关键词: 动态主机配置协议（DHCP）, 安全认证, 安全漏洞, DK_SAM

Abstract: The DHCP (dynamic host configuration protocol) allocates and manages IP address dynamically, and promotes address utilization, so the protocol has been widely used. However, due to the protocol without security mechanism, the potential security vulnerabilities such as illegal DHCP, Mac address disguise, replay attack and DoS attack are becoming more and more prominent. This paper proposes a security authentication model based on dynamic key (DK_SAM).The model combines with the current system time to compute the one-time key and uses the key to generate the message authentication code by Hash algorithm. Finally, the model achieves the objective of the security authentication through verifying the authentication code in Option180. Experimentation indicates that DK_SAM ensures the security characteristics, as well it has higher efficiency.

Key words: dynamic host configuration protocol (DHCP), security authentication, security vulnerability, DK_SAM