From 825cce701d532364a78c7ace2918d1a6a64a0641 Mon Sep 17 00:00:00 2001
From: Akshay Kumar <akshayku@microsoft.com>
Date: Fri, 17 Nov 2017 11:25:25 -0800
Subject: [PATCH] Making "direct" description less ambiguous.

---
 index.bs | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/index.bs b/index.bs
index 6157471dc..4bd765e2c 100644
--- a/index.bs
+++ b/index.bs
@@ -1574,8 +1574,8 @@ during credential generation.
       example, in the case that the authenticator uses self-attestation.)
     <li><dfn>direct</dfn> - indicates that the [=[RP]=] wants the attestation statement as generated by the authenticator. If
       the client returns an attestation statement to the RP in this case, it MUST be the statement generated by the authenticator.
-      If, for whatever reason, the client cannot pass on the authenticator-generated attestation statement, it MUST terminate
-      the credential generation operation with a "{{NotAllowedError}}".
+      If authenticator violates privacy requirements of the attestation scheme it is using, client MUST terminate
+      the credential generation operation with a "{{AttestationNotPrivateError}}".
 </ul>