Checks whether biometric authentication is enrolled and available on the device. Fails when no biometric hardware is present or no credentials are enrolled.
Checks the device for root / jailbreak indicators using the native TamperDetector module. Fails when the tampering score meets or exceeds the server-configured threshold (default 0.8).
Both kinds are available on both iOS and Android. The score threshold
for deviceTampering is a server-supplied parameter embedded in the
credential's policies JSON — it is not a bridge-config parameter.
// MfaPolicy parity check — verified against ping-android-sdk@c939521 / ping-ios-sdk@2d6e3eb
A single OATH policy to be enforced by the policy evaluator.