You could add TLS encryption using the OpenSSL API.
Its rather straight forward to implement, eg. subclass you current socket class and change the Connect(), Disconnect(), Read() and Write().
Depending on the kind af application you have, you'll have to fine tune the certificate checking. Sometimes (like for web servers) only the client can check the certificate of the server, but whenever possible both sides should verify the certificate of the other.
If you can only check the server key, get a certificate signed by a well known CA so all clients can check it. If your server also checks the clients, they they also need to get their certs signed by a public CA, or you configure your own CA and send a certificate to each client along with the user registration for example.