Massachusetts Institute of Technology Touchstone Performance Test Plan

Abstract

This test plan is intended to prescribe the scope, approach, types of performance testing, resources and high-level schedule of the testing activities to be performed in the Touchstone project. This plan will identify the use cases, data, and related systems to be included in the testing process.

1.0 Document identifiers

1.1 References

The following documents were used as sources of information for this test plan:

Questcon Technologies, The Questcon Test Management Methodology; 01/07/2005; (Test Management Methodology Release 4.0.doc).
Questcon Technologies, MIT SOW Testing Touchstone.

2.0 INTRODUCTION

2.1 Purpose

The objective of this test plan is to outline the performance testing effort to be undertaken for the Touchstone project.

2.1.1 Project Description

MIT Touchstone is a new suite of technologies for authenticating a variety of web applications, being introduced by IS&T. MIT Touchstone does provide a single sign-on solution for applications that have been coded and configured to use the system. Within the context of Touchstone enabled applications, users will be able to seamlessly transition between systems without being prompted for additional authentication information.
The intended audience of this document includes all IT personnel involved in the development, testing, and support of Touchstone.

2.1.2 Project Technologies

MIT Touchstone utilizes/integrates with the following technologies:

Stanford's WebAuth
Internet 2's Shibboleth
SAML (the Security Assertion Markup Language)
A new account management system for some users outside of the traditional MIT community
HTTP/S (extensive redirects)
SSL
MIT X.509 certificates
Kerberos (via the HTTP/SPNEGO protocol)
TLS
OpenID
Web Services
MySQL (including replication)
Apache
Tomcat
IDP High Availability Package
LDAP
KDC
DNS load balancing

2.2 Scope

2.2.1 Items To Be Tested

Each of the following business processes (user flows) will be tested under load:

CAMS Account Creation
CAMS Account Authentication
CAMS Account Association (OpenID)
Authenticated Kerberos user access
Kerberos user id and password authentication
Authenticated OpenID user access

2.2.2 Items Not To Be Tested

The following modules and types of tests are considered to be outside the scope of this test effort and will not be tested by Questcon:

MIT X.509 certificate access
Kerberos (HTTP/SPNEGO) access
CAMS Account Association (Kerberos (HTTP/SPNEGO))

2.3 Risks & Contingencies

The following risks have been identified, which may impact the testing effort.

Risk	Contingency
Production-like test environment not available	Utilize development or production environment. Results may not be indicative of production and therefore cannot be used as a benchmark. Production performance issues may not be identified during testing.
Production-like setup and settings not available.	Use the closest setup and settings we can. Results may not be indicative of production and therefore cannot be used as a benchmark. Production performance issues may not be identified during testing.
Fully operational test tools not available.	Wait until the test tools are availalbe or find and use another test tool(s). This will extend the time required to perform testing.
Test time increases due to changes in scope requiring additional test analysis and/or test case creation	If test time cannot be increased, reduce/cut performance testing scenarios and execute highest priority scenarios initially followed by lower priority tests until test time runs out
Involvement of subject matter experts (SMEs) for all stages of the testing effort not sufficient.	If test time cannot be increased, reduce/cut performance testing scenarios and execute highest priority scenarios initially followed by lower priority tests until test time runs out
Inadequate Non-functional Requirements	Missing pass/fail criteria invalidates benchmarking. Missing load modeling invalidates all scenarios. Perform only a brute stress test to try and flush out major bottlenecks and functionality under load issues. Additionally an endurance tet can be run to attempt to identify memory leaks. All tests will be less indicative of real world usage scenarios.
Insufficient access to systems in order monitor (This includes any necessary server side scripts which may need to be developed in order to capture desired metrics.)	Root cause analysis will be difficult is possible. Testing time will most likely need to be extended and scenarios may be abbreviated due to time constraints.
Substantial issue(s) which requires significant modifications to the application or re-configuration of the system are encountered.	Some testing may need to be re-done, possibly including re-scripting etc. This would extend testing time.
Excessive number of bottlenecks encountered and/or issue correction time.	Extend testing time.
Test time increases due to changes in scope requiring additional test analysis and/or test script/scenario creation	If test time cannot be increased, reevaluate priorities and risk and test according to new priorities.

3.0 Approach

3.1 Testing Strategy

The overall strategy for performance testing the Touchstone project is goal based. There are four main goals whe hope to acheive:

Performance - Benchmark the system to ensure it meets all non-functional requirements related to performance.
Stress - Push the system to it breaking point and beyond to identify how and under what level of load the system fails as well as the ramifications of such a failure.
Endurance - Place the system under a heavy, yet manageable, load for a protracted period of time to identify any performance degradation and/or memory leaks.
Fail-over - Place the system under a heavy, yet manageable, load, wait for it to stabilize and then disconnect the servers from their network connections to identify how the system handles the sudden loss of a server. This will help satiate any up-time SLAs or non-functional requirements.

Scripts will be designed to model various user interactions with the system. While most of the user interactions will be scripted, some may be omitted according to the 80/20 rule and/or any time constraints which may exist.

3.2 Tools

The tools we will employ are yet to be determined. A proof of concept (PoC) is under way on a performance tseting tool. If it is acceptable to MIT then this tool will be identified here. Otherwise furhter PoCs may need to be conducted until a satisfactory tool is identified and accepted by MIT.

3.3 Environmental Needs

We will need the following:

Stable production like system to test against.
Stable hardware and software to use to generate load.
Adequate rights and privileges to capture server side metrics (monitoring) as well as any server side scripts necessary to accomplish any needed monitoring.

4.0 Scripts

The following scripts will be used during the performance testing effort. When the design steps have been provided by MIT all of the to be determined (TBD) values will be replaced with the actual values.

4.1 CAMS Account Creation

Precondition: TBD

Data Needed: TBD

Transaction Name	Step(s)	Expected Result	95th % Response Time
TBD

4.2 CAMS Association - OpenID

Precondition: TBD

Data Needed: TBD

Transaction Name	Step(s)	Expected Result	95th % Response Time
TBD

4.3 CAMS Association - Kerberos

Precondition: TBD

Data Needed: TBD

Transaction Name	Step(s)	Expected Result	95th % Response Time
TBD

4.4 Site Access - Kerberos w/ticket

Precondition: TBD

Data Needed: TBD

Transaction Name	Step(s)	Expected Result	95th % Response Time
TBD

4.5 Site Access - Web Auth

Precondition: TBD

Data Needed: TBD

Transaction Name	Step(s)	Expected Result	95th % Response Time
TBD

4.6 Site Access - CAMS Account

Precondition: TBD

Data Needed: TBD

Transaction Name	Step(s)	Expected Result	95th % Response Time
TBD

4.7 Site Access - OpenID

Precondition: TBD

Data Needed: TBD

Transaction Name	Step(s)	Expected Result	95th % Response Time
TBD

4.8 Password Reset

Precondition: TBD

Data Needed: TBD

Transaction Name	Step(s)	Expected Result	95th % Response Time
TBD

4.9 Admin - Password Reset

Precondition: TBD

Data Needed: TBD

Transaction Name	Step(s)	Expected Result	95th % Response Time
TBD

4.10 Admin - De-Activate Account

Precondition: TBD

Data Needed: TBD

Transaction Name	Step(s)	Expected Result	95th % Response Time
TBD

4.11 Admin - Delete Account

Precondition: TBD

Data Needed: TBD

Transaction Name	Step(s)	Expected Result	95th % Response Time
TBD

4.12 Admin - Activate Account

Precondition: TBD

Data Needed: TBD

Transaction Name	Step(s)	Expected Result	95th % Response Time
TBD

5.0 Scenarios

5.1 Performance Testing Scenarios

A performance test is designed to benchmark the system under test under a realistic load scenario that mimics what we anticipate real world usage will be at its peak. References to non-functional requirements marked as TBD will be updated once the non-functional requirements are provided by MIT.

5.1.1 IDPi Only

The objective of this scenario is to benchmark just the internal IDP.

5.1.1.1 Load Model

Desired Transaction Rate: TBD

Script	% of Load
Site Access - Kerberos w/ticket	TBD
Site Access - Web Auth	TBD

5.1.2 IDPe Only

The objective of this scenario is to benchmark just the exzternal IDP.

5.1.2.1 Load Model

Desired Transaction Rate: TBD

Script	% of Load
CAMS Account Creation	TBD
CAMS Association - OpenID	TBD
CAMS Association - Kerberos	TBD
Site Access - CAMS Account	TBD
Site Access - OpenID	TBD

5.1.3 Integrated IDP External & Internal

The objective of this scenario is to benchmark both IDPs concurrently.

5.1.3.1 Load Model

Desired Transaction Rate: TBD

Script	% of Load
CAMS Account Creation	TBD
CAMS Association - OpenID	TBD
CAMS Association - Kerberos	TBD
Site Access - CAMS Account	TBD
Site Access - OpenID	TBD
Site Access - Kerberos w/ticket	TBD
Site Access - Web Auth	TBD

5.2 Stress Testing Scenarios

5.2.1 IDPi Only

The objective of this scenario is to stress only the internal IDP. We plan to push it gradually up to its breaking point and then beyond to determine how and at what load it fails.

5.1.3.1 Load Model

Desired Transaction Rate: OPEN

Script	% of Load
Site Access - Kerberos w/ticket	TBD
Site Access - Web Auth	TBD

5.2.2 IDPe Only

The objective of this scenario is to stress only the external IDP. We plan to push it gradually up to its breaking point and then beyond to determine how and at what load it fails.

5.1.3.1 Load Model

Desired Transaction Rate: OPEN

Script	% of Load
CAMS Account Creation	TBD
CAMS Association - OpenID	TBD
CAMS Association - Kerberos	TBD
Site Access - CAMS Account	TBD
Site Access - OpenID	TBD

5.2.3 Integrated IDP External & Internal

The objective of this scenario is to stress both IDPs concurrently. We plan to push it gradually up to its breaking point and then beyond to determine how and at what load it fails.

5.1.3.1 Load Model

Desired Transaction Rate: OPEN

Script	% of Load
CAMS Account Creation	TBD
CAMS Association - OpenID	TBD
CAMS Association - Kerberos	TBD
Site Access - CAMS Account	TBD
Site Access - OpenID	TBD
Site Access - Kerberos w/ticket	TBD
Site Access - Web Auth	TBD

5.3 Endurance Testing Scenarios

5.3.1 Integrated IDP External & Internal

The objective of this scenario is to run both IDPs concurrently for a protracted period of time (multiple days) to determine stability and check for memory leaks. We plan to load the system with 80% of the capacity as determined by the integrated stress test scenario and hold it. During this time special attention wil be paid to memory and general system stability. There should also not be any appreciable deterioration in end-user response times.

5.3.1.1 Load Model

Desired Transaction Rate: 80% of capacity

Script	% of Load
CAMS Account Creation	TBD
CAMS Association - OpenID	TBD
CAMS Association - Kerberos	TBD
Site Access - CAMS Account	TBD
Site Access - OpenID	TBD
Site Access - Kerberos w/ticket	TBD
Site Access - Web Auth	TBD

5.4 Fail-over Testing Scenarios

5.4.1 Integrated IDP External & Internal

The objective of this scenario is to check how both IDPs handle a sudden iteruption in connectivity by pulling the network plug from 1 of the servers (at a time)

5.4.1.1 Load Model

Desired Transaction Rate: TBD

Script	% of Load
CAMS Account Creation	TBD
CAMS Association - OpenID	TBD
CAMS Association - Kerberos	TBD
Site Access - CAMS Account	TBD
Site Access - OpenID	TBD
Site Access - Kerberos w/ticket	TBD
Site Access - Web Auth	TBD

6.0 Monitoring

The following metrics will be collected from each Touchstone server during the performance tests to assit in diagnostics

CPU %
System Load
System Memory
JVM Memory (For each JVM)
JVM Processor % (Hopefully we can get this through JMX) (For each JVM)
JVM Garbage Collections (For each JVM)
Apache httpd processes (memory, CPU, and open files for each process)
Number of open files.
Network Connections
LDAP Connections (This would be applicable to Core IdP testing only)
DB Connections (This would be applicable to CAMS testing only)

7.0 Non-functional Requirements

MIT has not yet provided the non-functional Requirements. The link below will be udated if a web page is created to house them, otherwise they will be specified here.

Touchstone Non-functional Requirements

8.0 Architectures

Architectural diagrams will be refenced here as MIT proved them.

Massachusetts Institute of Technology Touchstone Performance Test Plan

Abstract

1.0 Document identifiers

1.1 References

2.0 INTRODUCTION

2.1 Purpose

2.1.1 Project Description

2.1.2 Project Technologies

2.2 Scope

2.2.1 Items To Be Tested

2.2.2 Items Not To Be Tested

2.3 Risks & Contingencies

3.0 Approach

3.1 Testing Strategy

3.2 Tools

3.3 Environmental Needs

4.0 Scripts

4.1 CAMS Account Creation

4.2 CAMS Association - OpenID

4.3 CAMS Association - Kerberos

4.4 Site Access - Kerberos w/ticket

4.5 Site Access - Web Auth

4.6 Site Access - CAMS Account

4.7 Site Access - OpenID

4.8 Password Reset

4.9 Admin - Password Reset

4.10 Admin - De-Activate Account

4.11 Admin - Delete Account

4.12 Admin - Activate Account

5.0 Scenarios

5.1 Performance Testing Scenarios

5.1.1 IDPi Only

5.1.1.1 Load Model

5.1.2 IDPe Only

5.1.2.1 Load Model

5.1.3 Integrated IDP External & Internal

5.1.3.1 Load Model

5.2 Stress Testing Scenarios

5.2.1 IDPi Only

5.1.3.1 Load Model

5.2.2 IDPe Only

5.1.3.1 Load Model

5.2.3 Integrated IDP External & Internal

5.1.3.1 Load Model

5.3 Endurance Testing Scenarios

5.3.1 Integrated IDP External & Internal

5.3.1.1 Load Model

5.4 Fail-over Testing Scenarios

5.4.1 Integrated IDP External & Internal

5.4.1.1 Load Model

6.0 Monitoring

7.0 Non-functional Requirements

8.0 Architectures

8.1 Physical

8.2 IdPi Logical

8.2 IdPe Logical

9.0 Schedule