Security
Security deserves exact language.
Security language stays concrete. ECCP should describe primitives, trust boundaries, disclosure policy, and audits precisely instead of hiding behind vague encryption marketing.
Audit readiness, coordinated disclosure, and protocol review belong alongside the specification itself.
Future revisions will list formal threat assumptions and public audit artifacts.
This route keeps the disclosure path visible while the formal audit archive is prepared.