more refining

index.bs

@@ -844,15 +844,18 @@ When this method is invoked, the user agent MUST execute the following algorithm
                 1.  If <code>|credentialCreationData|.[=attestationConveyancePreference=]</code>'s value is
                     <dl class="switch">
                     :   "none"
-                    ::  replace potentially identifying information (such as AAGUID and attestation certificates) 
-                        in the [=attested credential data=] and [=attestation statement=] with blinded versions of the same data.
+                    ::  replace potentially uniquely identifying information (such as [=AAGUID=] and 
+                        [=attestation certificates=]) in the [=attested credential data=] and [=attestation statement=],
+                        respectively, with blinded versions of the same data.
+
+                    Issue: need to specify how to perform such blinding?
 
                     :   "indirect"
-                    ::  potentially replace the attestation statement with a more privacy-friendly and/or more easily verifiable
-                        version of the same data (for example, by employing a [=Privacy CA=]).
+                    ::  The client MAY replace the [=AAGUID=] and [=attestation statement=] with a more privacy-friendly 
+                        and/or more easily verifiable version of the same data (for example, by employing a [=Privacy CA=]).
 
                     :   "direct"
-                    ::  relay the authenticator's attestation statement, unaltered, to the RP.
+                    ::  convey the authenticator's [=AAGUID=] and [=attestation statement=], unaltered, to the RP.
                     </dl>
 
                 1.  Let |id| be <code>|attestationObject|.authData.[=attestedCredentialData=].[=credentialId=]</code>.