SChannel (iohSChannel) is the Windows-native TLS transport for sgcWebSockets. It uses Microsoft's Secure Channel (SSPI) stack, which is built into Windows, so there is nothing extra to deploy and no OpenSSL DLLs to ship or patch. Enable it by setting TLSOptions.IOHandler to iohSChannel.
Microsoft's native TLS stack, built into Windows. Zero library deployment.
SChannel is Microsoft's native TLS implementation, the Secure Channel provider exposed through SSPI. It is part of Windows itself, so when you choose this backend there is no OpenSSL runtime to bundle, no DLLs to version-match against your build, and no third-party library to patch when a vulnerability is disclosed. Trust, protocol support and certificate handling all come from the operating system.
Because SChannel reads from the Windows certificate store, certificates and root authorities are managed centrally by the OS and refreshed through Windows Update. TLS 1.3 is available on Windows 11 and Windows Server 2022 and later. This makes SChannel a good fit for Windows desktop and server applications that want native TLS and the smallest possible deployment.
SChannel is Windows-only. For TLS on Linux, macOS, iOS or Android you use OpenSSL or one of the native mobile backends. Since every backend shares the same TLSOptions API, a Windows build can run SChannel while the same code base targets OpenSSL or a native backend elsewhere, with only the IOHandler line differing per platform.
Set TLSOptions.IOHandler to iohSChannel. There are no libraries to deploy.
uses
sgcWebSocket, sgcWebSocket_Types;
// ...
WSClient.TLS := True;
WSClient.TLSOptions.IOHandler := iohSChannel;
WSClient.TLSOptions.VerifyCertificate := True;
WSClient.Host := 'your.server.com';
WSClient.Port := 443;
WSClient.Active := True;WSClient->TLS = true;
WSClient->TLSOptions->IOHandler = iohSChannel;
WSClient->TLSOptions->VerifyCertificate = true;
WSClient->Host = "your.server.com";
WSClient->Port = 443;
WSClient->Active = true;SChannel ships inside Windows, so the deployment footprint is the smallest of any backend.
You ship no libssl or libcrypto with your application. There is nothing extra to version-match or patch.
Certificates and trusted roots come from the OS store, managed centrally and refreshed through Windows Update.
TLS 1.3 is available on Windows 11 and Windows Server 2022 and later, with earlier Windows falling back to TLS 1.2.
SChannel runs on Windows. Use OpenSSL or a native mobile backend on Linux, macOS, iOS and Android.
SChannel (iohSChannel) is included in the Professional and Enterprise editions of sgcWebSockets. It is not part of the Standard edition. See the feature matrix for the full breakdown.