R-TF-012-034 — Software Test Description
Document Information
| Field | Value |
|---|---|
| Product / System | Medical Device API |
| Release version | {release_version} (TBD) |
| Commit SHA | {commit_sha} (TBD) |
| Test management system | TestRail — Project “Medical Device”, Suite “Master” |
| Prepared by | {name} (TBD) |
| Date | {yyyy-mm-dd} (TBD) |
| Reviewed/Approved by | {name} (TBD) |
| Review/Approval date | {yyyy-mm-dd} (TBD) |
Purpose
This document provides the controlled test case inventory (“what tests exist”) used to verify the software requirements for the release identified above.
This document is intentionally non-duplicative:
- The verification strategy, governance, execution rules, evidence expectations, environments, and retention are defined in R-TF-012-033 — Software Test Plan.
- The test specifications (preconditions, expected results, required evidence, requirement mapping, etc.) are maintained as controlled records in TestRail.
Scope
In scope for this Test Description:
- Verification test cases for the Medical Device API (all TestRail sections used for requirements verification).
- Commissioning (operational readiness) test cases executed for the deployed release, aligned with the commissioning records set (R-TF-029-001/002/003).
Out of scope:
- Test execution results (those are captured in TestRail runs and in the evidence pack).
- Defect reports (tracked separately as defined in the Test Plan).
Terms and Definitions
- Test case: A controlled specification of verification steps and objective pass/fail criteria, including required evidence and requirement linkage.
- Test run: An execution instance of a selected set of test cases for a specific purpose and environment, producing execution results and evidence.
- Test plan (TestRail object): A container grouping multiple runs for the same
{release_version}and environment, supporting a structured verification campaign. - Commissioning: Operational readiness verification of the deployed release prior to enabling/confirming clinical use in the target environment, executed under controlled conditions and recorded in R-TF-029-00X.
Test Case Inventory and Control Method
Authoritative source
- The authoritative test specifications are the TestRail test cases in Project “Medical Device”.
Controlled inventory snapshot
- For each release verification campaign, the test case inventory is captured as a controlled export (CSV) and stored alongside the Software Test Plan annexes and/or the release evidence pack.
- This document is considered complete only when its annexes (listed below) are stored together with it in the QMS record set.
Coverage statement
- Completeness of requirements coverage is demonstrated through the Traceability Matrix (Annex B) and its linkage to the TestRail test case identifiers and requirement IDs.
References
- R-TF-012-033 — Software Test Plan (verification strategy, governance, environments, evidence packs, retention).
- R-TF-029-001 Deployment and Configuration Commissioning Record
- R-TF-029-002 Functional and Interface Commissioning Record
- R-TF-029-003 Clinical Workflow and Operational Readiness Commissioning Record
- Test case inventory sources (controlled exports):
- Annex A — TestRail Test Case Export (Verification)
- Annex B — Traceability matrix export (requirements ↔ test cases)
- Annex C — Commissioning test case list/export
Signature meaning
The signatures for the approval process of this document can be found in the verified commits at the repository for the QMS. As a reference, the team members who are expected to participate in this document and their roles in the approval process, as defined in Annex I Responsibility Matrix of the GP-001, are:
- Author: Team members involved
- Reviewer: JD-003, JD-004
- Approver: JD-001
Annexes
Annex A — TestRail Test Case Export (Verification)
Controlled export of all verification test cases used as the basis for requirement verification.
- File: Annex_B_TestRail_Test_Case_Export.csv
- Content expectation (minimum): TestRail Case ID, Title, Section, Test Level, Test Type, Automation status, NRT membership, Primary Requirement ID, Requirement IDs.
Annex B — Traceability Matrix Export (Requirements ↔ Test Cases)
Controlled export demonstrating complete and reviewable mapping between software requirements and test cases.
| SRS Id | SRS Name | Test Case Id | Test Case Title | Test Case URL |
|---|---|---|---|---|
| SRS-0AB | Generate per-image ICD analysis with explainability heat map | C256 | Verify response includes per-image ICD probabilities and heat maps for the top five categories | View in TestRail |
| SRS-1KW | Secure Communication Protocol Enforcement | C332 | Verify API accepts requests over HTTPS using TLS 1.2 or 1.3 | View in TestRail |
| SRS-1KW | Secure Communication Protocol Enforcement | C333 | Verify API rejects or redirects unencrypted HTTP requests | View in TestRail |
| SRS-1KW | Secure Communication Protocol Enforcement | C334 | Verify API rejects connections using deprecated TLS versions | View in TestRail |
| SRS-1XR | Include model sensitivity in report | C257 | Verify analysis response includes numeric sensitivity within performanceIndicator object | View in TestRail |
| SRS-28X | Implement progressive delays between failed login attempts | C335 | Verify progressive increase in enforced delay across consecutive failed authentication attempts | View in TestRail |
| SRS-28X | Implement progressive delays between failed login attempts | C336 | Verify delay progression counter resets upon successful authentication | View in TestRail |
| SRS-36U | System Information Endpoint Implementation | C43 | Verify retrieval of system status and version via the root API endpoint | View in TestRail |
| SRS-58W | Include entropy score in report | C258 | Verify response includes normalized entropy score between 0 and 1 in performanceIndicator | View in TestRail |
| SRS-66O | Include model specificity in report | C259 | Verify analysis response includes correct model specificity in performanceIndicator | View in TestRail |
| SRS-6KE | API Health Check Endpoint | C169 | Verify health check endpoint returns HTTP 503 when service is unavailable | View in TestRail |
| SRS-6KE | API Health Check Endpoint | C46 | Verify the public health endpoint returns HTTP 200 and status OK when operational | View in TestRail |
| SRS-71I | Include the indicator of needing a high priority referral in the report | C260 | Verify report response includes highPriorityReferral score within clinicalIndicator object | View in TestRail |
| SRS-7PJ | Network Service Exposure | C50 | Verify the API service accepts incoming HTTP requests on the designated network port | View in TestRail |
| SRS-8HY | Include the indicator of malignancy in the report | C261 | Verify the final report response includes the malignancy probability within the clinicalIndicator object | View in TestRail |
| SRS-8QR | Encapsulate Proprietary Data | C367 | Verify proprietary metrics are encapsulated in additionalData object | View in TestRail |
| SRS-9ZT | The product classifies the image's modality | C327 | Verify API returns modality confidence scores and sets the final value to the highest scoring modality | View in TestRail |
| SRS-A25 | Role-Based Access Control (RBAC) with Least Privilege Principle to restrict users to essential functions | C337 | Verify successful access to permitted endpoints for an authorized role | View in TestRail |
| SRS-A25 | Role-Based Access Control (RBAC) with Least Privilege Principle to restrict users to essential functions | C338 | Verify access denial for endpoints outside the assigned role scope | View in TestRail |
| SRS-A2B | API Rate Limiting | C339 | Verify HTTP 429 response when request volume exceeds defined threshold | View in TestRail |
| SRS-A2B | API Rate Limiting | C340 | Verify request acceptance after rate limit time window expiration | View in TestRail |
| SRS-A4W | Inflammatory Nodular Lesion Quantification | C270 | Verify API returns accurate counts and bounding boxes for HS lesion types in valid image requests | View in TestRail |
| SRS-A57 | Audit Trail Data Retention Policy | C379 | Verify administrator configuration of audit trail retention period | View in TestRail |
| SRS-A57 | Audit Trail Data Retention Policy | C380 | Verify automated archiving of audit trails exceeding active retention period | View in TestRail |
| SRS-A57 | Audit Trail Data Retention Policy | C381 | Verify secure and logged disposal of audit trail archives after total retention period | View in TestRail |
| SRS-A6T | Delimited Wound Edges Assessment | C271 | Verify wound boundary classification returns present or absent with confidence score | View in TestRail |
| SRS-A9F | Wound Bed Tissue - Epithelial | C266 | Verify epithelial tissue analysis returns valid binary prediction and confidence score | View in TestRail |
| SRS-AQM | Standard HTTP Status Code Usage | C62 | Verify API returns appropriate 2xx, 4xx, and 5xx HTTP status codes based on request outcome | View in TestRail |
| SRS-B3Z | Inflammatory Pattern Identification | C267 | Verify API returns Hurley stage and inflammatory status with associated probabilities for valid image input | View in TestRail |
| SRS-B6L | Wound Bed Tissue - Necrotic | C268 | Verify necrotic tissue analysis returns binary prediction and confidence score | View in TestRail |
| SRS-B8N | Pustule Intensity Quantification | C269 | Verify generation of normalized probability vector and derived severity score via API for pustule intensity quantification | View in TestRail |
| SRS-BA6 | Display the legal information about this medical device | C66 | Verify retrieval of mandatory legal information, UDI, and regulatory metadata via API | View in TestRail |
| SRS-BK7 | Encrypted Backup and Integrity Verification | C363 | Verify encrypted backup generation and integrity verification logging | View in TestRail |
| SRS-BK7 | Encrypted Backup and Integrity Verification | C364 | Verify backup schedule configuration persistence | View in TestRail |
| SRS-BWB | Performance and Latency | C416 | Verify p95 API latency remains under 10 seconds during nominal load | View in TestRail |
| SRS-BYJ | JSON Data Interchange Format | C68 | Verify API processes JSON requests and returns JSON responses with correct Content-Type headers | View in TestRail |
| SRS-C1R | Serous Exudate Assessment | C272 | Verify API returns binary prediction and confidence score for serous fluid detection requests | View in TestRail |
| SRS-C7K | Acneiform Inflammatory Lesion Quantification | C273 | Verify API returns correct lesion count and bounding boxes for valid acneiform image request | View in TestRail |
| SRS-CCD | Intrusion Prevention and Malicious Traffic Detection | C365 | Verify rejection of requests containing malicious attack signatures | View in TestRail |
| SRS-CCD | Intrusion Prevention and Malicious Traffic Detection | C366 | Verify blocking of anomalous high-frequency request bursts | View in TestRail |
| SRS-D08 | Include the indicator of the image presenting a pigmented lesion in the report | C262 | Verify report generation includes pigmentedLesion probability in clinicalIndicator | View in TestRail |
| SRS-D3N | Provision of Clinical Parameter Endpoints | C73 | Verify retrieval and filtering of clinical master data via parameter endpoints | View in TestRail |
| SRS-D6W | Accurate Time Synchronization | C382 | Verify System Timestamp Accuracy via API Response Headers | View in TestRail |
| SRS-D6W | Accurate Time Synchronization | C383 | Verify NTP Configuration and Synchronization Status | View in TestRail |
| SRS-D6W | Accurate Time Synchronization | C384 | Verify NTP Synchronization Failure Reporting | View in TestRail |
| SRS-D7N | Purulent Exudate Assessment | C274 | Verify API returns valid purulent exudate classification and confidence score for a wound image | View in TestRail |
| SRS-D9T | Maceration Surface Quantification | C275 | Verify generation of maceration segmentation mask, percentage, and absolute area from a valid wound image request | View in TestRail |
| SRS-DW0 | User Authentication Endpoint Implementation | C77 | Verify successful user authentication and token generation via the POST /login endpoint | View in TestRail |
| SRS-E1V | Body Surface Segmentation | C325 | Verify generation of 5-class anatomical segmentation mask and BSA metrics via API | View in TestRail |
| SRS-E4R | Erythema Intensity Quantification | C276 | Verify erythema quantification API returns probability vector, calculated severity, and confidence score | View in TestRail |
| SRS-EH4 | Security-Safe Error Handling | C331 | Verify API returns sanitized error responses with appropriate HTTP status codes and no internal details | View in TestRail |
| SRS-F05 | Generate FHIR DiagnosticReport Base Structure | C368 | Verify FHIR DiagnosticReport base structure and fixed coding values | View in TestRail |
| SRS-F2K | Thickened Wound Edges Assessment | C278 | Verify wound edge analysis returns valid presence prediction and confidence score | View in TestRail |
| SRS-F6J | Hair Loss Surface Quantification | C280 | Verify hair loss quantification API returns segmentation mask and calculated percentage | View in TestRail |
| SRS-F9L | Fitzpatrick Skin Type Identification | C324 | Verify API returns Fitzpatrick type, probabilities, and confidence score for a valid image request | View in TestRail |
| SRS-FMG | Record Analysis Duration in Report | C369 | Verify analysisDuration field population in DiagnosticReport | View in TestRail |
| SRS-G3P | Wound Perilesional Erythema Assessment | C281 | Verify perilesional erythema assessment returns binary prediction and confidence score | View in TestRail |
| SRS-G9R | Wound Stage Classification | C282 | Verify API returns stage label, probability distribution, and confidence score for valid image input | View in TestRail |
| SRS-H2V | Head Detection | C323 | Verify API returns subject coordinates, count, and multi-subject status for valid image input | View in TestRail |
| SRS-H3J | Deterministic Response Schemas | C375 | Verify response structure compliance with OpenAPI success schema | View in TestRail |
| SRS-H3J | Deterministic Response Schemas | C376 | Verify response structure compliance with OpenAPI error schema | View in TestRail |
| SRS-H5K | Erythema Surface Quantification | C283 | Verify API returns erythema segmentation mask and area metrics for valid wound image | View in TestRail |
| SRS-H9X | Lichenification Intensity Quantification | C284 | Verify lichenification model outputs probabilities, weighted severity score, and confidence metric | View in TestRail |
| SRS-I7T | Wound Affected Tissue - Intact Skin | C285 | Verify intact skin classification and confidence score generation for valid wound image input | View in TestRail |
| SRS-IC4 | Software and Configuration Integrity Verification | C357 | Verify successful execution and audit logging of system integrity checks | View in TestRail |
| SRS-IC4 | Software and Configuration Integrity Verification | C358 | Verify detection and logging of configuration integrity failures | View in TestRail |
| SRS-ID7 | Input Data Validation | C330 | Verify API rejects malformed, oversized, or out-of-bounds inputs with standardized 400 Bad Request responses | View in TestRail |
| SRS-J5P | Hair Follicle Quantification | C286 | Verify API returns follicle count, bounding boxes, and confidence scores for a valid scalp image | View in TestRail |
| SRS-J9V | Indistinguishable Wound Edges Assessment | C287 | Verify API returns valid binary prediction and confidence score for edge assessment | View in TestRail |
| SRS-JC6 | The product provides a final image validity summary | C370 | Verify final validity summary is positive when all criteria are met | View in TestRail |
| SRS-JC6 | The product provides a final image validity summary | C371 | Verify final validity summary is negative when image quality is unacceptable | View in TestRail |
| SRS-JC6 | The product provides a final image validity summary | C372 | Verify final validity summary is negative when image is non-dermatological | View in TestRail |
| SRS-JLM | Include the indicator of the presence of a condition in the report | C263 | Verify the generated report response contains the hasCondition probability within the clinicalIndicator structure | View in TestRail |
| SRS-K3H | Wound Affected Tissue - Subcutaneous | C288 | Verify subcutaneous tissue analysis API returns valid binary prediction and confidence score | View in TestRail |
| SRS-K4U | Orthopedic Material Surface Quantification | C289 | Verify API returns orthopedic material segmentation, metrics, and exposure alert for valid wound image input | View in TestRail |
| SRS-K6N | Map Per-Image Analysis to a dedicated object in the report | C373 | Verify single image analysis maps to structured object in imagingAnalysis array | View in TestRail |
| SRS-K6N | Map Per-Image Analysis to a dedicated object in the report | C374 | Verify multiple image analyses map to distinct objects in imagingAnalysis array | View in TestRail |
| SRS-K7M | Orchestrate diagnosis support workflow | C265 | Verify diagnosis workflow returns ranked ICD-11 codes, binary indicators, and explainability maps for valid images | View in TestRail |
| SRS-KAS | Include the indicator of needing an urgent referral in the report | C264 | Verify report response includes urgentReferral score within clinicalIndicator object | View in TestRail |
| SRS-L3X | Skin Surface Segmentation | C298 | Verify skin segmentation API returns binary mask, coverage percentage, and confidence score | View in TestRail |
| SRS-L4W | Damaged Wound Edges Assessment | C290 | Verify API returns binary prediction and confidence score for wound edge analysis | View in TestRail |
| SRS-L8Y | Biofilm and Slough Surface Quantification | C291 | Verify API returns biofilm segmentation mask and quantification metrics for valid wound image | View in TestRail |
| SRS-LBS | URL-Based API Versioning | C106 | Verify API endpoints are accessible via URL paths prefixed with the major and minor version identifier | View in TestRail |
| SRS-LOG | Log Overflow Protection | C400 | Verify Log Rotation and Archival Upon Threshold | View in TestRail |
| SRS-LOG | Log Overflow Protection | C414 | Verify audit log monitoring and alert generation | View in TestRail |
| SRS-LOG | Log Overflow Protection | C415 | Verify archival of aged audit records to long-term storage | View in TestRail |
| SRS-M2L | Xerosis Intensity Quantification | C292 | Verify xerosis quantification returns valid probability vector, calculated severity score, and confidence | View in TestRail |
| SRS-M6P | Granulation Tissue Surface Quantification | C293 | Verify granulation tissue quantification returns segmentation mask and area metrics | View in TestRail |
| SRS-MM8 | Generated JWTs must have an expiration date | C341 | Verify generated authentication tokens include the expiration claim | View in TestRail |
| SRS-MM8 | Generated JWTs must have an expiration date | C342 | Verify access denial for requests using an expired JWT | View in TestRail |
| SRS-MZC | Request Body Size Limitation | C110 | Verify the API returns HTTP 413 when the request body exceeds the configured maximum size | View in TestRail |
| SRS-N2C | Bone, Cartilage, or Tendon Surface Quantification | C294 | Verify deep structure quantification metrics and segmentation mask generation | View in TestRail |
| SRS-N5Q | Swelling Intensity Quantification | C295 | Verify swelling quantification response includes normalized probabilities, weighted severity score, and confidence | View in TestRail |
| SRS-N7P | Body Site Identification | C322 | Verify API returns anatomical classification and confidence metrics for valid image input | View in TestRail |
| SRS-N8W | Wound Affected Tissue - Dermis-Epidermis | C296 | Verify dermis-epidermis involvement prediction and confidence score generation for valid image input | View in TestRail |
| SRS-O5M | Wound Affected Tissue - Muscle | C297 | Verify muscle tissue involvement classification and confidence score generation for a valid wound image | View in TestRail |
| SRS-O93 | The product checks the image's clinical domain | C328 | Verify API response contains clinical domain confidence score and dermatological status flag | View in TestRail |
| SRS-P2Y | Acneiform Inflammatory Pattern Identification | C301 | Verify generation of IGA severity grade and confidence scores from a dermatological image request | View in TestRail |
| SRS-P4X | Wound Bed Tissue - Slough | C302 | Verify Slough tissue classification and confidence score generation in API response | View in TestRail |
| SRS-P9W | Desquamation Intensity Quantification | C303 | Verify desquamation quantification returns valid probability distribution, severity score, and confidence | View in TestRail |
| SRS-PU2 | Comprehensive Event Auditing | C394 | Verify audit trail generation for data modification and administrative security actions | View in TestRail |
| SRS-PU2 | Comprehensive Event Auditing | C395 | Verify audit trail generation for authentication lifecycle and security anomalies | View in TestRail |
| SRS-PU2 | Comprehensive Event Auditing | C410 | Verify audit trail generation for clinical data creation events | View in TestRail |
| SRS-PU2 | Comprehensive Event Auditing | C411 | Verify audit trail generation for successful and failed authentication attempts | View in TestRail |
| SRS-Q1L | Hypopigmentation or Depigmentation Surface Quantification | C304 | Verify hypopigmentation quantification returns segmentation mask and affected surface percentage | View in TestRail |
| SRS-Q3Q | Generate an aggregated ICD probability distribution from a set of images | C255 | Verify API returns aggregated ICD probability distribution with structured code details in conclusion array | View in TestRail |
| SRS-Q8Z | Diffuse Wound Edges Assessment | C305 | Verify API returns diffuse wound edge classification and confidence score for valid image input | View in TestRail |
| SRS-Q9M | Clinical Signs Analysis Endpoint Implementation | C124 | Verify POST /clinical-signs-analysis returns quantified results for valid image and sign list | View in TestRail |
| SRS-Q9M | Clinical Signs Analysis Endpoint Implementation | C419 | Verify PASI clinical signs request returns intensity and surface metrics for erythema, plus intensity for induration and crusting | View in TestRail |
| SRS-R3W | Wound Bed Surface Quantification | C306 | Verify wound bed quantification returns segmentation mask and geometric measurements for valid image input | View in TestRail |
| SRS-R7C | Oozing Intensity Quantification | C307 | Verify exudation analysis returns valid probability vector and weighted severity score | View in TestRail |
| SRS-RXK | Diagnostic Support Endpoint Implementation | C128 | Verify the diagnosis-support endpoint accepts valid images and returns diagnostic analysis | View in TestRail |
| SRS-S2V | Wound Affected Tissue - Bone | C308 | Verify API returns valid bone involvement classification and confidence score for a provided wound image | View in TestRail |
| SRS-S8M | Acneiform Lesion Type Quantification | C309 | Verify API returns correct counts and bounding boxes for papules, pustules, cysts, comedones, and nodules | View in TestRail |
| SRS-SDZ | Use hashed and salted passwords | C343 | Verify generation of authentication token using valid credentials | View in TestRail |
| SRS-SDZ | Use hashed and salted passwords | C344 | Verify rejection of authentication requests with invalid credentials | View in TestRail |
| SRS-SDZ | Use hashed and salted passwords | C345 | Verify password update functionality and subsequent authentication | View in TestRail |
| SRS-SI2 | Secure Audit Trail Access Interface | C388 | Verify Role-Based Access Control for Audit Trail Interface | View in TestRail |
| SRS-SI2 | Secure Audit Trail Access Interface | C389 | Verify Audit Trail Search and Export Capabilities | View in TestRail |
| SRS-T3K | Induration Intensity Quantification | C279 | Verify induration quantification returns valid probability distribution, severity score, and confidence metrics | View in TestRail |
| SRS-T5P | Audit Record Integrity Protection | C391 | Verify audit records cannot be modified or deleted via API | View in TestRail |
| SRS-T6H | Wound AWOSI Score Quantification | C310 | Verify generation of AWOSI score, probability distribution, and confidence metrics from a valid wound image | View in TestRail |
| SRS-T95 | Audit System Failure Handling | C412 | Verify audit message acknowledgement upon successful persistence | View in TestRail |
| SRS-T95 | Audit System Failure Handling | C413 | Verify audit message retention upon persistence failure | View in TestRail |
| SRS-T9U | Wound Bed Tissue - Closed | C311 | Verify API returns valid closure classification and confidence score for wound image | View in TestRail |
| SRS-TPK | Lock accounts after five failed attempts | C346 | Verify account lockout enforcement after threshold reached | View in TestRail |
| SRS-TPK | Lock accounts after five failed attempts | C347 | Verify failed attempt counter reset on successful login | View in TestRail |
| SRS-TPK | Lock accounts after five failed attempts | C348 | Verify administrative manual account unlock capability | View in TestRail |
| SRS-U2P | Consolidated Audit Record Content | C398 | Verify audit record completeness for successful API event | View in TestRail |
| SRS-U2P | Consolidated Audit Record Content | C399 | Verify audit record completeness for failed API event | View in TestRail |
| SRS-U4M | Perilesional Maceration Assessment | C312 | Verify generation of periwound moisture classification and confidence score via API | View in TestRail |
| SRS-U8M | Enforce strong password policies (min. 12 characters, complexity rules, expiration policies) | C349 | Verify enforcement of password complexity and length constraints | View in TestRail |
| SRS-U8M | Enforce strong password policies (min. 12 characters, complexity rules, expiration policies) | C350 | Verify authentication behavior for expired passwords | View in TestRail |
| SRS-U8Q | High Availability and Load Balancing Support | C417 | Verify stateless request processing across multiple instances | View in TestRail |
| SRS-U8Q | High Availability and Load Balancing Support | C418 | Verify API availability during single instance failure | View in TestRail |
| SRS-U8Z | Nail Lesion Surface Quantification | C313 | Verify API returns segmentation mask and lesion percentage for valid nail image request | View in TestRail |
| SRS-V1D | Excoriation Intensity Quantification | C314 | Verify calculation of ordinal probabilities and continuous severity score for excoriation analysis | View in TestRail |
| SRS-V4Q | Surface Area Quantification | C326 | Verify API returns calibrated area and depth metrics for images containing reference markers | View in TestRail |
| SRS-V7Q | Necrosis Surface Quantification | C315 | Verify API returns necrosis segmentation mask and area metrics for valid wound image | View in TestRail |
| SRS-W3R | Hyperpigmentation Surface Quantification | C316 | Verify generation of hyperpigmentation segmentation mask and surface percentage from input image | View in TestRail |
| SRS-W5Z | Assign DiagnosticReport Identifier | C377 | Verify Assignment of Official Identifier to DiagnosticReport | View in TestRail |
| SRS-W5Z | Assign DiagnosticReport Identifier | C378 | Verify Uniqueness of Generated DiagnosticReport Identifiers | View in TestRail |
| SRS-W6T | Orchestrate Clinical Signs Analysis Workflow | C321 | Verify generation of structured clinical assessment report with quantified results for requested signs via API | View in TestRail |
| SRS-W9K | Bloody Exudate Assessment | C317 | Verify API returns binary classification and confidence for hemorrhagic exudate presence | View in TestRail |
| SRS-WER | Endpoint Access Control | C351 | Verify protected endpoints allow access with a valid OAuth 2.0 Bearer token | View in TestRail |
| SRS-WER | Endpoint Access Control | C352 | Verify protected endpoints reject requests lacking a valid token with 401 Unauthorized | View in TestRail |
| SRS-WER | Endpoint Access Control | C353 | Verify public endpoints are accessible without an Authorization header | View in TestRail |
| SRS-WGF | AES-256 encryption for data at rest | C354 | Verify AES-256 encryption configuration for data storage | View in TestRail |
| SRS-X5B | Fibrinous Exudate Assessment | C318 | Verify generation of binary prediction and confidence score for fibrinous exudate analysis | View in TestRail |
| SRS-X8Q | Follicular and Inflammatory Pattern Identification | C319 | Verify HS phenotype classification and confidence metrics are returned for a valid image request | View in TestRail |
| SRS-X9J | Conduct periodic access reviews to verify permissions align with job functions | C355 | Verify authorized administrator can retrieve current user permissions for review | View in TestRail |
| SRS-X9J | Conduct periodic access reviews to verify permissions align with job functions | C356 | Verify authorized administrator can revoke permissions during access review | View in TestRail |
| SRS-Y2E | Wound Bed Tissue - Granulation | C320 | Verify granulation tissue classification and confidence score generation for a valid wound image request | View in TestRail |
| SRS-Y5W | The product checks the image quality with the Dermatological Image Quality Assessment (DIQA) algorithm | C329 | Verify API returns DIQA overall quality score and dimension subscores upon valid image submission | View in TestRail |
| SRS-Y6F | Crusting Intensity Quantification | C277 | Verify generation of crusting probability vector and weighted severity score | View in TestRail |
| SRS-Z24 | API Documentation Endpoint | C159 | Verify availability of OpenAPI specification and interactive documentation endpoints | View in TestRail |
| SRS-Z5N | Hive Lesion Quantification | C299 | Verify API returns hive count and bounding boxes for valid dermatological image input | View in TestRail |
| SRS-Z8P | Biofilm-Compatible Tissue Assessment | C300 | Verify API returns valid biofilm classification and confidence score for wound image input | View in TestRail |
| SRS-ZQO | Concurrent API Version Support | C162 | Verify simultaneous availability and processing of requests across distinct API versions | View in TestRail |
Annex C — Commissioning Test Case List / Export
Controlled list of commissioning test cases used to verify operational readiness of the deployed release, aligned with commissioning records R-TF-029-001/002/003.
- File: Annex_C_TestRail_Test_Commissioning_Export.csv
- Content expectation (minimum): TestRail Case ID, Title, Section, Test Level, Test Type, Automation status, NRT membership