Year 2000 Compliance Certification
Product: ____________________________
Certificates issued with reference to the Y2000 Certification Standard Document.
Prepared for Head: IT Planning
Filename: D:\MyFiles\Y2k Certification.wpd
Table of Contents
Product Level Compliance 1
Product Functions 1
Test Plan 1
Test Environment 3
Function Test Data 3
Execution of Function Tests 3
Documentation of Test Results 4
Solutions / Recommendations after rectifying unsatisfactory test results 4
Formulation of Year 2000 Practices and Procedures 4
Product Test Results Sign-off 5
Formulation of Year 2000 Conversion Recommendation 5
Product Compliance Certificate 5
Configuration Level Compliance 7
Configuration Level Permutations 7
Test Environments per Configuration Permutations 7
Product Function Tests 7
Test Results per Permutation 8
Solutions / Recommendations after rectifying unsatisfactory test results 8
Formulation of Year 2000 Practices and Procedures 8
Product Compliance Certificate 9
Formulation of Year 2000 Conversion Recommendation 9
Product Functions "A"
Test Plan "B"
Test Environment "C"
Function Test Data "D"
Execution of Function Tests "E"
Documentation of Test Results "F"
Solutions / Recommendations after test results "G"
Formulation of Year 2000 Practices and Procedures "H"
Product Test Results Sign-off "I"
Formulation of Year 2000 Conversion Recommendation "J"
Product Compliance Certificate "K"
Configuration Level Permutations "L"
Test Environments per Configuration Permutations "M"
Product Function Tests "N"
Test Results per Permutation "O"
Solutions / Recommendations after test results "P"
Formulation of Year 2000 Practices and Procedures "Q"
Product Compliance Certificates per Permutation "R"
Formulation of Year 2000 Conversion Recommendation "S"
Year 2000: Certification File Reference Structure "T"
Year 2000 Compliance Checklist "U"
Attached the Product Functions as per Appendix "A."
Product level testing must be done within the context of it's business functions rather than the context of it's construction (programs, tables, etc.). In the application environment, using only the the item level test plan, will not suffice.
The end users or system support staff are normally in a good position to compile a list of business functions. The creator of a product may also perform this function, though it is advisable to involve end users or support staff. In the case of externally supplied products, the supplier should be involved, where possible. Existing documentation should at least be consulted.
The issue is whether every function in the product should be tested. It is a matter of risk versus cost and the following can serve as a guideline:
Attached the Test Plan as per Appendix "B."
The test plan is compiled based on the guidelines described as part of the quality record. It involves the detailed definition of:
The conditions to be tested for must at least include:
If time constraints exist, test conditions should be prioritized, based on the classification system used when errors were classified.
The requirements for the test environment must consider at least the following:
Note that the test environment defined here is more detailed than the one negotiated for during the project planning phase. The updated and refined requirements must be passed on to the supplier of the test environment. Furthermore, the supplier of the test environment should be given enough time to prepare the environment, to tie in with requirements of other certification projects.
Attached the description of the Test Environment as per Appendix "C."
The test environment is created based on the specifications in the test plan and negotiations done during the project planning phase. The test conditions will drive the requirements of the test environment.
Attached the list of Static and Transaction Data as per Appendix "D."
Item level test data is created in accordance with the requirements of the test plan. It will typically take two forms, being:
Static data - Data that must be present for a test condition to be tested. Such data may be copied from live environments, but will invariably, at least in part, be generated automatically or manually to suite the specific condition. It is important that the creation of the static data be repeatable for every condition being tested.
Transaction data - Transaction data is generated for the purposes of the duration of a specific test condition and may not be needed for certain test conditions. Generation tools may be used to generate the data. Interface files from other applications may be seen as one or more transactions. Note that, for the Year 2000, the intention of transaction data is to prove functionality, not to do load testing. The latter is therefore excluded from this standard.
Attached the summary of test conditions and sign off by an independent tester as per Appendix "E."
Test conditions are executed in accordance with the preparation in earlier steps. For product level testing the tests must be carried out by an independent tester. Independent for this purpose mean:
If time constraints exist, the sequencing of test conditions, must take into account the priorities assigned to each condition.
Documentation of the test results by an independent tester as per Appendix "F."
The test results for each condition must be documented by the independent tester. Each tested condition must be signed off by both the independent tester and the project member responsible for testing.
Y2000 conversion procedures are initiated at this stage and formulated in later steps.
Solutions / Recommendations after rectifying unsatisfactory test results
Documentation of solutions and recommendations as per Appendix "G."
Errors are rectified re-executed and the test results documented until every test condition gives the desired result.
Formulation of Year 2000 Practices and Procedures
Documentation of Year 2000 Practices and Procedures as per Appendix "H."
Y2000 conversion procedures are formulated based on the results of the testing exercise. A year 2000 conversion procedure is a set of instructions to be followed by support personnel or end users to ensure a smooth century change-over. These instructions may be executable before, during or after the century change.
These instructions should be quality assured by as many people as possible. System Support and the provinces must be involved.
Sign-off by Project Leader and independent tester as per Appendix "I."
The project leader and independent tester signs the completed test results off with reference to the conditions in the test plan. The results are also signed off by at least one senior person in the components representing the project leader and the independent tester.
Formulation of Year 2000 Conversion Recommendation
Documentation of changes to the SAPS or IS as per Appendix "J."
Cases may exist where the certification process results in changes to the SAPS or IS:
If so management must be formally notified.
Product Compliance Certificate
Certificate as per Appendix "K."
The compliance certificate is issued after thorough testing. It must be signed off by both the independent tester and the project member responsible for testing and authorized by the directorate head responsible for certification.
Any reservations must be clearly indicated. Reference must be made to related conversion procedures.
It is possible that a Y2000 Conversion Certificate be issued, without a formal test by the SAPS, based on documentation received from the supplier. The supplier letter must then accompany the Y2000 Compliance Certificate. It must also be original. Note that, unless clear responsibility is taken, configuration level certification cannot be based on supplier undertakings.
The project manager/leader and directorate head responsible for certification takes final responsibility for certification. If the product fails after Y2000 the project leader/manager is accountable. The supplier may be held responsibility for breach of contract or misconduct. We should however endeavour to eliminate such situations.
Configuration Level Compliance
Configuration Level Permutations
Permutations as tested attached as per Appendix "L."
Each permutation (combination) of product version, software version and hardware needs to be identified.
The number of permutations can be excessive in certain areas. Take for instance the different versions of Word Perfect, the Operating Systems it runs under, and the makes of workstations involved. A judgement call must then be made to eliminate certain permutations. The factors that influence the decision were discussed under "Determine Compliance Risk" . They are repeated here for ease of reading:
Test Environments per Configuration Permutations
Documentation of Test Environments as per Appendix "M."
A test environment is created for each permutation that was selected for certification. The attributes of the test environment are determined by:
Attached the summary of test conditions and sign off by an independent tester as per Appendix "N."
Test conditions are executed in accordance with the preparation in earlier steps. For configuration level testing the tests must be carried out by an independent tester. Independent for this purpose mean:
If time constraints exist, the sequencing of test conditions, must take into account the priorities assigned to each condition.
The same test conditions, as defined by the product level test plan, are executed for each for each permutation.
Documentation of test results for each condition as per Appendix "O."
The test results for each condition must be documented by the independent tester. Each tested condition for each permutation must be signed off by both the independent tester and the project member responsible for testing.
Y2000 conversion procedures are initiated at this stage and formulated/consolidated in later steps.
Solutions / Recommendations after rectifying unsatisfactory test results
Documentation of solutions and recommendations as per Appendix "P."
Errors are rectified re-executed and the test results documented until every test condition gives the desired result.
Formulation of Year 2000 Practices and Procedures
Documentation of Year 2000 Practices and Procedures as per Appendix "Q."
Y2000 conversion procedures are formulated based on the results of the testing exercise. A year 2000 conversion procedure is a set of instructions to be followed by support personnel or end users to ensure a smooth century change-over. These instructions may be executable before, during or after the century change.
These instructions should be quality assured by as many people as possible. System Support and the provinces must be involved.
Product Compliance Certificate
Certificate as per Appendix "R."
The compliance certificate is issued after thorough testing. It must be signed off by both the independent tester and the project member responsible for testing and authorized by the directorate head responsible for certification.
Any reservations must be clearly indicated. Reference must be made to related conversion procedures.
It is possible that a Y2000 Conversion Certificate be issued, without a formal test by the SAPS, based on documentation received from the supplier. The supplier letter must then accompany the Y2000 Compliance Certificate. It must also be original. Note that, unless clear responsibility is taken, configuration level certification cannot be based on supplier undertakings.
The project manager/leader and directorate head responsible for certification takes final responsibility for certification. If the product fails after Y2000 the project leader/manager is accountable. The supplier may be held responsibility for breach of contract or misconduct. We should however endeavour to eliminate such situations.
Formulation of Year 2000 Conversion Recommendation
Documentation of changes to the SAPS or IS as per Appendix "S."
Cases may exist where the certification process results in changes to the SAPS or IS:
If so management must be formally notified.
Product Functions "A"
Test Plan "B"
Test Environment "C"
Function Test Data "D"
Execution of Function Tests "E"
Documentation of Test Results "F"
Solutions / Recommendations after test results "G"
Formulation of Year 2000 Practices and Procedures "H"
Product Test Results Sign-off "I"
Formulation of Year 2000 Conversion Recommendation "J"
Product Compliance Certificate "K"
Configuration Level Permutations "L"
Test Environments per Configuration Permutations "M"
Product Function Tests "N"
Test Results per Permutation "O"
Solutions / Recommendations after test results "P"
Formulation of Year 2000 Practices and Procedures "Q"
Product Compliance Certificates per Permutation "R"
Formulation of Year 2000 Conversion Recommendation "S"
Year 2000: Certification File Reference Structure "T"
Year 2000 Compliance Checklist "U"
Appendix A
Appendix C
Appendix D
Appendix E
Appendix F
Solutions / Recommendations after rectifying unsatisfactory test results
Appendix G
Formulation of Year 2000 Practices and Procedures
Appendix H
Appendix I
Formulation of Year 2000 Conversion Recommendation
Appendix J
Product Compliance Certificate
Appendix K
Configuration Level Permutations
Appendix L
Test Environments per Configuration Permutations
Appendix M
Appendix N
Appendix O
Solutions / Recommendations after rectifying unsatisfactory test results
Appendix P
Formulation of Year 2000 Practices and Procedures
Appendix Q
Product Compliance Certificates per Permutation
Appendix R
Formulation of Year 2000 Conversion Recommendation
Appendix S
Year 2000: Certification File Reference Structure
Appendix T
Year 2000: Certification File Reference Structure
All documents produced as part of the of the certification process must contain a file reference number in the top right hand corner of the document.
The numbering structure must be as follows:
CHARACTERS MEANING POSSIBLE VALUES
1-4 Signifies the Year 2000 program Y2000
5 Separator -
6-8 Signifies the certification process CRT
9 Separator -
10-11 Directorate of origin SE = System Engineering
SS = System Support
NW = Networks
OP = Operations
IP = IT Planning
QA = Quality Assurance
12 Separator /
13-15 Product/Application area Assigned by the directorates representative on the Year 2000 program
16-17 Document content PM = Project Mandate
PC = Project Concession
CC = Certification Checklist
PB = Project Budget
PP = Project Plan
PD = Project Initiation Document
RC = Request for change
II = Item Inventory
WP = Working Papers
TP = Test Plan
LC = Letter of Confirmation
TR = Test Result
PR = Project Status Report
CP = Conversion Procedure
CS = Compliance Certificate
MR = Management Recommendation
OT = Other
18 Separator -
19-22 Sequence number Any numeric characters
Year 2000 Compliance Checklist
Appendix U