diff --git a/draft-ietf-httpbis-http2-secondary-certs.md b/draft-ietf-httpbis-http2-secondary-certs.md
index 56234b682..ffe260c2f 100644
--- a/draft-ietf-httpbis-http2-secondary-certs.md
+++ b/draft-ietf-httpbis-http2-secondary-certs.md
@@ -253,7 +253,7 @@ established TLS connection, a request can be constructed which describes the
 desired certificate and an authenticator message can be constructed proving
 possession of a certificate and a corresponding private key. Both requests and
 authenticators can be generated by either the client or the server. Exported
-Authenticators use the message structures from sections 4.3.2 and 4.4 of
+Authenticators use the message structures from Sections 4.3.2 and 4.4 of
 [I-D.ietf-tls-tls13], but different parameters.
 
 Each Authenticator is computed using a Handshake Context and Finished MAC Key