year, catch up with the summaries we are publishing! What content did the Test Automation track include?

✔ Test automation encountered a significant challenge when dealing with the integration of software and hardware, particularly in the context of electronic identification. In Sweden, where 96.5% of individuals aged 18 to 67 have a mobile BankID for electronic identity verification, automating the BankID signing process posed a major obstacle. Conventional test automation methods were ineffective.

Indranil Sinha‘s team rose to the challenge, developing an innovative solution that revolutionized the approach to BankID signing in end-to-end test automation scenarios. This novel method was not only successfully implemented in various backend and frontend test scenarios but was also applied to address similar challenges associated with “FrejaID.” Indranil  presented live demonstrations of these pioneering solutions, showcasing their ability to overcome the challenges of test automation when software meets hardware, particularly in the context of electronic identification.


✔ With the widespread use of APIs, they have become a vulnerable point for hackers. API vulnerabilities can result in security failures, data breaches, unauthorized access, and other security issues. API abuses have now become the most common form of web application attacks. Ensuring the security of APIs is of paramount importance for the smooth operation of a secure digital business. The initial step in achieving this is to perform an API security assessment.

As many of us are aware, POSTMAN serves as a versatile API development environment. It allows you to design, simulate, debug, test, document, monitor, and publish APIs all in one place. POSTMAN proves extremely convenient for executing API functions. While many may be familiar with the essential testing features of POSTMAN, recently, the combination of POSTMAN and Pynt has opened doors for API security testing. Accoding to Jency Stella, Pynt provides a solution for running security tests on existing Postman Collections. It is an API security solution that generates automated security tests based on your existing functional test collections. Simply input the name of your functional test collection into the Pynt tool and execute the API security test collection within your workspace.


✔ Mobile Test Automation for Instant Payments via Rix-Inst with Zuzanna Bienkell. Swish is a mobile app designed for facilitating instant payments among private customers and between private individuals and businesses. Zuzanna showcase how this seemingly straightforward process involves multiple verification points, extending beyond just the app itself. The instant payment flow can be triggered in various ways, involving multiple systems that require thorough checking. This complexity underscores the importance of incorporating test automation in the testing procedure.

The framework she showerd was a blend of front-end test automation techniques, such as Appium, Selenium WebDriver, and Atata. The testing is performed on a real Android device.