Rewrite the updated changelog entries.

WICG · Nov 21, 2018 · 13a937f · 13a937f
1 parent a500eba
commit 13a937f
Showing 1 changed file with 9 additions and 8 deletions.
diff --git a/draft-yasskin-http-origin-signed-responses.md b/draft-yasskin-http-origin-signed-responses.md
@@ -1935,15 +1935,16 @@ draft-05
 * Refer to draft-yasskin-httpbis-origin-signed-exchanges-impl for draft version
   numbers.
 * Require `exchange`'s response to be complete and cachable by a shared cache.
-* Define the "integrity" field of the Signature header to include the digest
-  algorithm.
+* Define the "integrity" field of the Signature header to include subfields of
+  the main integrity-protecting header, including the digest algorithm.
 * Put a fallback URL at the beginning of the `application/signed-exchange`
-  format, and remove ':url' key from the CBOR representation of the exchange's
-  request and response metadata and headers.
-* The new signed message format which embeds the exact bytes of the CBOR
-  representation of the exchange's request and response metadata and headers.
-* When validating the signature validity, move the `payload` integrity check
-  steps to after verifying `header`.
+  format, which replaces the ':url' key from the CBOR representation of the
+  exchange's request and response metadata and headers.
+* Make the signed message format a concatenation of byte sequences, which helps
+  implementations avoid re-serializing the exchange's request and response
+  metadata and headers.
+* Explicitly check the response payload's integrity instead of assuming the
+  client did it elsewhere in processing the response.
 
 draft-04