From b5f062a8e583297684409866b77b6dfb547d15ff Mon Sep 17 00:00:00 2001
From: Christopher Patton <cpatton@cloudflare.com>
Date: Mon, 13 May 2024 09:59:54 -0700
Subject: [PATCH] Update change log for VDAF-09

Co-authored-by: David Cook <dcook@divviup.org>
---
 draft-irtf-cfrg-vdaf.md | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/draft-irtf-cfrg-vdaf.md b/draft-irtf-cfrg-vdaf.md
index ae40193e..5c190def 100644
--- a/draft-irtf-cfrg-vdaf.md
+++ b/draft-irtf-cfrg-vdaf.md
@@ -352,6 +352,19 @@ security considerations for VDAFs.
 
 (\*) Indicates a change that breaks wire compatibility with the previous draft.
 
+09:
+
+* Poplar1: Make prefix tree traversal stricter by requiring each node to be a
+  child of a node that was already visited. This change is intended to make it
+  harder for a malicious Aggregator to steer traversal towards
+  non-heavy-hitting measurements.
+
+* Prio3: Add more explicit guidance for choosing the field size.
+
+* IDPF: Define extractability and clarify (un)safe usage of intermediate prefix
+  counts. Accordingly, add text ensuring public share consistency to security
+  considerations.
+
 08:
 
 * Poplar1: Bind the report nonce to the authenticator vector programmed into