If this is constant TCP connection you might XOR against the rand() function. This should be rather secure except for the transfer of th e shared secret. That being the seed to the srand function. You'll need some way to reset the seed if the computers get out of sync.