Media & Streaming QA

// What makes Media & Streaming QA different

• ›[SHARED] DRM license acquisition is a runtime dependency on every play — Widevine (L1/L2/L3), FairPlay, and PlayReady each respond per-device, per-session, and per-content entitlement rule; a failure returns an opaque EME error code rather than an HTTP 4xx; the same content may play on Chrome/Android and silently fail on Safari/iOS because their DRM stacks differ; this is hardware-enforced content protection, not generic API auth or OAuth
• ›[SHARED] ABR ladder selection and switching happens in real time — wrong startup quality selection delays time-to-first-frame; failure to step back up after a bandwidth recovery leaves the user on 240p after the network returns to 5 Mbps; neither is a crash, both are invisible regressions that QoE metrics are designed to surface
• ›[LIVE] Live stream quality is an end-to-end pipeline measurement from encoder to player — CDN propagation delay, origin segment availability, and player buffer accumulate into a latency figure that has a defined SLA; DVR window boundaries are hard segment limits that must be tested explicitly because seeking past them causes player freeze, not a graceful error
• ›[SHARED] Concurrent-stream limits are enforced server-side at stream init per subscription tier and per device type — this is real-time session enforcement, not administrative user-seat provisioning; the race condition is two devices opening streams within the same TTL window; the failure mode is the wrong session being evicted silently
• ›[VOD] Content availability is governed by geo/licensing windows that exist in a rights database separate from the CDN — a title may be searchable, visible in the catalog, and return a valid manifest URL, yet fail at license acquisition with a 403 because the regional rights window has closed or the mid-play expiry has elapsed; the test surface is the entitlement API and the error message the user receives, not the content delivery layer

// Main risk areas

// Functional areas to test

• ›[SHARED] DRM license acquisition and renewal: Widevine L1/L2/L3 (hardware vs software security level), FairPlay KSM, PlayReady LA_URL; license renewal mid-session before TTL expiry; offline download license issuance, storage, and expiry; EME error code → user-message mapping per DRM stack
• ›[VOD/LIVE] ABR ladder: startup quality selection at buffer-fill threshold, bandwidth-drop quality descent, step-up hysteresis on bandwidth recovery, stall-vs-quality tradeoff configuration, no-stall assertion across throttle profiles, quality-stuck regression detection
• ›[LIVE] Live stream pipeline: encoder→origin→CDN edge→player latency measurement; DVR window duration and seek boundaries (including seek-to-live-edge and seek-past-window); low-latency HLS / CMAF variant; origin failure and multi-CDN failover; DVR segment availability after window slides
• ›[SHARED] Concurrent-stream limits: per-subscription-tier stream count enforcement; per-device-type grouping (mobile, TV, web); TTL window race conditions; eviction target selection per policy; eviction UX (actionable message vs silent kill); rapid device-switch within TTL
• ›[VOD] Catalog and geo/licensing windows: title availability by territory and date window; mid-play license expiry while user is watching; 403 entitlement response → regional error message; rights DB fixture matrix (region × content × date) for CI validation
• ›[SHARED] Ad-insertion (SSAI/CSAI): ad break stitching accuracy; ad pod duration validation against declared slot duration; content byte-offset after break; resume seek accuracy after ad break; 0-duration ad creative handling; VAST error fallback

// API & integration areas

• ›[SHARED] DRM license server (Widevine proxy / FairPlay KSM / PlayReady LA_URL): assert EME error codes on expired token, invalid device cert, wrong security level, and revoked license; assert TLS cert validity; assert license renewal fires before TTL expiry during long-play; assert offline license is bounded to the correct download expiry window
• ›[SHARED] Stream manifest API (HLS .m3u8 / DASH .mpd): assert variant playlist accuracy (bitrate ladder declared matches segments delivered); assert CDN-signed segment URLs are fresh and not expired at the player request time; assert manifest reflects DVR window bounds correctly for live streams
• ›[LIVE] Ingest and origin API: assert encoder segment availability latency meets the SLA target; assert DVR window segment index is accurate; assert origin health endpoint triggers CDN failover within the defined threshold when segment availability drops
• ›[SHARED] Account entitlement API: assert subscription tier, concurrent stream count, active session list, and geo eligibility returned correctly; assert a 403 on a closed licensing window carries the region context the player needs to show a meaningful error; assert concurrent session count is decremented on stream close, not only on TTL expiry

// Security & privacy

• ›[SHARED] DRM key security — hardware enforcement and device certificate chain: for Widevine L1 and FairPlay, the decryption key never leaves the hardware security module; assert the license server validates the device certificate chain before issuing a license; assert a device presenting a revoked or forged certificate is refused; assert license tokens cannot be replayed across devices — this is content-protection enforcement, not API authentication or PII handling
• ›[SHARED] Signed stream URLs and CDN tokens: assert CDN segment URLs carry time-limited signatures with short TTLs; assert an expired URL returns 403, not silently serves stale segments; assert a URL extracted from one session and replayed in a different account is refused; assert token scope is bound to content ID and device, not reusable across titles
• ›[SHARED] Account takeover impact on active streams: assert that a forced sign-out (password change, suspicious-activity revocation) terminates all active streams immediately; assert the concurrent-stream eviction path cannot be hijacked to terminate a victim's session by opening sessions from an attacker-controlled account on the same tier

// Accessibility

• ›[SHARED] Subtitle and closed caption sync: caption timing must stay within 50 ms of the audio track at all bitrate levels and after any seek or resume; assert CC on/off preference persists across pause+resume, cross-device resume, and app restart; assert forced narrative captions (for non-dialogue audio) are correctly flagged and rendered separately from full captions
• ›[SHARED] Audio description (AD) track availability and switching: assert AD tracks are present for all content required to carry them; assert switching to an AD track takes effect without restarting playback; assert the AD track stays in sync after seek or quality level change; assert AD tracks on DRM-protected content are delivered via the same license path as the main audio, not unprotected
• ›[SHARED] Caption styling and readability: assert user-preference overrides (font size, colour, background opacity) persist across sessions; assert default caption styling meets WCAG 1.4.8 (background opacity ≥ 0.5, sufficient contrast between text and background); assert captions remain readable across all ABR quality levels, including the lowest-bitrate ladder rung
• ›[VOD/LIVE] TV and remote-control navigation: assert all playback controls (play/pause, seek 10s, seek to live, CC toggle, audio track selector, quality selector) are reachable and operable via D-pad on Smart TV and set-top-box platforms without requiring pointer input; meets WCAG 2.1 SC 2.1.1 (Keyboard) adapted for TV remote interaction

// Performance

• ›[SHARED] Startup latency (time-to-first-frame): measure from the user pressing Play to the first decoded and rendered frame, including DRM license round-trip time and ABR initial segment fetch; target ≤ 3 s on a 4G connection; assert license acquisition time is isolated and measured separately from CDN segment delivery time so regressions can be attributed
• ›[SHARED] Rebuffer ratio and stall events during sustained playback: assert rebuffer ratio ≤ 0.5 % (industry baseline) across a 30-minute sustained playback session at a range of simulated bandwidth profiles; assert stall count and stall duration per session are within the defined QoE thresholds; regressions in rebuffer ratio are often ABR hysteresis bugs, not CDN issues
• ›[LIVE] End-to-end live latency: measure from encoder-timestamped segment to player wall-clock render; assert latency ≤ 10 s for near-live HLS; assert latency ≤ 3 s for low-latency HLS (LL-HLS) or low-latency DASH (CMAF); assert the latency measurement accounts for player-side buffer depth, not only CDN propagation time
• ›[SHARED] CDN failover recovery time: assert that primary CDN degradation (segment error rate > threshold) triggers a switch to the secondary CDN within the defined window; assert stall duration during failover is ≤ 5 s; assert the player resumes at the correct position after failover and does not restart from the beginning; measure rebuffer metric both before and after failover

// Common bugs

// Example test scenarios

1. 01[SHARED] Throttle network to 400 kbps mid-stream, assert ABR descends from 1080p to 240p with no stall > 200 ms; restore to 6 Mbps, assert quality step-up fires within 20 s and reaches ≥ 720p; assert no quality-stuck state persists after 60 s of full bandwidth
2. 02[SHARED] Open the same account on two devices simultaneously at the subscription plan's stream cap; assert one device receives a concurrent-stream error within 10 s; assert the error message names the limit and offers an action (upgrade or end a session); assert the correct policy-defined session is the one evicted
3. 03[VOD] Start playback on a TV at minute 12, force-close the app, open the app on a phone; assert the watched-position API returns a timestamp within ±5 s of the TV pause point; assert the player seeks to that position and DRM license is acquired fresh for the phone before playback resumes
4. 04[SHARED] Inject a license-token expiry at T+30 s via a Widevine test proxy; assert the player's renewal attempt fires before expiry; on the proxy returning a renewal error, assert the player shows an actionable 'session expired' message within 5 s, not a silent freeze that persists until the user gives up
5. 05[LIVE] Simulate primary CDN failure mid-stream by blocking segment URLs at the proxy; assert multi-CDN fallback activates within the defined threshold; assert user-perceived stall ≤ 5 s; assert playback resumes at the correct live position after failover, not from stream start

// What to automate

• ›[SHARED] ABR ladder test suite: inject network throttle profiles (4G steady, 2G constrained, drop-to-zero, recover) via Charles Proxy or browser DevTools CDP; assert player quality-level change events match the expected descent and step-up sequence; assert stall count = 0 during descent and step-up fires within the hysteresis window on recovery — run on every build to catch ABR configuration regressions
• ›[SHARED] DRM license lifecycle automation: intercept license requests via a Widevine or PlayReady test proxy that can inject expiry timestamps, EME error codes, renewal failures, and revocation responses; assert correct error event + user-facing message for each injected condition; assert renewal fires before TTL expiry on a parameterised long-play timer; run in CI using headless Chrome with EME enabled
• ›[LIVE] Live latency and DVR window monitor: instrument the player's buffer API and manifest timestamps to assert end-to-end latency ≤ SLA target on each test run; parameterise on stream type (standard HLS, LL-HLS, CMAF); assert DVR window duration matches the declared window; assert boundary seeks return the correct clamped segment rather than a 404
• ›[SHARED] Concurrent-stream enforcement matrix: script parallel sessions from multiple test accounts (each at a different tier) opening streams within a short TTL window; assert eviction fires within the defined time window; assert the policy-correct session is evicted; assert the evicted device receives an actionable message; matrix across tiers (1-stream, 2-stream, 4-stream plans) on every deployment
• ›[VOD] Geo/licensing window catalog matrix: parameterised test fixture of content-id × region × date (in-window, expired, future-open) → mock the entitlement API response; assert license 200 for in-window, 403 with region context for expired and geo-blocked; run as a nightly regression against the rights DB fixture set to catch catalog-service caching lag

// Release readiness checklist

• ›DRM license acquisition green on Widevine L1 + L3, FairPlay, and PlayReady across all target platforms; license renewal fires before TTL expiry and handles renewal failure with an actionable user message, not a silent freeze
• ›Geo/licensing window integration verified: in-window titles play; expired or geo-blocked titles return 403 with a region-specific message, not a generic playback error; rights DB fixture matrix passes in CI
• ›ABR ladder verified on target device and bandwidth profiles: quality descends on constraint, step-up fires within hysteresis window on recovery, no quality-stuck state on any tested profile; stall count = 0 during descent in the ABR test suite
• ›Live latency within SLA on all CDN variants (standard HLS, LL-HLS, CMAF); DVR window seek at the boundary and at the live edge both handled gracefully — no player freeze or 404 loop
• ›Concurrent-stream limit enforced across all subscription tiers; eviction targets the policy-correct session; evicted device shows an actionable message naming the limit; TTL race-condition matrix passed
• ›Subtitle/caption sync ≤ 50 ms at all bitrate levels and after seek or resume; audio description track available, switches without restart, stays in sync after seek; caption styling meets WCAG 1.4.8 at default settings
• ›Cross-device resume: watched-position within ±5 s on all tested device pairs; DRM license acquired fresh on the destination device before playback; no stale-position regression introduced
• ›SSAI ad breaks: pod duration matches declared slot duration; content byte-offset correct after each break; 0-duration creative does not hang the player; VAST error callback fires on invalid creative

// Interview questions

// Related resources

• API testing checklist
• Performance testing with k6
• Common network & timeout bugs
• Risk-based testing
• Common security bugs