diff --git a/index.bs b/index.bs
index cf1113d79..3105faa79 100644
--- a/index.bs
+++ b/index.bs
@@ -4672,7 +4672,7 @@ This attestation statement format is used with FIDO U2F authenticators using the
             Note: This signifies uncompressed ECC key format.
     1. Let |verificationData| be the concatenation of (0x00 || |rpIdHash| ||
         |clientDataHash| || |credentialId| || |publicKeyU2F|) (see [=Section 4.3=] of [[!FIDO-U2F-Message-Formats]]).
-    1. Verify the |sig| using |verificationData| and |certificate public key| per [[!SEC1]].
+    1. Verify the |sig| using |verificationData| and the |certificate public key| per section 4.1.4 of [[!SEC1]] with SHA-256 as the hash function used in step two.
     1. Optionally, inspect |x5c| and consult externally provided knowledge to determine whether |attStmt| conveys a [=Basic=] or
         [=AttCA=] attestation.
     1. If successful, return implementation-specific values representing [=attestation type=] [=Basic=], [=AttCA=] or uncertainty,