From 0b7c0d4221b5b0cf5581c38cbdb089d27ae70ad0 Mon Sep 17 00:00:00 2001
From: Michael Jones <michael_b_jones@hotmail.com>
Date: Sun, 18 Aug 2024 17:23:19 -0700
Subject: [PATCH] Detached payloads may be used

---
 index.html | 26 ++++++++++++++++----------
 1 file changed, 16 insertions(+), 10 deletions(-)

diff --git a/index.html b/index.html
index 4161085..dc4902f 100644
--- a/index.html
+++ b/index.html
@@ -250,7 +250,8 @@ <h2 id="securing-with-jose">Securing JSON-LD Verifiable Credentials with JOSE</h
             </p>
             <p>
                 A [=conforming JWS issuer implementation=] MUST use [[RFC7515]] to secure this media type.
-                The unsecured verifiable credential is the unencoded JWS payload.
+                The unsecured [=verifiable credential=] is the unencoded JWS payload.
+		A detached payload MAY be used, as described in Appendix F of [[RFC7515]].
             </p>
             <p>
                 The <code>typ</code> header parameter SHOULD be <code>vc-ld+jwt</code>.
@@ -304,7 +305,8 @@ <h2 id="securing-vps-with-jose">Securing JSON-LD Verifiable Presentations with J
             </p>
             <p>
                 A [=conforming JWS issuer implementation=] MUST use [[RFC7515]] to secure this media type.
-                The unsecured verifiable presentation is the unencoded JWS payload.
+                The unsecured [=verifiable presentation=] is the unencoded JWS payload.
+		A detached payload MAY be used, as described in Appendix F of [[RFC7515]].
             </p>
             <p>
                 The <code>typ</code> header parameter SHOULD be <code>vp-ld+jwt</code>.
@@ -453,10 +455,11 @@ <h2 id="securing-with-sd-jwt">Securing JSON-LD Verifiable Credentials with SD-JW
             </p>
             <p>
                 A [=conforming SD-JWT issuer implementation=] MUST use [[[SD-JWT]]] [[SD-JWT]] to secure
-                this media type. The unsecured [=verifiable credential=] is the input JSON
-                claim set. The Issuer then converts the input JSON claim set (i.e., the
+                this media type. The unsecured [=verifiable credential=] is the input
+                JWT Claims Set. The Issuer then converts the input JWT Claims Set (i.e., the
                 unsecured [=verifiable credential=]) into an SD-JWT payload according to
                 <a data-cite="SD-JWT#section-6.1">SD-JWT issuance instructions</a>.
+		A detached payload MAY be used, as described in Appendix F of [[RFC7515]].
             </p>
             <p>
                 The <code>typ</code> header parameter SHOULD be <code>vc-ld+sd-jwt</code>.
@@ -519,7 +522,8 @@ <h2 id="securing-vps-sd-jwt">Securing JSON-LD Verifiable Presentations with SD-J
             </p>
             <p>
                 A [=conforming SD-JWT issuer implementation=] MUST use [[SD-JWT]] to secure this media type.
-                The unsecured verifiable presentation is the unencoded SD-JWT payload.
+                The unsecured [=verifiable presentation=] is the unencoded SD-JWT payload.
+		A detached payload MAY be used, as described in Appendix F of [[RFC7515]].
             </p>
             <p>
                 The <code>typ</code> header parameter SHOULD be <code>vp-ld+sd-jwt</code>.
@@ -618,7 +622,8 @@ <h2 id="securing-vcs-with-cose">Securing JSON-LD Verifiable Credentials with COS
             <p>
                 A [=conforming COSE issuer implementation=] MUST use COSE_Sign1 as specified in [[RFC9052]] to secure
                 this media type.
-                The unsecured verifiable credential is the unencoded COSE_Sign1 payload.
+                The unsecured [=verifiable credential=] is the unencoded COSE_Sign1 payload.
+		A detached payload MAY be used, as described in Section 4.1 of [[RFC9052]].
             </p>
             <p>
                 The <code>typ</code> header parameter, as described in <a data-cite="RFC9596#section-2">COSE "typ" (type) Header Parameter</a>, SHOULD be <code>application/vc-ld+cose</code>.
@@ -672,7 +677,8 @@ <h2 id="securing-vps-with-cose">Securing JSON-LD Verifiable Presentations with C
             <p>
                 A [=conforming COSE issuer implementation=] MUST use COSE_Sign1 as specified in [[RFC9052]] to secure
                 this media type.
-                The unsecured verifiable presentation is the unencoded COSE_Sign1 payload.
+                The unsecured [=verifiable presentation=] is the unencoded COSE_Sign1 payload.
+		A detached payload MAY be used, as described in Section 4.1 of [[RFC9052]].
             </p>
             <p>
                 The <code>typ</code> header parameter SHOULD be <code>application/vp-ld+cose</code>.
@@ -2349,9 +2355,9 @@ <h3 id="alg-sd-jwt">Algorithm for Verifying a Credential or Presentation Secured
                         Set <code>mediaType</code> to <code>vc</code>
                     </li>
                     <li>
-                        Convert the SD-JWT payload back into the JSON claim set by reversing the process
-                        in [[[SD-JWT]]] [[SD-JWT]]. Set <code>document</code> to the JSON claim set.
-                        (For examples of the transition from JSON claim set to SD-JWT payload, please
+                        Convert the SD-JWT payload back into the JWT Claims Set by reversing the process
+                        in [[[SD-JWT]]] [[SD-JWT]]. Set <code>document</code> to the JWT Claims Set.
+                        (For examples of the transition from JWT Claims Set to SD-JWT payload, please
                         see <a data-cite="SD-JWT#appendix-A">SD-JWT examples</a>).
                     </li>
                     <li>