diff --git a/pep-0458.txt b/pep-0458.txt
index b53d39e3e45..0635a521db2 100644
--- a/pep-0458.txt
+++ b/pep-0458.txt
@@ -828,6 +828,14 @@ version of the *snapshot* metadata, which in turn lists the versions of the
 *targets* and delegated targets metadata, all as part of a given consistent
 snapshot.
 
+In normal usage, version number overflow is unlikely to occur. An 8-byte integer,
+for instance, can be incremented once per millisecond and last almost 300 million
+years. If an attacker increases the version number arbitrarily, the repository
+can recover by revoking the compromised keys and resetting the version number as
+described in the TUF specification__.
+
+__ https://github.com/theupdateframework/specification/blame/4b82990afdc6c6d77aa9d43e0632f01bb9e7752c/tuf-spec.md#L1112-L1120
+
 The *targets* or delegated targets metadata refer to the actual target
 files, including all of their cryptographic hashes as specified above.
 Thus, to mark a target file as part of a consistent snapshot it MUST, when