| Test Type | Tooling | Success Metric |
|-----------|---------|----------------|
| Unit Tests | Go testing, Jest (frontend) | ≥ 80 % coverage |
| Integration Tests | Testcontainers, Postman/Newman | All API contracts pass |
| Performance Tests | k6, Locust | 5 000 RPS, 95‑th percentile ≤ 150 ms |
| Security Tests | OWASP ZAP, Burp Suite, Snyk | No critical/high findings |
| Compliance Checks | OpenSCAP, GDPR‑Check | Passes all rule sets |
| Chaos Engineering | Chaos Mesh | No service outage > 30 s |
All test results are archived in the Test Results Repository (GitLab CI artifacts) and referenced in the release notes.
+---------------------------------------------------------------+
| Front‑End (SPA) |
| - React/Angular |
| - Auth via OIDC (Keycloak) |
+-------------------+-------------------+-----------------------+
| |
+-------------------v-------------------v-----------------------+
| API Gateway (Istio Ingress) |
| - Rate limiting, JWT validation, request routing |
+-------------------+-------------------+-----------------------+
| |
+----------------v----+ +----------v-------------------+
| Auth Service | | Policy Service (PDP/PAP) |
| (Keycloak) | | - XACML Engine |
+---------------------+ +------------------------------+
| |
+----------------v----+ +----------v-------------------+
| Data Ingestion Svc | | Data Retrieval Svc |
| (REST/gRPC/MQTT) | | (Streaming, Batch) |
+---------------------+ +------------------------------+
| |
+----------------v-------------------v-------------------+
| Secure Data Store (Cassandra) |
| - Encrypted at rest (AES‑256‑GCM) |
| - Immutable append‑only log (Merkle‑Tree) |
+-----------------------------------------------------------+
All inter‑service communication is protected by mutual TLS and Istio sidecars for zero‑trust networking. FSDSS-003
| Log Type | Destination | Retention | |----------|-------------|-----------| | Access logs (request/response) | Elasticsearch | 90 days | | Policy decisions | Loki | 180 days | | Data deletion events | Immutable S3 bucket | 7 years | | ZKP verification logs | Kafka topic (encrypted) | 30 days |
All logs contain a hash chain (prev_hash → current_hash) enabling tamper detection. | Test Type | Tooling | Success Metric
FSDSS-003 denotes a standardized specification for a functional subsystem. It defines required behaviors, interfaces, and acceptance criteria to ensure interoperable integration with related components.
If "FSDSS" relates to food safety, a paper might focus on: All inter‑service communication is protected by mutual TLS
If "FSDSS" relates to farm sustainability, it could explore: