Multi-Instance and Interoperability Testing of Trusted Application Management
As mentioned above in the management flows, managing the trusted application is an important part of the development and validation. Some advanced aspects of those should be validated and defined below. Those are not trivial, but mainly address the general design of the system and interaction between trusted application and host application:
- Managing multiple applications or multiple trusted application sessions– This is design-dependent, but according to the chosen model you should test that the model supports the expected use cases. Different tests should be covered for a multi-browser plugin design which works with one shared session, in opposition to one application which might serve all applications and internally manage the trusted application sessions.
- Checking what the bottlenecks are– Which APIs are used the most? With which parameters? What are the performance and memory bottlenecks of our application? All of those should be examined, and tests for tackling those areas will ensure that those will not have a functional impact on users.
- Client-server model and using events as trigger– Make sure you understand how information is passed between host-side and trusted application: what is sent via events, and what in regular communication commands.