diff --git a/index.html b/index.html
index 2e10176..6442895 100644
--- a/index.html
+++ b/index.html
@@ -555,11 +555,11 @@ <h3>Terminology</h3>
 <!-- [[[#cryptographic-suites]]] for further detail. -->
           </dd>
 
-          <dt><dfn class="export" data-lt="controller(s)|Controllers">controller</dfn></dt>
+          <dt><dfn class="export">controller</dfn></dt>
           <dd>
-An entity that is [=authorized=] to perform an action with a specific resource,
-such as update a [=controller document=] or use a cryptographic key to generate
-a digital signature.
+An entity that is [=authorized=] to perform an action associated with a specific
+resource such as updating a [=controller document=] or generating a digital
+signature that can be verified using a [=verification method=].
           </dd>
 
           <dt><dfn class="export">controller document</dfn></dt>
@@ -2909,6 +2909,19 @@ <h2>Key and Signature Expiration</h2>
       </p>
     </section>
 
+    <section>
+      <h3>Verification Method Binding</h3>
+
+      <p>
+Implementers ensure that a [=verification method=] is bound to a particular
+[=controller=] by going from the expression of the [=verification method=] to
+the [=controller document=], and then ensuring that the [=controller document=]
+also contains a reference to the [=verification method=]. This process is
+described in the algorithm for <a href="#retrieve-verification-method">
+retrieving a verification method</a>.
+      </p>
+    </section>
+
     <section>
       <h2>Verification Method Rotation</h2>