diff --git a/index.bs b/index.bs
index 64849c5d9..b771f89e5 100644
--- a/index.bs
+++ b/index.bs
@@ -2204,32 +2204,42 @@ authorizing an authenticator.
#### Registration API Exceptions
-[=[RP]=]'s should prepare to encounter the following {{DOMException|DOMExceptions}} from a call to {{CredentialsContainer/create()|navigator.credentials.create()}}:
+[=[WRPS]=] can encounter the following {{DOMException|DOMExceptions}} from a call to {{CredentialsContainer/create()|navigator.credentials.create()}}. Some errors can have multiple reasons for why they happened, requiring the [=[WRPS]=] to infer the actual reason based on their use of WebAuthn:
: AbortError
- :: Definition here
+ :: The ceremony was cancelled via an {{AbortController}}
+ (see [[#sctn-abortoperation]] and [[#sctn-sample-aborting]] for more information.)
: ConstraintError
- :: Definition here
+ :: Either {{residentKey}} was set to "{{ResidentKeyRequirement/required}}" and no available authenticator supported resident keys,
+ or {{userVerification}} was set to "{{UserVerificationRequirement/required}}" and no available authenticator could perform [=user verification=].
: InvalidStateError
- :: Definition here
-
- : {{NotAllowedError}}
- :: Definition here
+ :: The authenticator used in the ceremony recognized an entry in {{excludeCredentials}}
+ after the user [=user consent|consented=] to registering a credential.
: NotSupportedError
- :: Definition here
+ :: No entry in {{PublicKeyCredentialCreationOptions/pubKeyCredParams}} had a `type` property of "{{PublicKeyCredentialType/public-key}}",
+ or the [=authenticator=] did not support any of the specified cryptographic parameters in {{PublicKeyCredentialCreationOptions/pubKeyCredParams}}.
: SecurityError
- :: Definition here
+ :: The [=effective domain=] was not a [=valid domain=],
+ or {{PublicKeyCredentialCreationOptions/rp}}.{{PublicKeyCredentialRpEntity/id}} was not a registrable domain suffix of nor was equal to the [=effective domain=].
: TypeError
- :: Definition here
+ :: The value of {{PublicKeyCredentialCreationOptions/user}}.{{PublicKeyCredentialUserEntity/id}} was not between 1 and 64 bytes (inclusive.)
: UnknownError
- :: Definition here
+ :: The [=authenticator=] could not process the supplied options,
+ or encountered an error while creating the new credential object.
+
+ : {{NotAllowedError}}
+ :: A catch-all error covering a wide range of possible reasons,
+ including common ones like the user canceling out of the ceremony.
+ Some of these causes are documented throughout this spec,
+ while others are client-specific.
+
### Use an Existing Credential to Make an Assertion - PublicKeyCredential's `[[Get]](options)` Method ### {#sctn-getAssertion}