From 2e417ee2e08106565e9809fb2b25f19acb8b5512 Mon Sep 17 00:00:00 2001 From: Manu Sporny Date: Sat, 19 Oct 2024 12:54:28 -0400 Subject: [PATCH] Fix grammar related to external verification methods. Co-authored-by: Ted Thibodeau Jr --- index.html | 17 +++++++++-------- 1 file changed, 9 insertions(+), 8 deletions(-) diff --git a/index.html b/index.html index 0c58aa0..e5404ed 100644 --- a/index.html +++ b/index.html @@ -2326,16 +2326,17 @@

Retrieve Verification Method

method=], through a [=verification relationship=], that exists in a place that is external to the [=controller document=]. As described in Section [[[#integrity-protection-of-controllers]]], specifying a [=verification method=] -that is external to a [=controller document=] is a valid usage of this +that is external to a [=controller document=] is a valid use of this specification. When retrieving any [=verification method=], especially when the [=verification method=] might be cached, it is vital that the algorithm above is -used to ensure that there is a bi-directional reference from the [=controller -document=] to the [=verification method=] (via a [=verification relationship=]) -and from the [=verification method=] to the [=controller document=] (via the -[=verification method=]'s `controller` property). Not ensuring this -bi-directional relationship exists can lead to security compromises where an -attacker poisons a cache by claiming control of a [=verification method=] -without the consent (that is, without a bi-directional reference) of the victim. +used to confirm that the [=controller document=] refers to the +[=verification method=] (via a [=verification relationship=]) +and that the [=verification method=] refers to the [=controller document=] +(via the [=verification method=]'s `controller` property). Failure to +confirm that these reciprocal relationships exist can lead to security +compromises where an attacker poisons a cache by claiming control of a +[=verification method=] without the consent (that is, without a reciprocal +reference) of the victim.