Amadis
Integration Guidance - Force remediation
It can be useful to force a remediation on the device to verify the Gateway is properly receiving and handling the notifications from the Secure Backend. To force remediation, one should in fact, try and break one of the solution security rules/requirements.
Â
A protected (or ‘protect’) version of the SDK is required to see the remediation actions.
Â
Below some easy examples:
Use the application on a device with an Android version 10
Use the application on a device with a Security Patch Level from before March 2023
Use a bad Safetynet key in the provisioning data
Activate developer mode on the phone
Run a debug version of the application (with ‘protect’ SDKs though)
Below some more difficult ones:
Try and hook a Frida-like tool on the application
Â
As a result, the application should crash and an incident notification (type = SECURITY) should be sent to the Gateway (see Gateway Backend - APIs - Notify ).