This artifact is a test suite for the handling of TLS session by various web servers. We analyze how client authentication behavior changes under session resumption when modifying SNI and host headers.
It is responsible for the results presented in Section 4, Table 2 of the paper.
The artifact is a packaged in Docker using Docker-in-docker for convenience.
Simply run:
./run.shthe script will:
- prepare the execution environment of the test framework as a Docker container
- execute the test framework container
- the framework starts new Docker containers for the analyzed web servers
- copy the HTML table to
./out
Check ./run.sh -h for more information.
It is possible to adjust the number of setups tested in parallel.
Example:
./run.sh -n 16
This will run 16 tests in parallel. We recommend setting this as high as possible. Time savings scale way beyond the number of logical cores in the host system.
If you only want to test a subset of the servers, you can filter them with the -s option.
Example:
./run.sh -s "nginx.*defaulta"This will only test the nginx configurations with site A set as default host.
You can also filter the test cases by using the -t option.
Example:
./run.sh -t "A -> n.*1.3"