| || |
Automation of "virtual keyboard login" tests
I have to automate some tests of a virtual keyboard login. Its technologies are:
* C++ and Assembler to create ActiveX
* HTML and ASP to create web pages
The sequence of characters doesn't change every time the page is refreshed. But it protects from 'Spy Ware' and 'Trojan Programs'. When I have to test this virtual keyboard, I use a kind of "Windows Monitor", that tries to capture my keystrokes and mouse clicks. The virtual keyboard tries to avoid that Windows Monitor capture my keystrokes and mouse clicks creating a kind of "noise".
Is it possible to automate tests of this kind of application?
Re: Automation of "virtual keyboard login" tests
Everything is possible, unless the application is operating at a low BIOS level to interact with a keyboard (which would be a real surprise). There may be no way for spyware programs to spoof input at that level, but you also block test automation (as you discovered) and you set yourself up for a future maintenance headache. Sometimes solutions are worse than the problem they try to solve. Why not use a simple random character string that is displayed on the screen that the user needs to enter manually to capture the trojan (making sure the keys are displayed such that a trojan is not likely to be able to read them). Bottom line, the program you describe seems to interfere with your normal input mode, deliberately, which may block any attempt at automation. Ask your developers if there is a backdoor of some kind.