Thesis Details

Linux VPN Performance and Optimization

Master's Thesis Student: Pokorný Fridolín Academic Year: 2015/2016 Supervisor: Kašpárek Tomáš, Ing.
Czech title
Optimalizace výkonu VPN v Linuxu

This thesis provides an analysis of the available software VPN solutions and its performance on the Linux system. This analysis is then used as a basis to determine performance bottlenecks, suggest performance improvements and further design and implement the most promising of them. The result of this thesis is a Linux kernel module which does TLS and DTLS transmission and reception in kernel space. The module utilizes key material established during a TLS or DTLS handshake in user space. Despite the fact that the developed module was designed for use by VPNs there are identified several other use-cases which can take advantage of our module.


VPN, Linux, optimization, operating system, TLS, DTLS, networking, security

Degree Programme
Information Technology, Field of Study Information Technology Security
defended, grade A
22 June 2016
Zbořil František, doc. Ing., Ph.D. (DITS FIT BUT), předseda
Burget Radek, doc. Ing., Ph.D. (DIFS FIT BUT), člen
Drábek Vladimír, doc. Ing., CSc. (DCSY FIT BUT), člen
Drahanský Martin, prof. Ing., Dipl.-Ing., Ph.D. (DITS FIT BUT), člen
Křivka Zbyněk, Ing., Ph.D. (DIFS FIT BUT), člen
Vranić Valentino, doc. Ing., Ph.D. (FIIT STU), člen
POKORNÝ, Fridolín. Linux VPN Performance and Optimization. Brno, 2016. Master's Thesis. Brno University of Technology, Faculty of Information Technology. 2016-06-22. Supervised by Kašpárek Tomáš. Available from:
    author = "Fridol\'{i}n Pokorn\'{y}",
    type = "Master's thesis",
    title = "Linux VPN Performance and Optimization",
    school = "Brno University of Technology, Faculty of Information Technology",
    year = 2016,
    location = "Brno, CZ",
    language = "english",
    url = ""
Back to top