HAS Comments 34-36
Issues #75 #74 & #73

Deleted much of 5.1 including all discussion of sweeps, and usefulness of documenting tests to allow replication by MSAs, and noting MSA authority to perform sweeps etc. I did not move this information to the annex. Rewrote sentences around documentation requirements to emphasize replicability of testing without "check box" discussion that comments suggested deletion of.

Also revised the discussion of risk transfer to be in line with the new EC guidance (no risk transfer to users) by focusing on system dependencies rather then transfer of risk.