OSPF - HMAC-SHA Extended Authentication
OSPF used to only support plain text and MD5 authentication but since IOS 15.4(1)T, OSPF also supports HMAC-SHA (Hash Message Authentication Code Secure Hash Algorithm). In addition, OSPF now uses key chains like RIP and EIGRP.
However, the configuration process for IOS-XR has changed:
First, you need to define the key-chain:
key chain R1 key 1 key-string R1_Password cryptographic-algorithm hmac-sha-256 commit
Then, you need to apply this key-chain to the OSPF area:
authentication command can be applied at the interface or the
router ospf configuration mode.