diff --git a/core/lib/Drupal/Core/Access/CsrfAccessCheck.php b/core/lib/Drupal/Core/Access/CsrfAccessCheck.php
index f9b08e9..da7dcba 100644
--- a/core/lib/Drupal/Core/Access/CsrfAccessCheck.php
+++ b/core/lib/Drupal/Core/Access/CsrfAccessCheck.php
@@ -14,8 +14,8 @@
 /**
  * Allows access to routes to be controlled by a '_csrf' parameter.
  *
- * To use this check, add a "csrf" GET parameter to URLs of which the value is a
- * token generated by \Drupal::csrfToken()->get() using the same value as the
+ * To use this check, add a "token" GET parameter to URLs of which the value is
+ * a token generated by \Drupal::csrfToken()->get() using the same value as the
  * "_csrf" parameter in the route.
  */
 class CsrfAccessCheck implements StaticAccessCheckInterface {
diff --git a/core/tests/Drupal/Tests/Core/Access/RouteProcessorCsrfTest.php b/core/tests/Drupal/Tests/Core/Access/RouteProcessorCsrfTest.php
index b902fef..f75cd5f 100644
--- a/core/tests/Drupal/Tests/Core/Access/RouteProcessorCsrfTest.php
+++ b/core/tests/Drupal/Tests/Core/Access/RouteProcessorCsrfTest.php
@@ -79,7 +79,7 @@ public function testProcessOutbound() {
     $parameters = array();
 
     $this->processor->processOutbound($route, $parameters);
-    // 'csrf' should be added to the parameters array.
+    // 'token' should be added to the parameters array.
     $this->assertArrayHasKey('token', $parameters);
     $this->assertSame($parameters['token'], 'test_token');
   }