Many bugs are impossible to overlook, such as a mistyped variable name that prevents an application from compiling. Other bugs, such as a method that fails to throw an exception for certain types of invalid input, can go undiscovered until a user encounters an error or an attacker finds a way to exploit the bug.

You can identify these subtle but critical bugs by following a testing strategy. A testing strategy is an approach for systematically verifying that code does what is expected of it, including rejecting invalid and potentially malicious input. While following a testing strategy cannot catch all bugs, it can reduce the number of serious bugs and reduce the cost of maintaining an application ...