It can be useful to force a remediation on the device to verify the Gateway is properly receiving and handling the notifications from the Secure Backend. To force remediation, one should in fact, try and break one of the solution security rules/requirements.

Below some easy examples:

• Use the application on a device with an Android version 10

• Use the application on a device with a Security Patch Level from before March 2023

• Use a bad Safetynet key in the provisioning data

• Activate developer mode on the phone

• Run a debug version of the application (with ‘protect’ SDKs though)

Below some more difficult ones:

• Try and hook a Frida-like tool on the application

As a result, the application should crash and an incident notification (type = SECURITY) should be sent to the Gateway (see Gateway Backend - APIs - Notify ).