Skip to content

Engineering Stage

ES-109 — Testing and Verification

Verify that integrated implementation satisfies requirements, preserves guardrails, handles failure paths, and produces trustworthy evidence.

Verification and Release Preparation Testing Evidence Next: ES-110
← Previous Navigation
Current ES-109 — Engineering Context
Next → Activities

Engineering Context

Purpose

This page explains how ETIS treats testing and verification.

Testing is the activity. Verification is the engineering claim supported by evidence.

A test result matters because it helps answer whether a requirement, guardrail, workflow, failure path, or quality expectation has been checked.

Testing is evidence production

In ETIS, testing should produce evidence that later reviewers can inspect.

Evidence should show:

  • test purpose;
  • requirement or guardrail being verified;
  • test method;
  • test result;
  • defects found;
  • fixes applied;
  • verification gaps;
  • remaining risks.

A passing test with no traceability is weak release evidence.

Requirements verification

ES-109 should verify requirements from ES-102.

This includes functional requirements, non-functional requirements, constraints, use cases, AI-related requirements, access-control requirements, and evidence-preservation requirements.

Not every requirement can be fully verified at the same level, but gaps must be visible.

Guardrail verification

Guardrails from ES-106 and ES-108 are high-priority verification targets.

Examples include official state changes creating evidence events, protected actions requiring authorization, denied actions failing safely, AI output remaining draft until human acceptance, prohibited data being excluded, and retention assumptions not being hard-coded.

Guardrails are where trustworthiness becomes testable.

Failure-path verification

Failure paths matter because production systems rarely fail politely.

Testing should include invalid input, denied access, invalid state transitions, missing evidence events, unavailable AI services, rejected AI output, unavailable external dependencies, partial failure, and rollback or recovery expectations.

Trustworthy systems should fail visibly and safely.

AI verification

If AI is used, ES-109 must verify AI boundaries.

Testing should ask whether AI output is marked, whether it remains draft until human acceptance, whether AI can bypass review, whether rejected output is handled, whether manual workflow remains available, whether prohibited data is excluded, and whether AI-use evidence is produced.

AI functionality is not verified by checking that AI returns text. It is verified by checking the control system around AI.

Regression verification

Integration can break behavior that used to work.

ES-109 should include regression checks for core requirements and guardrails after integration.

Regression testing protects the baseline.

Common Pitfall

Do not treat manual testing as invalid. Manual verification can be useful, but it must be recorded with the same discipline as automated testing.

Engineering Insight

Verification is strongest when it shows both what passed and what remains uncertain.

Continue to Activities

Begin producing testing and verification evidence.

Continue to Activities →