StreamLink and TLS

This page provides links to third party resources on web browser, Java, and .NET Framework TLS stacks.

Client TLS stacks

TLS stacks available to StreamLink applications

StreamLink JS applications are run within web browsers and use the TLS stack that the browser uses:

TLS protocol support:

To list the TLS protocols and ciphers supported by your web browser, see Qualys SSL Labs' SSL/TLS Capabilities of Your Browser.

StreamLink Java applications use Java’s TLS stack.

OpenJDK 8:

OpenJDK 11:

  • TLS 1.2: enabled by default

  • TLS 1.3: enabled by default

For more information on TLS in Java 8, see Java Secure Socket Extension (JSSE) Reference Guide.

For more information on TLS in Java 11, see Java Secure Socket Extension (JSSE) Reference Guide in Oracle’s Java 11 Security Developers Guide.

StreamLink .NET applications use the operating system’s TLS stack.

For detailed information on .NET framework and TLS, see Transport Layer Security (TLS) best practices with the .NET Framework.

For detailed information on TLS ciphers supported by the Windows TLS stack, see Cipher Suites in SSL/TLS (SChannel SsP)

Liberator TLS stack

Liberator has a built-in OpenSSL TLS stack, independent of the operating system’s OpenSSL library (if present). Caplin regularly update Liberator’s OpenSSL library. To remain current with fixes and improvements to the OpenSSL library, please ensure you run the latest version of Liberator.

TLS protocols supported by Liberator:

  • TLS 1.2: supported from Liberator 6.2.2

  • TLS 1.3: supported from Liberator 7

For detailed information on TLS support in Caplin’s Liberator server, see the resources below:

From version 7.1.23, Liberator can log the cipher list that a StreamLink client presents in its TLS handshake with Liberator. For more information, see the documentation for the configuration items below: