Reference the Hash Function Claim section when talking about _sd_alg …

…in verification
oauth-wg · Dec 16, 2023 · 072a060 · 072a060
1 parent 64a4c45
commit 072a060
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/draft-ietf-oauth-selective-disclosure-jwt.md b/draft-ietf-oauth-selective-disclosure-jwt.md
@@ -700,7 +700,7 @@ an SD-JWT:
     1. Ensure that a signing algorithm was used that was deemed secure for the application. Refer to [@RFC8725], Sections 3.1 and 3.2 for details. The `none` algorithm MUST NOT be accepted.
     2. Validate the signature over the Issuer-signed JWT per Section 5.2 of [@!RFC7515].
     3. Validate the Issuer and that the signing key belongs to this Issuer.
-    5. Check that the `_sd_alg` claim value is understood and the hash algorithm is deemed secure.
+    5. Check that the `_sd_alg` claim value is understood and the hash algorithm is deemed secure (see (#hash_function_claim)).
 3. Process the Disclosures and embedded digests in the Issuer-signed JWT as follows:
     1. For each Disclosure provided:
         1. Calculate the digest over the base64url-encoded string as described in (#hashing_disclosures).