From the [SING review](https://github.com/w3c/security-request/issues/91#issuecomment-3420371725): 2. Change-notification hardening – emphasized the attack surface (spoofing, DoS, linkability) and need for authenticated, rate-limited channels. * Notification channels MUST authenticate their sources and integrity-protect messages. * Implementers SHOULD bind notifications to DID state deltas (prev-hash → new-hash + timestamp) and apply rate limits. * Specs SHOULD explicitly call out that third-party or aggregated channels present the risk of spoofing, DoS, or linkability.
From the SING review: