Security issues have arisen when billions of resource-constrained devices that connect to the Internet via the Internet of Things (IoT). This research emphasizes enhancing communication security in IoT systems using the Constrained Application Protocol (CoAP) by introducing a lightweight authentication method. The proposed approach utilizes a lightweight AES-based block cipher and dynamic one-time passkey generation for secure client device authentication. The technique was executed and verified in a simulated IoT environment utilizing resource-limited devices. Experimental findings indicate that the proposed authentication approach incurs a negligible authentication time overhead (~18 ms) and exhibits low resource usage, rendering it highly appropriate for limited situations. The model's resilience against surveillance, replay attacks, and man-in-the-middle attacks is further verified by security assessments. The findings validate the importance of the suggested strategy in improving secure communication inside IoT networks.