Slovak University of Technology, Bratislava
Faculty of Electrical Engineering and Information Technology
Degree Course: INFORMATICS
Author: Bc. Pavol Švába
Diploma thesis: Encryption techniques in network protocols
Supervisor: RNDr. Karol Nemoga, CSc.
December 2003

Increasing demand for secure data exchange in public systems is driving the demands for implementing additional protocols in TCP/IP protocol stack.

TCP/IP was designed to be a networking protocol without protection, not to offer any built-in security mechanisms. The evolution of TCP/IP security was really the evolution of network security. Any resource accessible over the network presented a potential security risk to be exploited in some manner. The objective of the thesis is to introduce some of the contemporary security solutions provided within TCP/IP stack.

In the thesis, we cover some of the well-known solutions operated on different levels of the standard protocol stack TCP/IP especially IPSec and TLS/SSL and consider their benefits in building VPNs.

We implement an application for sending electronic messages and transferring files secured within application layer. Application uses OpenSSL library implementation of TLS/SSL to secure data exchange between hosts in LAN.